$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft File: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft (raw, json) Hash identifier: aYaNgJAPHuMdedrox6UKZ/atccRjTer4+p2VMitPiU8= Subject key identifier: 45:31:A7:A6:7F:B5:4A:43:1A:63:7B:89:DF:2E:5E:87:12:FC:86:C1 Authority key identifier: 8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 Certificate issuer: /CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Certificate serial: 35F5480D0507B44B08B33DCE8713228B4D85E5C4 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft Manifest number: 9A Signing time: Wed 13 May 2026 12:46:04 +0000 Manifest this update: Wed 13 May 2026 12:41:04 +0000 Manifest next update: Thu 14 May 2026 13:31:04 +0000 Files and hashes: 1: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl (hash: 3KHz2We1p3xVQHFlA0vB+mWlFtudLJSQoUaJZ5gjyUc=) 2: 3136312e3234382e38342e302f32332d3234203d3e20323032373336.roa (hash: PNOmssIbHxITzlHe7RfPxz+xaJMGLHFeoLuHtEcKzhk=) 3: 3136312e3234382e38342e302f32332d3234203d3e20323134343332.roa (hash: mlTgfa8G8bpPl2rXhrQPOT+Ph5gV0rocuvelVPbWKdk=) 4: 3136312e3234382e38342e302f32332d3234203d3e20313937353337.roa (hash: s1FXph5zH5cjrNWCOsz0f6kZpe72KM5uAjTF3GadQzk=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f5:48:0d:05:07:b4:4b:08:b3:3d:ce:87:13:22:8b:4d:85:e5:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Validity Not Before: May 13 12:41:04 2026 GMT Not After : May 14 13:31:04 2026 GMT Subject: CN=4531A7A67FB54A431A637B89DF2E5E8712FC86C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bf:d5:ce:9d:3e:14:98:68:ef:a5:68:de:99: b8:b5:ed:e7:9e:e9:73:39:fc:76:14:bf:5c:c1:e8: 3a:88:d9:ab:66:b2:37:88:bb:fd:8d:49:aa:72:b2: 66:bd:36:dc:3f:f5:06:de:b6:17:9c:bb:46:53:b4: 64:be:4b:3c:4c:dd:30:61:6c:30:25:84:62:ac:a2: 41:e0:7a:f2:19:6e:7a:4e:99:cf:81:6f:c5:e1:c1: 58:a4:d4:63:a6:fa:ce:e4:f8:3d:73:ad:df:1f:59: 1c:35:6a:6f:d4:3b:41:38:41:4a:92:be:30:5c:d1: 04:ca:0e:dc:6f:4e:00:8b:f3:d5:dc:dd:c8:b9:61: 46:1f:ad:7d:9c:30:99:f7:b1:4a:e0:f0:22:60:d8: 6a:e6:bb:2b:f1:02:84:41:18:7b:cd:22:86:9a:f8: 50:02:7a:df:67:7d:87:78:3e:84:94:d8:15:83:25: 1c:3d:c5:f8:8f:2d:25:3e:34:6c:15:cf:20:bd:93: eb:5d:1c:ce:d2:9b:5a:ec:69:1c:85:db:d6:b2:c5: 99:af:d2:21:d3:60:08:be:10:34:46:4e:7b:e0:ca: 13:28:62:8f:53:3f:ea:f2:15:84:87:fd:05:b9:02: bf:61:e7:e6:8f:0e:7c:82:8d:55:78:df:2e:98:65: 85:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:31:A7:A6:7F:B5:4A:43:1A:63:7B:89:DF:2E:5E:87:12:FC:86:C1 