$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft File: 528FB7389148F9961BE07564A1BCC28DE1440954.mft (raw, json) Hash identifier: IqaA/9ENvvNAwsVYXhbGtLHEPHAqroqRu31ZIzAoPJg= Subject key identifier: 31:B1:34:C4:FB:95:BA:E3:06:76:FD:AD:0E:7D:79:66:4A:BA:F1:36 Authority key identifier: 52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 Certificate issuer: /CN=528FB7389148F9961BE07564A1BCC28DE1440954 Certificate serial: 67C943701C824F53DB015B7D8F7CC7D844E658B1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft Manifest number: 99 Signing time: Tue 12 May 2026 22:40:49 +0000 Manifest this update: Tue 12 May 2026 22:35:49 +0000 Manifest next update: Thu 14 May 2026 02:02:49 +0000 Files and hashes: 1: 3130332e3135322e3234372e302f32342d3234203d3e20313335333931.roa (hash: EcqA+WlWeIsBbUwVfChqaarTFSzboqSnaqEftxipkFg=) 2: 3130332e3135322e3234372e302f32342d3234203d3e20313532343735.roa (hash: phf4Dfqb5M3Ykxs2j+sNy+Y1lZxL1CrzZ7fuUfc1kQM=) 3: 528FB7389148F9961BE07564A1BCC28DE1440954.crl (hash: ys4WjHIeLIEPRrHgInc4EXccS5exgVipX44yGCvjTdo=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c9:43:70:1c:82:4f:53:db:01:5b:7d:8f:7c:c7:d8:44:e6:58:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528FB7389148F9961BE07564A1BCC28DE1440954 Validity Not Before: May 12 22:35:49 2026 GMT Not After : May 14 02:02:49 2026 GMT Subject: CN=31B134C4FB95BAE30676FDAD0E7D79664ABAF136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:18:74:a3:ae:85:fc:5b:37:6b:44:1e:1f:5b: d9:48:77:b3:d8:03:f9:8a:9c:ed:30:7d:5c:10:7e: 32:a4:c5:e0:5b:d6:a1:1f:ac:01:14:f0:54:2a:a7: 72:95:3d:58:84:7e:15:02:bf:d6:8f:a2:43:f5:fa: 1c:7d:8c:c0:73:24:68:fe:96:54:cb:3c:b6:59:92: a7:23:d4:81:34:0a:e4:96:72:c0:23:57:ec:f8:a7: f1:e3:11:8c:b1:d4:c0:bb:e5:42:79:f5:54:0c:0a: a5:6a:06:4b:43:ff:9a:b2:a9:00:92:29:bf:53:35: e7:eb:b0:15:ed:8c:15:70:b7:62:da:6b:09:93:a5: 70:16:82:db:89:ad:96:5d:e3:ae:5c:2d:d8:90:6b: bb:bf:a7:0d:be:9c:76:59:20:34:3c:c5:02:1a:ee: b1:39:44:06:4a:89:4d:bb:a6:0e:91:1e:68:2c:ce: 5a:6f:4e:ac:94:46:e9:d3:4e:c0:6b:18:e7:82:c0: d0:93:c0:80:06:fe:fa:fc:51:1b:35:7a:f6:42:ce: 45:e6:81:8d:e8:12:bd:fa:9b:64:9b:ef:98:b5:f7: 4e:96:5b:5b:0c:cf:d4:81:4a:cf:60:c1:17:53:b0: bd:77:2a:7d:8c:d5:ac:e0:c0:da:53:45:2e:73:2b: 00:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B1:34:C4:FB:95:BA:E3:06:76:FD:AD:0E:7D:79:66:4A:BA:F1:36 X509v3 Authority Key Identifier: keyid:52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b1:94:a4:7d:18:ed:23:d9:6d:9d:80:84:c8:21:8b:da:0c: 2c:28:39:30:da:f9:bd:50:63:d2:94:4b:8b:fa:b4:6c:a4:d9: ad:3d:52:1d:38:6f:03:93:c6:19:95:3d:c5:1b:63:4f:43:7c: e6:72:68:68:9c:6e:9d:a3:32:4e:c4:18:5d:5f:c9:9f:0f:bc: c7:96:c3:b4:c6:c1:85:a3:e6:d3:f4:80:ca:87:06:a0:38:c7: d9:f5:0b:7a:f1:4a:f5:70:f0:5e:f7:14:f4:5d:3e:cc:01:c3: 80:8f:72:5e:59:0c:2c:49:9b:a0:9c:16:2b:13:86:85:f3:33: 02:00:ac:95:36:b3:dc:10:3d:70:8c:cf:cb:ab:b0:64:9a:67: 8e:a3:ab:9d:25:b6:9b:53:95:11:57:4d:d4:7b:bb:17:43:a5: b8:1a:87:ba:72:79:da:c2:7b:dc:29:11:fd:6e:c7:11:3d:e1: 31:01:50:fa:5a:e4:71:51:f0:f1:50:e9:2f:b3:85:7b:b6:40: 0e:f8:0b:3c:39:59:e0:9b:d4:e2:48:3a:5a:70:71:9a:02:b0: de:75:54:a6:ac:8c:89:f0:0d:d3:48:28:fb:ca:6d:d8:ca:c7: da:8f:fc:7f:6d:b3:30:5a:d5:72:a2:98:57:0d:62:e5:0a:83: c6:95:f4:b8 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUZ8lDcByCT1PbAVt9j3zH2ETmWLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERF MTQ0MDk1NDAeFw0yNjA1MTIyMjM1NDlaFw0yNjA1MTQwMjAyNDlaMDMxMTAvBgNV BAMTKDMxQjEzNEM0RkI5NUJBRTMwNjc2RkRBRDBFN0Q3OTY2NEFCQUYxMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQGHSjroX8WzdrRB4fW9lId7PY A/mKnO0wfVwQfjKkxeBb1qEfrAEU8FQqp3KVPViEfhUCv9aPokP1+hx9jMBzJGj+ llTLPLZZkqcj1IE0CuSWcsAjV+z4p/HjEYyx1MC75UJ59VQMCqVqBktD/5qyqQCS Kb9TNefrsBXtjBVwt2LaawmTpXAWgtuJrZZd465cLdiQa7u/pw2+nHZZIDQ8xQIa 7rE5RAZKiU27pg6RHmgszlpvTqyURunTTsBrGOeCwNCTwIAG/vr8URs1evZCzkXm gY3oEr36m2Sb75i1906WW1sMz9SBSs9gwRdTsL13Kn2M1azgwNpTRS5zKwArAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUMbE0xPuVuuMGdv2tDn15Zkq68TYwHwYDVR0j BBgwFoAUUo+3OJFI+ZYb4HVkobzCjeFECVQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTUzMTM5My8wLzUyOEZCNzM4OTE0OEY5OTYxQkUwNzU2NEExQkND MjhERTE0NDA5NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERFMTQ0MDk1NC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1OTExOTU3MjE1MzEzOTMvMC81MjhGQjczODkxNDhG OTk2MUJFMDc1NjRBMUJDQzI4REUxNDQwOTU0Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX7GUpH0Y7SPZ bZ2AhMghi9oMLCg5MNr5vVBj0pRLi/q0bKTZrT1SHThvA5PGGZU9xRtjT0N85nJo aJxunaMyTsQYXV/Jnw+8x5bDtMbBhaPm0/SAyocGoDjH2fULevFK9XDwXvcU9F0+ zAHDgI9yXlkMLEmboJwWKxOGhfMzAgCslTaz3BA9cIzPy6uwZJpnjqOrnSW2m1OV EVdN1Hu7F0OluBqHunJ52sJ73CkR/W7HET3hMQFQ+lrkcVHw8VDpL7OFe7ZADvgL PDlZ4JvU4kg6WnBxmgKw3nVUpqyMifAN00go+8pt2MrH2o/8f22zMFrVcqKYVw1i 5QqDxpX0uA== -----END CERTIFICATE-----Generated at Wed May 13 18:26:47 2026 by rpki-client