$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft File: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft (raw, json) Hash identifier: aFZJtToIdeqsO/SqvwKQGH//E7M7qgrC2clXqugW+ag= Subject key identifier: 2C:2B:91:9C:4D:8A:CE:61:7F:62:8B:CE:3F:C2:A7:0A:C0:64:18:C9 Authority key identifier: 67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 Certificate issuer: /CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Certificate serial: 070AC9CB285B757170F69BEFC91EC718D5879F4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft Manifest number: 9A Signing time: Tue 12 May 2026 21:55:47 +0000 Manifest this update: Tue 12 May 2026 21:50:47 +0000 Manifest next update: Thu 14 May 2026 01:08:47 +0000 Files and hashes: 1: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl (hash: qAU5NSInfzslh/EDegnT8ZYJLzbmWyzFuV45xLJs7pw=) 2: 3130332e3134302e31342e302f32332d3332203d3e203137363231.roa (hash: 2cWU5UH8whnz87agI1VludkKe4lf2cSxtmFnl04vmyI=) 3: 3130332e3134302e31342e302f32332d3332203d3e20313339303931.roa (hash: Dm1g3UjQyhGbjlFkBoWW9J4T2d5S6s8go1jP82Lkdfk=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:0a:c9:cb:28:5b:75:71:70:f6:9b:ef:c9:1e:c7:18:d5:87:9f:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Validity Not Before: May 12 21:50:47 2026 GMT Not After : May 14 01:08:47 2026 GMT Subject: CN=2C2B919C4D8ACE617F628BCE3FC2A70AC06418C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:71:94:92:27:dc:73:29:de:81:ed:98:b7:a8: 74:f9:0a:a7:fb:2c:66:4b:da:9c:49:ea:e4:51:dc: 3d:ed:11:f2:b1:8f:63:ef:0b:d2:53:da:e1:4b:9c: 06:44:82:ba:d3:fb:1a:85:07:45:8b:26:20:6f:0c: d7:09:15:fd:6b:58:19:a0:9d:8f:70:44:64:af:e8: ef:99:a5:16:36:2a:21:26:44:45:6f:a4:30:6c:09: b8:f3:60:35:d3:06:df:94:80:98:1e:17:6e:d0:73: ef:ed:de:01:fd:ab:88:be:42:8b:bd:2c:28:b5:d7: 2f:38:f0:ab:01:a4:4f:b7:23:ca:ce:12:d2:41:1f: c0:a0:2f:17:02:51:b9:7b:05:94:b6:16:9c:5a:b1: f6:66:25:62:8c:95:5c:96:d2:12:cc:de:65:a0:e6: 75:a5:6a:89:1b:a9:e3:02:84:f9:58:66:2a:1a:89: 3b:62:48:3f:20:a4:9f:3c:fe:8c:ef:98:5d:4c:bd: 8f:db:c5:53:73:82:a7:4f:97:b6:8d:bf:28:27:c0: e5:48:d6:73:eb:7e:71:14:33:b4:8c:d8:5c:bf:20: f6:a9:51:f2:ac:8b:df:01:02:56:c9:3c:e1:6a:d9: b7:b5:f9:f5:29:53:6b:c5:c7:92:99:e0:82:c4:7c: cf:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:2B:91:9C:4D:8A:CE:61:7F:62:8B:CE:3F:C2:A7:0A:C0:64:18:C9 X509v3 Authority Key Identifier: