This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft File: IGM8jmnuaH1MQSPQwJea0UTlXrc.mft (raw, json) Hash identifier: xtssn92iwQ78by/hWwDAYNUkkNZWdf6HfbssrAWmPN4= Subject key identifier: 8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04 Authority key identifier: 20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7 Certificate issuer: /CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7 Certificate serial: 57A3 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft Manifest number: 57A3 Signing time: Sun 25 Jan 2026 01:56:38 +0000 Manifest this update: Sun 25 Jan 2026 01:56:38 +0000 Manifest next update: Sun 25 Jan 2026 07:56:38 +0000 Files and hashes: 1: IGM8jmnuaH1MQSPQwJea0UTlXrc.crl (hash: Wr+EmC2dmCGLtf3d6phoS+XPIQRPkJXMPZFgAdV9tqE=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 07:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22435 (0x57a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7 Validity Not Before: Jan 25 01:56:38 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=8A7324BA5830A55CDA6EBE7C2F410FBC890A4004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ab:60:9d:02:16:1f:62:3c:eb:5a:2b:b6:b8: f7:29:bc:cd:7e:af:3c:eb:15:1c:b0:23:41:af:c5: a1:d6:bd:a2:51:84:8e:75:24:28:c9:8b:dd:10:55: 35:51:72:b6:86:35:dc:47:8c:55:85:96:be:e2:fd: 92:d3:8f:b8:ed:f7:23:02:ec:f3:6c:d0:12:fa:26: b0:59:a5:a4:43:33:f9:1a:39:42:0b:97:62:9a:27: bf:42:79:32:2e:9e:8c:d8:09:45:03:93:4a:6e:93: 07:69:53:64:bc:61:96:2b:44:51:5b:39:ef:45:97: ec:47:cd:4c:55:99:99:1c:c0:b7:00:9f:0b:a2:80: d7:da:2d:b8:f6:05:6c:ac:40:f9:fb:13:31:27:65: 99:a6:29:19:4e:50:8e:e3:87:01:9e:ea:2f:5f:12: 58:39:0e:95:61:f3:27:52:7a:a6:27:0c:c9:16:46: 53:d9:de:02:b1:93:64:46:17:37:f6:06:10:e0:a7: 94:6a:75:78:62:a3:fa:5b:41:e7:35:8d:53:a9:5b: 14:0f:cc:44:2f:09:4b:fc:2c:ac:c5:77:33:78:10: c3:06:ed:f9:ef:e9:c0:ef:b4:9e:4f:82:f9:66:e4: 2d:37:53:91:e5:d4:0b:2c:14:74:0b:84:15:03:94: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04 X509v3 Authority Key Identifier: keyid:20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:2b:24:e9:ab:a9:59:ca:ee:5a:99:1c:16:b0:c6:22:0f:12: 91:58:65:83:04:a8:ae:6e:19:cd:70:d7:1f:ea:53:0f:3e:be: 04:d1:10:76:cc:5a:62:89:50:c9:59:a1:3f:54:14:14:ce:77: a9:16:9b:a7:2f:75:a0:84:7d:43:b7:a5:cb:f4:98:18:9c:e5: 68:dd:47:4f:47:22:21:b7:98:a8:6c:af:a2:8a:20:b5:41:7f: 97:af:5a:33:2c:e1:49:7d:d5:78:6c:84:48:81:ff:58:c3:fb: 03:dc:ae:ca:57:08:9c:f1:4b:fa:bc:ff:e1:1d:c9:c0:fa:ba: eb:7a:92:0a:2f:03:4b:3b:dd:62:34:ed:3b:10:f8:7e:16:21: 29:ac:3d:dd:13:a2:4b:6f:78:81:5a:49:8f:9d:91:8a:0c:38: fb:11:f1:2f:81:37:1c:7c:8e:3b:6a:1a:d5:6f:cf:7c:9f:02: 2f:b6:35:f2:f6:d5:66:76:2f:15:80:76:fb:ee:fd:ce:e4:14: 8d:ad:4e:95:16:e9:4f:ae:3b:07:c4:2b:91:d4:f9:f1:ce:65: ee:00:8d:e7:d1:9c:41:34:09:1d:6a:d1:2d:14:8f:6e:da:53: 5c:a0:db:75:13:2e:11:a6:cf:83:c8:ef:32:b9:18:d8:40:4d: 4b:30:b9:74 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICV6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjA2 MzNDOEU2OUVFNjg3RDRDNDEyM0QwQzA5NzlBRDE0NEU1NUVCNzAeFw0yNjAxMjUw MTU2MzhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDhBNzMyNEJBNTgzMEE1 NUNEQTZFQkU3QzJGNDEwRkJDODkwQTQwMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPq2CdAhYfYjzrWiu2uPcpvM1+rzzrFRywI0GvxaHWvaJRhI51 JCjJi90QVTVRcraGNdxHjFWFlr7i/ZLTj7jt9yMC7PNs0BL6JrBZpaRDM/kaOUIL l2KaJ79CeTIunozYCUUDk0pukwdpU2S8YZYrRFFbOe9Fl+xHzUxVmZkcwLcAnwui gNfaLbj2BWysQPn7EzEnZZmmKRlOUI7jhwGe6i9fElg5DpVh8ydSeqYnDMkWRlPZ 3gKxk2RGFzf2BhDgp5RqdXhio/pbQec1jVOpWxQPzEQvCUv8LKzFdzN4EMMG7fnv 6cDvtJ5Pgvlm5C03U5Hl1AssFHQLhBUDlNibAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUinMkulgwpVzabr58L0EPvIkKQAQwHwYDVR0jBBgwFoAUIGM8jmnuaH1MQSPQ wJea0UTlXrcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM4 Mi9JR004am1udWFIMU1RU1BRd0plYTBVVGxYcmMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0lHTThqbW51YUgxTVFTUFF3SmVhMFVUbFhyYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzODIvSUdNOGptbnVhSDFN UVNQUXdKZWEwVVRsWHJjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKMrJOmrqVnK7lqZHBawxiIPEpFYZYMEqK5uGc1w1x/qUw8+vgTREHbMWmKJ UMlZoT9UFBTOd6kWm6cvdaCEfUO3pcv0mBic5WjdR09HIiG3mKhsr6KKILVBf5ev WjMs4Ul91XhshEiB/1jD+wPcrspXCJzxS/q8/+EdycD6uut6kgovA0s73WI07TsQ +H4WISmsPd0ToktveIFaSY+dkYoMOPsR8S+BNxx8jjtqGtVvz3yfAi+2NfL21WZ2 LxWAdvvu/c7kFI2tTpUW6U+uOwfEK5HU+fHOZe4AjefRnEE0CR1q0S0Uj27aU1yg 23UTLhGmz4PI7zK5GNhATUswuXQ= -----END CERTIFICATE-----Generated at Sun Jan 25 07:47:19 2026 by rpki-client