This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft File: A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft (raw, json) Hash identifier: rBns5p/vPA2dTPXrMFIi52WzPNu2llLQx9aboqPN+x8= Subject key identifier: 0A:AA:84:61:D5:0B:D0:DA:7C:FB:AD:A1:C5:5B:EF:ED:6D:C0:2F:1F Authority key identifier: A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 Certificate issuer: /CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Certificate serial: 2000FA9723D352309C4F5FD16565BB7815A05A06 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft Manifest number: 09 Signing time: Sun 25 Jan 2026 09:21:02 +0000 Manifest this update: Sun 25 Jan 2026 09:16:02 +0000 Manifest next update: Mon 26 Jan 2026 10:09:02 +0000 Files and hashes: 1: 34372e3131332e302e302f31362d3234203d3e203337393633.roa (hash: Sc9B64EYbOlhHpRQn2hDIXOE8wTsYGOAnrQ1OGOsB2U=) 2: 34372e3131322e302e302f31362d3234203d3e203337393633.roa (hash: 9TzYa3+Sl+tIX8tXSaj70/Us2wMIqXbVo3JClonsi1M=) 3: 34372e3131322e302e302f31352d3135203d3e203337393633.roa (hash: oc0h7t2xyM1D/ueNRTcOjQuhsadrMwiGPusBtoLIrSY=) 4: A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl (hash: WRMew76sW1CdBkalpduMb99K2sMjeo9Uu1ske2WBKP8=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 09:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:00:fa:97:23:d3:52:30:9c:4f:5f:d1:65:65:bb:78:15:a0:5a:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Validity Not Before: Jan 25 09:16:02 2026 GMT Not After : Jan 26 10:09:02 2026 GMT Subject: CN=0AAA8461D50BD0DA7CFBADA1C55BEFED6DC02F1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d3:5c:cb:c7:ad:15:d7:8f:ba:f5:82:7c:63: ba:0e:5c:22:48:2e:eb:94:ad:eb:80:d6:90:14:c2: ff:a0:a1:f2:b3:45:53:f2:0e:d0:e8:ca:ca:e2:af: 83:03:ad:2c:3a:79:cc:66:a7:8d:89:17:d1:f7:42: fc:bb:18:fd:60:ca:b3:1b:5e:95:c1:b9:96:ab:a2: 1a:fe:25:70:65:e6:95:2e:3c:fc:74:39:94:fa:0a: 31:c0:76:55:d6:92:ff:d6:7f:c1:8b:b0:69:19:43: 44:9a:45:6c:df:33:65:67:32:62:d3:e3:16:b4:02: 31:17:42:0e:ad:68:5e:70:b4:0a:62:cc:b3:73:b9: de:f2:6b:ed:74:20:da:67:bd:65:ba:0f:3a:4a:9b: b6:64:89:9b:09:f8:a0:d0:fe:09:cf:c1:fb:60:46: b3:97:37:9f:7e:f6:ca:a3:37:6c:24:1d:3c:07:ea: c9:b9:89:44:2e:fb:1e:54:26:be:9f:e0:f4:12:a0: 45:c6:e6:66:70:8b:5d:22:21:e1:ce:11:8f:a6:65: 73:1c:5d:82:e3:60:93:3a:e5:4f:43:49:21:68:2a: 59:d1:63:ba:ee:8b:55:bb:06:35:d1:97:a2:c2:97: f9:81:e8:50:94:f4:b9:39:d8:5c:96:a7:88:c4:8b: c5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AA:84:61:D5:0B:D0:DA:7C:FB:AD:A1:C5:5B:EF:ED:6D:C0:2F:1F