This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft File: COaEfe781aS_jvY6VWfs2gflVik.mft (raw, json) Hash identifier: Kqq+9NOH1qcrGpn7EmBKX1049iKiSoabko6uUaBb/fY= Subject key identifier: F2:97:CA:F4:89:E2:A5:25:7F:9B:47:5E:5C:3B:8A:7E:C6:66:EE:CE Authority key identifier: 08:E6:84:7D:EE:FC:D5:A4:BF:8E:F6:3A:55:67:EC:DA:07:E5:56:29 Certificate issuer: /CN=08E6847DEEFCD5A4BF8EF63A5567ECDA07E55629 Certificate serial: 223F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/COaEfe781aS_jvY6VWfs2gflVik.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft Manifest number: 223F Signing time: Sun 25 Jan 2026 11:59:48 +0000 Manifest this update: Sun 25 Jan 2026 11:59:48 +0000 Manifest next update: Sun 25 Jan 2026 17:59:48 +0000 Files and hashes: 1: COaEfe781aS_jvY6VWfs2gflVik.crl (hash: Uq4P7N9UjCpL0WlIdJmZtkC4DSWIxd3w6lzRcPxPDiE=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/COaEfe781aS_jvY6VWfs2gflVik.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 16:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8767 (0x223f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08E6847DEEFCD5A4BF8EF63A5567ECDA07E55629 Validity Not Before: Jan 25 11:59:48 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=F297CAF489E2A5257F9B475E5C3B8A7EC666EECE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:da:00:96:3c:bd:65:31:9d:3a:11:dd:03:ac: a6:b4:e5:b2:2e:3d:a0:96:51:07:d6:51:88:3e:97: b5:64:c6:ff:e7:d1:0a:d2:10:e4:d6:4f:20:be:b5: 24:c2:a0:68:4e:48:78:2e:7b:ab:75:f2:3a:9c:06: 2a:5e:ae:c5:53:25:12:b6:ef:79:af:0c:53:00:de: 2a:52:70:55:9e:e3:cc:a5:b6:80:7f:cd:b5:f2:e9: b4:c5:12:fc:b7:87:45:8d:ff:f6:67:a9:93:da:f8: d5:9b:e4:45:8b:bf:64:9e:90:27:5d:ca:29:bc:41: 0d:d7:99:c2:74:02:87:dd:3b:1b:71:f7:bf:26:45: 28:0a:8a:ec:84:d6:16:be:e6:08:64:27:b4:f8:87: 86:a1:e0:0e:f6:e9:00:8f:bd:2e:18:07:99:34:9e: 9c:2c:30:ad:75:a2:d7:f7:7a:09:9a:d3:8a:76:65: e0:24:44:85:f4:46:82:bf:69:9e:03:bb:13:ce:d1: 20:02:2f:49:73:74:0d:7b:6b:38:6e:45:d5:5b:56: cc:63:c8:b8:57:45:79:72:60:98:52:b0:bd:bf:d3: 29:c7:57:7d:74:35:2d:bc:8b:ba:f3:bc:59:4c:a9: 8a:3d:58:31:5b:90:1a:bd:2c:0e:6a:97:31:3f:8a: 31:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:97:CA:F4:89:E2:A5:25:7F:9B:47:5E:5C:3B:8A:7E:C6:66:EE:CE X509v3 Authority Key Identifier: keyid:08:E6:84:7D:EE:FC:D5:A4:BF:8E:F6:3A:55:67:EC:DA:07:E5:56:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/COaEfe781aS_jvY6VWfs2gflVik.