This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft File: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft (raw, json) Hash identifier: VVQZqbzEYzzK2Hz0j7OjKagE1b2g/Awy+ek0IoASeAg= Subject key identifier: 88:C9:A9:63:15:0B:FB:07:5E:FE:7B:FB:53:72:45:ED:2E:DF:2A:78 Authority key identifier: 67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 Certificate issuer: /CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Certificate serial: 7089F6E2FCA78972AF3B0E64F6EAE582AF3077EA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft Manifest number: 09 Signing time: Sun 25 Jan 2026 02:10:57 +0000 Manifest this update: Sun 25 Jan 2026 02:05:57 +0000 Manifest next update: Mon 26 Jan 2026 04:18:57 +0000 Files and hashes: 1: 67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl (hash: 0lY6lBvzliCSBq3BEd731BnB4u6SWFPEa/cg7NWBexc=) 2: 3130332e3134302e31342e302f32332d3332203d3e203137363231.roa (hash: 2cWU5UH8whnz87agI1VludkKe4lf2cSxtmFnl04vmyI=) 3: 3130332e3134302e31342e302f32332d3332203d3e20313339303931.roa (hash: Dm1g3UjQyhGbjlFkBoWW9J4T2d5S6s8go1jP82Lkdfk=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:89:f6:e2:fc:a7:89:72:af:3b:0e:64:f6:ea:e5:82:af:30:77:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67966D34EFBF4CBCFB00CF9C204539BFE0A25316 Validity Not Before: Jan 25 02:05:57 2026 GMT Not After : Jan 26 04:18:57 2026 GMT Subject: CN=88C9A963150BFB075EFE7BFB537245ED2EDF2A78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:38:bf:9e:1a:52:5d:ed:94:5e:09:0e:a3: a6:64:ba:97:81:e7:dc:0b:dc:0e:ff:4a:5c:73:86: e5:48:f6:e9:67:c0:52:80:b7:24:65:84:56:f3:97: f7:3a:7d:66:dd:46:b1:5e:27:b4:3c:c9:ec:09:a4: 15:31:b5:33:84:73:9f:f1:35:5e:af:e1:41:0c:bb: 0a:c7:e9:ff:cb:18:fc:38:93:cf:0b:44:45:80:2b: 37:b0:9e:34:6f:6c:fa:8a:e7:5f:e0:e3:9c:a7:e7: fb:94:ad:9f:46:21:e9:64:09:02:c1:04:c3:4b:0e: 7f:d8:4b:4d:68:20:22:1e:44:1d:f3:cd:41:b4:e7: 8c:62:15:83:32:d3:a5:c3:73:fb:fd:4f:f3:6a:e4: 96:93:24:80:95:56:ef:66:5d:82:7a:27:79:b4:b3: 25:24:b2:de:0c:65:c8:8b:96:8d:54:f0:71:9d:5b: 6d:b8:1d:57:fe:81:c9:61:0f:e7:bc:43:e0:3b:9c: af:29:15:a8:0a:4d:90:42:fa:88:b6:3d:f1:5c:2a: cc:c3:e6:45:52:42:39:7b:eb:f4:9d:43:f2:6e:1a: c4:6d:39:a4:40:dd:40:3d:b3:90:d7:fc:84:08:7e: 74:df:20:ac:50:f6:df:da:b6:ea:ae:c8:4d:92:d8: d8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C9:A9:63:15:0B:FB:07:5E:FE:7B:FB:53:72:45:ED:2E:DF:2A:78 X509v3 Authority Key Identifier: keyid:67:96:6D:34:EF:BF:4C:BC:FB:00:CF:9C:20:45:39:BF:E0:A2:53:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577859074/0/67966D34EFBF4CBCFB00CF9C204539BFE0A25316.