X509v3 Authority Key Identifier: keyid:A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:2a:a9:33:4d:94:30:36:09:17:bd:44:46:26:3c:28:d5:1f: 85:a8:bf:10:6e:a2:81:44:3f:53:2a:4a:0f:de:77:f8:2c:ae: 5e:8f:0d:04:31:d6:bb:41:e9:cd:29:17:77:da:d3:60:39:18: c9:81:a4:4a:1f:87:25:32:2c:76:9e:9c:d4:20:12:55:fb:8d: 0d:d6:36:7f:ef:d5:ac:98:50:4f:27:b3:78:92:53:5f:66:ce: 4e:33:06:2d:6c:7d:67:0d:33:c5:38:b6:6c:1b:c5:c4:61:e8: 08:b3:19:b9:1a:fd:fd:f1:72:e3:95:7c:a7:11:db:bc:bc:df: f2:c8:31:3a:d1:aa:2f:33:c4:db:e5:9d:d7:b3:dd:52:f7:09: 21:e4:7e:54:bc:70:39:ba:7c:48:38:52:69:65:ba:81:ad:86: 84:d1:c7:f3:33:ef:dd:9a:88:ab:87:e8:66:2a:02:22:94:02: 6c:7f:41:2a:30:44:9a:41:da:00:e6:19:74:ff:f1:19:15:77: 92:29:dd:15:f4:9c:31:0f:35:f9:21:f5:fd:e0:eb:35:4a:69: 4e:4b:b8:ad:aa:82:4c:d3:31:25:ee:af:90:71:ed:3f:c7:83: 5d:22:01:20:97:9e:21:fe:88:65:9d:05:aa:e1:98:d7:f9:16: 8e:11:5a:8c -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUIAD6lyPTUjCcT1/RZWW7eBWgWgYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkx MkRGRDIyOTAeFw0yNjAxMjUwOTE2MDJaFw0yNjAxMjYxMDA5MDJaMDMxMTAvBgNV BAMTKDBBQUE4NDYxRDUwQkQwREE3Q0ZCQURBMUM1NUJFRkVENkRDMDJGMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA01zLx60V14+69YJ8Y7oOXCJI LuuUreuA1pAUwv+gofKzRVPyDtDoysrir4MDrSw6ecxmp42JF9H3Qvy7GP1gyrMb XpXBuZarohr+JXBl5pUuPPx0OZT6CjHAdlXWkv/Wf8GLsGkZQ0SaRWzfM2VnMmLT 4xa0AjEXQg6taF5wtApizLNzud7ya+10INpnvWW6DzpKm7ZkiZsJ+KDQ/gnPwftg RrOXN59+9sqjN2wkHTwH6sm5iUQu+x5UJr6f4PQSoEXG5mZwi10iIeHOEY+mZXMc XYLjYJM65U9DSSFoKlnRY7rui1W7BjXRl6LCl/mB6FCU9Lk52FyWp4jEi8UlAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUCqqEYdUL0Np8+62hxVvv7W3ALx8wHwYDVR0j BBgwFoAUpbKxTZdRO2wMgrHlQHA+uRLf0ikwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8xL0E1QjJCMTREOTc1MTNCNkMwQzgyQjFFNTQwNzAz RUI5MTJERkQyMjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkxMkRGRDIyOS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU4ODc2NDQwOTA2MzAxNDUvMS9BNUIyQjE0RDk3NTEz QjZDMEM4MkIxRTU0MDcwM0VCOTEyREZEMjI5Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0CqpM02UMDYJ F71ERiY8KNUfhai/EG6igUQ/UypKD953+CyuXo8NBDHWu0HpzSkXd9rTYDkYyYGk Sh+HJTIsdp6c1CASVfuNDdY2f+/VrJhQTyezeJJTX2bOTjMGLWx9Zw0zxTi2bBvF xGHoCLMZuRr9/fFy45V8pxHbvLzf8sgxOtGqLzPE2+Wd17PdUvcJIeR+VLxwObp8 SDhSaWW6ga2GhNHH8zPv3ZqIq4foZioCIpQCbH9BKjBEmkHaAOYZdP/xGRV3kind FfScMQ81+SH1/eDrNUppTku4raqCTNMxJe6vkHHtP8eDXSIBIJeeIf6IZZ0FquGY 1/kWjhFajA== -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:00 2026 by rpki-client