This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft File: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft (raw, json) Hash identifier: JkHKsNWW6opCMDpBGo1/dWz/wj+ZIPu9T2xXmNefa+k= Subject key identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: F403 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft Manifest number: 4E28 Signing time: Sun 25 Jan 2026 07:28:14 +0000 Manifest this update: Sun 25 Jan 2026 07:28:13 +0000 Manifest next update: Sun 25 Jan 2026 13:28:13 +0000 Files and hashes: 1: -dEnkD6YmoCKBF_dg5qJ6WwJNi4.roa (hash: gqqOhP/U/jd1+GXh4W6HhG5wWKfeGGyiVkrEcZoftAk=) 2: 1pGP6piO9t8jbUERzDx-O4nhtLM.roa (hash: LgsHYyRchdYhJU6IjYfSwzPXfyeBNXFC/3oEFZaxr5E=) 3: 4wXgRujYTKfihSIvwuLg9rUOP1c.roa (hash: LPoTrqNW+wAwUy8l+OsMAuRG7zGEUq/hKav9nV2a/XY=) 4: 6wu7C6LJRgzw0YqBCypPrWvyqtk.roa (hash: Cj+QZPNg8QQ9fmyZfIpGADWCHBPEkN4OpbVPkdHjLNc=) 5: 9LZMbOJGzIWrwZIphlUZtLKBd_c.roa (hash: 2ZF77k5Fogyt6qSiuDajPcYoPcUD48QmqAkwhivvEH4=) 6: AvIoBSrNnMcpnZyXaLY_B_COOqM.roa (hash: tfuTWBj8mqfIFWkntrseawjOrEIi0ukcaV24gqQhJUE=) 7: INDPMj98VvVLZgMmAjnvdTy9blY.roa (hash: rilixzKkKYicQe3mulRvgLOY95wYeaVqebLcQYdlsl4=) 8: Lzd2UazZEZK4D-Vi_LM5PwLTTJw.roa (hash: RYhKyfjdDrdFS+vtO7CbGxUt9WkZpShCr4z/pVEDnNo=) 9: No7gvAe0HiqMlWPX1eORii_qHNg.roa (hash: fsHInzrmBhxkqHfoeln8hYzxASuDDoDSJJ6xYdeYcAY=) 10: OfvtK6UGD_bVKz8pj9fgFWb6zgM.roa (hash: 40esanXG/apJXlFMV+hzoWKw+5KjI8h/fUEMtsSTOfI=) 11: PZulO6TyppqWWuGzO34PYYz5Uo0.roa (hash: yxbl0kEI9vox9RiEQxUPGxMV7cLiY2SO7AtRn6kT6eA=) 12: QD7THVmiGOcCiQQPVumiDRR-d7I.roa (hash: BeWz4UxSBqt/CJdq0rqcX/Y2LZaQqSYTg9P3zaCSJy8=) 13: TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa (hash: BweYJDm2QhqDgPj1ChzAIBwgj2kCBYjRI7BD0uiJCsI=) 14: XsbnPodlNkVFgCzTwYVVRKP-GEQ.roa (hash: yacvbm4gKGYgc5wCZtcaOFLtzo1EC6TxZpfMKP9mzO4=) 15: Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa (hash: C1aXVx3626w3lC0qVGmhnn9Jj9Gy3ZQ5/AtReox93tU=) 16: efplNrbyxmF0lq82VbwGP0D6LK0.roa (hash: Pf2espGPICu6M6YrMRJZT/d6D3ptEEuGCF8kMNpxX+M=) 17: evHFKal_BLbftwTo5irhQaueD2U.roa (hash: 4JP/QyQZbAYdHqHseXBGNqOkAZdAPfM1lQ9PPjQdoAg=) 18: ffnzNkkLF4B5sEmRbbt-73LygMI.roa (hash: lfR0YWmJicUAI3V8hDlF+PVwpQclCZqiT/dKFEJOFIA=) 19: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl (hash: cht92FQzE3ZEY95mph8vJj8fSj/LUIc94eg0ZrtKAoE=) 20: jgjN0IxKws8jDdNRAOYX1CdHt1k.roa (hash: T74oJ4uT1nguMzcsxBkKWMEPcQYXZBdgwGGLqKFQyh4=) 21: nnLQ_nOb5lY2d-i73NLXwHUxg_g.roa (hash: MjeIUWz9008fGGIetMcvbadhX08KdtyWriH1PEjuhZI=) 22: q5zXrMoMffZwLXVeq6HsixWLmIU.roa (hash: kaHQJjHgBD5QKZ3AV/zXx/ZRGKqzCMEx6Yr4AMs0Kvg=) 23: qe20gAZbuwVu_t2cnfTPZkvTqlA.roa (hash: rEzVYj2gFODsMAGdxG3xTH2suYUBY7xxuVYE2eGkAMI=) 24: vQGMLXKuPigq7LZo-Pr7Y9YiM-c.roa (hash: zTk7jcBriJqG2gtlVugmX1oERrjs/CQDeKUtk6NsPUk=) 25: ywCQM1l3K43_E-WiIpSnSbWqOvE.roa (hash: hgEPrLxxvDkD6XngS/o1Hzja3xdYFuhr99lC4QpzvhQ=) 26: zWbsOJJ1UwVI5pnA1_vMfQ9v7YA.roa (hash: BBz3fH6gauC81KGSU8veCkKr25fDnWrXmEydKqB3KzU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 11:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62467 (0xf403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Jan 