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2528/COaEfe781aS_jvY6VWfs2gflVik.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:5b:bb:d9:d3:8b:d9:e3:16:0a:d5:f6:b4:f6:f4:55:53:13: 58:09:e7:e3:cd:e5:b5:92:26:d8:b3:b1:8c:22:e2:23:07:15: 75:dd:e2:c6:4a:57:2e:8b:75:5a:86:da:23:7d:39:ec:b4:6e: 17:22:74:6f:8e:8e:09:7e:e0:d8:2f:10:d6:49:19:5f:9c:1c: 63:ee:2a:4b:33:25:8f:fe:5d:90:15:fe:ae:42:2e:de:ab:7d: fe:c9:13:6d:21:bd:92:d7:0b:fd:25:13:69:0b:59:62:7d:a7: de:19:3e:43:c6:31:57:09:18:ad:3d:fd:fd:2c:ea:a2:06:89: a3:e3:4f:e5:75:d5:0c:27:66:eb:d8:01:29:09:34:c5:74:48: 83:23:6d:c9:23:45:61:91:b8:d7:6c:6f:cb:fc:2b:be:b1:cd: b0:b2:07:e8:61:7a:29:f2:0f:95:9e:c7:0a:4e:93:7f:57:0c: 7f:ac:bc:63:55:af:80:48:c5:25:c9:01:18:8f:91:33:5d:eb: c7:16:a2:f8:35:9b:1e:b8:38:e7:50:2f:a4:ce:85:7f:4d:b3: 4c:3a:d8:d1:3c:f0:b2:71:f7:7a:b2:32:e2:ae:26:4a:61:f2: 7c:f4:d7:57:a8:d6:5b:61:f8:06:fe:0c:2e:47:fc:6a:1c:cf: a7:22:1b:aa -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDhF Njg0N0RFRUZDRDVBNEJGOEVGNjNBNTU2N0VDREEwN0U1NTYyOTAeFw0yNjAxMjUx MTU5NDhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEYyOTdDQUY0ODlFMkE1 MjU3RjlCNDc1RTVDM0I4QTdFQzY2NkVFQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDx2gCWPL1lMZ06Ed0DrKa05bIuPaCWUQfWUYg+l7Vkxv/n0QrS EOTWTyC+tSTCoGhOSHgue6t18jqcBipersVTJRK273mvDFMA3ipScFWe48yltoB/ zbXy6bTFEvy3h0WN//ZnqZPa+NWb5EWLv2SekCddyim8QQ3XmcJ0AofdOxtx978m RSgKiuyE1ha+5ghkJ7T4h4ah4A726QCPvS4YB5k0npwsMK11otf3egma04p2ZeAk RIX0RoK/aZ4DuxPO0SACL0lzdA17azhuRdVbVsxjyLhXRXlyYJhSsL2/0ynHV310 NS28i7rzvFlMqYo9WDFbkBq9LA5qlzE/ijF9AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU8pfK9InipSV/m0deXDuKfsZm7s4wHwYDVR0jBBgwFoAUCOaEfe781aS/jvY6 VWfs2gflVikwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjUy OC9DT2FFZmU3ODFhU19qdlk2VldmczJnZmxWaWsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0NPYUVmZTc4MWFTX2p2WTZWV2ZzMmdmbFZpay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1MjgvQ09hRWZlNzgxYVNf anZZNlZXZnMyZ2ZsVmlrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEVbu9nTi9njFgrV9rT29FVTE1gJ5+PN5bWSJtizsYwi4iMHFXXd4sZKVy6L dVqG2iN9Oey0bhcidG+Ojgl+4NgvENZJGV+cHGPuKkszJY/+XZAV/q5CLt6rff7J E20hvZLXC/0lE2kLWWJ9p94ZPkPGMVcJGK09/f0s6qIGiaPjT+V11QwnZuvYASkJ NMV0SIMjbckjRWGRuNdsb8v8K76xzbCyB+hheinyD5WexwpOk39XDH+svGNVr4BI xSXJARiPkTNd68cWovg1mx64OOdQL6TOhX9Ns0w62NE88LJx93qyMuKuJkph8nz0 11eo1lth+Ab+DC5H/Gocz6ciG6o= -----END CERTIFICATE-----Generated at Sun Jan 25 15:33:50 2026 by rpki-client