This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json) Hash identifier: toDtvlfmPZR6kXJzTtRuETsuAZ2GAc5xH2Cwtcttko4= Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Certificate serial: 3AC4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft Manifest number: 3AC4 Signing time: Sun 25 Jan 2026 02:30:03 +0000 Manifest this update: Sun 25 Jan 2026 02:30:03 +0000 Manifest next update: Sun 25 Jan 2026 08:30:03 +0000 Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: ST/LlAbXa7P4jW0y22BZ5o2yAJfTZdULpeqvSG3ppyU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 06:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15044 (0x3ac4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Validity Not Before: Jan 25 02:30:03 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93: 5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1: 21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08: 1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89: a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43: fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee: 37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f: 4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd: 50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1: ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09: 26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0: 63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc: e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4: 04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3: 0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc: 31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27: bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08: b1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 X509v3 Authority Key Identifier: keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:2c:7a:66:bf:bb:e9:2a:c9:03:60:c2:1c:27:6d:cd:90:51: aa:4f:be:0e:e5:4d:0c:a0:dd:e9:6e:45:3d:4f:d4:be:01:bf: 0a:98:f3:f1:69:15:4a:de:58:68:71:9c:1d:d5:4a:7d:93:d8: 07:c2:42:21:ce:41:25:ba:75:be:6d:74:c9:a3:f2:04:40:f4: 49:3b:fb:a4:1a:29:14:69:a6:f6:9d:75:02:b0:43:99:a9:44: 7b:ef:36:8e:61:f4:41:2a:5a:09:bc:57:92:f0:30:5e:f2:27: bb:b5:39:4e:5e:3c:47:20:4d:34:d1:1c:d3:7e:05:de:44:91: ba:ac:bf:51:02:95:27:75:a0:cc:ea:5a:0f:64:2a:f2:85:74: a5:bd:96:c4:0c:b1:de:93:22:ff:af:0e:0f:23:63:2b:1e:c4: cc:b9:3a:e1:aa:01:75:7b:3f:87:61:cb:39:ec:c4:cb:f4:e5: 4e:4c:64:33:d6:bd:48:00:0b:b8:3b:f1:16:78:5c:19:87:01: 94:9f:9e:25:8e:72:16:5b:c1:f9:34:5e:84:94:c5:6c:1c:82: bf:da:e6:83:41:1a:29:bd:c9:fa:29:0a:22:16:bc:2c:9b:4f: 06:67:01:87:40:c0:a3:b7:1f:84:bb:dd:33:41:38:8c:76:d4: fe:6d:b0:c1 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICOsQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUw NUEzN0U4OTBBQjVERUZEMzg3NUZDRDAzNTY2QTFDQUFDRTQzMTAeFw0yNjAxMjUw MjMwMDNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEFEOEYyOEZBREM5MDQx QTk0MzU5QkQ5Q0YxQkRCMjkwMjE5Q0VEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsjYgpenQj50xVBG9Dk1/XajMl9FqCVQITpo/Y0SGaRvlPUe7s S91ZO4lkCBvtNgqRqiiou/Bj/G0UiaI5b4vdc7GHHHrDgRHyQ/xMi1vIAkThBFcM bYYe7jeDPETqOcaGW1xeaymFj0xrYH3yfhXLuHKK6USJzVA9ioGMFBPyNPMQ+oHL 8e4ativyIdLmt6dFZ2LpCSbwcxQqhaL3DXkxxMea4GMB62G3nFlhgEMwb1FS3OkR yuC3Qjjp+7ZTeRVR5ARQ8Ra1ytX2gdvUQcEtww/kCF46TJOZ6Eo6s+/fvDHNVtgV zJcctB4tq3DoJ7uMGyH6hVOysMQ+NfcACLGzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUrY8o+tyQQalDWb2c8b2ykCGc7RIwHwYDVR0jBBgwFoAUngWjfokKtd79OHX8 0DVmocqs5DEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjAz OC9uZ1dqZm9rS3RkNzlPSFg4MERWbW9jcXM1REUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL25nV2pmb2tLdGQ3OU9IWDgwRFZtb2NxczVERS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwMzgvbmdXamZva0t0ZDc5 T0hYODBEVm1vY3FzNURFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALssema/u+kqyQNgwhwnbc2QUapPvg7lTQyg3eluRT1P1L4BvwqY8/FpFUre WGhxnB3VSn2T2AfCQiHOQSW6db5tdMmj8gRA9Ek7+6QaKRRppvaddQKwQ5mpRHvv No5h9EEqWgm8V5LwMF7yJ7u1OU5ePEcgTTTRHNN+Bd5Ekbqsv1EClSd1oMzqWg9k KvKFdKW9lsQMsd6TIv+vDg8jYysexMy5OuGqAXV7P4dhyznsxMv05U5MZDPWvUgA C7g78RZ4XBmHAZSfniWOchZbwfk0XoSUxWwcgr/a5oNBGim9yfopCiIWvCybTwZn AYdAwKO3H4S73TNBOIx21P5tsME= -----END CERTIFICATE-----Generated at Sun Jan 25 06:13:42 2026 by rpki-client