This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2075/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.mft File: cVtG2fmVd3-jFDJj1UpuZ2qQbqs.mft (raw, json) Hash identifier: mtEGh9erLGUKheLWZx9Bim2fpxklJVNwpZBjQei3xP8= Subject key identifier: 05:60:1F:71:D0:96:7E:10:9D:DC:79:0E:17:26:4E:7D:85:BF:EF:56 Authority key identifier: 71:5B:46:D9:F9:95:77:7F:A3:14:32:63:D5:4A:6E:67:6A:90:6E:AB Certificate issuer: /CN=715B46D9F995777FA3143263D54A6E676A906EAB Certificate serial: 5457 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2075/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.mft Manifest number: 5442 Signing time: Sun 25 Jan 2026 07:27:52 +0000 Manifest this update: Sun 25 Jan 2026 07:27:52 +0000 Manifest next update: Sun 25 Jan 2026 13:27:52 +0000 Files and hashes: 1: 8ZO66rcR9nwvXQ_2R9_uqXDgkFQ.roa (hash: StSo0cVjWN1em0gavnIIDJ9P278UpnjzSIZioUED/ys=) 2: Lz4k_p57itKi1f-iLXvudLF9AGo.roa (hash: vX6kPDDSWg02SEYFQkJIrAjDaDzUhGOgsptrXAQ9QyQ=) 3: MfqtZ3nWWXvGuHydwfjAPKninEk.roa (hash: RceomI2xn8/ICTIqp+3Tx1zm70K9f3U1+HhNKeiqpcA=) 4: cVtG2fmVd3-jFDJj1UpuZ2qQbqs.crl (hash: TcaJC2XRNnc/Yl6wFmGAt/fdYTHT8e+VlW5dZOi06xU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2075/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2075/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 11:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21591 (0x5457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=715B46D9F995777FA3143263D54A6E676A906EAB Validity Not Before: Jan 25 07:27:52 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=05601F71D0967E109DDC790E17264E7D85BFEF56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:eb:32:c9:60:1c:13:8f:08:df:cf:14:c7:e2: 82:28:a5:bb:c6:1f:07:fc:25:7b:55:72:3f:70:f8: 09:d4:0e:c2:28:6e:a3:74:7b:89:a3:ca:42:4f:e1: 57:02:4f:81:e4:9a:ef:c5:93:d0:af:00:21:b2:7e: 43:5d:18:7b:a7:b9:33:ef:99:3b:78:7d:2e:8a:0b: 08:ba:68:38:c8:bd:97:d1:32:1c:f4:cc:41:b2:4d: 36:35:92:20:6f:66:5e:18:8e:ea:4c:e1:f3:96:18: a3:90:de:f9:25:7c:f3:61:4d:b9:51:b3:2b:c8:6f: 7d:fe:49:9c:0e:05:a3:0e:c2:e0:70:0f:0a:a3:d9: 02:cd:14:d5:5f:05:3b:a3:42:c7:84:05:90:84:64: 7f:04:6b:83:d0:60:8a:f6:97:44:72:e8:58:11:05: 6d:93:09:06:0f:ff:1f:25:fb:ea:ed:fe:39:b8:6a: b3:bb:df:05:89:f3:b1:a0:f0:94:55:b2:7e:41:40: 02:e6:c1:90:00:5f:10:ca:c2:48:63:15:8c:2d:66: 90:cc:c5:42:7e:6b:dc:43:76:1f:9b:ab:25:8a:48: 72:2c:06:a5:d0:58:7e:ff:95:1a:4c:40:a3:cb:8e: 82:a0:a0:d8:15:fd:09:f4:79:6d:e1:fd:6d:b8:25: 79:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:60:1F:71:D0:96:7E:10:9D:DC:79:0E:17:26:4E:7D:85:BF:EF:56 X509v3 Authority Key Identifier: keyid:71:5B:46:D9:F9:95:77:7F:A3:14:32:63:D5:4A:6E:67:6A:90:6E:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2075/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2075/cVtG2fmVd3-jFDJj1UpuZ2qQbqs.