keyid:67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:fa:88:7c:93:2e:64:d6:23:c8:3e:e4:04:6e:eb:18:e9:26: 7b:b6:2d:92:d3:e9:c4:78:60:38:4e:d1:a9:34:22:32:15:08: a5:e2:d0:0f:df:df:59:5b:1a:b6:eb:51:43:df:34:89:8a:ed: b9:37:d9:c3:49:47:02:c4:19:b8:df:c6:2a:30:96:40:d0:e7: ab:23:37:ad:ca:04:da:5d:01:c6:5f:4a:93:db:e7:61:be:e4: 46:c5:b7:6a:ff:3f:b7:c3:c5:c0:71:1e:81:bc:f6:e3:7f:6d: ab:c5:df:5b:89:4f:b7:86:b5:79:5f:e8:d2:f8:37:10:81:27: 56:93:ba:d2:05:9b:21:9d:28:c3:07:d7:2b:32:5b:02:3e:ef: df:8a:c4:0e:96:8a:16:43:69:a8:0c:12:83:b8:fc:6b:20:41: 8e:07:eb:a2:f7:8a:3c:cd:66:fb:8f:76:cd:a5:09:3c:d0:c1: 01:c0:67:77:be:cc:52:9b:4c:6e:48:9b:62:1d:d1:97:3a:79: 84:f7:11:0c:e6:29:81:08:e4:3e:f3:fa:d2:c0:6c:c6:ad:a8: e5:8d:a9:c8:cf:b6:c4:4d:90:f3:fa:32:bd:35:58:9f:09:5b: d2:be:90:be:ea:b2:17:74:8b:34:81:4b:2b:0a:d8:16:a1:28: a0:52:cd:9b -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUBwrJyyhbdXFw9pvvyR7HGNWHn04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZF MEEyNTMxNjAeFw0yNjA1MTIyMTUwNDdaFw0yNjA1MTQwMTA4NDdaMDMxMTAvBgNV BAMTKDJDMkI5MTlDNEQ4QUNFNjE3RjYyOEJDRTNGQzJBNzBBQzA2NDE4QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLcZSSJ9xzKd6B7Zi3qHT5Cqf7 LGZL2pxJ6uRR3D3tEfKxj2PvC9JT2uFLnAZEgrrT+xqFB0WLJiBvDNcJFf1rWBmg nY9wRGSv6O+ZpRY2KiEmREVvpDBsCbjzYDXTBt+UgJgeF27Qc+/t3gH9q4i+Qou9 LCi11y848KsBpE+3I8rOEtJBH8CgLxcCUbl7BZS2FpxasfZmJWKMlVyW0hLM3mWg 5nWlaokbqeMChPlYZioaiTtiSD8gpJ88/ozvmF1MvY/bxVNzgqdPl7aNvygnwOVI 1nPrfnEUM7SM2Fy/IPapUfKsi98BAlbJPOFq2be1+fUpU2vFx5KZ4ILEfM+5AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQULCuRnE2KzmF/YovOP8KnCsBkGMkwHwYDVR0j BBgwFoAUZ5ZtNO+/TLz7AM+cIEU5v+CiUxYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3Nzg1OTA3NC8wLzY3OTY2RDM0RUZCRjRDQkNGQjAwQ0Y5QzIwNDUz OUJGRTBBMjUzMTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZFMEEyNTMxNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1Nzc4NTkwNzQvMC82Nzk2NkQzNEVGQkY0 Q0JDRkIwMENGOUMyMDQ1MzlCRkUwQTI1MzE2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlfqIfJMuZNYj yD7kBG7rGOkme7YtktPpxHhgOE7RqTQiMhUIpeLQD9/fWVsatutRQ980iYrtuTfZ w0lHAsQZuN/GKjCWQNDnqyM3rcoE2l0Bxl9Kk9vnYb7kRsW3av8/t8PFwHEegbz2 439tq8XfW4lPt4a1eV/o0vg3EIEnVpO60gWbIZ0owwfXKzJbAj7v34rEDpaKFkNp qAwSg7j8ayBBjgfroveKPM1m+492zaUJPNDBAcBnd77MUptMbkibYh3Rlzp5hPcR DOYpgQjkPvP60sBsxq2o5Y2pyM+2xE2Q8/oyvTVYnwlb0r6QvuqyF3SLNIFLKwrY FqEooFLNmw== -----END CERTIFICATE-----Generated at Wed May 13 12:30:49 2026 by rpki-client