This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft File: CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft (raw, json) Hash identifier: mKZV42+9z2KwFgJPlcP2hXP6J9J4ZnxS0vMT0CU+aDc= Subject key identifier: A0:CC:D8:1B:44:44:E5:6E:B6:ED:87:59:76:CB:3D:0C:77:94:09:CC Authority key identifier: CE:20:AD:60:B5:FF:20:6D:53:40:92:36:A1:1F:47:FD:4F:31:AC:E7 Certificate issuer: /CN=CE20AD60B5FF206D53409236A11F47FD4F31ACE7 Certificate serial: 1BD8B239F9E650BF7AED52F196EC3CA99F082BAC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft Manifest number: 09 Signing time: Sun 25 Jan 2026 04:10:57 +0000 Manifest this update: Sun 25 Jan 2026 04:05:57 +0000 Manifest next update: Mon 26 Jan 2026 07:18:57 +0000 Files and hashes: 1: 3130332e322e3136342e302f32322d3234203d3e203337393638.roa (hash: i9AMULZIaXWZ++7WSVdr7F6StnWG0S7RqV3FJqfppGQ=) 2: 3230322e34362e3232342e302f32302d3234203d3e2034313334.roa (hash: RAvA3o2t61W8acXnwo8+PDMa0aTuyb7vHr0QuWLv5ks=) 3: 323430373a386634303a323a3a2f34382d3634203d3e203337393638.roa (hash: LDNK9PweFjK1wKyDe573Xy72qh4NYoOlHHEQeHBvEAY=) 4: 3230322e34362e3232342e302f32302d3234203d3e2034383136.roa (hash: AP3LEhr9NJskIRyHLt3gZgOoccAkuzlPpcd0mfSxGok=) 5: 323430373a386634303a323a3a2f34382d3634203d3e2039383038.roa (hash: TR06nDz1gTNdLIM8dcIeX2BYLDVoZsmF+tqoM6cwPDs=) 6: CE20AD60B5FF206D53409236A11F47FD4F31ACE7.crl (hash: 3htQx8JYTLM2oAdQRZHfz29+NXP9K2rlpcfupehkCjw=) 7: 3230322e34362e3232342e302f32302d3234203d3e20313335303631.roa (hash: SbsA4PTcJ3wiRQHn6khyisvG8rEWD+Byylxc8KTQeAE=) 8: 3230322e34362e3232342e302f32302d3234203d3e203337393638.roa (hash: gD6s0WeuhRIf02DzPtxzwxRWJZcIvRWmlQJwip4leBc=) 9: 3230322e34362e3232342e302f32302d3234203d3e2039383038.roa (hash: iyoDlHY31/A4gM9wUfi+CACam/Ogoja7GPLP33uj3yk=) 10: 3230322e34362e3232342e302f32302d3234203d3e203536303430.roa (hash: Z2a1B5gCNns+2BmhvjTcFOulUeYUIxpwK5Cp54mMFuc=) 11: 323430373a386634303a323a3a2f34382d3634203d3e2034383136.roa (hash: ytZdKkF45ks8sSi6yaCVxbx3H04n3ys0csOJRdnnNXk=) 12: 323430373a386634303a323a3a2f34382d3634203d3e20313335303631.roa (hash: TV5l/9iH0hJhAxcbYqBzwx9+XPgyfR2/A5t7iLIIav8=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d8:b2:39:f9:e6:50:bf:7a:ed:52:f1:96:ec:3c:a9:9f:08:2b:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE20AD60B5FF206D53409236A11F47FD4F31ACE7 Validity Not Before: Jan 25 04:05:57 2026 GMT Not After : Jan 26 07:18:57 2026 GMT Subject: CN=A0CCD81B4444E56EB6ED875976CB3D0C779409CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7a:f0:ac:21:bb:20:89:ec:98:cf:a1:8e:2f: 61:75:7b:d6:1a:86:60:dd:bd:7c:52:e9:e3:56:5d: d0:ec:e1:4c:ba:89:bb:fa:60:76:85:e3:0e:cc:fc: 8f:58:4e:e1:f3:8a:15:6a:f1:82:bb:f4:99:09:43: 76:1c:18:ea:2b:a6:bf:ca:cf:58:8f:98:ba:7f:6a: ec:f3:f0:cd:a1:58:46:f5:59:6e:47:86:e0:c0:6a: 77:ba:81:59:f6:8b:a0:77:3d:49:cb:91:5c:ea:35: d8:d8:af:37:f7:71:8a:36:9e:70:66:fe:7d:71:1a: 73:57:04:82:16:7d:32:13:78:55:1f:8c:46:0e:6d: 75:d3:db:79:54:75:12:73:9b:74:8f:7f:33:54:6a: f7:bf:16:26:21:30:00:8b:f0:00:a7:c7:6e:36:2b: e5:ef:01:a0:2c:0f:77:47:50:9f:61:a7:ac:8c:92: 