$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft File: yGYvK0iswHfpWADlqpLOFtJuHeo.mft (raw, json) Hash identifier: eDStW0Kau4YJPHJ1t+LhgnZdvw7I1zHvVi/HCPc452M= Subject key identifier: 94:7C:DE:36:14:F0:27:AF:B0:FD:1C:6D:9E:D9:F8:27:17:0D:63:27 Authority key identifier: C8:66:2F:2B:48:AC:C0:77:E9:58:00:E5:AA:92:CE:16:D2:6E:1D:EA Certificate issuer: /CN=C8662F2B48ACC077E95800E5AA92CE16D26E1DEA Certificate serial: 04A3 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yGYvK0iswHfpWADlqpLOFtJuHeo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft Manifest number: 049D Signing time: Thu 05 Mar 2026 22:58:24 +0000 Manifest this update: Thu 05 Mar 2026 22:58:24 +0000 Manifest next update: Fri 06 Mar 2026 04:58:24 +0000 Files and hashes: 1: 4IPxAcBB8d60RbMzQW1q_Zk5spc.roa (hash: RSRbi+VJkcVS/ILldg1kKiHadRJWcM1Mmw3Dk4goFaM=) 2: uW_sUHl-3HScavxDrg5eg9_INJ4.roa (hash: reqWK3fVKlZA3fra6G1lT9OteuvSXtDOZpPqJhZckac=) 3: yGYvK0iswHfpWADlqpLOFtJuHeo.crl (hash: wz73Pa1bWZFWjubB349I7Cu1JSb2XtD9qcLiIT/NctQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yGYvK0iswHfpWADlqpLOFtJuHeo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Mar 2026 04:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8662F2B48ACC077E95800E5AA92CE16D26E1DEA Validity Not Before: Mar 5 22:58:24 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=947CDE3614F027AFB0FD1C6D9ED9F827170D6327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:53:3e:ae:64:8f:6b:31:45:e5:ec:51:02:5b: 5b:15:41:6a:62:0e:d2:df:92:ca:34:b3:fc:9f:d4: d3:f5:93:40:bd:8e:a4:a3:4b:84:38:04:db:3a:bf: df:bb:a9:b7:7a:0f:28:7b:12:48:54:ac:52:48:55: 1e:99:93:0c:10:b7:06:0a:80:3c:0c:98:79:20:67: 1e:2d:33:c3:fb:37:8d:30:7e:ea:17:e1:f2:27:22: c0:a9:fc:2e:a1:53:e5:ac:b5:25:de:93:45:a2:b6: 1b:4a:7b:89:81:2f:32:c2:8d:98:50:f3:23:0b:22: 88:4d:77:2f:90:8b:20:e9:dd:35:35:af:8a:bb:e5: 8f:7e:50:5d:88:98:07:06:9e:3a:e2:8a:81:a7:83: 1a:9a:6b:c0:45:1d:9c:ab:18:52:d4:6d:6d:85:35: 29:a7:08:1f:00:49:4e:97:ec:43:48:f4:5f:54:6e: 0a:1e:6a:7d:a0:5e:45:e1:df:7e:85:fe:22:be:cc: 22:b3:8b:53:86:64:b7:90:c4:60:84:6f:40:a3:0f: 61:e9:29:bd:a7:44:c4:73:64:be:ba:4e:69:e2:dc: 8c:09:40:c0:00:76:9e:81:ab:17:95:d7:53:07:0f: 1f:b2:a1:b6:f7:d2:b4:54:a0:3c:31:43:82:cc:d0: 36:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7C:DE:36:14:F0:27:AF:B0:FD:1C:6D:9E:D9:F8:27:17:0D:63:27 X509v3 Authority Key Identifier: keyid:C8:66:2F:2B:48:AC:C0:77:E9:58:00:E5:AA:92:CE:16:D2:6E:1D:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yGYvK0iswHfpWADlqpLOFtJuHeo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3070/yGYvK0iswHfpWADlqpLOFtJuHeo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:72:bc:29:7b:58:3f:7c:8f:bb:46:59:99:33:f1:cc:7d:97: 5d:60:02:57:d5:1c:9f:26:28:39:5c:f1:02:7f:62:63:f8:fc: 90:5e:c2:56:8b:10:65:dd:f5:35:12:cd:9e:bf:3d:21:25:d0: df:e8:50:23:27:9a:1e:8a:95:24:82:df:d8:84:7c:29:78:9f: af:0c:5e:af:43:5e:93:38:31:56:e9:32:7d:7d:41:2f:34:c0: 10:47:30:a6:ef:df:be:06:5d:94:ad:27:6e:9f:f6:ee:68:fe: 29:78:7e:f4:d0:4a:be:f3:86:21:3b:d5:43:ea:c1:ce:53:9f: c7:52:37:59:d0:a1:dc:3c:31:e7:ac:46:2c:ba:5f:04:95:3d: 70:29:44:ed:4a:bf:3b:bb:55:e4:4c:92:38:11:f5:7e:7a:9d: 98:97:09:92:20:5c:c6:ee:de:de:b1:5d:d8:60:b5:64:e1:59: b0:a8:78:40:67:5e:b4:82:b9:5f:3c:56:8b:fa:c8:f1:59:22: 75:65:e7:6a:ac:12:bd:78:42:30:d2:e8:87:f6:ef:7e:96:8c: 1f:c4:f2:c9:28:f2:4c:e5:af:4f:3d:76:8f:3e:76:a6:cd:c4: b3:f9:57:45:04:d2:37:81:c9:7a:ab:2d:53:da:d7:ff:e8:7b: 66:07:43:de -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzg2 NjJGMkI0OEFDQzA3N0U5NTgwMEU1QUE5MkNFMTZEMjZFMURFQTAeFw0yNjAzMDUy MjU4MjRaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDk0N0NERTM2MTRGMDI3 QUZCMEZEMUM2RDlFRDlGODI3MTcwRDYzMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjUz6uZI9rMUXl7FECW1sVQWpiDtLfkso0s/yf1NP1k0C9jqSj S4Q4BNs6v9+7qbd6Dyh7EkhUrFJIVR6ZkwwQtwYKgDwMmHkgZx4tM8P7N40wfuoX 4fInIsCp/C6hU+WstSXek0WithtKe4mBLzLCjZhQ8yMLIohNdy+QiyDp3TU1r4q7 5Y9+UF2ImAcGnjriioGngxqaa8BFHZyrGFLUbW2FNSmnCB8ASU6X7ENI9F9Ubgoe an2gXkXh336F/iK+zCKzi1OGZLeQxGCEb0CjD2HpKb2nRMRzZL66Tmni3IwJQMAA dp6BqxeV11MHDx+yobb30rRUoDwxQ4LM0DYtAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUlHzeNhTwJ6+w/Rxtntn4JxcNYycwHwYDVR0jBBgwFoAUyGYvK0iswHfpWADl qpLOFtJuHeowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3 MC95R1l2SzBpc3dIZnBXQURscXBMT0Z0SnVIZW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3lHWXZLMGlzd0hmcFdBRGxxcExPRnRKdUhlby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNzAveUdZdkswaXN3SGZw V0FEbHFwTE9GdEp1SGVvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAChyvCl7WD98j7tGWZkz8cx9l11gAlfVHJ8mKDlc8QJ/YmP4/JBewlaLEGXd 9TUSzZ6/PSEl0N/oUCMnmh6KlSSC39iEfCl4n68MXq9DXpM4MVbpMn19QS80wBBH MKbv374GXZStJ26f9u5o/il4fvTQSr7zhiE71UPqwc5Tn8dSN1nQodw8MeesRiy6 XwSVPXApRO1Kvzu7VeRMkjgR9X56nZiXCZIgXMbu3t6xXdhgtWThWbCoeEBnXrSC uV88Vov6yPFZInVl52qsEr14QjDS6If2736WjB/E8sko8kzlr089do8+dqbNxLP5 V0UE0jeByXqrLVPa1//oe2YHQ94= -----END CERTIFICATE-----Generated at Fri Mar 6 02:28:37 2026 by rpki-client