This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft File: 6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft (raw, json) Hash identifier: jH76UC0U4yetRtjNnJ75lc+W5dqp5Xm+P+KxBxpI6K8= Subject key identifier: 95:04:C6:72:57:F7:D1:E8:BD:CA:CE:86:67:6A:E2:6E:D0:1C:E8:D0 Authority key identifier: E8:22:87:BB:56:FA:C8:E6:75:3A:BD:E3:6B:3B:6A:93:9C:B5:9A:53 Certificate issuer: /CN=E82287BB56FAC8E6753ABDE36B3B6A939CB59A53 Certificate serial: 249F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6CKHu1b6yOZ1Or3jaztqk5y1mlM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft Manifest number: 2498 Signing time: Sun 25 Jan 2026 02:28:20 +0000 Manifest this update: Sun 25 Jan 2026 02:28:20 +0000 Manifest next update: Sun 25 Jan 2026 08:28:20 +0000 Files and hashes: 1: 6CKHu1b6yOZ1Or3jaztqk5y1mlM.crl (hash: fURwyhoJE5tr3lcd4ZQm8lLi50WhM4NQTB3VTPSjDX0=) 2: RCbHnrCCg725J7bG--pX2X5ZrnU.roa (hash: cudInYIi8qbG8xgW0WIGQuE7ptgpnghhjyFMl40TDyE=) Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 9375 (0x249f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E82287BB56FAC8E6753ABDE36B3B6A939CB59A53 Validity Not Before: Jan 25 02:28:20 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=9504C67257F7D1E8BDCACE86676AE26ED01CE8D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a3:c2:38:5d:ef:6d:62:88:61:35:41:9f:07: 3c:dd:f7:29:98:e8:22:b1:85:65:c7:87:ef:98:d6: 59:a4:a2:d1:21:11:87:29:f4:f8:94:fe:f5:63:c9: ba:43:50:68:2d:ea:38:3d:15:9d:a2:52:09:7d:50: a2:d4:89:9a:f5:42:a9:d0:6d:7a:3d:eb:89:cb:b9: 27:4e:c8:3e:2b:31:d3:e0:d8:94:68:29:ec:45:e9: e3:26:33:6b:4b:14:c2:4e:81:27:e4:60:ea:24:23: bb:40:cc:6d:b5:fa:cd:db:53:06:64:ae:92:40:04: 6f:68:c3:58:f5:be:50:a4:af:63:e7:97:ea:60:34: 10:e3:36:45:10:98:a2:d0:08:6c:d5:e7:1c:2d:b3: 77:d0:40:6e:e8:91:2a:c4:f8:71:ae:21:f4:39:25: 2a:91:f2:18:31:7c:04:cf:5a:19:09:50:6d:50:22: 9b:9d:d5:93:01:74:a3:51:c8:90:00:2d:87:9f:0c: 66:34:c8:33:bf:6c:1f:a6:fd:4e:fb:29:9c:7c:26: 9b:80:71:75:05:a8:ea:90:ce:fb:32:37:f2:16:34: b0:aa:db:2a:a7:a9:ab:f5:6c:a4:10:4f:80:45:1b: 64:e3:8b:78:18:0d:03:ba:58:e2:cc:be:b7:c6:42: e1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:04:C6:72:57:F7:D1:E8:BD:CA:CE:86:67:6A:E2:6E:D0:1C:E8:D0 X509v3 Authority Key Identifier: keyid:E8:22:87:BB:56:FA:C8:E6:75:3A:BD:E3:6B:3B:6A:93:9C:B5:9A:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6CKHu1b6yOZ1Or3jaztqk5y1mlM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:5e:fd:f9:a8:dc:d7:6b:00:ed:e1:a2:ee:7b:de:9e:1d:a0: dd:ac:24:9a:9c:4a:54:24:df:04:64:97:3d:70:ca:56:d4:ee: 7a:cd:4d:83:88:43:be:54:47:b3:95:5a:17:dc:58:76:2c:80: 1b:be:c1:d4:07:48:b8:54:26:66:21:c6:f5:b6:96:d6:9a:45: a4:0b:f2:06:ab:9a:c7:9f:da:aa:7e:63:de:12:d3:0d:6a:c2: d8:41:c3:e3:4d:18:cc:84:a8:e0:5b:19:af:5f:49:bc:ea:e8: e8:00:5c:06:30:a6:52:b9:44:17:4f:08:1f:31:3f:e4:00:f3: d1:65:e6:4a:8f:3b:e5:c7:a9:4b:08:ca:15:9e:20:0f:cd:7d: 36:dd:84:77:b4:69:8e:52:19:d5:51:84:da:e5:9b:bc:c9:1e: 80:e3:d4:b4:87:fc:6b:07:26:85:d4:d3:99:c9:59:b0:b7:02: e8:3c:3e:78:5e:f2:0b:bd:80:78:47:e7:90:a3:58:fd:af:23: a8:80:54:fc:00:75:d0:d9:63:a9:e7:a8:02:7a:03:47:8f:3b: 4b:10:26:fb:10:38:22:1b:68:93:a6:c5:a0:33:28:11:32:a4: 03:d8:4b:e7:e3:ac:85:dd:e6:94:cf:14:34:0d:7e:25:cb:82: 9a:44:f6:90 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICJJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTgy Mjg3QkI1NkZBQzhFNjc1M0FCREUzNkIzQjZBOTM5Q0I1OUE1MzAeFw0yNjAxMjUw MjI4MjBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDk1MDRDNjcyNTdGN0Qx RThCRENBQ0U4NjY3NkFFMjZFRDAxQ0U4RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWo8I4Xe9tYohhNUGfBzzd9ymY6CKxhWXHh++Y1lmkotEhEYcp 9PiU/vVjybpDUGgt6jg9FZ2iUgl9UKLUiZr1QqnQbXo964nLuSdOyD4rMdPg2JRo KexF6eMmM2tLFMJOgSfkYOokI7tAzG21+s3bUwZkrpJABG9ow1j1vlCkr2Pnl+pg NBDjNkUQmKLQCGzV5xwts3fQQG7okSrE+HGuIfQ5JSqR8hgxfATPWhkJUG1QIpud 1ZMBdKNRyJAALYefDGY0yDO/bB+m/U77KZx8JpuAcXUFqOqQzvsyN/IWNLCq2yqn qav1bKQQT4BFG2Tji3gYDQO6WOLMvrfGQuF1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUlQTGclf30ei9ys6GZ2ribtAc6NAwHwYDVR0jBBgwFoAU6CKHu1b6yOZ1Or3j aztqk5y1mlMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjI5 MS82Q0tIdTFiNnlPWjFPcjNqYXp0cWs1eTFtbE0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzZDS0h1MWI2eU9aMU9yM2phenRxazV5MW1sTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIyOTEvNkNLSHUxYjZ5T1ox T3IzamF6dHFrNXkxbWxNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAB1e/fmo3NdrAO3hou573p4doN2sJJqcSlQk3wRklz1wylbU7nrNTYOIQ75U R7OVWhfcWHYsgBu+wdQHSLhUJmYhxvW2ltaaRaQL8garmsef2qp+Y94S0w1qwthB w+NNGMyEqOBbGa9fSbzq6OgAXAYwplK5RBdPCB8xP+QA89Fl5kqPO+XHqUsIyhWe IA/NfTbdhHe0aY5SGdVRhNrlm7zJHoDj1LSH/GsHJoXU05nJWbC3Aug8Pnhe8gu9 gHhH55CjWP2vI6iAVPwAddDZY6nnqAJ6A0ePO0sQJvsQOCIbaJOmxaAzKBEypAPY S+fjrIXd5pTPFDQNfiXLgppE9pA= -----END CERTIFICATE-----Generated at Sun Jan 25 09:28:47 2026 by rpki-client