This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1646/FhnJhngKE_OA_kXtwo70yEKISEM.mft File: FhnJhngKE_OA_kXtwo70yEKISEM.mft (raw, json) Hash identifier: PdjY9d8hyIoFRoj7oMNn+mPJlUI9EAo42Sbo3aqj0b4= Subject key identifier: B3:19:AB:CA:A3:55:1D:39:A1:CD:FD:6E:AB:82:73:CD:E8:A7:33:3C Authority key identifier: 16:19:C9:86:78:0A:13:F3:80:FE:45:ED:C2:8E:F4:C8:42:88:48:43 Certificate issuer: /CN=1619C986780A13F380FE45EDC28EF4C842884843 Certificate serial: A8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/FhnJhngKE_OA_kXtwo70yEKISEM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1646/FhnJhngKE_OA_kXtwo70yEKISEM.mft Manifest number: A4 Signing time: Sun 25 Jan 2026 12:00:16 +0000 Manifest this update: Sun 25 Jan 2026 12:00:16 +0000 Manifest next update: Sun 25 Jan 2026 18:00:16 +0000 Files and hashes: 1: FhnJhngKE_OA_kXtwo70yEKISEM.crl (hash: qB1h9kpVw+9wqrhtPRuEHnPl3XAiQVvAIMLkAkDfChk=) 2: vp3WK312KKzUmfyyrQFqNFOctyQ.roa (hash: CnKv1LTj28zoW/vIVStQxZSumUrKc2KiZivBLF2cZTQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1646/FhnJhngKE_OA_kXtwo70yEKISEM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1646/FhnJhngKE_OA_kXtwo70yEKISEM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/FhnJhngKE_OA_kXtwo70yEKISEM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 18:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1619C986780A13F380FE45EDC28EF4C842884843 Validity Not Before: Jan 25 12:00:16 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=B319ABCAA3551D39A1CDFD6EAB8273CDE8A7333C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c7:14:7d:12:c4:aa:67:10:26:ac:c3:7f:31: 27:e9:cd:ff:6b:22:f5:ad:16:c2:00:26:35:be:ea: a1:59:45:1f:27:2d:13:1f:35:39:ab:90:7e:3b:c6: 69:84:a3:1f:b8:90:86:32:ee:67:37:95:06:00:e7: 45:49:13:23:bf:77:d8:37:7a:30:2c:fe:9b:fe:b3: d6:61:01:4c:2e:47:a6:3b:82:01:de:e8:c1:93:76: 1d:47:ee:aa:c3:95:ee:42:f5:9f:57:64:f5:1a:be: 43:93:c4:f8:ca:6f:25:7d:d0:6f:cf:68:d6:ae:0e: a0:7a:35:64:fe:94:d9:1e:84:50:15:c0:1c:47:cd: 58:aa:29:73:2d:e8:46:43:7b:8b:0c:b1:32:96:38: 27:20:75:fd:a0:7a:5d:50:3f:87:e2:9a:50:92:3f: 9c:85:32:67:b2:ec:d4:37:fa:9c:17:c4:b6:b2:f8: c5:27:fb:24:a4:89:36:dd:f2:8f:bc:3d:a8:ce:cf: 3f:0e:e5:41:91:d0:79:d0:71:b5:de:12:07:57:7a: 59:7b:d7:40:e2:e4:b5:c1:72:41:5a:eb:07:eb:41: 5f:d0:d6:5a:80:2b:6b:ee:ba:9d:8b:d5:3a:c9:af: 4f:ea:d3:f2:64:ba:e7:a5:1f:dc:20:b3:7e:97:57: ed:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:19:AB:CA:A3:55:1D:39:A1:CD:FD:6E:AB:82:73:CD:E8:A7:33:3C X509v3 Authority Key Identifier: keyid:16:19:C9:86:78:0A:13:F3:80:FE:45:ED:C2:8E:F4:C8:42:88:48:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1646/FhnJhngKE_OA_kXtwo70yEKISEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/FhnJhngKE_OA_kXtwo70yEKISEM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1646/FhnJhngKE_OA_kXtwo70yEKISEM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:4a:3b:7b:35:9f:e2:e2:bc:f7:4a:c6:07:b7:64:34:87:dc: 0c:03:13:34:bd:4f:b8:04:37:f2:2b:be:3a:34:34:b3:8e:6f: 69:e4:cd:d5:8c:5b:21:c6:c7:e7:60:cb:ad:7d:4a:c0:66:59: 96:87:a9:79:8f:9c:e5:dd:7e:97:1b:e1:4e:62:e9:b7:3f:a3: 77:c9:31:84:c7:81:a8:65:54:3f:c2:bd:b0:23:e3:23:99:04: 20:c9:ef:e9:0b:4d:3d:19:cf:b0:2d:ce:17:d3:5c:45:3d:6d: 24:f1:09:22:0f:86:df:28:01:9c:09:9d:99:e0:26:54:42:e4: 84:d9:70:40:bc:60:fc:a9:6b:9b:45:55:df:67:b7:11:f1:0f: 2b:3b:72:e8:a8:de:cc:42:b6:9b:47:a8:37:94:d1:62:f8:87: c5:83:4c:9a:9d:ca:89:54:6c:b9:fc:8c:4f:39:99:b0:d5:2b: 35:6a:79:16:38:97:b5:32:2d:6c:da:27:1e:5b:39:23:20:83: 13:11:4d:fc:e6:40:94:32:e8:24:fc:f8:91:89:a8:96:00:ab: 0f:08:b4:76:12:c1:6f:4c:34:a3:62:e3:3c:48:a4:53:00:1b: 25:5b:55:c5:53:ce:3c:2e:03:ae:d5:98:09:50:b2:76:e1:39: e3:dc:8f:5f -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTYx OUM5ODY3ODBBMTNGMzgwRkU0NUVEQzI4RUY0Qzg0Mjg4NDg0MzAeFw0yNjAxMjUx MjAwMTZaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEIzMTlBQkNBQTM1NTFE MzlBMUNERkQ2RUFCODI3M0NERThBNzMzM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAxxR9EsSqZxAmrMN/MSfpzf9rIvWtFsIAJjW+6qFZRR8nLRMf NTmrkH47xmmEox+4kIYy7mc3lQYA50VJEyO/d9g3ejAs/pv+s9ZhAUwuR6Y7ggHe 6MGTdh1H7qrDle5C9Z9XZPUavkOTxPjKbyV90G/PaNauDqB6NWT+lNkehFAVwBxH zViqKXMt6EZDe4sMsTKWOCcgdf2gel1QP4fimlCSP5yFMmey7NQ3+pwXxLay+MUn +ySkiTbd8o+8PajOzz8O5UGR0HnQcbXeEgdXell710Di5LXBckFa6wfrQV/Q1lqA K2vuup2L1TrJr0/q0/JkuuelH9wgs36XV+2ZAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUsxmryqNVHTmhzf1uq4JzzeinMzwwHwYDVR0jBBgwFoAUFhnJhngKE/OA/kXt wo70yEKISEMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY0 Ni9GaG5KaG5nS0VfT0Ffa1h0d283MHlFS0lTRU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0ZobkpobmdLRV9PQV9rWHR3bzcweUVLSVNFTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NDYvRmhuSmhuZ0tFX09B X2tYdHdvNzB5RUtJU0VNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIVKO3s1n+LivPdKxge3ZDSH3AwDEzS9T7gEN/Irvjo0NLOOb2nkzdWMWyHG x+dgy619SsBmWZaHqXmPnOXdfpcb4U5i6bc/o3fJMYTHgahlVD/CvbAj4yOZBCDJ 7+kLTT0Zz7AtzhfTXEU9bSTxCSIPht8oAZwJnZngJlRC5ITZcEC8YPypa5tFVd9n txHxDys7cuio3sxCtptHqDeU0WL4h8WDTJqdyolUbLn8jE85mbDVKzVqeRY4l7Uy LWzaJx5bOSMggxMRTfzmQJQy6CT8+JGJqJYAqw8ItHYSwW9MNKNi4zxIpFMAGyVb VcVTzjwuA67VmAlQsnbhOePcj18= -----END CERTIFICATE-----Generated at Sun Jan 25 16:35:51 2026 by rpki-client