$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft File: D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft (raw, json) Hash identifier: Q+cb92p9upvEOQQ66vClnBJjilxKqE3vPfJP63rPizg= Subject key identifier: 93:75:6C:AC:86:AD:64:E7:A8:7A:49:F0:A7:12:B6:B8:E9:50:7E:61 Authority key identifier: D2:FF:1D:7C:6D:F1:DD:77:5A:61:06:97:0D:05:FF:44:BC:AD:19:43 Certificate issuer: /CN=D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943 Certificate serial: 29B2AAF70B5A822163770772E056457FA464DA17 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft Manifest number: 99 Signing time: Wed 13 May 2026 09:06:03 +0000 Manifest this update: Wed 13 May 2026 09:01:03 +0000 Manifest next update: Thu 14 May 2026 10:15:03 +0000 Files and hashes: 1: 323430623a613030303a6663333a3a2f34382d3438203d3e20313531333033.roa (hash: TiSdjmUDUZ7Io/2Ke/Pu2qkV+pzBX0aVcs8lYCtTick=) 2: D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl (hash: +jEkytjrAJ9iF7xkmAJC99YEH8NHBxyxUciFyIQD5VU=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b2:aa:f7:0b:5a:82:21:63:77:07:72:e0:56:45:7f:a4:64:da:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943 Validity Not Before: May 13 09:01:03 2026 GMT Not After : May 14 10:15:03 2026 GMT Subject: CN=93756CAC86AD64E7A87A49F0A712B6B8E9507E61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:37:a9:de:e1:8d:ca:0f:f9:a8:e0:b9:4f:7c: a0:c6:e8:9f:4b:99:1d:59:d5:8c:82:98:07:35:ac: f2:f6:11:1a:f4:b6:ab:fc:36:59:80:26:ad:82:5f: a8:4d:c7:7d:3c:d0:24:d6:5c:59:ba:00:7b:2e:2d: 24:4a:bd:57:b3:37:e7:bc:36:6f:cf:ca:a6:ff:35: be:b0:a7:7c:e6:8d:5d:1f:09:fa:8d:05:db:69:12: 5d:cf:c7:2f:bb:21:2f:9e:da:47:0c:02:fa:55:63: 77:1d:4d:2f:58:3e:6a:73:30:58:b5:57:42:79:45: d0:3f:d9:8c:5f:79:2e:cb:7d:61:41:c3:c5:16:dc: 85:2c:1c:5c:13:ac:f7:90:33:d4:bc:8b:65:98:cd: b8:c0:2c:04:0e:5e:4a:70:b2:59:d5:c1:75:3b:4e: 96:d4:40:97:50:c7:58:5d:1b:50:2f:23:9c:61:10: 0c:25:51:bf:db:f6:a5:fb:01:e6:e9:d4:ea:c5:54: a1:9e:18:6b:a7:0f:a0:a3:76:5e:08:0d:a6:92:e7: 3a:b4:3d:cd:81:f4:16:da:83:36:7f:45:7c:1b:c0: f5:01:f4:56:20:72:22:2f:f9:1c:33:2e:af:4c:70: 13:53:4b:ed:cd:cd:6b:a4:01:1b:08:66:6f:27:5d: 9e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:75:6C:AC:86:AD:64:E7:A8:7A:49:F0:A7:12:B6:B8:E9:50:7E:61 X509v3 Authority Key Identifier: keyid:D2:FF:1D:7C:6D:F1:DD:77:5A:61:06:97:0D:05:FF:44:BC:AD:19:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265551361/0/D2FF1D7C6DF1DD775A6106970D05FF44BCAD1943.