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:20:cb:d7:d5:65:b5:b6:02:7f:34:44:ec:47:a9:89:5e:83: 8d:a2:11:15:62:ad:c5:b0:57:bc:1e:67:32:5e:4e:99:dc:85: 8f:1b:3e:38:5a:6e:b5:b9:c6:48:1e:89:6f:62:c1:75:79:07: 14:49:d3:51:33:e7:0d:e7:81:f2:72:2e:38:06:c2:4c:d3:2c: b6:95:87:46:22:e9:b3:e5:59:f2:06:63:e7:a0:5b:6f:0e:26: 77:70:10:22:91:8d:8e:dc:eb:b9:57:f2:86:8b:68:41:10:5d: 72:49:1e:04:44:2f:31:0c:59:4f:c0:1f:a1:a8:40:3b:2a:2a: eb:ae:c8:a9:72:bc:1b:16:16:97:9d:f0:fe:af:71:a8:fc:3c: 81:56:d9:9e:60:a6:57:43:7c:90:58:66:55:7a:70:2d:7f:00: 82:aa:0d:14:82:b9:4f:b7:ae:99:23:36:ed:da:cc:16:54:c9: 25:16:64:4e:19:e4:6b:77:cc:8e:ba:57:ab:88:f8:0f:80:42: 1a:0a:4d:ba:55:27:a3:c8:ef:7b:fa:9f:f4:cc:7b:a7:dd:16: e9:87:1d:95:1a:d8:e5:b9:29:09:3e:74:ba:9e:7b:fd:1e:83: af:4d:58:91:6e:c1:e1:19:be:b3:8b:98:87:f6:51:c1:57:b2: 0b:6d:77:22 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUcIn24vyniXKvOw5k9urlgq8wd+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZF MEEyNTMxNjAeFw0yNjAxMjUwMjA1NTdaFw0yNjAxMjYwNDE4NTdaMDMxMTAvBgNV BAMTKDg4QzlBOTYzMTUwQkZCMDc1RUZFN0JGQjUzNzI0NUVEMkVERjJBNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8nzi/nhpSXe2UXgkOo6ZkupeB 59wL3A7/SlxzhuVI9ulnwFKAtyRlhFbzl/c6fWbdRrFeJ7Q8yewJpBUxtTOEc5/x NV6v4UEMuwrH6f/LGPw4k88LREWAKzewnjRvbPqK51/g45yn5/uUrZ9GIelkCQLB BMNLDn/YS01oICIeRB3zzUG054xiFYMy06XDc/v9T/Nq5JaTJICVVu9mXYJ6J3m0 syUkst4MZciLlo1U8HGdW224HVf+gclhD+e8Q+A7nK8pFagKTZBC+oi2PfFcKszD 5kVSQjl76/SdQ/JuGsRtOaRA3UA9s5DX/IQIfnTfIKxQ9t/atuquyE2S2NgzAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUiMmpYxUL+wde/nv7U3JF7S7fKngwHwYDVR0j BBgwFoAUZ5ZtNO+/TLz7AM+cIEU5v+CiUxYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3Nzg1OTA3NC8wLzY3OTY2RDM0RUZCRjRDQkNGQjAwQ0Y5QzIwNDUz OUJGRTBBMjUzMTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjc5NjZEMzRFRkJGNENCQ0ZCMDBDRjlDMjA0NTM5QkZFMEEyNTMxNi5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1Nzc4NTkwNzQvMC82Nzk2NkQzNEVGQkY0 Q0JDRkIwMENGOUMyMDQ1MzlCRkUwQTI1MzE2Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHyDL19VltbYC fzRE7EepiV6DjaIRFWKtxbBXvB5nMl5OmdyFjxs+OFputbnGSB6Jb2LBdXkHFEnT UTPnDeeB8nIuOAbCTNMstpWHRiLps+VZ8gZj56Bbbw4md3AQIpGNjtzruVfyhoto QRBdckkeBEQvMQxZT8AfoahAOyoq667IqXK8GxYWl53w/q9xqPw8gVbZnmCmV0N8 kFhmVXpwLX8AgqoNFIK5T7eumSM27drMFlTJJRZkThnka3fMjrpXq4j4D4BCGgpN ulUno8jve/qf9Mx7p90W6YcdlRrY5bkpCT50up57/R6Dr01YkW7B4Rm+s4uYh/ZR wVeyC213Ig== -----END CERTIFICATE-----Generated at Sun Jan 25 09:41:14 2026 by rpki-client