X509v3 Authority Key Identifier: keyid:8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:f1:5a:02:05:3a:59:fd:21:e8:49:05:91:5f:78:94:15:32: 82:ab:59:70:f5:b9:e3:8d:bc:83:11:6e:a3:73:83:72:c0:fb: 0f:02:1d:6d:5a:9e:8f:5d:0e:2e:a6:6d:76:5c:eb:73:f1:e4: 55:35:61:83:b3:47:41:95:97:a8:10:f6:da:56:93:39:35:4c: 21:7d:bf:69:34:b9:02:83:35:c1:66:af:98:38:c0:54:7a:1a: fe:2b:b7:4b:d1:10:02:4f:a4:d4:ed:44:3c:b7:86:01:db:08: 07:3b:09:c8:c7:06:e9:92:c1:7b:02:70:a2:a7:db:cf:d4:67: ab:a3:12:13:4c:48:0a:7d:d0:be:20:9f:c8:02:78:63:7c:03: 4d:39:e5:37:3e:95:c5:3e:ec:3e:70:c6:a6:34:6c:09:b6:37: e5:ef:27:0c:49:7b:5b:09:24:20:01:b8:26:b4:25:6b:92:77: f7:1d:47:b4:c3:6d:dd:a9:92:84:b3:f4:60:32:a4:ac:17:1d: ea:8f:2f:b1:c4:14:22:ab:4a:3d:ae:4a:d0:81:9d:18:db:48: 26:38:e0:72:a3:fd:a2:56:9c:32:e2:9e:bc:47:71:dc:7a:ce: 62:44:d3:85:13:96:a2:f9:eb:0f:91:2d:ee:25:49:30:a1:c2: 1d:fe:b2:bd -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUNfVIDQUHtEsIsz3OhxMii02F5cQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0 RkJEQkRDODAeFw0yNjA1MTMxMjQxMDRaFw0yNjA1MTQxMzMxMDRaMDMxMTAvBgNV BAMTKDQ1MzFBN0E2N0ZCNTRBNDMxQTYzN0I4OURGMkU1RTg3MTJGQzg2QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDav9XOnT4UmGjvpWjembi17eee 6XM5/HYUv1zB6DqI2atmsjeIu/2NSapysma9Ntw/9Qbethecu0ZTtGS+SzxM3TBh bDAlhGKsokHgevIZbnpOmc+Bb8XhwVik1GOm+s7k+D1zrd8fWRw1am/UO0E4QUqS vjBc0QTKDtxvTgCL89Xc3ci5YUYfrX2cMJn3sUrg8CJg2GrmuyvxAoRBGHvNIoaa +FACet9nfYd4PoSU2BWDJRw9xfiPLSU+NGwVzyC9k+tdHM7Sm1rsaRyF29ayxZmv 0iHTYAi+EDRGTnvgyhMoYo9TP+ryFYSH/QW5Ar9h5+aPDnyCjVV43y6YZYXXAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQURTGnpn+1SkMaY3uJ3y5ehxL8hsEwHwYDVR0j BBgwFoAUi9g1suIV1obyT7Maiuzu5E+9vcgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8xLzhCRDgzNUIyRTIxNUQ2ODZGMjRGQjMxQThBRUNF RUU0NEZCREJEQzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0RkJEQkRDOC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTc1ODYxNzkvMS84QkQ4MzVCMkUyMTVE Njg2RjI0RkIzMUE4QUVDRUVFNDRGQkRCREM4Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASPFaAgU6Wf0h 6EkFkV94lBUygqtZcPW54428gxFuo3ODcsD7DwIdbVqej10OLqZtdlzrc/HkVTVh g7NHQZWXqBD22laTOTVMIX2/aTS5AoM1wWavmDjAVHoa/iu3S9EQAk+k1O1EPLeG AdsIBzsJyMcG6ZLBewJwoqfbz9Rnq6MSE0xICn3QviCfyAJ4Y3wDTTnlNz6VxT7s PnDGpjRsCbY35e8nDEl7WwkkIAG4JrQla5J39x1HtMNt3amShLP0YDKkrBcd6o8v scQUIqtKPa5K0IGdGNtIJjjgcqP9olacMuKevEdx3HrOYkTThROWovnrD5Et7iVJ MKHCHf6yvQ== -----END CERTIFICATE-----Generated at Wed May 13 15:20:21 2026 by rpki-client