$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft File: 528FB7389148F9961BE07564A1BCC28DE1440954.mft (raw, json) Hash identifier: z9F1E2HahlIsMiGUSUw7wj98vLJKVXigf79cy+CGJ/k= Subject key identifier: E0:A8:2F:3E:FB:7C:B4:C0:09:CD:80:90:A0:FC:0D:77:00:2D:B7:39 Authority key identifier: 52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 Certificate issuer: /CN=528FB7389148F9961BE07564A1BCC28DE1440954 Certificate serial: 542A8A414955E6218846747BB4FAB6C2456C2C3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft Manifest number: 59 Signing time: Thu 26 Mar 2026 03:08:28 +0000 Manifest this update: Thu 26 Mar 2026 03:03:28 +0000 Manifest next update: Fri 27 Mar 2026 06:18:28 +0000 Files and hashes: 1: 528FB7389148F9961BE07564A1BCC28DE1440954.crl (hash: PpzAr1M5qMkvsAIINrn3KlllE4Dpw8EC+NCqCtli4yk=) 2: 3130332e3135322e3234372e302f32342d3234203d3e20313335333931.roa (hash: EcqA+WlWeIsBbUwVfChqaarTFSzboqSnaqEftxipkFg=) 3: 3130332e3135322e3234372e302f32342d3234203d3e20313532343735.roa (hash: phf4Dfqb5M3Ykxs2j+sNy+Y1lZxL1CrzZ7fuUfc1kQM=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 05:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2a:8a:41:49:55:e6:21:88:46:74:7b:b4:fa:b6:c2:45:6c:2c:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528FB7389148F9961BE07564A1BCC28DE1440954 Validity Not Before: Mar 26 03:03:28 2026 GMT Not After : Mar 27 06:18:28 2026 GMT Subject: CN=E0A82F3EFB7CB4C009CD8090A0FC0D77002DB739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:43:cd:c9:5a:c4:e5:cf:89:74:1c:70:f7:58: 8b:26:d7:2c:fa:09:53:72:c9:53:ba:85:72:b2:0e: 5b:45:6e:7f:84:30:05:42:98:96:5d:7d:aa:5f:b9: d9:c4:6b:54:a1:d4:6c:0a:f9:17:51:e7:1f:f8:78: 21:78:ed:16:db:e7:43:75:1a:84:82:8b:e5:23:31: d3:81:c5:22:e0:1b:8d:9b:88:8e:b9:f8:1a:66:4e: 63:0d:13:ac:44:39:83:d0:74:86:d7:32:91:a9:0f: ee:0c:ed:31:dc:b6:03:71:bd:6e:40:6e:3f:b5:27: 58:d4:e2:79:af:c0:d9:2c:e2:4c:36:9e:e5:d3:e8: 9f:76:92:11:8a:42:5a:6f:89:01:7b:4b:a8:77:90: ad:26:33:33:ba:bc:89:3c:8d:ac:27:01:d7:81:75: 66:18:70:75:e7:4f:12:74:2e:b2:ad:12:3d:64:81: 24:20:9c:85:09:3f:34:46:c8:42:34:48:f4:88:05: 61:ab:51:45:48:91:36:29:d1:69:e1:60:c8:24:21: 6f:05:5c:c6:ba:ac:aa:7d:c6:be:ce:18:3b:af:1f: c4:1b:7a:76:76:0e:af:61:86:84:1c:c9:be:47:5f: 67:cd:25:6d:f5:b1:24:09:95:4d:95:49:b6:e4:6f: 72:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A8:2F:3E:FB:7C:B4:C0:09:CD:80:90:A0:FC:0D:77:00:2D:B7:39 X509v3 Authority Key Identifier: keyid:52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4f:54:34:8b:c1:ae:6c:10:30:32:8a:de:7f:fe:cd:d5:2a: 66:0c:77:13:c3:d8:81:46:55:4d:f1:33:d9:56:d1:75:2b:da: a2:22:1e:a0:77:50:bc:2e:f2:a4:f4:2e:1c:34:65:12:c6:20: 08:ea:de:b3:2f:d5:b7:8e:ee:e5:59:b7:4e:82:5c:0c:4d:3e: 49:39:8a:0d:27:ca:26:4b:15:c6:0c:32:4d:13:fc:04:f2:f1: ac:97:5c:52:e9:32:48:3f:66:8e:ef:3a:95:a7:38:89:ad:66: 34:e7:2e:7d:c3:50:04:5c:e9:89:18:53:e0:08:7c:b9:4e:f9: 2d:b4:1d:cb:31:8e:75:1a:40:4a:4b:f6:cf:8c:35:73:4d:c5: b1:93:32:04:7e:da:22:72:1b:35:21:1a:f7:37:4e:65:ba:3e: d2:01:36:5d:09:1d:b1:6b:da:91:1d:18:81:8f:45:87:73:d7: 3a:58:c1:56:83:b3:50:58:f3:21:ea:9c:ee:80:46:e3:bf:ee: 59:6b:68:de:12:2e:bb:5a:83:43:7d:fe:22:93:3f:fe:72:9d: 8e:fd:87:36:2d:a5:05:20:96:75:a9:9f:72:67:2d:00:85:5e: b6:71:81:c2:52:79:3e:d8:4e:b7:f4:fa:d2:6c:54:f8:ad:4c: 90:e1:9c:44 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUVCqKQUlV5iGIRnR7tPq2wkVsLD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERF MTQ0MDk1NDAeFw0yNjAzMjYwMzAzMjhaFw0yNjAzMjcwNjE4MjhaMDMxMTAvBgNV BAMTKEUwQTgyRjNFRkI3Q0I0QzAwOUNEODA5MEEwRkMwRDc3MDAyREI3MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBQ83JWsTlz4l0HHD3WIsm1yz6 CVNyyVO6hXKyDltFbn+EMAVCmJZdfapfudnEa1Sh1GwK+RdR5x/4eCF47Rbb50N1 GoSCi+UjMdOBxSLgG42biI65+BpmTmMNE6xEOYPQdIbXMpGpD+4M7THctgNxvW5A bj+1J1jU4nmvwNks4kw2nuXT6J92khGKQlpviQF7S6h3kK0mMzO6vIk8jawnAdeB dWYYcHXnTxJ0LrKtEj1kgSQgnIUJPzRGyEI0SPSIBWGrUUVIkTYp0WnhYMgkIW8F XMa6rKp9xr7OGDuvH8QbenZ2Dq9hhoQcyb5HX2fNJW31sSQJlU2VSbbkb3LDAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU4KgvPvt8tMAJzYCQoPwNdwAttzkwHwYDVR0j BBgwFoAUUo+3OJFI+ZYb4HVkobzCjeFECVQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTUzMTM5My8wLzUyOEZCNzM4OTE0OEY5OTYxQkUwNzU2NEExQkND MjhERTE0NDA5NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERFMTQ0MDk1NC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1OTExOTU3MjE1MzEzOTMvMC81MjhGQjczODkxNDhG OTk2MUJFMDc1NjRBMUJDQzI4REUxNDQwOTU0Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW09UNIvBrmwQ MDKK3n/+zdUqZgx3E8PYgUZVTfEz2VbRdSvaoiIeoHdQvC7ypPQuHDRlEsYgCOre sy/Vt47u5Vm3ToJcDE0+STmKDSfKJksVxgwyTRP8BPLxrJdcUukySD9mju86lac4 ia1mNOcufcNQBFzpiRhT4Ah8uU75LbQdyzGOdRpASkv2z4w1c03FsZMyBH7aInIb NSEa9zdOZbo+0gE2XQkdsWvakR0YgY9Fh3PXOljBVoOzUFjzIeqc7oBG47/uWWto 3hIuu1qDQ33+IpM//nKdjv2HNi2lBSCWdamfcmctAIVetnGBwlJ5PthOt/T60mxU +K1MkOGcRA== -----END CERTIFICATE-----Generated at Thu Mar 26 23:09:11 2026 by rpki-client