This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft File: IdyHWWXCumHR2su0je4UBVSqWu8.mft (raw, json) Hash identifier: U0bkvk/0eSAHKAV1VE8W1zJbc+riPvY8nDk3H6OLmm0= Subject key identifier: E6:80:90:B1:B9:42:51:2A:C2:9F:64:03:96:02:39:A3:F1:F0:1B:32 Authority key identifier: 21:DC:87:59:65:C2:BA:61:D1:DA:CB:B4:8D:EE:14:05:54:AA:5A:EF Certificate issuer: /CN=21DC875965C2BA61D1DACBB48DEE140554AA5AEF Certificate serial: 19E4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft Manifest number: 19DA Signing time: Sun 25 Jan 2026 11:57:59 +0000 Manifest this update: Sun 25 Jan 2026 11:57:59 +0000 Manifest next update: Sun 25 Jan 2026 17:57:59 +0000 Files and hashes: 1: IdyHWWXCumHR2su0je4UBVSqWu8.crl (hash: LVaSyhTSflP8Ld1hYyjhF4fUTiPhW/50/HJqXfpzcGg=) 2: at1w3aQ8pv-rnDv8DFVulwMAnx0.roa (hash: TD6E/O4qAYc9XInoBHUKPQQael3A9m1mMNdWDReSohc=) Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 6628 (0x19e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21DC875965C2BA61D1DACBB48DEE140554AA5AEF Validity Not Before: Jan 25 11:57:59 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=E68090B1B942512AC29F6403960239A3F1F01B32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:14:fa:5f:fc:6c:3b:90:84:16:c8:16:f7:1a: 76:ea:da:ef:9a:17:a6:a5:24:93:14:18:19:af:9b: d9:0b:22:9a:b6:18:da:c0:a1:e9:13:00:79:17:fc: d2:ee:ef:cb:cd:ae:96:d3:80:a3:b4:c7:17:a8:21: 12:20:77:ee:50:36:91:d8:34:03:07:92:b4:de:fe: 5a:79:ab:5a:34:9a:b4:79:d0:2a:dc:7d:11:95:42: 43:21:ea:0a:0e:8d:96:bc:a5:4d:af:fa:17:cc:8c: 29:38:3b:19:d1:50:21:63:69:b9:3a:02:68:6c:68: 6c:73:88:44:67:cc:ab:4f:44:45:58:b3:3c:cb:af: 6e:c9:b9:61:43:4e:8b:ec:63:3c:ce:de:71:ef:d4: d5:b7:f7:4b:62:7d:9e:37:2b:10:99:5e:1a:49:69: 7f:b0:69:25:a8:b7:6f:3c:6d:fb:51:88:f0:1e:c6: 08:e1:bb:45:2c:d3:bf:c5:30:7e:cf:a9:4b:28:ec: 83:07:c6:ef:bd:b0:ec:f1:be:6e:57:2f:0f:46:dd: b1:ba:43:e7:57:9d:63:12:6f:c1:fa:50:48:6e:b0: a4:af:97:7d:57:93:2f:1c:16:6d:a6:e5:35:62:ab: e2:46:ea:db:c8:c0:71:72:e7:d7:ee:de:0d:9a:64: a9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:80:90:B1:B9:42:51:2A:C2:9F:64:03:96:02:39:A3:F1:F0:1B:32 X509v3 Authority Key Identifier: keyid:21:DC:87:59:65:C2:BA:61:D1:DA:CB:B4:8D:EE:14:05:54:AA:5A:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:81:e9:d0:01:50:38:8e:fd:fb:e2:33:93:e4:3d:fb:ca:07: 