$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft File: Fwt8oG9XNbekD5f_H1O64TNIqT4.mft (raw, json) Hash identifier: 03HZwRMG4LvUwpkRuCJu5FJf2Dvvr+nvfNmddESCi48= Subject key identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 Authority key identifier: 17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E Certificate issuer: /CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Certificate serial: 0EFB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft Manifest number: 0EF5 Signing time: Thu 12 Mar 2026 08:28:42 +0000 Manifest this update: Thu 12 Mar 2026 08:28:42 +0000 Manifest next update: Thu 12 Mar 2026 14:28:42 +0000 Files and hashes: 1: 0oav85JUPVbcRg0L4DBh9-aWIkI.roa (hash: +bAFfnirgbQCM5lHsyL67/7prlu6d5krVtD2rNfWezU=) 2: Fwt8oG9XNbekD5f_H1O64TNIqT4.crl (hash: UnHD0rZnmQwomsaCppCvSCYsWvJmnB960lckZyjfBRs=) 3: cBNARw-UQ42OqYvEPRDwVd1k3mo.roa (hash: j8uip8ZuybIXLH0qteYdaLHXTVy/UR9DHUgwIUC/IcM=) 4: sPF6_F9osKxakoGzmunYcGaLMzo.roa (hash: 2fVT980VhrN0iW58uFjcPcRTECkPtI7dnRNC9lI9OI0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 14:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3835 (0xefb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E Validity Not Before: Mar 12 08:28:42 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=A0643FCBC0A8EB2A325E55089DE50960A7B677C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:12:cb:42:29:5b:78:a1:90:13:25:44:5a:da: b9:04:bd:c8:ad:b5:e7:51:99:b4:f0:32:58:43:25: 6d:dc:d8:0e:31:39:27:b1:6d:e0:c4:03:e6:e6:57: 7b:0b:22:21:e6:6b:6a:d1:6f:2f:69:cd:2d:44:22: 5e:a1:76:c5:fd:5e:06:1a:45:3d:4f:98:84:bd:40: 2a:84:be:75:ce:00:57:cd:a9:f7:80:69:b0:e9:3b: 3b:01:87:66:a5:e4:b0:64:39:c6:1e:c9:57:37:49: 55:e0:ee:7c:86:4a:97:0b:56:5c:ca:48:10:b5:28: cd:c8:4c:91:1f:1f:26:b4:41:2d:6a:4e:b1:44:3b: 9c:23:6c:13:93:42:c1:76:e1:65:9a:67:07:30:9a: 0a:9f:ce:de:a8:c7:fd:20:49:63:6b:ab:57:0e:8c: 67:5f:48:d1:91:0f:4e:78:bf:78:42:e7:7d:d7:fd: ec:90:8b:cd:00:51:99:df:30:05:54:78:f6:11:18: dd:71:ad:c8:65:dc:30:3d:b8:95:17:70:04:51:ac: 5e:5f:7b:b9:d5:96:b9:ef:a3:c8:52:bd:c1:09:82: b6:ea:65:be:8d:b5:5e:e0:0e:58:1c:23:2f:4f:38: 0a:41:b0:d7:6a:16:8a:97:db:f5:fc:bf:77:3d:06: 2f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2 X509v3 Authority Key Identifier: keyid:17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:8f:d2:74:2e:e3:d3:73:30:67:35:7b:98:70:54:3f:61:97: 56:ef:4c:29:d7:d0:16:f5:d6:71:3f:dc:80:37:7a:0d:01:20: 9e:a2:c0:62:bf:47:d5:86:d8:e3:e2:52:f9:c8:30:d1:6c:7e: 40:9c:a5:3d:7c:ee:cb:60:ce:b6:87:66:ff:ee:f0:bf:30:93: a0:03:e2:90:d6:22:48:fb:08:2e:35:a3:3b:16:4f:8b:42:d9: e1:be:44:26:e0:c7:ba:f8:b8:bb:f5:c2:2d:56:24:fb:46:9f: 52:61:1e:30:6b:62:3e:a3:72:e5:9d:60:3f:92:8c:a3:01:63: f7:d9:cc:ab:44:1f:68:14:b7:df:21:8d:1b:01:42:d1:5f:45: 92:8f:d1:6f:44:ac:94:3a:5f:14:4a:86:8e:58:bf:3c:60:dc: 55:c9:6a:07:0c:02:2b:c1:fb:97:04:d9:db:69:91:92:ea:0b: 2b:c3:3d:9c:63:e5:2e:8f:61:a1:d0:35:45:b8:7d:b8:4d:2b: eb:c9:01:a6:d7:82:a3:af:c5:63:e4:6e:6b:06:d1:88:d1:81: 79:45:5a:85:fa:92:d2:8c:71:6d:6e:08:54:e5:ff:69:03:f7: 20:20:5f:23:33:2c:aa:e5:f7:31:01:c4:46:a0:ae:e4:7d:b5: 23:2d:60:17 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDvswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTcw QjdDQTA2RjU3MzVCN0E0MEY5N0ZGMUY1M0JBRTEzMzQ4QTkzRTAeFw0yNjAzMTIw ODI4NDJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEEwNjQzRkNCQzBBOEVC MkEzMjVFNTUwODlERTUwOTYwQTdCNjc3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoEstCKVt4oZATJURa2rkEvcittedRmbTwMlhDJW3c2A4xOSex beDEA+bmV3sLIiHma2rRby9pzS1EIl6hdsX9XgYaRT1PmIS9QCqEvnXOAFfNqfeA abDpOzsBh2al5LBkOcYeyVc3SVXg7nyGSpcLVlzKSBC1KM3ITJEfHya0QS1qTrFE O5wjbBOTQsF24WWaZwcwmgqfzt6ox/0gSWNrq1cOjGdfSNGRD054v3hC533X/eyQ i80AUZnfMAVUePYRGN1xrchl3DA9uJUXcARRrF5fe7nVlrnvo8hSvcEJgrbqZb6N tV7gDlgcIy9POApBsNdqFoqX2/X8v3c9Bi+NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUoGQ/y8Co6yoyXlUIneUJYKe2d8IwHwYDVR0jBBgwFoAUFwt8oG9XNbekD5f/ H1O64TNIqT4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi9Gd3Q4b0c5WE5iZWtENWZfSDFPNjRUTklxVDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0Z3dDhvRzlYTmJla0Q1Zl9IMU82NFROSXFUNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvRnd0OG9HOVhOYmVr RDVmX0gxTzY0VE5JcVQ0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAESP0nQu49NzMGc1e5hwVD9hl1bvTCnX0Bb11nE/3IA3eg0BIJ6iwGK/R9WG 2OPiUvnIMNFsfkCcpT187stgzraHZv/u8L8wk6AD4pDWIkj7CC41ozsWT4tC2eG+ RCbgx7r4uLv1wi1WJPtGn1JhHjBrYj6jcuWdYD+SjKMBY/fZzKtEH2gUt98hjRsB QtFfRZKP0W9ErJQ6XxRKho5Yvzxg3FXJagcMAivB+5cE2dtpkZLqCyvDPZxj5S6P YaHQNUW4fbhNK+vJAabXgqOvxWPkbmsG0YjRgXlFWoX6ktKMcW1uCFTl/2kD9yAg XyMzLKrl9zEBxEagruR9tSMtYBc= -----END CERTIFICATE-----Generated at Thu Mar 12 12:24:20 2026 by rpki-client