$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft File: qP3wu66meVNpOJbHY_Ep2jtBg-s.mft (raw, json) Hash identifier: 8bb+tQu56wFq5l/JtkPDWHHzUqx1TQbEhJfEqdMmuqo= Subject key identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 Authority key identifier: A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB Certificate issuer: /CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Certificate serial: 03E2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft Manifest number: 03D9 Signing time: Thu 12 Mar 2026 14:00:22 +0000 Manifest this update: Thu 12 Mar 2026 14:00:22 +0000 Manifest next update: Thu 12 Mar 2026 20:00:22 +0000 Files and hashes: 1: 3gLZcEB9b6CcG88DthuUvQzuMng.roa (hash: sTik18vjb2qG/NYnXK3uG9tY/DL8xWE+DymUfLAIlnE=) 2: F0kSGnAIagivcV8g5cUdsyi-f3E.roa (hash: UcsToYzGinH+LaJVhXhSb5v+g/uBThplPaSlnEqw7FM=) 3: RXJSANHbZrdpPxa1bsPmTvjO39Q.roa (hash: 95CUp/VfY7PSkOcAscjkDxH3xv1Hjai/9RJJgyl0Hqs=) 4: WC1nHAg0yIPcV3WIpCTCZDMOWmM.roa (hash: aYTc6ZXigj8FqXcD/bFRpNLNct9j8zBZNjugMTj8hX8=) 5: qP3wu66meVNpOJbHY_Ep2jtBg-s.crl (hash: bYKiJ2trmJ9uMg9Qj2fmqWru88takgdy7q7PSJwnvv0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 20:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Validity Not Before: Mar 12 14:00:22 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=81423BA77AB7087249D68E2498CC5E6A24720AE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a7:40:c5:41:bc:f5:4e:9b:62:5d:a9:4a:2d: 3f:e6:d7:ce:78:ff:60:eb:5a:fc:45:18:10:55:5e: 31:48:05:87:80:17:55:a9:d6:e3:b2:13:d4:23:9e: f0:f4:51:84:ae:af:07:95:68:71:29:21:c8:1f:ac: 40:95:69:f7:c8:cd:b5:9f:bd:cf:9d:60:1b:03:8e: 6e:12:c1:53:bd:31:df:c5:b5:e0:67:df:39:04:60: 25:5f:3c:a5:5b:d9:61:9b:01:1f:4c:7e:ee:a7:00: e3:07:dd:69:a7:83:82:e5:99:f9:57:24:6d:1d:a9: 5b:0f:ee:45:21:3f:b4:b1:d9:d5:72:c3:6e:59:19: b9:d0:b7:46:65:b9:04:eb:e6:9d:d7:c8:10:1e:66: a2:ad:3f:07:5b:2f:a8:74:79:1a:9a:7b:fd:1e:7f: f2:a4:33:61:4a:4f:ad:8b:30:d4:b5:fe:a2:77:b0: de:f2:85:76:d2:1d:33:e1:08:f4:b5:9d:53:5e:3a: ae:67:ec:cb:a2:d3:39:ad:47:b5:1c:c4:90:a5:ea: 55:4e:24:55:e5:1a:e2:e2:0f:e3:77:2c:3f:4d:e6: 50:99:a8:4b:bb:fd:81:0d:12:db:31:1e:5c:20:69: ba:16:09:96:4a:0a:3c:f3:f1:c2:8b:2f:fc:7e:b9: 1a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3 X509v3 Authority Key Identifier: