$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft File: 1JQPURo42VRNSLTFxsObBYH4kf4.mft (raw, json) Hash identifier: DXZ/Q7jcDgaEpUDEvoDgrn2fp3FqoC6KPCr31DnlXbE= Subject key identifier: 14:AB:6B:DC:F1:DE:B6:17:49:DD:01:29:29:6C:74:EC:90:D5:45:97 Authority key identifier: D4:94:0F:51:1A:38:D9:54:4D:48:B4:C5:C6:C3:9B:05:81:F8:91:FE Certificate issuer: /CN=D4940F511A38D9544D48B4C5C6C39B0581F891FE Certificate serial: 0395 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1JQPURo42VRNSLTFxsObBYH4kf4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft Manifest number: 0393 Signing time: Thu 05 Mar 2026 19:00:44 +0000 Manifest this update: Thu 05 Mar 2026 19:00:44 +0000 Manifest next update: Fri 06 Mar 2026 01:00:44 +0000 Files and hashes: 1: 1JQPURo42VRNSLTFxsObBYH4kf4.crl (hash: YmPeMB2T6y3wDglyNiDh4fjdvO27p6yCmJNjOF+wqzk=) 2: XlNquY_uQ_6rZ2JhVM3vRqciRe8.roa (hash: i76OhCIwCGUrBdnZ6U6M1/woB4YGh0bDGaiEq4xZxAA=) 3: o0yhMvDIOHV-tmQVctXjhUcSRiI.roa (hash: SLL3IhXfo60djFS/eMKmcoL3aMmfcJgrvUvuHnpcZXg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1JQPURo42VRNSLTFxsObBYH4kf4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 01:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 917 (0x395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4940F511A38D9544D48B4C5C6C39B0581F891FE Validity Not Before: Mar 5 19:00:44 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=14AB6BDCF1DEB61749DD0129296C74EC90D54597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:68:2c:b2:b8:bc:c5:b5:48:c0:a1:a5:53: 9f:cd:0b:3c:dc:35:37:92:98:86:ac:f8:a1:a5:c5: 4a:2c:d0:75:56:67:8b:bc:33:ed:9a:28:d5:16:83: ef:b0:a5:10:c1:44:98:da:c5:c0:75:ec:ed:72:f2: ce:1f:3f:23:0e:e6:a8:8e:88:ed:9a:62:30:f9:93: 4f:48:b2:8f:68:48:69:ad:c5:c8:f0:de:dd:60:19: e5:26:c7:52:54:f9:1f:31:43:12:1f:25:0c:53:0a: e8:16:c7:0b:30:67:70:d9:d0:a0:74:3e:df:fe:51: 1e:e9:1f:2b:20:a2:0e:89:18:ad:53:ec:08:0f:7f: 67:74:05:81:b5:11:8c:d3:8f:fa:d8:93:cb:61:5d: f0:a5:47:44:4b:5a:b0:25:5e:93:63:79:3c:51:cd: 3d:54:2d:1e:c6:4c:f5:11:65:65:95:b1:7b:9d:c7: 63:bd:ae:ec:11:16:fd:8a:30:ed:3c:8d:6f:3b:69: 56:d4:a2:c0:5a:a9:a8:13:ef:c5:36:22:86:71:65: 31:16:9b:2d:a1:29:d0:9f:46:b4:1c:be:0b:8a:05: d0:45:05:d4:52:62:a0:5d:96:af:ee:e6:e6:3d:51: 7d:b3:0e:67:82:3b:20:cc:ac:c2:fb:a8:36:36:2a: b2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AB:6B:DC:F1:DE:B6:17:49:DD:01:29:29:6C:74:EC:90:D5:45:97 X509v3 Authority Key Identifier: keyid:D4:94:0F:51:1A:38:D9:54:4D:48:B4:C5:C6:C3:9B:05:81:F8:91:FE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1JQPURo42VRNSLTFxsObBYH4kf4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2688/1JQPURo42VRNSLTFxsObBYH4kf4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:82:b4:a7:3d:0e:fe:8a:15:47:36:c5:fe:28:de:f6:12:5b: 43:30:07:e7:bc:7f:66:61:27:c3:de:23:ba:76:15:2a:27:8e: 03:67:25:5d:06:c1:43:1c:c3:f9:f5:d6:a3:0d:16:6c:1f:9a: 5c:45:16:90:fc:72:84:68:bf:ce:8d:02:ec:47:d4:32:c9:8e: 41:7d:ea:ea:02:8b:e6:e9:42:d9:28:e2:9e:21:38:6d:fb:6f: 2b:f8:84:51:c8:43:3c:ba:bc:56:89:6b:47:54:3f:7e:a5:20: b4:2e:87:42:65:e1:c2:2b:85:30:f8:90:fa:56:47:54:01:d0: 7c:dd:71:74:4e:d1:82:a5:c9:df:5d:ea:29:cf:46:60:f4:14: cd:b3:7c:bd:b6:a7:93:42:71:d4:c9:d2:0f:e9:e8:38:d4:5a: ed:c4:b8:8f:8c:b9:52:b0:44:5a:e7:2f:30:70:37:c6:9e:8e: 1d:b2:ed:9c:95:d4:79:26:f7:4b:f4:dd:6d:ad:eb:c7:61:d7: e0:94:95:44:e5:b0:fa:11:1b:ee:c0:e6:03:58:07:e4:b1:b6: cf:e8:33:65:49:1b:9e:b4:71:9c:0a:3d:e8:fb:08:0e:3a:f1: 6b:a0:86:d8:76:dd:be:f2:7d:0c:b2:74:4e:98:16:4e:1b:f1: bc:e7:0a:0a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDQ5 NDBGNTExQTM4RDk1NDRENDhCNEM1QzZDMzlCMDU4MUY4OTFGRTAeFw0yNjAzMDUx OTAwNDRaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDE0QUI2QkRDRjFERUI2 MTc0OUREMDEyOTI5NkM3NEVDOTBENTQ1OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB6Ggssri8xbVIwKGlU5/NCzzcNTeSmIas+KGlxUos0HVWZ4u8 M+2aKNUWg++wpRDBRJjaxcB17O1y8s4fPyMO5qiOiO2aYjD5k09Iso9oSGmtxcjw 3t1gGeUmx1JU+R8xQxIfJQxTCugWxwswZ3DZ0KB0Pt/+UR7pHysgog6JGK1T7AgP f2d0BYG1EYzTj/rYk8thXfClR0RLWrAlXpNjeTxRzT1ULR7GTPURZWWVsXudx2O9 ruwRFv2KMO08jW87aVbUosBaqagT78U2IoZxZTEWmy2hKdCfRrQcvguKBdBFBdRS YqBdlq/u5uY9UX2zDmeCOyDMrML7qDY2KrLPAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUFKtr3PHethdJ3QEpKWx07JDVRZcwHwYDVR0jBBgwFoAU1JQPURo42VRNSLTF xsObBYH4kf4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY4 OC8xSlFQVVJvNDJWUk5TTFRGeHNPYkJZSDRrZjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzFKUVBVUm80MlZSTlNMVEZ4c09iQllINGtmNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2ODgvMUpRUFVSbzQyVlJO U0xURnhzT2JCWUg0a2Y0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBADCCtKc9Dv6KFUc2xf4o3vYSW0MwB+e8f2ZhJ8PeI7p2FSonjgNnJV0GwUMc w/n11qMNFmwfmlxFFpD8coRov86NAuxH1DLJjkF96uoCi+bpQtko4p4hOG37byv4 hFHIQzy6vFaJa0dUP36lILQuh0Jl4cIrhTD4kPpWR1QB0HzdcXRO0YKlyd9d6inP RmD0FM2zfL22p5NCcdTJ0g/p6DjUWu3EuI+MuVKwRFrnLzBwN8aejh2y7ZyV1Hkm 90v03W2t68dh1+CUlUTlsPoRG+7A5gNYB+Sxts/oM2VJG560cZwKPej7CA468Wug hth23b7yfQyydE6YFk4b8bznCgo= -----END CERTIFICATE-----Generated at Fri Mar 6 00:59:57 2026 by rpki-client