$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft File: Z7bHlviRA1kP8cyQcd_kwN84_U0.mft (raw, json) Hash identifier: BBwsIYCzQLh31MvTS9E4iiAFOlBcfm6jQ4s/NqfzyeY= Subject key identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A Authority key identifier: 67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D Certificate issuer: /CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Certificate serial: 0342 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft Manifest number: 0340 Signing time: Thu 12 Mar 2026 09:00:50 +0000 Manifest this update: Thu 12 Mar 2026 09:00:50 +0000 Manifest next update: Thu 12 Mar 2026 15:00:50 +0000 Files and hashes: 1: Avn43BaBZTTez8dzXXC5ev5n_E4.roa (hash: Ub77vZnk4oLPBJQVHv+HVLLuQJPSrWkHLBI8wCAEF84=) 2: Z7bHlviRA1kP8cyQcd_kwN84_U0.crl (hash: RCjaia+JuoApZIWBCi6mF0Ei4JDt2FwhERknRZUGl90=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 834 (0x342) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Validity Not Before: Mar 12 09:00:50 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=59EACF823B3E15F69CD6255F54243BC415EB806A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:04:fb:58:14:da:e3:78:b4:21:e8:0f:fe: ad:d0:0a:2c:6a:40:e7:4a:59:df:e4:ba:d4:9c:06: 1d:03:cf:b8:c3:ea:c3:ab:f5:d9:77:f3:6a:8c:6f: eb:8a:80:4d:b7:a9:ee:7d:e0:14:fe:e4:3c:de:fc: 76:1e:79:c5:4b:d0:a3:92:a6:ad:b8:c0:78:84:4e: a3:b3:e6:74:ff:20:c5:e8:ed:3a:65:4d:bc:44:f9: 8f:68:ed:31:96:45:4a:2a:3d:35:4e:27:2f:fb:36: 55:8e:c5:1e:c7:09:c4:96:25:39:14:cf:3d:7e:07: 75:a9:96:24:d5:a2:af:cf:30:09:a9:48:91:d7:41: b5:6c:7a:4c:ea:31:3a:43:16:80:e0:b5:4e:ac:4a: dd:0b:a5:9f:07:bd:c2:8b:bc:e4:4e:2e:92:74:68: 05:04:1d:fc:80:ac:ea:b0:07:51:2b:4f:35:2a:95: e7:52:5d:7b:65:52:4b:60:c5:25:28:2b:38:5a:2d: 7a:38:c5:e4:4a:91:e5:1d:ce:26:1e:48:b9:00:c4: c3:d2:3d:4c:9d:45:d6:6a:c0:99:66:ab:bd:5b:fc: 86:4d:97:e6:b2:9e:90:aa:e5:cc:3c:9e:c1:1b:2f: bd:74:8d:23:65:b8:03:85:87:f1:c3:26:a0:37:4a: 05:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A X509v3 Authority Key Identifier: keyid:67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:50:b2:53:b6:31:f4:96:68:b4:dd:15:21:fe:df:da:f7:55: a2:79:f2:59:21:c4:89:9f:a3:90:5f:c9:28:f5:ee:8d:a2:c9: 5c:b9:0c:8b:59:67:63:76:f7:2a:83:13:1f:9c:61:cd:5c:48: 28:42:14:76:90:25:b6:ed:62:fb:56:ab:07:05:97:22:61:a6: ca:06:e3:11:0f:a0:52:5a:5a:85:0c:91:ac:ad:77:e6:b0:9d: a2:80:f9:9c:5f:d2:0e:1c:c8:13:33:79:6d:d9:65:14:2e:ac: ab:1a:47:d7:48:53:8b:1e:b6:ca:38:82:c4:3c:7d:af:73:2f: 14:61:c7:d7:08:43:1e:40:d5:6d:8d:94:a5:36:ed:d9:af:f1: 33:21:33:ed:0d:0a:3f:37:e9:b7:27:a5:96:21:d4:68:c6:c0: 31:4e:86:f7:6b:8e:d0:6a:25:14:d6:50:e6:f2:19:bc:a5:48: 35:61:9b:47:23:01:a8:0d:10:9e:d0:0a:c6:38:54:c6:cc:6b: 93:7e:25:20:27:dd:18:c4:7b:dc:02:61:33:7c:30:31:b4:52: e7:d5:7f:ed:63:c0:1a:c7:77:3c:5a:6e:aa:59:1d:63:b9:a4: c7:71:1a:fc:1d:88:47:04:6e:18:26:f2:bd:33:01:bf:f0:b3: 8a:6d:54:fe -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICA0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjdC NkM3OTZGODkxMDM1OTBGRjFDQzkwNzFERkU0QzBERjM4RkQ0RDAeFw0yNjAzMTIw OTAwNTBaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDU5RUFDRjgyM0IzRTE1 RjY5Q0Q2MjU1RjU0MjQzQkM0MTVFQjgwNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtxQT7WBTa43i0IegP/q3QCixqQOdKWd/kutScBh0Dz7jD6sOr 9dl382qMb+uKgE23qe594BT+5Dze/HYeecVL0KOSpq24wHiETqOz5nT/IMXo7Tpl TbxE+Y9o7TGWRUoqPTVOJy/7NlWOxR7HCcSWJTkUzz1+B3WpliTVoq/PMAmpSJHX QbVsekzqMTpDFoDgtU6sSt0LpZ8HvcKLvOROLpJ0aAUEHfyArOqwB1ErTzUqledS XXtlUktgxSUoKzhaLXo4xeRKkeUdziYeSLkAxMPSPUydRdZqwJlmq71b/IZNl+ay npCq5cw8nsEbL710jSNluAOFh/HDJqA3SgWPAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUWerPgjs+Ffac1iVfVCQ7xBXrgGowHwYDVR0jBBgwFoAUZ7bHlviRA1kP8cyQ cd/kwN84/U0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 Ni9aN2JIbHZpUkExa1A4Y3lRY2Rfa3dOODRfVTAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1o3YkhsdmlSQTFrUDhjeVFjZF9rd044NF9VMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTYvWjdiSGx2aVJBMWtQ OGN5UWNkX2t3Tjg0X1UwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALtQslO2MfSWaLTdFSH+39r3VaJ58lkhxImfo5BfySj17o2iyVy5DItZZ2N2 9yqDEx+cYc1cSChCFHaQJbbtYvtWqwcFlyJhpsoG4xEPoFJaWoUMkaytd+awnaKA +Zxf0g4cyBMzeW3ZZRQurKsaR9dIU4setso4gsQ8fa9zLxRhx9cIQx5A1W2NlKU2 7dmv8TMhM+0NCj836bcnpZYh1GjGwDFOhvdrjtBqJRTWUObyGbylSDVhm0cjAagN EJ7QCsY4VMbMa5N+JSAn3RjEe9wCYTN8MDG0UufVf+1jwBrHdzxabqpZHWO5pMdx GvwdiEcEbhgm8r0zAb/ws4ptVP4= -----END CERTIFICATE-----Generated at Thu Mar 12 12:25:02 2026 by rpki-client