9f:e7:a8:85:b1:e1:45:25:58:d6:f6:8f:3e:1d:80: 82:65:66:e3:ca:b9:8d:19:2f:7c:8e:0d:76:ba:61: 04:ca:99:d1:7d:4a:9b:cb:34:3e:57:b6:05:c2:1d: e3:c6:40:a0:5e:21:47:ac:3d:0c:70:bc:a8:11:2c: 27:35:fe:f4:cd:3a:7d:6d:d9:21:ab:93:50:72:de: 61:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:CC:D8:1B:44:44:E5:6E:B6:ED:87:59:76:CB:3D:0C:77:94:09:CC X509v3 Authority Key Identifier: keyid:CE:20:AD:60:B5:FF:20:6D:53:40:92:36:A1:1F:47:FD:4F:31:AC:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217192963/0/CE20AD60B5FF206D53409236A11F47FD4F31ACE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:89:29:03:50:4a:bc:59:0c:ec:e0:a0:e8:03:9e:da:db:9d: 98:a7:a1:32:ab:23:52:fb:db:75:e5:a8:25:9f:a4:5e:b6:61: 74:a8:1c:aa:fa:94:36:06:c8:94:e9:4e:04:04:af:ac:e6:be: 17:30:26:6f:ab:d4:f1:78:36:74:21:a4:65:ff:d3:7c:87:15: 70:6b:c5:5e:0e:6a:65:45:ff:c0:a0:2c:d8:bb:fb:64:e7:0c: 87:00:2f:58:52:7d:80:90:5f:07:29:a2:2d:83:97:da:7e:e2: b4:0d:9b:6e:f9:d7:0a:76:1c:4b:17:b7:0c:ee:33:b3:30:a4: 73:3b:4f:a6:e1:99:c2:12:94:28:e6:06:a2:36:c9:e9:6f:cd: 8c:21:ea:d4:e0:0d:c4:66:5d:77:a5:36:9f:63:24:2c:ba:03: 4c:9a:aa:d9:3c:d0:80:07:ad:40:9e:d2:15:51:ea:b5:0e:bd: 1b:61:9b:81:da:70:a6:36:94:6e:5f:61:e7:09:37:b5:09:f0: fd:03:a1:90:b7:04:14:89:24:51:50:68:18:a9:51:be:2e:5c: 6b:5f:e9:a5:5f:a2:01:6b:76:8a:e5:1b:74:f6:09:b1:43:76: 97:ba:0c:e9:60:7f:fa:1b:e3:7b:c8:34:45:86:18:3b:d9:38: dc:27:56:8a -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUG9iyOfnmUL967VLxluw8qZ8IK6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UyMEFENjBCNUZGMjA2RDUzNDA5MjM2QTExRjQ3RkQ0 RjMxQUNFNzAeFw0yNjAxMjUwNDA1NTdaFw0yNjAxMjYwNzE4NTdaMDMxMTAvBgNV BAMTKEEwQ0NEODFCNDQ0NEU1NkVCNkVEODc1OTc2Q0IzRDBDNzc5NDA5Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1evCsIbsgieyYz6GOL2F1e9Ya hmDdvXxS6eNWXdDs4Uy6ibv6YHaF4w7M/I9YTuHzihVq8YK79JkJQ3YcGOorpr/K z1iPmLp/auzz8M2hWEb1WW5HhuDAane6gVn2i6B3PUnLkVzqNdjYrzf3cYo2nnBm /n1xGnNXBIIWfTITeFUfjEYObXXT23lUdRJzm3SPfzNUave/FiYhMACL8ACnx242 K+XvAaAsD3dHUJ9hp6yMkp/nqIWx4UUlWNb2jz4dgIJlZuPKuY0ZL3yODXa6YQTK mdF9SpvLND5XtgXCHePGQKBeIUesPQxwvKgRLCc1/vTNOn1t2SGrk1By3mGpAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUoMzYG0RE5W627YdZdss9DHeUCcwwHwYDVR0j BBgwFoAUziCtYLX/IG1TQJI2oR9H/U8xrOcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzE5Mjk2My8wL0NFMjBBRDYwQjVGRjIwNkQ1MzQwOTIzNkExMUY0 N0ZENEYzMUFDRTcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0UyMEFENjBCNUZGMjA2RDUzNDA5MjM2QTExRjQ3RkQ0RjMxQUNFNy5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTcxOTI5NjMvMC9DRTIwQUQ2MEI1RkYy MDZENTM0MDkyMzZBMTFGNDdGRDRGMzFBQ0U3Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIYkpA1BKvFkM 7OCg6AOe2tudmKehMqsjUvvbdeWoJZ+kXrZhdKgcqvqUNgbIlOlOBASvrOa+FzAm b6vU8Xg2dCGkZf/TfIcVcGvFXg5qZUX/wKAs2Lv7ZOcMhwAvWFJ9gJBfBymiLYOX 2n7itA2bbvnXCnYcSxe3DO4zszCkcztPpuGZwhKUKOYGojbJ6W/NjCHq1OANxGZd d6U2n2MkLLoDTJqq2TzQgAetQJ7SFVHqtQ69G2GbgdpwpjaUbl9h5wk3tQnw/QOh kLcEFIkkUVBoGKlRvi5ca1/ppV+iAWt2iuUbdPYJsUN2l7oM6WB/+hvje8g0RYYY O9k43CdWig== -----END CERTIFICATE-----Generated at Sun Jan 25 07:37:53 2026 by rpki-client