$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.mft File: 289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.mft (raw, json) Hash identifier: KlxvksnwS/xoL3hJa1DvL3M9aiP0jrN5F/aNHpHmpPw= Subject key identifier: 47:5D:33:58:47:0C:E3:1C:B7:C4:7F:E2:70:82:50:0E:90:27:C0:25 Authority key identifier: 28:92:51:F0:DC:A3:FF:6A:CE:10:1E:46:9C:CB:4C:90:6C:B6:0D:6E Certificate issuer: /CN=289251F0DCA3FF6ACE101E469CCB4C906CB60D6E Certificate serial: 71D5E1296F455B1305188C4DD5C68812E12FBAAB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.mft Manifest number: 4B Signing time: Thu 11 Jun 2026 17:04:04 +0000 Manifest this update: Thu 11 Jun 2026 16:59:04 +0000 Manifest next update: Fri 12 Jun 2026 20:01:04 +0000 Files and hashes: 1: 289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.crl (hash: n8mAVKQiTsLxR71uXEQvyqYvwYwPheJAz8sZ/T9RIVQ=) 2: 3230322e3133362e37322e302f32332d3233203d3e2034383437.roa (hash: 0UAAnHGmhpgwD4Y3MO/hfVMnkyeKLb0Kzm5dHFM3DRY=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.crl rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:d5:e1:29:6f:45:5b:13:05:18:8c:4d:d5:c6:88:12:e1:2f:ba:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289251F0DCA3FF6ACE101E469CCB4C906CB60D6E Validity Not Before: Jun 11 16:59:04 2026 GMT Not After : Jun 12 20:01:04 2026 GMT Subject: CN=475D3358470CE31CB7C47FE27082500E9027C025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2d:2c:f5:6e:b4:8e:79:37:5e:6d:6d:92:c1: f0:c3:2c:39:f1:04:9c:a9:4e:31:15:e7:3e:65:b6: 37:0b:4a:69:39:d9:c9:03:ca:0c:ac:83:39:61:2f: cd:92:ef:bf:08:b3:d1:3f:20:cf:b1:64:ac:c3:f2: 98:cb:0d:44:82:16:2f:6f:af:31:0d:22:8d:92:40: 85:0c:e6:a6:d8:0a:70:7a:c6:a5:21:63:cc:12:31: d9:1f:e5:75:2d:ad:d5:e4:1d:a3:08:3c:1d:1c:1f: 52:90:1d:fa:62:81:68:28:cf:2a:be:2a:0f:da:7f: 72:6a:cd:1a:25:71:2b:14:24:af:c3:f0:8d:36:76: f7:4b:6d:97:f7:2d:e8:df:60:29:b2:ec:61:22:9b: 70:62:78:0f:d7:58:9d:7b:ad:48:58:ac:61:c2:7e: 4b:13:2d:55:b4:73:25:7b:b5:71:b7:49:6f:47:85: 4d:d2:34:d9:5b:4a:9c:83:10:60:18:c8:6a:98:ef: 69:d5:82:2b:2c:50:9a:da:32:c0:22:9d:4d:79:0d: f6:7a:f7:e7:27:b0:d0:6a:97:06:05:31:2a:27:45: 54:f6:84:3e:e3:32:c1:04:61:e2:e2:22:d9:5b:cb: 1b:8b:98:4c:c4:b5:05:b9:02:78:08:7e:52:ca:e5: e6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5D:33:58:47:0C:E3:1C:B7:C4:7F:E2:70:82:50:0E:90:27:C0:25 X509v3 Authority Key Identifier: keyid:28:92:51:F0:DC:A3:FF:6A:CE:10:1E:46:9C:CB:4C:90:6C:B6:0D:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097328917783511042/0/289251F0DCA3FF6ACE101E469CCB4C906CB60D6E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:59:a2:08:c3:9c:06:fb:74:44:5f:8e:74:15:5f:8e:12:86: 