This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft File: 528FB7389148F9961BE07564A1BCC28DE1440954.mft (raw, json) Hash identifier: C2w9c6gVT9iMkcnWX/mUW6GGS36WGyJEvmewvKLrJUU= Subject key identifier: 47:B8:F0:75:3C:A9:81:F7:51:8B:A6:4D:48:DE:0A:5E:84:40:2D:01 Authority key identifier: 52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 Certificate issuer: /CN=528FB7389148F9961BE07564A1BCC28DE1440954 Certificate serial: 37729448A1726C08FF398450DB7D67404FEEBB54 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft Manifest number: 09 Signing time: Sun 25 Jan 2026 07:30:57 +0000 Manifest this update: Sun 25 Jan 2026 07:25:57 +0000 Manifest next update: Mon 26 Jan 2026 08:15:57 +0000 Files and hashes: 1: 3130332e3135322e3234372e302f32342d3234203d3e20313335333931.roa (hash: EcqA+WlWeIsBbUwVfChqaarTFSzboqSnaqEftxipkFg=) 2: 3130332e3135322e3234372e302f32342d3234203d3e20313532343735.roa (hash: phf4Dfqb5M3Ykxs2j+sNy+Y1lZxL1CrzZ7fuUfc1kQM=) 3: 528FB7389148F9961BE07564A1BCC28DE1440954.crl (hash: GBVFg4skE25YuupGyz41CQy2H5p2CuAtCAZUr9lXFIw=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 08:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:72:94:48:a1:72:6c:08:ff:39:84:50:db:7d:67:40:4f:ee:bb:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528FB7389148F9961BE07564A1BCC28DE1440954 Validity Not Before: Jan 25 07:25:57 2026 GMT Not After : Jan 26 08:15:57 2026 GMT Subject: CN=47B8F0753CA981F7518BA64D48DE0A5E84402D01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:40:a2:4a:62:e0:3b:dc:ee:87:dd:12:66: f4:b2:7f:ee:6c:21:44:35:86:12:b5:7e:95:17:5d: f9:d6:92:72:d4:a0:63:60:69:a5:e6:3c:40:e1:01: c3:b7:f1:58:0e:9f:48:64:e0:b8:85:bb:db:7d:e2: 35:e8:25:e3:a7:db:b9:d1:63:1d:5c:33:26:a9:1a: fe:de:e9:19:7b:27:0f:f0:19:ca:04:76:29:46:67: 15:7b:5e:fc:e7:f5:87:47:8c:04:f8:e3:68:1c:56: fe:56:29:9a:1a:dc:66:9d:e2:28:f8:b2:01:a5:6b: c9:37:6e:d2:3b:54:42:1b:96:d8:4d:3f:47:f8:38: 8d:4b:00:4c:00:9d:33:f9:7c:7f:4e:06:7e:87:5b: 5a:b4:8b:e2:75:27:08:5b:73:78:5f:d5:fc:b5:43: 39:b5:e1:c3:66:58:51:6c:a7:35:db:c3:3a:e9:62: 1a:d1:a6:d4:1e:fb:4a:62:14:7a:30:70:a0:ad:df: be:ce:7c:fe:ab:f1:96:f2:e5:fe:03:ae:f7:2b:d1: 04:b6:04:d8:58:74:0b:77:fb:2b:ff:46:4c:c1:e2: e3:47:71:5e:97:67:1b:90:3a:64:b7:b4:19:d3:46: 85:ac:97:2e:fa:ee:e8:00:ed:1a:dc:31:3c:5a:dd: 60:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B8:F0:75:3C:A9:81:F7:51:8B:A6:4D:48:DE:0A:5E:84:40:2D:01 X509v3 Authority Key Identifier: keyid:52:8F:B7:38:91:48:F9:96:1B:E0:75:64:A1:BC:C2:8D:E1:44:09:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/528FB7389148F9961BE07564A1BCC28DE1440954.