keyid:A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:12:06:20:5c:e8:1b:48:aa:d5:c5:97:c1:ab:19:e4:b6:cf: e8:a7:c9:19:ed:5e:40:4c:8c:49:5e:37:13:74:a8:a8:5f:32: 74:cd:77:04:ce:28:ac:52:4f:e2:c2:38:5a:96:a9:66:f7:f7: 15:d8:62:d3:97:8a:b2:3a:5c:14:ce:cd:b2:bb:a9:7f:ee:8a: b5:aa:f4:d4:95:7a:e4:50:3a:4a:25:7b:10:78:21:70:6a:42: 52:01:2d:14:6f:00:64:3e:d7:2c:de:fc:92:1c:2b:45:63:79: 50:0b:a9:24:ac:af:e0:40:01:1c:07:e8:9c:03:0e:6e:ea:0d: 27:e4:9e:c4:32:2f:a5:40:69:50:f6:35:94:aa:b1:9a:bb:f5: 27:38:8f:e6:6a:4d:31:66:0b:07:78:bb:68:e7:42:6b:2e:0e: 69:84:5b:f3:9a:2a:68:50:ab:0f:0f:8d:50:61:f9:d8:68:4e: ab:6e:66:4f:03:3a:fe:63:53:18:73:02:aa:28:db:82:5e:be: 84:a2:14:0f:e1:2e:84:47:ac:d8:30:a8:e5:2b:cb:b6:5e:ef: 19:eb:81:ce:f3:af:76:f5:6a:a7:64:c1:03:81:5b:a7:9d:51: 2b:64:96:68:a1:19:39:aa:18:ba:44:13:53:60:c4:fe:23:c3: b8:58:77:0e -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQThG REYwQkJBRUE2Nzk1MzY5Mzg5NkM3NjNGMTI5REEzQjQxODNFQjAeFw0yNjAzMTIx NDAwMjJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDgxNDIzQkE3N0FCNzA4 NzI0OUQ2OEUyNDk4Q0M1RTZBMjQ3MjBBRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyp0DFQbz1TptiXalKLT/m1854/2DrWvxFGBBVXjFIBYeAF1Wp 1uOyE9QjnvD0UYSurweVaHEpIcgfrECVaffIzbWfvc+dYBsDjm4SwVO9Md/FteBn 3zkEYCVfPKVb2WGbAR9Mfu6nAOMH3Wmng4LlmflXJG0dqVsP7kUhP7Sx2dVyw25Z GbnQt0ZluQTr5p3XyBAeZqKtPwdbL6h0eRqae/0ef/KkM2FKT62LMNS1/qJ3sN7y hXbSHTPhCPS1nVNeOq5n7Mui0zmtR7UcxJCl6lVOJFXlGuLiD+N3LD9N5lCZqEu7 /YENEtsxHlwgaboWCZZKCjzz8cKLL/x+uRqZAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUgUI7p3q3CHJJ1o4kmMxeaiRyCuMwHwYDVR0jBBgwFoAUqP3wu66meVNpOJbH Y/Ep2jtBg+swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTg1 L3FQM3d1NjZtZVZOcE9KYkhZX0VwMmp0Qmctcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvcVAzd3U2Nm1lVk5wT0piSFlfRXAyanRCZy1zLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTg1L3FQM3d1NjZtZVZOcE9K YkhZX0VwMmp0Qmctcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAwEgYgXOgbSKrVxZfBqxnkts/op8kZ7V5ATIxJXjcTdKioXzJ0zXcEziisUk/i wjhalqlm9/cV2GLTl4qyOlwUzs2yu6l/7oq1qvTUlXrkUDpKJXsQeCFwakJSAS0U bwBkPtcs3vySHCtFY3lQC6kkrK/gQAEcB+icAw5u6g0n5J7EMi+lQGlQ9jWUqrGa u/UnOI/mak0xZgsHeLto50JrLg5phFvzmipoUKsPD41QYfnYaE6rbmZPAzr+Y1MY cwKqKNuCXr6EohQP4S6ER6zYMKjlK8u2Xu8Z64HO86929WqnZMEDgVunnVErZJZo oRk5qhi6RBNTYMT+I8O4WHcO -----END CERTIFICATE-----Generated at Thu Mar 12 18:19:51 2026 by rpki-client