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:c8:4b:03:fe:cb:b9:2c:e2:42:98:a7:c7:7f:a9:6c:18:7f: 82:8c:06:a0:12:87:e9:90:59:03:3e:f1:ce:5a:ec:78:6c:e6: 4d:9e:de:aa:3b:24:31:96:9d:97:98:68:01:07:c5:74:23:db: cc:cb:ae:d4:73:0c:5b:e5:63:47:1c:79:6a:fa:f8:75:80:d1: 1c:a8:57:f8:7a:92:6d:f3:95:1a:4e:a6:3e:40:55:16:5e:48: 10:39:54:54:23:59:81:8f:71:67:3d:63:9f:07:b5:b2:6f:18: 2b:78:d6:ff:c3:4b:8b:31:0d:92:3b:1e:b0:da:e0:a6:8f:f0: 5b:30:b7:16:2f:ae:76:29:24:4c:9d:c4:e8:fd:64:03:b0:2a: 26:50:34:6f:6c:52:62:0e:c1:d3:3c:c5:05:ba:e3:10:66:fd: 4a:4f:e1:7b:bf:51:08:38:1f:7f:bc:7b:dc:0f:6c:06:f0:2e: a0:30:ae:b3:ab:e0:fa:f4:c9:5a:de:c4:93:a9:12:3a:21:37: 1d:6c:78:78:ad:3b:b4:a9:fb:81:3c:d7:41:1b:cc:a5:3a:93: 6e:67:a3:2b:a9:ac:ed:63:97:b2:06:5a:0e:3a:d5:84:ea:af: b5:49:52:e0:b0:e5:4a:0d:96:6c:6f:94:31:67:ef:05:12:95: e4:53:57:03 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICVFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzE1 QjQ2RDlGOTk1Nzc3RkEzMTQzMjYzRDU0QTZFNjc2QTkwNkVBQjAeFw0yNjAxMjUw NzI3NTJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDA1NjAxRjcxRDA5NjdF MTA5RERDNzkwRTE3MjY0RTdEODVCRkVGNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL6zLJYBwTjwjfzxTH4oIopbvGHwf8JXtVcj9w+AnUDsIobqN0 e4mjykJP4VcCT4Hkmu/Fk9CvACGyfkNdGHunuTPvmTt4fS6KCwi6aDjIvZfRMhz0 zEGyTTY1kiBvZl4YjupM4fOWGKOQ3vklfPNhTblRsyvIb33+SZwOBaMOwuBwDwqj 2QLNFNVfBTujQseEBZCEZH8Ea4PQYIr2l0Ry6FgRBW2TCQYP/x8l++rt/jm4arO7 3wWJ87Gg8JRVsn5BQALmwZAAXxDKwkhjFYwtZpDMxUJ+a9xDdh+bqyWKSHIsBqXQ WH7/lRpMQKPLjoKgoNgV/Qn0eW3h/W24JXmzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBWAfcdCWfhCd3HkOFyZOfYW/71YwHwYDVR0jBBgwFoAUcVtG2fmVd3+jFDJj 1UpuZ2qQbqswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjA3 NS9jVnRHMmZtVmQzLWpGREpqMVVwdVoycVFicXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NWdEcyZm1WZDMtakZESmoxVXB1WjJxUWJxcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwNzUvY1Z0RzJmbVZkMy1q RkRKajFVcHVaMnFRYnFzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALDISwP+y7ks4kKYp8d/qWwYf4KMBqASh+mQWQM+8c5a7Hhs5k2e3qo7JDGW nZeYaAEHxXQj28zLrtRzDFvlY0cceWr6+HWA0RyoV/h6km3zlRpOpj5AVRZeSBA5 VFQjWYGPcWc9Y58HtbJvGCt41v/DS4sxDZI7HrDa4KaP8FswtxYvrnYpJEydxOj9 ZAOwKiZQNG9sUmIOwdM8xQW64xBm/UpP4Xu/UQg4H3+8e9wPbAbwLqAwrrOr4Pr0 yVrexJOpEjohNx1seHitO7Sp+4E810EbzKU6k25noyuprO1jl7IGWg461YTqr7VJ UuCw5UoNlmxvlDFn7wUSleRTVwM= -----END CERTIFICATE-----Generated at Sun Jan 25 10:44:41 2026 by rpki-client