25 07:28:13 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=5ACA5AE6103E8498345BCBABD47A443AC093C25A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f0:f9:68:52:99:6a:aa:0f:1d:28:ef:d6:32: 00:4b:4b:5b:e0:b8:b8:b9:11:b3:01:db:61:3e:66: 5e:29:0d:9d:15:62:48:a5:9a:8d:56:e4:ae:2c:e8: d7:c7:ad:fb:37:56:a2:f7:b7:17:64:bc:75:c9:84: df:61:26:6d:a0:94:db:60:2d:da:09:36:45:28:f1: d9:ff:98:4e:b8:6d:f9:7d:32:b4:c8:d5:ca:98:92: 04:70:f3:f0:98:8f:66:02:98:6f:8d:f9:48:98:68: 17:4b:99:d3:16:04:49:11:32:f7:db:5b:8e:bd:6c: 8f:e9:20:b7:11:b0:c5:47:f9:69:82:e9:84:ed:8d: 46:2e:a3:90:74:d5:31:bc:f7:36:b9:26:77:39:bb: 0f:c7:e2:59:11:83:9b:c8:41:1d:4c:cc:1f:5a:13: 99:ba:9a:1b:70:9d:f1:5e:88:99:c5:73:23:eb:c3: 8f:0b:61:f0:8d:d7:54:84:5a:9f:93:5a:c3:22:fa: c0:7a:0c:ee:bb:c9:34:3d:82:18:5f:52:96:8f:e1: e9:1f:4e:be:5b:ad:e5:88:61:79:9c:22:91:1f:64: 62:5b:6f:0e:0b:c8:6a:9d:34:03:13:56:2b:5f:36: b6:75:4f:d2:79:06:ae:67:e0:7f:59:46:9c:66:2e: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:bd:dc:b0:4a:06:cc:10:08:5b:53:42:05:21:ef:97:ad:9d: 3f:7a:de:9d:69:c6:bb:69:47:0b:3d:98:de:4a:e9:c6:aa:f7: 8f:7b:34:ef:15:6b:16:93:02:88:74:8e:4b:bd:fd:2f:02:e5: 1d:b2:4f:b1:3a:21:80:76:c6:ac:17:b9:b1:c2:9c:48:2c:a2: 41:87:a6:7d:ba:0a:1f:8a:a3:df:3b:8c:12:01:22:57:b7:83: 6a:4a:27:d5:33:18:2b:2a:68:fc:84:6d:69:9e:21:a7:99:d4: e0:14:2b:32:f0:d9:2c:41:32:c5:aa:11:42:01:7c:39:68:01: 42:95:04:d5:0b:8a:78:4d:52:46:6c:04:aa:a4:57:88:8e:a0: e5:26:36:13:5e:85:8a:29:90:51:6c:27:d9:be:62:41:69:9f: 20:a4:a0:f0:14:93:86:83:22:a1:e6:e3:78:6a:3b:00:b3:06: 3f:0c:82:5c:b3:0d:11:7e:7d:98:2c:97:21:11:93:4b:60:7a: e1:e2:67:b2:06:88:fb:87:c8:d2:90:02:0b:28:72:8b:b0:af: a9:2c:b4:32:c9:f5:61:35:49:c3:d3:00:22:b8:5f:40:b4:10: df:cf:1a:fd:b3:27:6e:eb:c0:bd:78:af:ee:bd:97:05:7a:19: 47:9e:90:d3 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIDAPQDMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjYwMTI1 MDcyODEzWhcNMjcwMTA5MDgyMzE4WjAzMTEwLwYDVQQDEyg1QUNBNUFFNjEwM0U4 NDk4MzQ1QkNCQUJENDdBNDQzQUMwOTNDMjVBMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA2/D5aFKZaqoPHSjv1jIAS0tb4Li4uRGzAdthPmZeKQ2dFWJI pZqNVuSuLOjXx637N1ai97cXZLx1yYTfYSZtoJTbYC3aCTZFKPHZ/5hOuG35fTK0 yNXKmJIEcPPwmI9mAphvjflImGgXS5nTFgRJETL321uOvWyP6SC3EbDFR/lpgumE 7Y1GLqOQdNUxvPc2uSZ3ObsPx+JZEYObyEEdTMwfWhOZupobcJ3xXoiZxXMj68OP C2HwjddUhFqfk1rDIvrAegzuu8k0PYIYX1KWj+HpH06+W63liGF5nCKRH2RiW28O C8hqnTQDE1YrXza2dU/SeQauZ+B/WUacZi4iuwIDAQABo4ICDDCCAggwHQYDVR0O BBYEFFrKWuYQPoSYNFvLq9R6RDrAk8JaMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL2l1VFBlTFNkOExM QjBwMHk1SXFVT3VUMEdzdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAgvdywSgbMEAhbU0IFIe+XrZ0/et6daca7aUcLPZjeSunGqvePezTvFWsW kwKIdI5Lvf0vAuUdsk+xOiGAdsasF7mxwpxILKJBh6Z9ugofiqPfO4wSASJXt4Nq SifVMxgrKmj8hG1pniGnmdTgFCsy8NksQTLFqhFCAXw5aAFClQTVC4p4TVJGbASq pFeIjqDlJjYTXoWKKZBRbCfZvmJBaZ8gpKDwFJOGgyKh5uN4ajsAswY/DIJcsw0R fn2YLJchEZNLYHrh4meyBoj7h8jSkAILKHKLsK+pLLQyyfVhNUnD0wAiuF9AtBDf zxr9sydu68C9eK/uvZcFehlHnpDT -----END CERTIFICATE-----Generated at Sun Jan 25 10:33:27 2026 by rpki-client