96:6b:54:b7:b9:cc:fb:35:9d:40:6f:d0:34:87:ad:3b:d4:55: 9e:71:96:53:88:2a:b4:3c:3f:a9:1d:c3:6e:1d:bd:a8:9a:12: c8:74:11:ba:87:e8:a9:4a:5d:8a:63:84:dd:10:6e:19:8c:97: f5:7a:21:33:c1:32:24:bc:10:08:5b:c7:23:d1:88:1a:f8:0f: c5:8c:dc:68:de:f2:99:69:60:a1:c2:6a:b6:67:b8:bc:2a:08: 52:96:4f:dc:bb:0e:30:14:e7:40:40:5a:99:67:53:4e:6b:e7: d1:32:8f:9b:a1:a6:e6:ff:4b:65:3a:e5:04:9d:2f:22:42:aa: b2:b5:63:6b:83:eb:c0:bd:5e:ce:56:0f:57:78:d3:00:41:9d: d2:0d:e0:71:bf:36:d1:33:98:59:a3:cd:6e:c1:2d:b8:b6:fe: e5:4b:d0:c5:e2:31:eb:0c:7b:fe:f1:3a:75:cc:09:ac:64:20: 81:8b:21:2a:2e:1c:4d:7b:6d:e7:18:9f:49:ec:b2:0c:06:82: 6c:a1:f7:8c:5d:01:c1:95:48:73:87:8f:be:80:12:72:66:2c: 1d:cc:ea:7b:e8:c3:bf:52:8d:de:3d:72:fc:6f:bf:db:14:ec: c5:73:92:68 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUcdXhKW9FWxMFGIxN1caIEuEvuqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MjUxRjBEQ0EzRkY2QUNFMTAxRTQ2OUNDQjRDOTA2 Q0I2MEQ2RTAeFw0yNjA2MTExNjU5MDRaFw0yNjA2MTIyMDAxMDRaMDMxMTAvBgNV BAMTKDQ3NUQzMzU4NDcwQ0UzMUNCN0M0N0ZFMjcwODI1MDBFOTAyN0MwMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDLSz1brSOeTdebW2SwfDDLDnx BJypTjEV5z5ltjcLSmk52ckDygysgzlhL82S778Is9E/IM+xZKzD8pjLDUSCFi9v rzENIo2SQIUM5qbYCnB6xqUhY8wSMdkf5XUtrdXkHaMIPB0cH1KQHfpigWgozyq+ Kg/af3JqzRolcSsUJK/D8I02dvdLbZf3LejfYCmy7GEim3BieA/XWJ17rUhYrGHC fksTLVW0cyV7tXG3SW9HhU3SNNlbSpyDEGAYyGqY72nVgissUJraMsAinU15DfZ6 9+cnsNBqlwYFMSonRVT2hD7jMsEEYeLiItlbyxuLmEzEtQW5AngIflLK5eZZAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUR10zWEcM4xy3xH/icIJQDpAnwCUwHwYDVR0j BBgwFoAUKJJR8Nyj/2rOEB5GnMtMkGy2DW4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzMyODkxNzc4MzUxMTA0Mi8wLzI4OTI1MUYwRENBM0ZGNkFDRTEwMUU0NjlDQ0I0 QzkwNkNCNjBENkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5MjUxRjBEQ0EzRkY2QUNFMTAxRTQ2OUNDQjRDOTA2Q0I2MEQ2RS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTczMjg5MTc3ODM1MTEwNDIvMC8yODkyNTFGMERDQTNG RjZBQ0UxMDFFNDY5Q0NCNEM5MDZDQjYwRDZFLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATlmiCMOcBvt0 RF+OdBVfjhKGlmtUt7nM+zWdQG/QNIetO9RVnnGWU4gqtDw/qR3Dbh29qJoSyHQR uofoqUpdimOE3RBuGYyX9XohM8EyJLwQCFvHI9GIGvgPxYzcaN7ymWlgocJqtme4 vCoIUpZP3LsOMBTnQEBamWdTTmvn0TKPm6Gm5v9LZTrlBJ0vIkKqsrVja4PrwL1e zlYPV3jTAEGd0g3gcb820TOYWaPNbsEtuLb+5UvQxeIx6wx7/vE6dcwJrGQggYsh Ki4cTXtt5xifSeyyDAaCbKH3jF0BwZVIc4ePvoAScmYsHczqe+jDv1KN3j1y/G+/ 2xTsxXOSaA== -----END CERTIFICATE-----Generated at Fri Jun 12 03:55:47 2026 by rpki-client