$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft File: 5I_tdgOElq0qsZctE0aPTT1AMWQ.mft (raw, json) Hash identifier: /9K9LO8ChWPhn73oBVM95Qap+NJo/yJNiBJjUXnjihA= Subject key identifier: FA:15:89:20:CE:27:D0:A4:A1:BD:BD:C6:CC:B5:B6:9B:3C:19:3B:3E Authority key identifier: E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64 Certificate issuer: /CN=E48FED76038496AD2AB1972D13468F4D3D403164 Certificate serial: 1A2F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft Manifest number: 1A22 Signing time: Thu 05 Mar 2026 18:58:53 +0000 Manifest this update: Thu 05 Mar 2026 18:58:53 +0000 Manifest next update: Fri 06 Mar 2026 00:58:53 +0000 Files and hashes: 1: 2ySXPueeKg16gsqHcFsVC9JNs10.roa (hash: kH9hywEObby9n5VG21Syrw8ZzsncChogtO5BPYypB5Q=) 2: 5I_tdgOElq0qsZctE0aPTT1AMWQ.crl (hash: 01anlfz5gqM8lNQIsmw+z+7J+4W6SaY7tycV0zqno5M=) 3: AsXgmXQlnbabI1bW-R0zpcn76tY.roa (hash: /YIZV5ZK2bN7ACdc/DM/VupvHjYd5vv9uQLA5l7obVs=) 4: NtDgHgttC4AtVi7WA45dTq6F_XY.roa (hash: MCuyV55Hn2qvs9ldQmrl3XO+GjIyuP6/3rOWt4k3UQU=) 5: OutRVBvc9Wm-pOX8pmDKJRcv9Zc.roa (hash: l2u8dk3COhyxYbd50FYmH+fl9Kx1r630dWHFp5enw3o=) 6: g1MwaGx9H4NwOPCFJYb2liJmTQ8.roa (hash: VlRN3xP9+M4tv10j4BkWZ2KT50NTAuq0fWOXb8MJ0vg=) 7: mHioxaoNlR4rQkTXc19lcJw6Lec.roa (hash: PLOJpyanF+nIlJcassXGyNX33blBNLIGT9wBL2ZAaI4=) 8: nVccl75Q6GAgaykxcjyu72hhAnk.roa (hash: r4Mn7fAiQjl4bgZhfH+KmOGsE4ovJ6SP0fGlC4E7WqI=) 9: rkqQR8t9FrB3DjN2qqQ8nEhbcXw.roa (hash: rwfJch4aoCh0wWk4o1JgI1hRPkHLffT/cXlqq17FDs4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 00:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6703 (0x1a2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48FED76038496AD2AB1972D13468F4D3D403164 Validity Not Before: Mar 5 18:58:53 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=FA158920CE27D0A4A1BDBDC6CCB5B69B3C193B3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d0:04:c0:e6:19:c9:d5:b1:4f:8f:bb:85:a5: 3e:06:f2:96:79:90:fc:38:83:8f:79:bf:06:01:8a: d2:8e:01:13:c0:e9:82:83:48:bf:44:69:57:c2:6a: ac:0c:86:16:d3:79:68:3f:ac:26:a6:39:c9:65:d8: 1a:68:ab:67:e4:f3:20:5f:5b:de:98:0a:62:d2:12: 96:27:73:41:e4:2e:d1:3c:92:da:9d:31:2a:57:91: 0a:8c:ed:99:0e:da:3f:b7:69:b0:c0:16:7f:4c:3e: ee:ca:8e:29:74:54:f2:03:a8:a3:f8:05:f0:48:8d: 0a:c7:71:39:04:c7:fa:47:ee:05:a4:3c:32:39:cc: 7a:14:f5:f1:aa:fc:e7:59:6d:5d:d3:be:3f:27:d6: 75:76:c7:bf:43:b8:5a:8c:83:ad:ff:94:e4:2d:20: 42:2c:12:ef:39:75:5a:79:a1:04:da:c5:d2:54:f3: 53:86:e8:63:78:74:de:5f:62:41:e8:4a:1b:56:09: 8e:bc:5a:e9:8a:3b:f9:1f:a7:f1:03:61:c2:d3:0a: 20:c0:03:b0:48:7e:80:76:57:97:9f:29:72:3c:02: 0a:89:8c:b8:78:b3:7e:f3:84:f0:65:3b:9e:ab:3e: