$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.mft File: 40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.mft (raw, json) Hash identifier: Geiw/xKbATMu95qYgWyHDFO7l0U9Yk3/kPbRZ/4n7tk= Subject key identifier: 79:EE:96:BE:6A:05:AD:4F:CA:9D:69:53:1C:3B:65:EA:CF:B7:F9:BF Authority key identifier: 40:AB:F4:13:CD:33:0E:0A:4D:2B:AE:8F:1E:66:AF:8B:FC:B7:3D:71 Certificate issuer: /CN=40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71 Certificate serial: 5C00772FD26E46A6B1E1A5AFBB6F2AF72FF42588 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.mft Manifest number: 50 Signing time: Thu 11 Jun 2026 18:29:12 +0000 Manifest this update: Thu 11 Jun 2026 18:24:11 +0000 Manifest next update: Fri 12 Jun 2026 22:27:11 +0000 Files and hashes: 1: 3130332e3232302e3234302e302f32332d3233203d3e2034383337.roa (hash: 2wZEG3CS93oCxpOvvSD/xvBdYQ4/YZbs+htsSujp09o=) 2: 3130332e3232302e3234322e302f32332d3233203d3e2034383337.roa (hash: 3TONmc+B7Q42E5fNjNdLH0s/fvuQxKfU4ddysGsNONE=) 3: 34352e3235322e302e302f32332d3233203d3e2034383337.roa (hash: Girfmzj3SgStMMY9QQQlekVZITn+b5VccIqS4mZXqQI=) 4: 323430353a393738303a3a2f33322d313238203d3e2030.roa (hash: wsAlE1QEtrkyozdia6LocJwjVZkBAeHQ4PonEVzYZn4=) 5: 40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.crl (hash: Y8GgXkioTA6vs64EJookRi7rxg0krOE3b/8bVbX9hdU=) 6: 3130332e3232302e3234302e302f32322d3232203d3e203234313339.roa (hash: gbVCFJ5R1GJxVqj6VUJKkq23UMSaPAub7AW4a1P+kwc=) 7: 34352e3235322e302e302f32322d3232203d3e203234313339.roa (hash: yZ9/bItsZVNimYfZJceoCqR8YKceJZZWWFqQf2xko2Y=) 8: 34352e3235322e322e302f32332d3233203d3e2034383337.roa (hash: ogJ8b/pu/yvvBpwQjJD7aR2MKAiB2NVSNAKv0EvNExs=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.crl rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 22:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:00:77:2f:d2:6e:46:a6:b1:e1:a5:af:bb:6f:2a:f7:2f:f4:25:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71 Validity Not Before: Jun 11 18:24:11 2026 GMT Not After : Jun 12 22:27:11 2026 GMT Subject: CN=79EE96BE6A05AD4FCA9D69531C3B65EACFB7F9BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b0:6e:0d:c3:11:5b:dc:4d:b6:4f:3a:0a:db: 8e:10:5c:2d:90:9e:2b:01:76:e2:c1:b1:b4:92:ea: ac:50:84:89:ba:94:1d:7c:06:09:83:2c:5e:8b:69: 56:87:82:75:4f:43:3e:af:7b:b8:c2:c0:87:06:8a: 32:53:de:49:3f:b5:4f:29:bf:71:3c:0c:be:06:89: c7:90:16:21:0b:21:dd:22:dd:3e:75:6c:70:a8:64: 41:66:40:83:88:1c:82:96:d6:6f:f6:1d:11:9a:f5: 76:54:4c:b4:35:c4:4d:3c:80:d4:fd:5a:56:1e:48: 2e:dd:04:5d:20:fd:01:b5:f6:cd:c5:7f:87:5e:eb: e6:77:5d:eb:47:0c:3c:6d:1b:d1:e2:7e:9b:b2:12: b3:6d:b9:04:68:db:e4:b5:e1:a9:ed:7e:a7:23:fa: 1a:1c:b1:dc:3a:6f:b1:43:e6:8c:ac:54:e0:28:60: f3:dd:4a:73:71:91:90:27:f3:d6:93:93:5d:e4:57: 3f:cf:12:fc:ec:05:7a:d8:cf:75:29:8a:60:b0:21: 04:fa:1a:1b:1d:46:c1:00:7b:d4:d7:27:ca:97:90: 