This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft File: BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft (raw, json) Hash identifier: yS2BwjUCvp9QDfCBWm8NjM1da0qVEmMEO1Wd7l4ZPBg= Subject key identifier: 71:43:42:58:4C:07:60:05:DB:59:C9:2E:10:36:2C:79:38:0D:66:5F Authority key identifier: BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D Certificate issuer: /CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Certificate serial: 1DA321BDDCE59F69889D9B94E4B8FE7D865AB2F8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft Manifest number: 09 Signing time: Sun 25 Jan 2026 14:21:02 +0000 Manifest this update: Sun 25 Jan 2026 14:16:02 +0000 Manifest next update: Mon 26 Jan 2026 16:32:02 +0000 Files and hashes: 1: BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl (hash: Cpfxq6F+OMQ9hM7VnSbwiZg7JNSFv6BbOdlFB4RbZPE=) 2: 35322e38322e3137312e302f32342d3234203d3e20313335363239.roa (hash: V2IsTTD+YBLjIpGCWch8npi5V+LVGlQ6eiiuQMfl+0A=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 09:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a3:21:bd:dc:e5:9f:69:88:9d:9b:94:e4:b8:fe:7d:86:5a:b2:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Validity Not Before: Jan 25 14:16:02 2026 GMT Not After : Jan 26 16:32:02 2026 GMT Subject: CN=714342584C076005DB59C92E10362C79380D665F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:7b:b9:6d:fc:9e:3c:66:54:c5:c4:a3:46:b4: e5:e9:3b:a4:75:ae:2e:29:3f:59:7d:32:7c:8b:32: 51:62:bd:6d:0f:69:f2:ff:1c:a5:96:93:ae:6f:00: 8a:82:11:37:e6:74:ef:81:b0:06:ce:60:90:20:72: 73:8d:77:a0:c3:43:9d:94:2f:0a:26:fa:a0:f1:20: a5:00:8e:c8:08:8f:fb:e1:b8:6e:87:54:b8:b6:a1: 35:d6:93:9a:b9:e1:99:0e:d1:a3:c5:4b:76:da:81: 64:b0:e8:d7:46:b5:3b:5d:ab:61:8c:82:e9:a1:3a: 97:08:2f:96:1a:15:96:86:f0:04:1f:1a:8e:95:fd: ea:ae:99:83:e1:52:c6:32:3a:ad:5c:46:00:c7:b1: 03:90:73:c6:63:93:9a:a5:93:83:f6:09:7e:50:f6: 01:30:b8:d8:ef:84:19:7d:45:c7:14:ed:ac:00:5e: f1:b0:27:6b:21:df:66:9b:f0:2e:b1:b9:80:23:ac: 88:06:38:e4:76:cc:b8:1d:7d:4c:9d:f2:c2:fe:8c: 36:00:01:6a:ee:5c:4a:6a:82:c9:1a:ae:9b:74:2d: 16:42:73:5a:85:61:d6:1f:de:cd:ff:50:a4:77:30: be:33:3e:d0:29:b9:e4:9d:5a:c1:7c:58:7d:fe:d4: 90:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:43:42:58:4C:07:60:05:DB:59:C9:2E:10:36:2C:79:38:0D:66:5F X509v3 Authority Key Identifier: keyid:BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:f9:70:7f:41:8b:1f:f4:ff:fe:bf:4a:84:2b:e2:28:67:2a: 60:94:58:3c:a3:24:85:6c:36:b3:11:d5:fb:66:99:c2:e8:6a: d7:d5:47:c9:84:c3:1c:9c:b0:1f:c9:e2:19:6c:6e:28:e3:07: 71:7d:77:39:36:e6:5f:00:24:b5:b3:4c:31:e6:7c:75:17:57: 72:bc:64:39:f9:4a:30:66:92:51:52:91:46:99:50:60:15:37: ce:77:ba:0c:bd:f8:1a:7a:37:f9:37:9d:b0:c6:cf:18:ac:2c: 97:ec:9a:f3:61:bc:1e:36:3b:c2:e1:71:68:82:90:f8:26:db: d5:18:ba:28:fa:0c:b0:05:d0:5f:b2:70:4f:a5:1f:9d:28:38: e4:73:27:fb:b3:74:87:f1:a7:87:6d:c4:e1:4a:44:74:3d:91: 2d:cc:0e:95:bd:23:d5:b7:36:76:75:c0:d9:38:77:8c:da:ac: c7:1a:f8:0b:ae:b1:a1:fd:4c:b0:57:ad:55:2b:6c:59:6d:0b: 19:03:ce:34:a5:d6:75:3c:8f:ca:b3:b4:81:7a:49:c4:0d:b4: 67:71:cd:90:70:34:93:76:4c:ce:dd:9e:4e:bc:2f:a0:81:c3: b1:24:f8:20:d5:43:66:06:f8:86:48:90:fc:b1:08:a8:e4:ea: 9e:06:63:54 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUHaMhvdzln2mInZuU5Lj+fYZasvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0 NkE3REY2RDAeFw0yNjAxMjUxNDE2MDJaFw0yNjAxMjYxNjMyMDJaMDMxMTAvBgNV BAMTKDcxNDM0MjU4NEMwNzYwMDVEQjU5QzkyRTEwMzYyQzc5MzgwRDY2NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbe7lt/J48ZlTFxKNGtOXpO6R1 ri4pP1l9MnyLMlFivW0PafL/HKWWk65vAIqCETfmdO+BsAbOYJAgcnONd6DDQ52U Lwom+qDxIKUAjsgIj/vhuG6HVLi2oTXWk5q54ZkO0aPFS3bagWSw6NdGtTtdq2GM gumhOpcIL5YaFZaG8AQfGo6V/equmYPhUsYyOq1cRgDHsQOQc8Zjk5qlk4P2CX5Q 9gEwuNjvhBl9RccU7awAXvGwJ2sh32ab8C6xuYAjrIgGOOR2zLgdfUyd8sL+jDYA AWruXEpqgskarpt0LRZCc1qFYdYf3s3/UKR3ML4zPtApueSdWsF8WH3+1JBxAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUcUNCWEwHYAXbWckuEDYseTgNZl8wHwYDVR0j BBgwFoAUukQ8/aQDc+PyehS0FOwkikan320wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDk4MjQwMy8xL0JBNDQzQ0ZEQTQwMzczRTNGMjdBMTRCNDE0RUMy NDhBNDZBN0RGNkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0NkE3REY2RC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ5ODI0MDMvMS9CQTQ0M0NGREE0MDM3 M0UzRjI3QTE0QjQxNEVDMjQ4QTQ2QTdERjZELm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQflwf0GLH/T/ /r9KhCviKGcqYJRYPKMkhWw2sxHV+2aZwuhq19VHyYTDHJywH8niGWxuKOMHcX13 OTbmXwAktbNMMeZ8dRdXcrxkOflKMGaSUVKRRplQYBU3zne6DL34Gno3+TedsMbP GKwsl+ya82G8HjY7wuFxaIKQ+Cbb1Ri6KPoMsAXQX7JwT6UfnSg45HMn+7N0h/Gn h23E4UpEdD2RLcwOlb0j1bc2dnXA2Th3jNqsxxr4C66xof1MsFetVStsWW0LGQPO NKXWdTyPyrO0gXpJxA20Z3HNkHA0k3ZMzt2eTrwvoIHDsST4INVDZgb4hkiQ/LEI qOTqngZjVA== -----END CERTIFICATE-----Generated at Sun Jan 25 18:05:35 2026 by rpki-client