a1:23:9d:83:67:a6:f5:83:83:3b:c8:cf:52:22:a2: 97:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:15:89:20:CE:27:D0:A4:A1:BD:BD:C6:CC:B5:B6:9B:3C:19:3B:3E X509v3 Authority Key Identifier: keyid:E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:0a:2b:03:82:76:34:73:01:23:4e:7c:24:bc:17:71:fe:42: 9d:34:f8:cc:da:13:04:c6:6c:b9:99:2b:de:d3:ee:30:04:77: d6:72:e7:30:79:55:3a:e6:cc:e9:fc:c0:bd:4e:62:43:6e:a5: c4:cc:7b:81:34:98:e9:94:80:56:35:a4:60:d8:4b:4b:ba:0a: 49:e0:af:4e:25:88:45:11:65:c4:b4:6d:b9:5c:e7:5f:e7:2c: a7:53:d4:c5:b9:2a:1f:de:cf:5c:55:d3:99:1e:04:f9:df:eb: 8a:11:87:99:0e:66:44:34:2b:cb:ea:ec:e4:0f:87:ab:32:4b: b1:5b:2a:75:f0:55:34:40:64:f0:9b:f2:e1:70:73:eb:49:fb: 2a:0d:d7:48:ca:9a:be:6a:65:71:11:00:05:4d:96:5b:f8:56: 25:eb:cb:c0:4d:cb:f8:99:6f:64:43:aa:42:8e:04:cf:f1:a8: d5:47:a3:f3:4a:88:59:e7:bc:89:04:7b:b5:62:01:cf:48:c0: 86:74:8c:c1:85:b2:58:80:f1:5a:ba:b5:52:f4:8c:ef:cd:e2: 7c:1e:dd:f2:41:72:0d:6e:8a:58:61:ec:c7:e0:e9:db:4f:a0: 10:69:d6:86:5f:62:e9:c3:f8:f1:d2:ed:53:80:d1:11:50:0d: 22:5c:c8:5d -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTQ4 RkVENzYwMzg0OTZBRDJBQjE5NzJEMTM0NjhGNEQzRDQwMzE2NDAeFw0yNjAzMDUx ODU4NTNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEZBMTU4OTIwQ0UyN0Qw QTRBMUJEQkRDNkNDQjVCNjlCM0MxOTNCM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo0ATA5hnJ1bFPj7uFpT4G8pZ5kPw4g495vwYBitKOARPA6YKD SL9EaVfCaqwMhhbTeWg/rCamOcll2Bpoq2fk8yBfW96YCmLSEpYnc0HkLtE8ktqd MSpXkQqM7ZkO2j+3abDAFn9MPu7Kjil0VPIDqKP4BfBIjQrHcTkEx/pH7gWkPDI5 zHoU9fGq/OdZbV3Tvj8n1nV2x79DuFqMg63/lOQtIEIsEu85dVp5oQTaxdJU81OG 6GN4dN5fYkHoShtWCY68WumKO/kfp/EDYcLTCiDAA7BIfoB2V5efKXI8AgqJjLh4 s37zhPBlO56rPqEjnYNnpvWDgzvIz1IiopdzAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU+hWJIM4n0KShvb3GzLW2mzwZOz4wHwYDVR0jBBgwFoAU5I/tdgOElq0qsZct E0aPTT1AMWQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkw LzVJX3RkZ09FbHEwcXNaY3RFMGFQVFQxQU1XUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNUlfdGRnT0VscTBxc1pjdEUwYVBUVDFBTVdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkwLzVJX3RkZ09FbHEwcXNa Y3RFMGFQVFQxQU1XUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAkCisDgnY0cwEjTnwkvBdx/kKdNPjM2hMExmy5mSve0+4wBHfWcucweVU65szp /MC9TmJDbqXEzHuBNJjplIBWNaRg2EtLugpJ4K9OJYhFEWXEtG25XOdf5yynU9TF uSof3s9cVdOZHgT53+uKEYeZDmZENCvL6uzkD4erMkuxWyp18FU0QGTwm/LhcHPr SfsqDddIypq+amVxEQAFTZZb+FYl68vATcv4mW9kQ6pCjgTP8ajVR6PzSohZ57yJ BHu1YgHPSMCGdIzBhbJYgPFaurVS9IzvzeJ8Ht3yQXINbopYYezH4OnbT6AQadaG X2Lpw/jx0u1TgNERUA0iXMhd -----END CERTIFICATE-----Generated at Fri Mar 6 00:48:02 2026 by rpki-client