06:34:1f:6b:44:95:02:78:6d:b5:4e:8e:31:e9:36: ed:65:e0:4a:68:53:6f:5c:e4:33:61:59:cf:b6:ac: 3b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:EE:96:BE:6A:05:AD:4F:CA:9D:69:53:1C:3B:65:EA:CF:B7:F9:BF X509v3 Authority Key Identifier: keyid:40:AB:F4:13:CD:33:0E:0A:4D:2B:AE:8F:1E:66:AF:8B:FC:B7:3D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:9c:bb:10:5c:3e:9a:f4:4c:87:84:a6:b3:29:ae:f9:9d:ff: b4:51:b7:8a:73:71:ab:69:e8:52:7e:fa:78:58:34:28:05:97: af:66:f9:40:60:ea:dd:cb:f1:56:d9:e6:b2:35:8e:da:67:f2: 5f:4d:a5:53:65:b1:89:6c:05:c3:5a:48:c4:b6:bd:e2:c4:ee: 3b:98:00:2d:99:e0:47:f6:b2:44:cb:fc:df:94:5a:ef:70:36: 6d:95:4b:59:79:3a:14:b6:ba:c4:8f:7f:13:fb:6d:9b:59:32: 43:08:81:c3:9e:8f:40:56:7c:cb:03:0d:5d:a9:bb:26:5d:08: 14:68:83:9d:a9:5b:2f:b3:ec:04:26:a0:99:bd:30:35:fe:97: 6f:86:b1:19:81:b1:c5:45:de:f8:32:ba:71:fa:a7:1d:cd:cd: e8:d8:30:78:4c:c9:9d:15:5f:d3:6e:f0:5b:c6:46:f9:60:51: 4f:06:1f:bc:e9:e4:81:55:b6:d1:81:80:e3:e1:71:23:ed:81: 6e:d3:d6:84:0b:cf:1b:46:a4:2e:15:04:94:a9:d2:c9:69:b9: e6:44:f7:58:ea:47:69:e8:55:0e:c7:fa:5d:e3:d6:e3:3a:2e: d6:e4:0f:9f:fe:27:a4:a4:04:74:b9:4d:e0:70:f4:8f:88:20: 54:2e:13:0a -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUXAB3L9JuRqax4aWvu28q9y/0JYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBBQkY0MTNDRDMzMEUwQTREMkJBRThGMUU2NkFGOEJG Q0I3M0Q3MTAeFw0yNjA2MTExODI0MTFaFw0yNjA2MTIyMjI3MTFaMDMxMTAvBgNV BAMTKDc5RUU5NkJFNkEwNUFENEZDQTlENjk1MzFDM0I2NUVBQ0ZCN0Y5QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5sG4NwxFb3E22TzoK244QXC2Q nisBduLBsbSS6qxQhIm6lB18BgmDLF6LaVaHgnVPQz6ve7jCwIcGijJT3kk/tU8p v3E8DL4GiceQFiELId0i3T51bHCoZEFmQIOIHIKW1m/2HRGa9XZUTLQ1xE08gNT9 WlYeSC7dBF0g/QG19s3Ff4de6+Z3XetHDDxtG9HifpuyErNtuQRo2+S14antfqcj +hocsdw6b7FD5oysVOAoYPPdSnNxkZAn89aTk13kVz/PEvzsBXrYz3UpimCwIQT6 GhsdRsEAe9TXJ8qXkAY0H2tElQJ4bbVOjjHpNu1l4EpoU29c5DNhWc+2rDs3AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUee6WvmoFrU/KnWlTHDtl6s+3+b8wHwYDVR0j BBgwFoAUQKv0E80zDgpNK66PHmavi/y3PXEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njk2MjQwNDg5NTQyNDUxNS8wLzQwQUJGNDEzQ0QzMzBFMEE0RDJCQUU4RjFFNjZB RjhCRkNCNzNENzEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBBQkY0MTNDRDMzMEUwQTREMkJBRThGMUU2NkFGOEJGQ0I3M0Q3MS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTY5NjI0MDQ4OTU0MjQ1MTUvMC80MEFCRjQxM0NEMzMw RTBBNEQyQkFFOEYxRTY2QUY4QkZDQjczRDcxLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANZy7EFw+mvRM h4Smsymu+Z3/tFG3inNxq2noUn76eFg0KAWXr2b5QGDq3cvxVtnmsjWO2mfyX02l U2WxiWwFw1pIxLa94sTuO5gALZngR/ayRMv835Ra73A2bZVLWXk6FLa6xI9/E/tt m1kyQwiBw56PQFZ8ywMNXam7Jl0IFGiDnalbL7PsBCagmb0wNf6Xb4axGYGxxUXe +DK6cfqnHc3N6NgweEzJnRVf027wW8ZG+WBRTwYfvOnkgVW20YGA4+FxI+2BbtPW hAvPG0akLhUElKnSyWm55kT3WOpHaehVDsf6XePW4zou1uQPn/4npKQEdLlN4HD0 j4ggVC4TCg== -----END CERTIFICATE-----Generated at Fri Jun 12 07:53:32 2026 by rpki-client