9b:d3:31:fe:95:1d:6a:27:f0:b4:78:27:e0:44:77:84:89:87: 1f:ad:62:74:38:7c:0f:19:90:29:d3:5d:06:bd:ac:f0:ed:68: bb:4d:dd:3a:1a:fc:77:9e:cc:8f:c3:a7:cb:78:2a:2b:7b:c9: 6d:1d:ff:c6:8a:c1:20:35:13:10:09:7c:33:d5:90:2d:f1:66: 2e:89:3d:a4:3e:fa:61:eb:8d:cd:4c:4c:57:4c:65:5c:0c:a7: 81:b0:32:61:9b:78:b3:e9:df:5f:e9:11:fb:3a:4a:4d:9b:67: 88:ad:36:c4:be:b8:14:ec:0e:10:a6:d5:26:f3:ee:e9:d9:fa: de:97:44:ed:f0:57:98:b0:c7:43:ef:91:cd:f6:29:af:a1:21: 43:13:d5:db:c0:89:ce:2a:ec:bf:50:7a:05:95:9e:23:69:66: 4a:e2:89:09:e3:8d:6e:54:54:98:29:61:bd:bf:ff:fa:dd:a7: f7:03:7f:d0:92:a8:3c:09:82:d9:79:7c:02:27:91:5c:92:07: bb:d1:02:9b:e1:dc:28:70:0b:5b:ce:af:dc:13:22:ae:a7:25: 05:71:98:31:b6:fd:dd:43:ed:7f:08:d8:ee:af:55:1c:08:9b: 43:bf:3a:9d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjFE Qzg3NTk2NUMyQkE2MUQxREFDQkI0OERFRTE0MDU1NEFBNUFFRjAeFw0yNjAxMjUx MTU3NTlaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEU2ODA5MEIxQjk0MjUx MkFDMjlGNjQwMzk2MDIzOUEzRjFGMDFCMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSFPpf/Gw7kIQWyBb3Gnbq2u+aF6alJJMUGBmvm9kLIpq2GNrA oekTAHkX/NLu78vNrpbTgKO0xxeoIRIgd+5QNpHYNAMHkrTe/lp5q1o0mrR50Crc fRGVQkMh6goOjZa8pU2v+hfMjCk4OxnRUCFjabk6AmhsaGxziERnzKtPREVYszzL r27JuWFDTovsYzzO3nHv1NW390tifZ43KxCZXhpJaX+waSWot288bftRiPAexgjh u0Us07/FMH7PqUso7IMHxu+9sOzxvm5XLw9G3bG6Q+dXnWMSb8H6UEhusKSvl31X ky8cFm2m5TViq+JG6tvIwHFy59fu3g2aZKkHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU5oCQsblCUSrCn2QDlgI5o/HwGzIwHwYDVR0jBBgwFoAUIdyHWWXCumHR2su0 je4UBVSqWu8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjYy MC9JZHlIV1dYQ3VtSFIyc3UwamU0VUJWU3FXdTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0lkeUhXV1hDdW1IUjJzdTBqZTRVQlZTcVd1OC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2MjAvSWR5SFdXWEN1bUhS MnN1MGplNFVCVlNxV3U4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBADKB6dABUDiO/fviM5PkPfvKB5vTMf6VHWon8LR4J+BEd4SJhx+tYnQ4fA8Z kCnTXQa9rPDtaLtN3Toa/HeezI/Dp8t4Kit7yW0d/8aKwSA1ExAJfDPVkC3xZi6J PaQ++mHrjc1MTFdMZVwMp4GwMmGbeLPp31/pEfs6Sk2bZ4itNsS+uBTsDhCm1Sbz 7unZ+t6XRO3wV5iwx0Pvkc32Ka+hIUMT1dvAic4q7L9QegWVniNpZkriiQnjjW5U VJgpYb2///rdp/cDf9CSqDwJgtl5fAInkVySB7vRApvh3ChwC1vOr9wTIq6nJQVx mDG2/d1D7X8I2O6vVRwIm0O/Op0= -----END CERTIFICATE-----Generated at Sun Jan 25 18:28:24 2026 by rpki-client