This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft File: H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft (raw, json) Hash identifier: 1QwWyap/AnB2HkGaEqYoEENcObtSGfFqaIEQStn+NDo= Subject key identifier: 0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4 Authority key identifier: 1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05 Certificate issuer: /CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205 Certificate serial: 22F8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft Manifest number: 22F8 Signing time: Sun 25 Jan 2026 02:29:48 +0000 Manifest this update: Sun 25 Jan 2026 02:29:48 +0000 Manifest next update: Sun 25 Jan 2026 08:29:48 +0000 Files and hashes: 1: H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl (hash: I1Voov9JtbfOrYZqK/pxmQkfgUc3MafNMc6fZfwT1gY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 08:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8952 (0x22f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205 Validity Not Before: Jan 25 02:29:48 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=0A196EACD1B84454479C1DBFE9BBD3BF3613FCC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:de:67:c6:ca:3c:d6:01:4b:26:20:ce:02: 0b:8d:cc:b9:e3:f2:49:51:b3:81:fa:99:bc:76:18: 3d:a1:d4:5f:9d:34:29:57:e6:f3:eb:67:8f:fb:b0: 44:3e:82:d7:60:31:f3:19:59:30:15:0c:8f:99:22: 71:4d:70:47:51:fd:55:52:3f:f0:3b:b9:26:58:0c: 69:be:1b:8c:7a:79:32:a4:58:d1:56:c5:68:e3:4c: 46:a2:61:31:45:63:36:a5:c2:bb:cc:b0:52:aa:5e: f8:be:5d:b5:dd:52:00:ba:d6:36:c0:23:4e:41:f2: ad:0b:b2:14:52:b5:7b:e9:46:ae:59:53:c1:6c:8f: 46:ae:9b:9a:12:20:6e:df:5a:19:88:1b:b6:f1:0f: 87:bf:62:9a:02:d2:b6:67:bd:41:e8:ce:0f:02:33: 05:e3:00:7e:51:34:2b:27:d7:a0:72:a8:cb:f8:ee: ec:cc:ed:cf:e5:34:aa:6c:46:11:be:1b:21:4a:35: c8:88:8a:7f:dc:08:6a:a6:6e:4e:f0:2a:7c:d3:50: 5b:d5:50:cb:75:ea:af:82:5e:aa:73:72:d3:ca:24: 25:82:5a:f0:ec:b8:71:cf:5c:ce:8f:3f:62:e9:a6: 87:65:1f:4b:35:c6:0e:0b:ab:e4:ef:cc:ad:5f:30: 10:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4 X509v3 Authority Key Identifier: keyid:1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:42:96:78:8b:6f:1f:21:44:8f:13:85:cb:fd:37:0e:3d:d3: 48:1d:54:f9:87:02:43:16:69:72:f6:3c:3c:60:6c:55:1f:83: c1:1b:7c:42:df:ac:ca:14:01:4e:34:11:bf:cd:12:f4:c2:1a: c1:22:44:6e:40:bb:7f:5a:f4:8a:7f:bc:d1:d9:9d:69:59:88: 8f:07:eb:b9:32:2d:cb:1d:ed:90:81:98:bc:9f:32:5c:67:29: 89:6d:81:0a:d4:50:6e:e2:24:f8:5d:c5:00:03:e0:50:67:a4: 8f:d4:f3:13:c0:7a:26:00:de:79:03:34:2e:05:d6:46:23:1b: ba:24:1c:2e:71:df:c7:0b:e0:e9:e5:1d:6f:67:8f:4b:c1:ba: 21:bc:66:e4:89:08:10:ff:b7:51:49:ad:01:ec:2b:f1:b3:9c: 31:3f:b5:40:12:50:88:15:59:6d:60:ea:55:8a:10:b3:69:7c: 34:24:bf:09:f5:b0:c6:29:e1:0b:0a:6e:9f:66:60:c0:fc:0e: 7f:ce:c7:9b:fe:1b:59:f8:d1:7d:48:69:b0:89:93:1c:12:74: 69:a3:6e:c6:87:b7:a1:14:9b:57:48:0b:0b:3c:bd:83:97:02: ad:de:93:08:0c:73:b3:c4:88:6e:be:40:88:a6:e2:75:bd:e0: 33:06:d1:1d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY0 Mjk5QjREREIxRTY4REE5MEY3QkM3RjQzQTA2MkVEMTYxMDIwNTAeFw0yNjAxMjUw MjI5NDhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDBBMTk2RUFDRDFCODQ0 NTQ0NzlDMURCRkU5QkJEM0JGMzYxM0ZDQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMqt5nxso81gFLJiDOAguNzLnj8klRs4H6mbx2GD2h1F+dNClX 5vPrZ4/7sEQ+gtdgMfMZWTAVDI+ZInFNcEdR/VVSP/A7uSZYDGm+G4x6eTKkWNFW xWjjTEaiYTFFYzalwrvMsFKqXvi+XbXdUgC61jbAI05B8q0LshRStXvpRq5ZU8Fs j0aum5oSIG7fWhmIG7bxD4e/YpoC0rZnvUHozg8CMwXjAH5RNCsn16ByqMv47uzM 7c/lNKpsRhG+GyFKNciIin/cCGqmbk7wKnzTUFvVUMt16q+CXqpzctPKJCWCWvDs uHHPXM6PP2LppodlH0s1xg4Lq+TvzK1fMBDvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUChlurNG4RFRHnB2/6bvTvzYT/MQwHwYDVR0jBBgwFoAUH0KZtN2x5o2pD3vH 9DoGLtFhAgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjE5 NC9IMEtadE4yeDVvMnBEM3ZIOURvR0x0RmhBZ1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0gwS1p0TjJ4NW8ycEQzdkg5RG9HTHRGaEFnVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxOTQvSDBLWnROMng1bzJw RDN2SDlEb0dMdEZoQWdVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHBClniLbx8hRI8Thcv9Nw4900gdVPmHAkMWaXL2PDxgbFUfg8EbfELfrMoU AU40Eb/NEvTCGsEiRG5Au39a9Ip/vNHZnWlZiI8H67kyLcsd7ZCBmLyfMlxnKYlt gQrUUG7iJPhdxQAD4FBnpI/U8xPAeiYA3nkDNC4F1kYjG7okHC5x38cL4OnlHW9n j0vBuiG8ZuSJCBD/t1FJrQHsK/GznDE/tUASUIgVWW1g6lWKELNpfDQkvwn1sMYp 4QsKbp9mYMD8Dn/Ox5v+G1n40X1IabCJkxwSdGmjbsaHt6EUm1dICws8vYOXAq3e kwgMc7PEiG6+QIim4nW94DMG0R0= -----END CERTIFICATE-----Generated at Sun Jan 25 07:46:30 2026 by rpki-client