$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft File: th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft (raw, json) Hash identifier: LFT3cDUGDMN9wp98/WWgAzhGqYFIYcWZHtluimF72vI= Subject key identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B Authority key identifier: B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC Certificate issuer: /CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC Certificate serial: 085D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft Manifest number: 085C Signing time: Thu 12 Mar 2026 04:01:23 +0000 Manifest this update: Thu 12 Mar 2026 04:01:23 +0000 Manifest next update: Thu 12 Mar 2026 10:01:23 +0000 Files and hashes: 1: JgjWkLdCFleawVTGhEhJNpE74sI.roa (hash: N9APigkUnifz939TtzUKxhKyyn8AOmLm5xRTMW8fCf8=) 2: th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl (hash: 74Qlblpiy3U08udO0InQ8CuB6j5ZcygLk299Yu2oTbc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 10:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC Validity Not Before: Mar 12 04:01:23 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=186E78B45B3C95AF28F99FC95D6D94940A37551B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:c6:9f:2c:76:70:3d:16:0a:60:0c:28:9d: 0b:6e:02:15:0e:70:04:d0:29:47:03:3c:0b:c3:d4: 2e:d2:75:0e:ae:c0:63:70:93:c2:34:17:5a:cc:ce: 15:f6:7a:c8:84:9a:ac:9e:6b:a3:69:2c:43:28:77: d9:af:a0:84:40:eb:b2:39:05:b9:b8:ba:c6:a3:9d: 02:aa:02:c0:33:24:9c:05:b7:eb:04:7a:98:0e:0a: f3:2d:a9:c4:59:52:36:21:d2:c0:39:47:e2:13:81: 57:60:4f:a8:7b:6c:4e:f8:26:f8:15:f8:aa:b1:21: 91:c7:63:e8:23:65:39:20:4e:1a:ff:13:66:69:bf: f6:22:44:57:bf:17:8c:bd:e4:d1:51:45:63:7a:e3: 5c:cd:2f:bc:fa:33:3f:9b:12:3e:2c:80:d9:3d:64: 81:00:bc:71:04:f9:4c:3d:00:8f:dd:ee:5a:83:0a: 84:34:cd:b6:39:52:8e:bf:af:6a:c4:4a:86:24:17: fd:b6:cf:8a:46:d6:c9:1e:12:b4:95:2e:54:a3:10: 33:fa:36:8e:c2:4a:a8:d5:ac:0e:ef:73:3f:d1:1c: ed:44:b6:f5:80:fa:02:da:cf:06:f8:a4:cd:0f:3b: b1:27:10:ec:52:61:b6:bc:94:7a:f8:00:32:6f:fd: 37:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B X509v3 Authority Key Identifier: keyid:B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:db:13:87:1b:fe:31:e5:bf:54:bf:07:8e:63:a1:60:91:a7: bf:46:92:77:86:da:ce:34:eb:47:87:2a:f5:f9:8d:1c:47:b0: 1b:03:1e:c7:67:46:c8:ef:6a:0a:04:c4:2d:59:01:50:41:49: 62:4c:cf:83:56:9a:33:b8:ac:be:f0:b1:83:78:fd:6a:d6:d1: 46:44:38:5b:1b:0c:31:91:06:aa:68:d4:bc:05:79:2b:86:c8: ef:ad:fa:fb:3e:5b:22:86:f5:50:8c:80:17:d7:c3:31:93:44: 77:8e:c1:16:a0:85:0d:cb:d2:f6:c4:57:24:57:3a:8f:6c:52: 5d:60:46:c0:63:72:89:06:bb:7a:d0:51:e3:61:23:f3:68:8e: 7d:27:17:8e:be:e6:7a:80:a1:f2:0f:59:ec:17:5f:68:6e:cf: 0d:a5:f6:ff:fb:bb:dc:73:43:12:07:55:c6:8a:b0:20:33:8c: 1c:85:80:4e:75:1b:cc:27:65:da:fe:45:ce:3e:17:40:47:26: 0c:ac:ff:11:e9:3e:d2:31:06:c5:f5:72:fd:09:7e:c8:f4:59: 01:2b:16:a6:d2:34:8c:b6:b2:8c:95:01:23:e7:03:2d:a7:e7: 99:45:32:50:74:8f:b9:aa:67:37:6d:6e:87:bf:78:33:58:ae: 3c:aa:5e:8d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjYx RTkxMzhDRkVCN0Q4OUFCOENGNTQyNzZFRDI5QjNEODA4RTBCQzAeFw0yNjAzMTIw NDAxMjNaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDE4NkU3OEI0NUIzQzk1 QUYyOEY5OUZDOTVENkQ5NDk0MEEzNzU1MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1G8afLHZwPRYKYAwonQtuAhUOcATQKUcDPAvD1C7SdQ6uwGNw k8I0F1rMzhX2esiEmqyea6NpLEMod9mvoIRA67I5Bbm4usajnQKqAsAzJJwFt+sE epgOCvMtqcRZUjYh0sA5R+ITgVdgT6h7bE74JvgV+KqxIZHHY+gjZTkgThr/E2Zp v/YiRFe/F4y95NFRRWN641zNL7z6Mz+bEj4sgNk9ZIEAvHEE+Uw9AI/d7lqDCoQ0 zbY5Uo6/r2rESoYkF/22z4pG1skeErSVLlSjEDP6No7CSqjVrA7vcz/RHO1EtvWA +gLazwb4pM0PO7EnEOxSYba8lHr4ADJv/TchAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUGG54tFs8la8o+Z/JXW2UlAo3VRswHwYDVR0jBBgwFoAUth6ROM/rfYmrjPVC du0ps9gI4LwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 NS90aDZST01fcmZZbXJqUFZDZHUwcHM5Z0k0THcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3RoNlJPTV9yZlltcmpQVkNkdTBwczlnSTRMdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDUvdGg2Uk9NX3JmWW1y alBWQ2R1MHBzOWdJNEx3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKrbE4cb/jHlv1S/B45joWCRp79GkneG2s4060eHKvX5jRxHsBsDHsdnRsjv agoExC1ZAVBBSWJMz4NWmjO4rL7wsYN4/WrW0UZEOFsbDDGRBqpo1LwFeSuGyO+t +vs+WyKG9VCMgBfXwzGTRHeOwRaghQ3L0vbEVyRXOo9sUl1gRsBjcokGu3rQUeNh I/Nojn0nF46+5nqAofIPWewXX2huzw2l9v/7u9xzQxIHVcaKsCAzjByFgE51G8wn Zdr+Rc4+F0BHJgys/xHpPtIxBsX1cv0Jfsj0WQErFqbSNIy2soyVASPnAy2n55lF MlB0j7mqZzdtboe/eDNYrjyqXo0= -----END CERTIFICATE-----Generated at Thu Mar 12 09:30:47 2026 by rpki-client