This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft File: 2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft (raw, json) Hash identifier: qAo5xSNTlUFyPVUtZDMve2VdzhiUnzc4tZa/XKK6NLY= Subject key identifier: 19:CE:00:06:F1:D7:46:90:2E:20:2D:82:7E:5F:62:2E:C3:E5:8F:1D Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 3E6DBE68EC3BB303E695B470F45DD6C4C69A3297 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft Manifest number: 09 Signing time: Sun 25 Jan 2026 06:05:57 +0000 Manifest this update: Sun 25 Jan 2026 06:00:57 +0000 Manifest next update: Mon 26 Jan 2026 07:54:57 +0000 Files and hashes: 1: 3130332e35362e3138372e302f32342d3234203d3e203539303433.roa (hash: b93qXeOKMOA0k1Tq0lEXe8AyLgDN80wyTvETkl87my8=) 2: 3130332e35362e3138352e302f32342d3234203d3e203539303433.roa (hash: H/aYJEZDszUQqZEgBSI4KYTtHU/iCJRnmxQv5XXPkG0=) 3: 3130332e35362e3138342e302f32342d3234203d3e203539303433.roa (hash: hmhm/J6fR0cLjZz5lcB7aw6zPjy50dHaMavZ+vQXS/E=) 4: 2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl (hash: 1JOVVx7yVJp2mGVBk6XGoeduprmfrzXYNsMsmwqreKQ=) 5: 3130332e35362e3138362e302f32342d3234203d3e203539303433.roa (hash: 185Jozw9t6OPsftx2I3cbH+cAXu8MqzSEVvP5Bvz/0w=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:6d:be:68:ec:3b:b3:03:e6:95:b4:70:f4:5d:d6:c4:c6:9a:32:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: Jan 25 06:00:57 2026 GMT Not After : Jan 26 07:54:57 2026 GMT Subject: CN=19CE0006F1D746902E202D827E5F622EC3E58F1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0d:a9:0f:df:2c:a9:be:44:70:87:53:9b:cc: 48:51:80:08:58:e4:ed:12:a5:05:be:22:0f:ff:03: da:ff:14:33:08:4d:70:64:36:25:9c:15:0d:6f:a6: 9e:c9:29:66:21:31:72:2c:ea:f2:9c:ee:16:fc:27: 21:19:b3:a2:4d:ec:69:b1:52:3c:c2:0b:ce:9b:f9: b5:24:f7:ec:c1:45:9d:30:43:81:6e:49:a5:92:44: 83:01:2d:a8:6f:c5:34:d4:86:cc:8f:53:ee:77:d7: 06:8a:81:b3:8e:12:68:91:10:2e:ac:25:e7:bc:00: 77:1f:26:3e:e1:fa:63:73:72:0f:27:d9:ef:fd:8d: aa:a8:4f:a0:3a:98:4d:78:84:bf:ff:52:db:b0:07: e5:1b:fa:a1:65:e7:08:e7:70:00:78:12:21:e5:97: 13:80:9a:8a:52:79:01:98:79:d1:dc:6c:6c:60:79: 3d:8d:bf:da:13:9e:8b:9a:66:44:d4:02:b3:90:62: c8:bb:c1:01:e7:e3:aa:2f:a6:98:7f:b9:64:a6:f7: 68:1b:32:92:78:9f:62:de:0b:fc:97:7f:a2:68:5f: 98:b5:04:60:fd:ee:2d:2c:dd:e0:0e:ec:0c:f0:4e: 15:8c:ec:b9:9e:b3:f4:32:54:66:f5:7b:9a:48:2d: ec:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CE:00:06:F1:D7:46:90:2E:20:2D:82:7E:5F:62:2E:C3:E5:8F:1D X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:e5:49:e5:7f:6b:0d:f3:0f:e2:cb:85:40:65:5a:d0:2e:80: 85:ec:8d:10:7c:13:0d:f7:f5:49:a2:b6:50:f7:6f:88:a7:74: ba:cc:33:63:07:37:aa:7d:1d:61:a3:43:20:0d:08:36:e6:43: 9e:ed:24:61:6f:5b:bc:2e:27:6d:a3:c1:8c:9f:7f:29:fc:53: f2:25:45:58:dd:97:f2:df:14:76:bf:cc:bb:12:f3:03:04:a8: b3:27:dd:75:4e:1a:a0:43:de:d5:b6:eb:52:1b:b7:e8:68:27: 5c:92:0b:ed:d4:5c:6a:1b:7a:1e:69:92:93:ec:86:e9:b6:b3: 42:80:0e:3b:af:fa:f5:ef:ec:cf:ca:1d:c4:57:b9:67:a0:f3: b6:ad:e5:dc:e3:b6:ba:66:4f:0f:90:d6:98:e5:b2:e1:24:39: 33:1f:9a:5b:d0:1a:3b:42:b5:74:bb:ec:0c:a2:c7:4e:e9:93: f5:cd:9b:bc:7c:c4:72:21:78:c0:ec:ef:5d:98:f1:d3:68:37: 4a:2b:bc:13:0c:1a:30:80:37:e8:fb:a0:d4:55:54:f6:b4:90: 39:7c:72:cb:81:d2:c0:6e:43:c9:b7:83:a8:e4:e9:70:d4:ea: 3c:40:ae:3c:50:b6:e1:0c:ce:e6:26:f0:0a:68:16:01:e0:90: a6:42:c8:74 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUPm2+aOw7swPmlbRw9F3WxMaaMpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjAxMjUwNjAwNTdaFw0yNjAxMjYwNzU0NTdaMDMxMTAvBgNV BAMTKDE5Q0UwMDA2RjFENzQ2OTAyRTIwMkQ4MjdFNUY2MjJFQzNFNThGMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDADakP3yypvkRwh1ObzEhRgAhY 5O0SpQW+Ig//A9r/FDMITXBkNiWcFQ1vpp7JKWYhMXIs6vKc7hb8JyEZs6JN7Gmx UjzCC86b+bUk9+zBRZ0wQ4FuSaWSRIMBLahvxTTUhsyPU+531waKgbOOEmiREC6s Jee8AHcfJj7h+mNzcg8n2e/9jaqoT6A6mE14hL//UtuwB+Ub+qFl5wjncAB4EiHl lxOAmopSeQGYedHcbGxgeT2Nv9oTnouaZkTUArOQYsi7wQHn46ovpph/uWSm92gb MpJ4n2LeC/yXf6JoX5i1BGD97i0s3eAO7AzwThWM7Lmes/QyVGb1e5pILexZAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUGc4ABvHXRpAuIC2Cfl9iLsPljx0wHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3MjAyNTkvMC8yRDBCQzE2NTVEMTdB M0FCMDlDOTFFNDNBMzJERThEOEFCMjEzNTFBLm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAleVJ5X9rDfMP 4suFQGVa0C6AheyNEHwTDff1SaK2UPdviKd0uswzYwc3qn0dYaNDIA0INuZDnu0k YW9bvC4nbaPBjJ9/KfxT8iVFWN2X8t8Udr/MuxLzAwSosyfddU4aoEPe1bbrUhu3 6GgnXJIL7dRcaht6HmmSk+yG6bazQoAOO6/69e/sz8odxFe5Z6Dztq3l3OO2umZP D5DWmOWy4SQ5Mx+aW9AaO0K1dLvsDKLHTumT9c2bvHzEciF4wOzvXZjx02g3Siu8 EwwaMIA36Pug1FVU9rSQOXxyy4HSwG5DybeDqOTpcNTqPECuPFC24QzO5ibwCmgW AeCQpkLIdA== -----END CERTIFICATE-----Generated at Sun Jan 25 14:20:29 2026 by rpki-client