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:4d:be:f3:04:2c:1a:4d:83:1f:c9:66:e9:54:0c:bb:a4:c6: 26:28:c4:3e:3f:9c:b8:a4:46:bb:df:a4:6c:45:a2:a6:7d:d3: 56:51:2a:ab:e7:ac:e9:42:d3:8c:4c:a4:f6:aa:1f:57:ff:3b: aa:56:8a:f5:c9:31:04:5a:7b:0f:08:87:50:79:03:ee:49:9c: 9c:0b:c2:77:fa:41:45:f2:80:70:de:e1:7b:8a:1e:76:c3:bf: 1e:ca:79:22:7a:14:f8:f8:5a:40:e4:a2:20:04:55:f5:6c:45: 80:69:16:43:1a:0e:e0:65:4d:da:bf:3d:82:a1:c0:2e:35:a9: f9:15:1b:f6:1f:b4:07:83:24:fc:2b:fb:1a:a7:70:31:40:e7: 8d:02:17:a7:56:a1:c8:94:cb:bd:48:a2:c4:e4:5f:af:6b:a4: 28:3f:28:2c:92:23:dc:13:dd:4f:9e:60:d9:52:cc:f3:0e:ee: 07:7e:a2:fb:17:d7:11:53:e0:ba:24:40:42:e8:24:a4:05:a5: ae:81:9c:05:09:04:ad:dc:8d:88:5a:d1:e8:d1:79:35:20:6b: fc:0a:c7:cd:8f:69:52:eb:8b:5f:09:e6:7f:bb:10:1f:41:7c: 3d:a5:59:44:97:74:75:f4:63:41:32:43:ec:e5:ae:18:60:a2: e2:30:e5:25 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUKbKq9wtagiFjdwdy4FZFf6Rk2hcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJGRjFEN0M2REYxREQ3NzVBNjEwNjk3MEQwNUZGNDRC Q0FEMTk0MzAeFw0yNjA1MTMwOTAxMDNaFw0yNjA1MTQxMDE1MDNaMDMxMTAvBgNV BAMTKDkzNzU2Q0FDODZBRDY0RTdBODdBNDlGMEE3MTJCNkI4RTk1MDdFNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbN6ne4Y3KD/mo4LlPfKDG6J9L mR1Z1YyCmAc1rPL2ERr0tqv8NlmAJq2CX6hNx3080CTWXFm6AHsuLSRKvVezN+e8 Nm/Pyqb/Nb6wp3zmjV0fCfqNBdtpEl3Pxy+7IS+e2kcMAvpVY3cdTS9YPmpzMFi1 V0J5RdA/2YxfeS7LfWFBw8UW3IUsHFwTrPeQM9S8i2WYzbjALAQOXkpwslnVwXU7 TpbUQJdQx1hdG1AvI5xhEAwlUb/b9qX7Aebp1OrFVKGeGGunD6Cjdl4IDaaS5zq0 Pc2B9BbagzZ/RXwbwPUB9FYgciIv+RwzLq9McBNTS+3NzWukARsIZm8nXZ7/AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUk3VsrIatZOeoeknwpxK2uOlQfmEwHwYDVR0j BBgwFoAU0v8dfG3x3XdaYQaXDQX/RLytGUMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTU1MTM2MS8wL0QyRkYxRDdDNkRGMURENzc1QTYxMDY5NzBEMDVG RjQ0QkNBRDE5NDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDJGRjFEN0M2REYxREQ3NzVBNjEwNjk3MEQwNUZGNDRCQ0FEMTk0My5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU1NTEzNjEvMC9EMkZGMUQ3QzZERjFE RDc3NUE2MTA2OTcwRDA1RkY0NEJDQUQxOTQzLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh02+8wQsGk2D H8lm6VQMu6TGJijEPj+cuKRGu9+kbEWipn3TVlEqq+es6ULTjEyk9qofV/87qlaK 9ckxBFp7DwiHUHkD7kmcnAvCd/pBRfKAcN7he4oedsO/Hsp5InoU+PhaQOSiIARV 9WxFgGkWQxoO4GVN2r89gqHALjWp+RUb9h+0B4Mk/Cv7GqdwMUDnjQIXp1ahyJTL vUiixORfr2ukKD8oLJIj3BPdT55g2VLM8w7uB36i+xfXEVPguiRAQugkpAWlroGc BQkErdyNiFrR6NF5NSBr/ArHzY9pUuuLXwnmf7sQH0F8PaVZRJd0dfRjQTJD7OWu GGCi4jDlJQ== -----END CERTIFICATE-----Generated at Wed May 13 20:20:42 2026 by rpki-client