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721531393/0/528FB7389148F9961BE07564A1BCC28DE1440954.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e6:07:3e:15:5e:38:68:aa:a0:57:f6:28:86:ec:49:cc:ab:23: 2d:82:4c:e5:42:e2:93:17:70:75:c3:fd:08:bc:2a:b3:56:86: 3e:56:22:6b:49:08:38:c4:47:26:e7:c8:5e:81:6a:37:13:cc: 59:94:1d:67:0d:84:10:91:30:92:3c:a4:b5:73:a7:7d:78:70: d0:39:60:9a:4d:88:94:de:44:56:fd:60:01:f7:7a:3a:99:73: 9e:f6:c6:6e:29:bf:a6:0f:9c:f4:f4:16:bc:68:25:3d:aa:fa: d6:a6:9a:df:34:06:42:b8:8c:7b:76:08:20:c6:6b:5e:dc:81: 83:09:24:65:a5:ee:db:85:b1:0f:70:78:cf:08:80:dc:81:e3: 1b:c8:00:73:a5:7d:d0:ff:eb:70:50:da:83:96:77:93:19:b3: 5c:e0:17:9b:ab:59:99:4f:75:f0:20:fd:c7:1d:1d:49:24:95: 87:f2:c0:aa:95:38:a5:ea:6e:5d:a8:6e:d7:1b:e4:b0:1b:5d: 32:bb:fd:7a:3f:49:6a:44:67:c3:5e:75:7f:a4:f7:ba:9f:49: e8:6b:ce:81:b6:85:71:2a:17:c8:3c:0b:36:5d:60:94:64:5f: 4a:0c:a6:79:37:4f:86:4e:52:ba:c1:be:22:67:97:a2:dd:0f: 06:09:b4:d8 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUN3KUSKFybAj/OYRQ231nQE/uu1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERF MTQ0MDk1NDAeFw0yNjAxMjUwNzI1NTdaFw0yNjAxMjYwODE1NTdaMDMxMTAvBgNV BAMTKDQ3QjhGMDc1M0NBOTgxRjc1MThCQTY0RDQ4REUwQTVFODQ0MDJEMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJPECiSmLgO9zuh90SZvSyf+5s IUQ1hhK1fpUXXfnWknLUoGNgaaXmPEDhAcO38VgOn0hk4LiFu9t94jXoJeOn27nR Yx1cMyapGv7e6Rl7Jw/wGcoEdilGZxV7Xvzn9YdHjAT442gcVv5WKZoa3Gad4ij4 sgGla8k3btI7VEIblthNP0f4OI1LAEwAnTP5fH9OBn6HW1q0i+J1Jwhbc3hf1fy1 Qzm14cNmWFFspzXbwzrpYhrRptQe+0piFHowcKCt377OfP6r8Zby5f4Drvcr0QS2 BNhYdAt3+yv/RkzB4uNHcV6XZxuQOmS3tBnTRoWsly767ugA7RrcMTxa3WDxAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUR7jwdTypgfdRi6ZNSN4KXoRALQEwHwYDVR0j BBgwFoAUUo+3OJFI+ZYb4HVkobzCjeFECVQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTUzMTM5My8wLzUyOEZCNzM4OTE0OEY5OTYxQkUwNzU2NEExQkND MjhERTE0NDA5NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI4RkI3Mzg5MTQ4Rjk5NjFCRTA3NTY0QTFCQ0MyOERFMTQ0MDk1NC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1OTExOTU3MjE1MzEzOTMvMC81MjhGQjczODkxNDhG OTk2MUJFMDc1NjRBMUJDQzI4REUxNDQwOTU0Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA5gc+FV44aKqg V/YohuxJzKsjLYJM5ULikxdwdcP9CLwqs1aGPlYia0kIOMRHJufIXoFqNxPMWZQd Zw2EEJEwkjyktXOnfXhw0Dlgmk2IlN5EVv1gAfd6OplznvbGbim/pg+c9PQWvGgl Par61qaa3zQGQriMe3YIIMZrXtyBgwkkZaXu24WxD3B4zwiA3IHjG8gAc6V90P/r cFDag5Z3kxmzXOAXm6tZmU918CD9xx0dSSSVh/LAqpU4pepuXahu1xvksBtdMrv9 ej9JakRnw151f6T3up9J6GvOgbaFcSoXyDwLNl1glGRfSgymeTdPhk5SusG+ImeX ot0PBgm02A== -----END CERTIFICATE-----Generated at Sun Jan 25 17:15:33 2026 by rpki-client