$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft File: -ta0PAnQSQoN9_iR359jtSDPIQ8.mft (raw, json) Hash identifier: FNKXRZuK5aNiXYE6Qb5QdfnMth2VrSWpcCTboZhNEbg= Subject key identifier: 4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC Authority key identifier: FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F Certificate issuer: /CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Certificate serial: 144F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft Manifest number: 143B Signing time: Sun 22 Feb 2026 20:30:26 +0000 Manifest this update: Sun 22 Feb 2026 20:30:26 +0000 Manifest next update: Mon 23 Feb 2026 02:30:26 +0000 Files and hashes: 1: -ta0PAnQSQoN9_iR359jtSDPIQ8.crl (hash: /mm+m5Ca52yJto6bTIU7Iu93tl8ALjHY2vdM3ufcWsw=) 2: 1_xVmznRbjgrARcOnrUzK3zkMkM.roa (hash: GCP9qK5uGloZHD8Mka7pysVMWzi2GGVFtT7E7LtKHac=) 3: CHHbDf38ok5HgG-AYJgAhy91wqY.roa (hash: KxJWeGq5HBzWbxvVwSmjxZ9pOeTHY0fE5UXqtx6WfOk=) 4: Cni4ivS0aTSHai9yUx7gJbz5jK8.roa (hash: 84n7AGw6yl+gQsNwUYQ53IvU2VCFXFgTwWVhGMKyhIk=) 5: LiLhG4umWIFvssfr-YRo7VPi9PQ.roa (hash: 8VzvX+6L2up29XAoS07TOWxozlHhFYSU/9tMLFarKws=) 6: MRmJHXHbniE2rjTMj7-XBPn2PFE.roa (hash: AZznRSYPnsoxRC7iuvzdOmezQdGSxGrbcrS0Svin9+Q=) 7: PZpMpUI55eB2vbRtNWyVquWC7y0.roa (hash: XGAKJedxzNaXjaRNceMDOB16UaE9Le2pcMQeq9bqLtI=) 8: Pie-aA_SMXi1KlttjIhePqYurTU.roa (hash: 4oxtWmiOezYONOy5kp6vAgerw2OZ94LDmtSh2UUa1A4=) 9: llh71OO6sGwAfZdC60WJs1U2NU0.roa (hash: 5pHK2BD7cThMf2Gdvo1WL3olc9aZ3jLaBSG3cDaQoIc=) 10: miGjVDXbOzQQTZP9E5umEPnWCAw.roa (hash: bFWWTZfSgak8dwI4OZSJZy4GLdjg6INc4Sl9XfE3d4k=) 11: rovnomnuVFMNJzTNeyy5W6WRMe0.roa (hash: aVXERw9JByy2HpoXIifbCTO+OLw9MnI6ZPVD8/WtLto=) 12: sZKnapg00fgKKe4LkAFvTWPY7bc.roa (hash: QsFYItD1U7Qqi5MRKBnZXLcVx+4eR2sBukx9xvp60fM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 02:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5199 (0x144f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Validity Not Before: Feb 22 20:30:26 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=4BCC447184497A8FAEB3769AD767F2E2871D2EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:48:ee:2b:68:e0:56:e6:b1:31:28:fd:47:ec: 4f:11:cb:57:24:26:ab:d1:62:af:be:7f:2a:fc:e0: a6:ca:09:fa:df:39:bf:1a:4d:ee:e7:d2:04:13:4c: ac:e2:0e:1e:ad:f4:e7:66:10:72:a4:dc:dc:58:0b: 2b:30:18:84:09:a9:c2:92:f5:48:0c:e0:c7:e2:e8: 76:37:fe:e1:0b:b8:b7:cc:b4:a7:1c:f6:f0:00:a2: 4c:88:c2:0d:1c:77:ee:ed:5e:1b:ab:6c:63:b1:fc: b8:42:c7:dc:5d:96:72:b1:a2:f2:ab:6d:8b:6e:f6: 28:87:66:1f:a9:05:09:e7:13:7d:9d:7e:49:b9:35: 62:13:98:cc:ad:e2:3f:3e:50:3a:6d:ad:48:06:a3: 4d:d0:25:33:71:7f:f4:45:31:2e:da:ea:70:d2:f2: bb:86:d1:7d:04:a2:98:b1:ca:26:25:9b:b7:84:56: af:f6:ae:d6:85:b8:1a:b5:78:24:84:58:57:60:b1: ed:e2:3f:f0:d1:fa:4c:57:30:15:22:fa:37:8b:f8: 10:fd:c8:f7:0a:50:d3:19:f8:15:cd:0d:b4:c8:b6: 35:e0:c2:1d:71:28:31:3d:05:53:bd:9f:f7:f2:c8: 51:e0:c9:cb:a8:e3:82:d0:1e:9e:d2:83:a2:44:6e: 5c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC X509v3 Authority Key Identifier: keyid:FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:6d:7d:8f:da:45:24:12:24:a5:07:9a:6d:80:9b:c9:25:3e: 9f:08:a0:a8:e9:ec:59:d1:a7:35:dd:48:71:16:69:44:31:cb: d0:32:7f:66:93:1c:f3:91:41:71:da:b1:bf:df:63:68:f5:2a: 8d:2c:fe:4a:de:18:7a:ea:66:74:bf:96:9b:9d:d3:6b:cb:dc: 9a:d0:dc:65:2b:31:d8:d9:c9:92:75:bb:a2:9b:ff:4f:a2:e9: 3c:a3:75:26:4a:49:3d:b5:d2:ca:93:3e:bc:df:fd:74:e1:3e: de:92:c8:08:f1:d1:9b:72:08:49:c3:4b:25:01:0e:4e:0b:23: d1:6d:1f:63:84:29:3e:d2:5d:3e:b5:14:d3:6d:a2:d3:9f:f8: a9:19:91:bf:e8:15:fb:6a:5b:43:ab:17:58:7a:e1:25:45:6a: 86:3a:ed:39:9b:78:46:32:c3:75:ab:73:29:3e:f5:2e:85:1b: 08:e7:30:ec:bc:12:6b:14:c5:50:0f:23:0b:bb:03:12:03:b9: 91:e6:65:c9:bd:02:b5:ca:ea:f6:e9:35:5d:a1:08:e5:f7:51: 19:c6:00:e7:ed:a9:71:d8:9c:e1:ff:81:13:85:d9:30:c5:6e: 60:76:46:8a:63:40:2c:0e:89:c1:ec:68:f1:b8:45:8a:5a:fd: 50:ab:69:a8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkFE NkI0M0MwOUQwNDkwQTBERjdGODkxREY5RjYzQjUyMENGMjEwRjAeFw0yNjAyMjIy MDMwMjZaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDRCQ0M0NDcxODQ0OTdB OEZBRUIzNzY5QUQ3NjdGMkUyODcxRDJFQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhSO4raOBW5rExKP1H7E8Ry1ckJqvRYq++fyr84KbKCfrfOb8a Te7n0gQTTKziDh6t9OdmEHKk3NxYCyswGIQJqcKS9UgM4Mfi6HY3/uELuLfMtKcc 9vAAokyIwg0cd+7tXhurbGOx/LhCx9xdlnKxovKrbYtu9iiHZh+pBQnnE32dfkm5 NWITmMyt4j8+UDptrUgGo03QJTNxf/RFMS7a6nDS8ruG0X0EopixyiYlm7eEVq/2 rtaFuBq1eCSEWFdgse3iP/DR+kxXMBUi+jeL+BD9yPcKUNMZ+BXNDbTItjXgwh1x KDE9BVO9n/fyyFHgycuo44LQHp7Sg6JEblyVAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUS8xEcYRJeo+us3aa12fy4ocdLqwwHwYDVR0jBBgwFoAU+ta0PAnQSQoN9/iR 359jtSDPIQ8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 MS8tdGEwUEFuUVNRb045X2lSMzU5anRTRFBJUTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy10YTBQQW5RU1FvTjlfaVIzNTlqdFNEUElROC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDEvLXRhMFBBblFTUW9O OV9pUjM1OWp0U0RQSVE4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAZtfY/aRSQSJKUHmm2Am8klPp8IoKjp7FnRpzXdSHEWaUQxy9Ayf2aTHPOR QXHasb/fY2j1Ko0s/kreGHrqZnS/lpud02vL3JrQ3GUrMdjZyZJ1u6Kb/0+i6Tyj dSZKST210sqTPrzf/XThPt6SyAjx0ZtyCEnDSyUBDk4LI9FtH2OEKT7SXT61FNNt otOf+KkZkb/oFftqW0OrF1h64SVFaoY67TmbeEYyw3Wrcyk+9S6FGwjnMOy8EmsU xVAPIwu7AxIDuZHmZcm9ArXK6vbpNV2hCOX3URnGAOftqXHYnOH/gROF2TDFbmB2 RopjQCwOicHsaPG4RYpa/VCraag= -----END CERTIFICATE-----Generated at Sun Feb 22 23:27:01 2026 by rpki-client