This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft File: vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft (raw, json) Hash identifier: YxqQrE17NiMKURZ5AY0ERX88WiZEPDWESTJT6PCekOM= Subject key identifier: 56:CA:4C:99:B6:C7:E8:0B:5F:09:94:1B:6E:F6:A3:5C:59:76:15:A1 Authority key identifier: BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84 Certificate issuer: /CN=BCF4017A6E2915F26147D419E5F7A7D164D04984 Certificate serial: 2303 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft Manifest number: 22FD Signing time: Sun 25 Jan 2026 00:57:03 +0000 Manifest this update: Sun 25 Jan 2026 00:57:03 +0000 Manifest next update: Sun 25 Jan 2026 06:57:03 +0000 Files and hashes: 1: 5O780YytFp2aIZUy2ebH7T6RP3k.roa (hash: dZYfjDP7WydvmeUNL1iHjp+9Hb7wVZPSu7zNq9EkS4c=) 2: vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl (hash: OG/GiDg9RZQEKJk9FlYKOYsrYeAUoKChTaJtPDAG09o=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 06:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8963 (0x2303) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCF4017A6E2915F26147D419E5F7A7D164D04984 Validity Not Before: Jan 25 00:57:03 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=56CA4C99B6C7E80B5F09941B6EF6A35C597615A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:95:98:3c:86:db:0c:4f:fa:c0:9b:3b:6f:00: 11:c2:b7:65:ce:dd:c6:4e:0d:fb:7c:f3:5a:2f:f0: 10:6b:e5:75:0e:99:a2:e9:d3:4c:eb:83:fb:a4:66: 0c:ad:ec:f6:aa:26:ab:30:fc:08:e2:52:64:ec:74: d7:61:93:6e:29:a2:f2:11:6b:42:3c:a3:99:15:72: 97:8c:33:37:9a:43:88:4b:33:b6:d5:96:8d:91:99: f3:92:5f:ae:e4:ea:42:3b:7d:19:fb:b5:f4:42:ea: 80:f4:f9:50:8d:82:d0:69:cd:e3:11:a2:63:16:df: 60:c2:43:45:45:3f:27:11:e4:74:86:09:05:7f:fd: bb:6a:9f:c7:09:67:25:1d:b5:fc:86:51:6a:c8:38: 2d:a3:ed:17:8b:d1:e3:ca:9b:65:c3:4d:15:73:e5: 68:ae:5c:45:d4:8f:33:47:f3:2f:13:99:55:cd:40: ff:0f:b6:3b:91:43:7d:a6:a1:08:2a:e6:66:b9:05: 59:78:d5:a3:47:9e:87:f7:b5:55:5c:2a:5d:2e:5f: 8e:b7:b2:c9:6b:77:ea:73:50:b5:be:56:84:77:09: 23:2c:a4:ce:cd:01:12:32:24:37:97:08:a5:7d:48: 37:77:94:28:35:f7:4d:5f:51:6e:a0:a0:51:45:56: 3e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CA:4C:99:B6:C7:E8:0B:5F:09:94:1B:6E:F6:A3:5C:59:76:15:A1 X509v3 Authority Key Identifier: keyid:BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:32:26:ad:3d:b6:c8:07:4f:b3:9f:7c:db:ff:6b:0a:9e:c5: cf:72:db:8e:ce:d7:0d:f2:16:25:86:ca:b1:8b:68:d0:ef:a3: 99:1b:d0:0c:77:ca:a6:28:69:9e:81:de:2a:cf:b9:b3:16:4f: a4:e4:e1:9a:b4:fc:a6:ed:cb:96:dd:37:0f:ae:12:9a:03:0f: d6:32:0c:aa:04:6d:e0:a4:3a:2c:56:c4:73:a8:7b:98:51:ad: ad:ae:9f:38:31:fa:cb:91:ad:a6:79:15:22:b9:ae:4a:e5:d6: bd:b2:f2:ce:1b:01:51:0a:4a:d1:10:7d:6f:43:e7:05:66:13: 43:74:76:af:72:c6:46:31:7d:3c:a9:42:58:0f:6b:07:fa:ee: 18:e8:e9:db:ee:7c:ce:06:0d:d9:3a:1c:23:0e:24:e1:7b:1f: f2:24:ac:6a:c5:6d:15:57:46:82:b9:1c:1e:d6:cf:7e:2d:9b: 0a:31:2f:80:34:98:d1:55:fe:b6:bf:0c:70:62:35:5d:d5:19: a8:49:51:e1:2d:52:cd:50:39:7f:15:7d:2a:9f:5d:09:92:ee: cc:10:66:45:56:07:ab:50:04:2b:ed:1f:22:7f:7e:42:ac:cf: a6:99:dd:4e:bf:0c:6b:9b:ae:a0:c4:97:a1:99:03:64:9b:82: 97:43:43:df -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIwMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkNG NDAxN0E2RTI5MTVGMjYxNDdENDE5RTVGN0E3RDE2NEQwNDk4NDAeFw0yNjAxMjUw MDU3MDNaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDU2Q0E0Qzk5QjZDN0U4 MEI1RjA5OTQxQjZFRjZBMzVDNTk3NjE1QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTlZg8htsMT/rAmztvABHCt2XO3cZODft881ov8BBr5XUOmaLp 00zrg/ukZgyt7PaqJqsw/AjiUmTsdNdhk24povIRa0I8o5kVcpeMMzeaQ4hLM7bV lo2RmfOSX67k6kI7fRn7tfRC6oD0+VCNgtBpzeMRomMW32DCQ0VFPycR5HSGCQV/ /btqn8cJZyUdtfyGUWrIOC2j7ReL0ePKm2XDTRVz5WiuXEXUjzNH8y8TmVXNQP8P tjuRQ32moQgq5ma5BVl41aNHnof3tVVcKl0uX463sslrd+pzULW+VoR3CSMspM7N ARIyJDeXCKV9SDd3lCg1901fUW6goFFFVj63AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUVspMmbbH6AtfCZQbbvajXFl2FaEwHwYDVR0jBBgwFoAUvPQBem4pFfJhR9QZ 5fen0WTQSYQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjA3 Mi92UFFCZW00cEZmSmhSOVFaNWZlbjBXVFFTWVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3ZQUUJlbTRwRmZKaFI5UVo1ZmVuMFdUUVNZUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwNzIvdlBRQmVtNHBGZkpo UjlRWjVmZW4wV1RRU1lRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIQyJq09tsgHT7OffNv/awqexc9y247O1w3yFiWGyrGLaNDvo5kb0Ax3yqYo aZ6B3irPubMWT6Tk4Zq0/Kbty5bdNw+uEpoDD9YyDKoEbeCkOixWxHOoe5hRra2u nzgx+suRraZ5FSK5rkrl1r2y8s4bAVEKStEQfW9D5wVmE0N0dq9yxkYxfTypQlgP awf67hjo6dvufM4GDdk6HCMOJOF7H/IkrGrFbRVXRoK5HB7Wz34tmwoxL4A0mNFV /ra/DHBiNV3VGahJUeEtUs1QOX8VfSqfXQmS7swQZkVWB6tQBCvtHyJ/fkKsz6aZ 3U6/DGubrqDEl6GZA2SbgpdDQ98= -----END CERTIFICATE-----Generated at Sun Jan 25 06:09:40 2026 by rpki-client