$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft File: TPCRRt5gTA5ELVbGj8hsxQQArSE.mft (raw, json) Hash identifier: UUCEsJ7S5LZM5oIG5QM8PR3QEnX3/csr4nsRalPuB6E= Subject key identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A Authority key identifier: 4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 Certificate issuer: /CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Certificate serial: 0CA5 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft Manifest number: 0C9B Signing time: Mon 23 Feb 2026 06:00:50 +0000 Manifest this update: Mon 23 Feb 2026 06:00:50 +0000 Manifest next update: Mon 23 Feb 2026 12:00:50 +0000 Files and hashes: 1: TPCRRt5gTA5ELVbGj8hsxQQArSE.crl (hash: MFQDqNtxEFhAi1z9273v1RkE1lvR9jElbUXWKnjc8fQ=) 2: bGeGgRXJn_fKcQJGoNpT45uuMbM.roa (hash: 4rs03AqtGSIGgkcXeqLIzwXtuAsdWOh+07JYHmmqQtk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 11:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Validity Not Before: Feb 23 06:00:50 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=3DE44607C7258196BFB2E4514EF522AC033E120A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:57:8b:9f:48:fe:72:52:d5:33:80:7f:8a: c7:e8:8e:f7:d8:2a:b2:4f:bd:6d:ca:0f:94:85:2d: 55:99:15:1d:fc:b6:eb:26:3c:1c:fa:15:e5:3c:d2: c9:bf:b1:b2:dc:61:69:84:79:cc:d0:8b:43:f7:23: 20:f7:b8:92:c2:dc:a6:24:c4:70:f6:64:4d:a0:05: ef:64:1c:04:e5:60:85:72:53:ed:11:83:30:7b:c7: db:b9:83:a9:17:42:7a:c0:3b:5d:89:30:1c:1f:3d: 9a:c5:42:5c:8f:ec:1a:32:ca:a5:25:db:7d:43:8e: d3:6c:4e:66:4b:55:ac:c5:a9:09:bd:d9:0e:2a:1c: 9f:44:80:a8:b1:3c:30:48:46:da:79:b8:bb:12:c2: f4:b3:ff:5e:86:a7:32:db:11:b3:cc:d4:36:86:81: 85:73:50:fb:d2:4d:c8:f6:7f:08:52:89:3b:cb:87: 47:ab:f3:ac:7c:4d:73:bb:e0:16:b5:ae:92:36:5a: d6:8d:7e:7b:1c:b9:16:22:b9:50:89:c9:de:9d:bf: 37:0a:05:2b:2f:60:ec:fc:bc:d0:56:5d:7f:d5:d7: 84:60:66:31:df:0c:7c:41:05:b4:f3:9d:42:26:7d: e6:20:17:d2:d9:ac:43:6c:95:9c:a5:df:c4:5c:92: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A X509v3 Authority Key Identifier: keyid:4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:3e:84:54:9b:95:bb:ad:78:74:5d:57:aa:dc:9b:a5:4d:0d: 85:42:df:69:6a:f9:ff:65:09:96:ea:ac:a7:81:d2:94:78:f9: c6:03:d7:40:5f:c8:84:88:45:f4:65:3d:2b:d2:94:4e:0b:ff: 9c:b5:0c:20:30:83:1c:ef:3c:e9:d8:b9:5d:ed:2f:a1:9b:bc: 03:9b:db:e0:0a:fd:57:4a:30:c2:67:92:81:4d:3a:f8:7a:0b: cc:7e:75:6d:32:bf:17:87:d1:68:bc:c6:7f:14:2f:25:a1:7a: af:44:d1:f9:93:5d:44:7b:89:ae:15:43:a0:51:36:fb:97:4e: 08:4a:21:7e:d4:38:4f:15:03:3f:9b:25:5b:e3:da:38:d8:48: 9e:70:01:14:49:f4:2b:a7:0e:94:28:46:43:7d:3e:b3:52:66: 00:fa:25:d1:0f:d9:ae:94:d5:01:7d:a4:59:5e:ed:f6:07:62: 30:27:62:e1:74:b3:72:90:81:5b:ab:17:d6:bf:7e:06:3a:0f: 66:29:e6:0c:6e:4d:ac:88:1a:88:b6:d1:99:f9:f3:2d:48:cc: b3:6f:be:ee:23:eb:c7:71:f2:88:8d:42:58:b5:ae:01:b9:c0: c5:ee:74:00:c4:5d:fa:13:b7:8f:b9:2a:65:d3:50:5f:5f:f0: 7e:7c:27:e8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNENG MDkxNDZERTYwNEMwRTQ0MkQ1NkM2OEZDODZDQzUwNDAwQUQyMTAeFw0yNjAyMjMw NjAwNTBaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDNERTQ0NjA3QzcyNTgx OTZCRkIyRTQ1MTRFRjUyMkFDMDMzRTEyMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKrVeLn0j+clLVM4B/isfojvfYKrJPvW3KD5SFLVWZFR38tusm PBz6FeU80sm/sbLcYWmEeczQi0P3IyD3uJLC3KYkxHD2ZE2gBe9kHATlYIVyU+0R gzB7x9u5g6kXQnrAO12JMBwfPZrFQlyP7BoyyqUl231DjtNsTmZLVazFqQm92Q4q HJ9EgKixPDBIRtp5uLsSwvSz/16GpzLbEbPM1DaGgYVzUPvSTcj2fwhSiTvLh0er 86x8TXO74Ba1rpI2WtaNfnscuRYiuVCJyd6dvzcKBSsvYOz8vNBWXX/V14RgZjHf DHxBBbTznUImfeYgF9LZrENslZyl38RckoZFAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUPeRGB8clgZa/suRRTvUirAM+EgowHwYDVR0jBBgwFoAUTPCRRt5gTA5ELVbG j8hsxQQArSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Mi9UUENSUnQ1Z1RBNUVMVmJHajhoc3hRUUFyU0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RQQ1JSdDVnVEE1RUxWYkdqOGhzeFFRQXJTRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODIvVFBDUlJ0NWdUQTVF TFZiR2o4aHN4UVFBclNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJE+hFSblbuteHRdV6rcm6VNDYVC32lq+f9lCZbqrKeB0pR4+cYD10BfyISI RfRlPSvSlE4L/5y1DCAwgxzvPOnYuV3tL6GbvAOb2+AK/VdKMMJnkoFNOvh6C8x+ dW0yvxeH0Wi8xn8ULyWheq9E0fmTXUR7ia4VQ6BRNvuXTghKIX7UOE8VAz+bJVvj 2jjYSJ5wARRJ9CunDpQoRkN9PrNSZgD6JdEP2a6U1QF9pFle7fYHYjAnYuF0s3KQ gVurF9a/fgY6D2Yp5gxuTayIGoi20Zn58y1IzLNvvu4j68dx8oiNQli1rgG5wMXu dADEXfoTt4+5KmXTUF9f8H58J+g= -----END CERTIFICATE-----Generated at Mon Feb 23 07:26:31 2026 by rpki-client