$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft File: CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft (raw, json) Hash identifier: ABaqYQV3mkjUKITnnpX7c3jZkTYIT6kXKMbwPX+RBtU= Subject key identifier: CE:9D:B0:04:2B:7F:3B:63:DE:2C:42:B4:00:0A:36:47:85:E5:C5:65 Authority key identifier: CE:20:AD:60:B5:FF:20:6D:53:40:92:36:A1:1F:47:FD:4F:31:AC:E7 Certificate issuer: /CN=CE20AD60B5FF206D53409236A11F47FD4F31ACE7 Certificate serial: 12FBA5DFFDAD2D5D20FFDA32FADA215E50D02A67 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft Manifest number: 99 Signing time: Tue 12 May 2026 17:20:37 +0000 Manifest this update: Tue 12 May 2026 17:15:37 +0000 Manifest next update: Wed 13 May 2026 19:45:37 +0000 Files and hashes: 1: 323430373a386634303a323a3a2f34382d3634203d3e203337393638.roa (hash: LDNK9PweFjK1wKyDe573Xy72qh4NYoOlHHEQeHBvEAY=) 2: 3230322e34362e3232342e302f32302d3234203d3e2034313334.roa (hash: RAvA3o2t61W8acXnwo8+PDMa0aTuyb7vHr0QuWLv5ks=) 3: 3230322e34362e3232342e302f32302d3234203d3e203536303430.roa (hash: Z2a1B5gCNns+2BmhvjTcFOulUeYUIxpwK5Cp54mMFuc=) 4: 3230322e34362e3232342e302f32302d3234203d3e2034383136.roa (hash: AP3LEhr9NJskIRyHLt3gZgOoccAkuzlPpcd0mfSxGok=) 5: 3230322e34362e3232342e302f32302d3234203d3e203337393638.roa (hash: gD6s0WeuhRIf02DzPtxzwxRWJZcIvRWmlQJwip4leBc=) 6: 323430373a386634303a323a3a2f34382d3634203d3e2039383038.roa (hash: TR06nDz1gTNdLIM8dcIeX2BYLDVoZsmF+tqoM6cwPDs=) 7: 3230322e34362e3232342e302f32302d3234203d3e2039383038.roa (hash: iyoDlHY31/A4gM9wUfi+CACam/Ogoja7GPLP33uj3yk=) 8: 3230322e34362e3232342e302f32302d3234203d3e20313335303631.roa (hash: SbsA4PTcJ3wiRQHn6khyisvG8rEWD+Byylxc8KTQeAE=) 9: 323430373a386634303a323a3a2f34382d3634203d3e2034383136.roa (hash: ytZdKkF45ks8sSi6yaCVxbx3H04n3ys0csOJRdnnNXk=) 10: CE20AD60B5FF206D53409236A11F47FD4F31ACE7.crl (hash: 7WajV047Zfpb6AxfiEyWzXetycevQZGulJH0ABxgXuc=) 11: 3130332e322e3136342e302f32322d3234203d3e203337393638.roa (hash: i9AMULZIaXWZ++7WSVdr7F6StnWG0S7RqV3FJqfppGQ=) 12: 323430373a386634303a323a3a2f34382d3634203d3e20313335303631.roa (hash: TV5l/9iH0hJhAxcbYqBzwx9+XPgyfR2/A5t7iLIIav8=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:fb:a5:df:fd:ad:2d:5d:20:ff:da:32:fa:da:21:5e:50:d0:2a:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE20AD60B5FF206D53409236A11F47FD4F31ACE7 Validity Not Before: May 12 17:15:37 2026 GMT Not After : May 13 19:45:37 2026 GMT Subject: CN=CE9DB0042B7F3B63DE2C42B4000A364785E5C565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:49:0e:78:d6:c7:55:9f:76:a2:b8:9a:d4:3f: e0:99:11:2c:49:03:4e:c3:5f:e2:15:df:05:a6:a3: 21:b6:d8:02:eb:a0:17:16:ca:13:22:a4:5f:00:6b: e1:1d:96:2b:2a:65:0f:69:ac:d4:8c:cc:cb:86:e5: c1:3c:74:15:51:1b:5d:94:ea:08:16:15:bd:7e:62: 35:c6:0e:4b:e8:16:bc:27:3a:e2:25:fa:53:45:16: 0f:ff:2e:e4:8e:26:b3:4b:fc:c6:73:b2:21:05:3b: a5:5b:93:50:f5:a7:96:4d:8f:5b:95:49:20:ba:f3: 7f:cd:f2:24:79:09:16:f9:80:3d:b2:ff:1e:cf:0e: 80:c5:07:c1:56:9a:db:2c:81:40:c1:3c:9b:0c:da: db:dd:15:47:3f:0e:46:94:85:d6:8f:1f:42:fb:0e: 