$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft File: cROxlpJLKFBkXlV_4f_EwNArHRk.mft (raw, json) Hash identifier: 4xXmjXk5Nw05XLu8sHzRyYgggov3Z04hVP5zwCWR4G8= Subject key identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Certificate serial: 0AB2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft Manifest number: 0AAF Signing time: Mon 23 Feb 2026 04:28:14 +0000 Manifest this update: Mon 23 Feb 2026 04:28:14 +0000 Manifest next update: Mon 23 Feb 2026 10:28:14 +0000 Files and hashes: 1: 4zYhwzKtPO24VmBKnBMbLcfUubQ.roa (hash: ASMG37KNKcRiT+NFG3aHqq5FWzRUS2/RQrcmkNlZmJY=) 2: HjRiR4jL6G7qQnLmQvdv6kP3WqQ.roa (hash: 05icq/DbDs/2I8drlSuRNyAgvX8y1QfbbGL8a5DXtxM=) 3: cROxlpJLKFBkXlV_4f_EwNArHRk.crl (hash: MR1VNaKSWfY5ijJXkwcxyCd87u8QdgKMrx5dhz48LfA=) 4: opPXc4txplr0wt_5kJDOZ84M9EY.roa (hash: GwP5I7j08elwBP9g/jlNI0QLid9QzN8J3x6Riv56pkU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Feb 2026 10:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2738 (0xab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Validity Not Before: Feb 23 04:28:14 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C9E8CD681001D59A71F920C6960D52270BAF6506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:82:95:a5:8a:a7:2b:c0:59:48:1b:b1:9f:2c: a8:80:c6:ce:66:0a:59:59:b9:4f:8c:9a:cf:e6:14: 5e:56:cd:46:38:3c:a9:c7:b0:ec:fb:88:06:6e:ab: 6c:de:67:92:a5:87:c3:d5:b3:8d:90:40:06:e1:32: 62:0c:14:9b:5a:8a:e9:02:fe:b0:4f:f4:ec:7c:39: cb:22:39:16:46:c3:10:e1:70:84:db:a6:55:9f:bf: e7:18:73:83:bd:06:01:d0:b9:3a:83:d1:4c:a9:f7: e0:fb:ac:65:fd:09:e1:80:39:92:91:d5:80:5e:75: b3:e0:85:4d:b4:91:ad:bc:f3:e0:31:cc:8d:19:3e: 05:4a:77:9b:b6:a0:3e:cc:72:0a:72:1e:18:68:ce: cb:69:16:29:8a:88:c1:bb:27:e5:c7:45:ab:41:7d: 78:17:cc:ab:c7:58:7f:a9:aa:24:e4:62:df:b9:f6: 40:74:86:8f:22:0d:57:f6:c4:dd:62:2a:91:f3:a5: 61:35:38:52:90:dc:49:4c:26:0b:d8:2e:82:59:8b: 5f:2c:22:d2:c1:16:30:6e:f5:74:b4:39:1a:98:9d: cf:51:59:3f:0a:9f:35:7d:d2:f5:c4:f0:28:7f:0c: 37:fa:04:91:f7:42:52:34:ce:46:ac:3e:50:01:6a: 16:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 X509v3 Authority Key Identifier: keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:09:c9:87:f5:de:c8:ef:f4:8b:f1:dd:ab:ae:88:2c:71:db: 7f:4d:33:d7:c3:ec:d6:59:9d:ba:f5:90:41:b2:88:17:6d:0e: 0d:73:06:e5:64:5b:8d:91:e7:11:f5:0b:cd:23:ef:cd:c7:55: 92:f9:b7:d8:a9:22:e0:d8:25:45:a0:87:4a:e7:e2:3e:40:7a: 8e:0b:68:b5:93:4c:60:7f:53:ad:cf:55:30:bc:f8:ba:2f:09: 2a:5a:2a:22:bd:3f:8f:4f:48:97:b9:da:83:0a:e3:a7:d4:61: 44:17:dc:84:bc:48:98:98:c9:55:a0:59:38:a7:e6:1d:27:f9: 3c:a3:ff:ca:ce:63:42:ff:b8:42:22:4f:19:32:2f:c6:c2:93: 96:c5:e8:e0:7d:78:bd:da:f7:de:17:f4:1d:0a:22:09:48:b8: 86:09:a0:27:ad:45:17:a8:24:97:e4:b3:e6:ce:f9:38:4f:73: 85:da:64:5f:e4:23:fc:13:24:5e:6a:31:a8:64:62:cc:a3:ca: da:09:b8:97:ac:af:da:2b:68:0e:e0:1b:fd:c9:c0:81:80:b2: aa:31:c9:ae:ae:ae:5d:ba:41:0e:58:92:5f:91:3b:ac:95:b0: 7e:ad:02:54:e2:a8:5b:fd:03:bc:b9:7a:29:70:ef:f2:82:1c: b2:54:5b:78 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzEx M0IxOTY5MjRCMjg1MDY0NUU1NTdGRTFGRkM0QzBEMDJCMUQxOTAeFw0yNjAyMjMw NDI4MTRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEM5RThDRDY4MTAwMUQ1 OUE3MUY5MjBDNjk2MEQ1MjI3MEJBRjY1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDegpWliqcrwFlIG7GfLKiAxs5mCllZuU+Mms/mFF5WzUY4PKnH sOz7iAZuq2zeZ5Klh8PVs42QQAbhMmIMFJtaiukC/rBP9Ox8OcsiORZGwxDhcITb plWfv+cYc4O9BgHQuTqD0Uyp9+D7rGX9CeGAOZKR1YBedbPghU20ka288+AxzI0Z PgVKd5u2oD7McgpyHhhozstpFimKiMG7J+XHRatBfXgXzKvHWH+pqiTkYt+59kB0 ho8iDVf2xN1iKpHzpWE1OFKQ3ElMJgvYLoJZi18sItLBFjBu9XS0ORqYnc9RWT8K nzV90vXE8Ch/DDf6BJH3QlI0zkasPlABahb1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUyejNaBAB1Zpx+SDGlg1SJwuvZQYwHwYDVR0jBBgwFoAUcROxlpJLKFBkXlV/ 4f/EwNArHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw OS9jUk94bHBKTEtGQmtYbFZfNGZfRXdOQXJIUmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NST3hscEpMS0ZCa1hsVl80Zl9Fd05BckhSay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDkvY1JPeGxwSkxLRkJr WGxWXzRmX0V3TkFySFJrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAAJyYf13sjv9Ivx3auuiCxx239NM9fD7NZZnbr1kEGyiBdtDg1zBuVkW42R 5xH1C80j783HVZL5t9ipIuDYJUWgh0rn4j5Aeo4LaLWTTGB/U63PVTC8+LovCSpa KiK9P49PSJe52oMK46fUYUQX3IS8SJiYyVWgWTin5h0n+Tyj/8rOY0L/uEIiTxky L8bCk5bF6OB9eL3a994X9B0KIglIuIYJoCetRReoJJfks+bO+ThPc4XaZF/kI/wT JF5qMahkYsyjytoJuJesr9oraA7gG/3JwIGAsqoxya6url26QQ5Ykl+RO6yVsH6t AlTiqFv9A7y5eilw7/KCHLJUW3g= -----END CERTIFICATE-----Generated at Mon Feb 23 07:26:31 2026 by rpki-client