7e:30:03:44:50:db:f1:f1:86:69:df:23:00:b4:c9: a4:f9:5d:72:fe:31:70:19:28:3e:7f:b9:62:fd:8d: b4:dd:08:55:8b:5c:5e:4f:7a:85:28:62:91:1a:b2: c9:db:88:b1:af:e1:1b:30:de:58:49:fc:b7:67:89: 93:0d:8d:e4:54:0a:1d:bd:f0:9c:00:60:56:66:a2: 40:af:d9:39:b3:9d:da:9a:4c:cc:ec:d3:66:14:7e: 2d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9D:B0:04:2B:7F:3B:63:DE:2C:42:B4:00:0A:36:47:85:E5:C5:65 X509v3 Authority Key Identifier: keyid:CE:20:AD:60:B5:FF:20:6D:53:40:92:36:A1:1F:47:FD:4F:31:AC:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:bc:14:74:20:ec:26:72:61:d9:33:d4:47:35:76:b6:d5:77: 88:4a:77:54:f8:04:83:ef:a7:72:9e:cb:16:85:e6:96:43:dc: 70:30:8b:6c:d6:19:7c:c6:e0:a6:5d:00:9e:50:a4:6e:65:36: fb:b0:03:8f:95:a1:02:e8:e7:03:e7:b6:9f:ba:39:7a:3b:e6: 4e:68:34:1b:88:2e:bf:3b:3f:71:a4:f7:74:79:ee:b4:01:56: b0:1a:22:be:b9:64:fc:8c:a5:68:8f:06:5e:33:d0:56:f3:be: a4:02:0d:ff:ab:e5:11:7f:21:03:d5:60:25:57:51:ab:76:e4: 39:9e:a0:93:16:dc:85:13:ca:6c:6e:14:da:0f:bb:fa:76:98: db:90:c2:b5:b6:75:9c:2b:b6:f4:d0:f2:9a:8e:4a:3e:bf:87: be:8a:f4:c1:46:eb:7e:21:8c:d9:87:22:48:43:27:93:50:cc: c8:cf:68:ee:e2:49:9e:28:c9:4d:17:76:4c:81:dc:f0:dd:e0: 6a:9e:1a:fb:2e:f1:c6:0b:b9:85:cc:ca:4e:40:ab:2a:60:94: 4c:4c:5b:df:01:a9:c8:30:11:d3:d7:2d:24:70:0f:14:23:ed: 7a:bd:41:23:a0:07:4b:7e:26:b0:a0:96:1c:a5:ed:cf:69:37: 44:06:01:d5 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUEvul3/2tLV0g/9oy+tohXlDQKmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UyMEFENjBCNUZGMjA2RDUzNDA5MjM2QTExRjQ3RkQ0 RjMxQUNFNzAeFw0yNjA1MTIxNzE1MzdaFw0yNjA1MTMxOTQ1MzdaMDMxMTAvBgNV BAMTKENFOURCMDA0MkI3RjNCNjNERTJDNDJCNDAwMEEzNjQ3ODVFNUM1NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcSQ541sdVn3aiuJrUP+CZESxJ A07DX+IV3wWmoyG22ALroBcWyhMipF8Aa+EdlisqZQ9prNSMzMuG5cE8dBVRG12U 6ggWFb1+YjXGDkvoFrwnOuIl+lNFFg//LuSOJrNL/MZzsiEFO6Vbk1D1p5ZNj1uV SSC683/N8iR5CRb5gD2y/x7PDoDFB8FWmtssgUDBPJsM2tvdFUc/DkaUhdaPH0L7 Dn4wA0RQ2/HxhmnfIwC0yaT5XXL+MXAZKD5/uWL9jbTdCFWLXF5PeoUoYpEassnb iLGv4Rsw3lhJ/LdniZMNjeRUCh298JwAYFZmokCv2TmzndqaTMzs02YUfi37AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUzp2wBCt/O2PeLEK0AAo2R4XlxWUwHwYDVR0j BBgwFoAUziCtYLX/IG1TQJI2oR9H/U8xrOcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzE5Mjk2My8wL0NFMjBBRDYwQjVGRjIwNkQ1MzQwOTIzNkExMUY0 N0ZENEYzMUFDRTcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0UyMEFENjBCNUZGMjA2RDUzNDA5MjM2QTExRjQ3RkQ0RjMxQUNFNy5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTcxOTI5NjMvMC9DRTIwQUQ2MEI1RkYy MDZENTM0MDkyMzZBMTFGNDdGRDRGMzFBQ0U3Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAirwUdCDsJnJh 2TPURzV2ttV3iEp3VPgEg++ncp7LFoXmlkPccDCLbNYZfMbgpl0AnlCkbmU2+7AD j5WhAujnA+e2n7o5ejvmTmg0G4guvzs/caT3dHnutAFWsBoivrlk/IylaI8GXjPQ VvO+pAIN/6vlEX8hA9VgJVdRq3bkOZ6gkxbchRPKbG4U2g+7+naY25DCtbZ1nCu2 9NDymo5KPr+Hvor0wUbrfiGM2YciSEMnk1DMyM9o7uJJnijJTRd2TIHc8N3gap4a +y7xxgu5hczKTkCrKmCUTExb3wGpyDAR09ctJHAPFCPter1BI6AHS34msKCWHKXt z2k3RAYB1Q== -----END CERTIFICATE-----Generated at Wed May 13 07:19:36 2026 by rpki-client