This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft File: OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft (raw, json) Hash identifier: 4nfdNu+ELRqiRbcNlRsWZxAo8JjSpglElF61mQ7WVG4= Subject key identifier: D5:C0:84:64:B4:0A:63:4F:DB:E6:79:1A:74:15:94:0B:79:FA:BB:61 Authority key identifier: 39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A Certificate issuer: /CN=39E47899249325DB499BFC6910919D2F36003E9A Certificate serial: 221B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft Manifest number: 2209 Signing time: Sun 25 Jan 2026 15:59:02 +0000 Manifest this update: Sun 25 Jan 2026 15:59:02 +0000 Manifest next update: Sun 25 Jan 2026 21:59:02 +0000 Files and hashes: 1: 8h30GBA3h4n0nrMTSP0xr0y7b_o.roa (hash: 9cfhHU+BjNybxApiI/hSLUqpXkVi5pN6Lvjf+RUUdws=) 2: OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl (hash: 4/+NrVPYI5+omDldiiB3HDLPD9b6tmtfINvQqGsICQg=) 3: aVTN-qNwRozZt36ArshpmDXx0vM.roa (hash: CYQAt9Bb/xP653vpZ4vy+xW+gUj2bdrDgCV5WzAbI34=) 4: vvJwb1gYnGrBw5xA1UrXbiG1jGk.roa (hash: Xd/UqKRCspic2JRT51UsT5/47rtxoF0+T2yGguQfGw0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 21:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8731 (0x221b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39E47899249325DB499BFC6910919D2F36003E9A Validity Not Before: Jan 25 15:59:02 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D5C08464B40A634FDBE6791A7415940B79FABB61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d9:98:90:78:55:2c:20:cb:a2:b3:29:ed:dc: f3:25:4d:a0:36:42:42:0f:12:8f:41:e4:92:79:28: 84:9f:f0:80:bd:6c:22:33:42:6e:fc:44:b4:49:8f: 14:81:bb:94:ba:44:58:be:45:f2:81:20:e0:88:86: 58:f8:ad:ad:97:46:6f:b0:8c:5f:7a:6a:df:94:a1: cc:aa:33:73:1b:a0:87:17:0f:f7:16:c5:a6:a2:b6: e2:f5:77:47:fb:37:85:e0:6c:83:fe:25:4d:9c:4d: 02:dd:6d:c4:91:58:3c:bf:a1:0b:f4:d7:35:e8:a6: fd:f8:37:5d:de:04:60:5d:c1:e5:eb:80:48:8c:6a: bc:f0:e8:37:54:ae:35:c7:dc:f8:98:71:d8:aa:f4: e8:7a:ac:f6:b9:1e:60:c3:db:b9:ee:fc:9b:a5:24: ae:78:51:b8:98:d7:6d:18:41:40:3b:4a:45:11:b6: 90:9f:78:54:34:31:c5:83:ce:a7:50:63:d3:97:f2: ad:96:fa:ef:21:6a:0f:ac:00:2b:0d:93:44:b8:cb: 2f:57:49:37:96:0a:93:28:e3:64:ce:4e:56:bf:41: 4f:2e:1a:12:a2:6c:a4:f6:8b:bd:4b:12:88:50:0f: e4:70:20:4c:5e:f0:84:70:4a:c6:9e:69:1a:39:8c: 8d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C0:84:64:B4:0A:63:4F:DB:E6:79:1A:74:15:94:0B:79:FA:BB:61 X509v3 Authority Key Identifier: keyid:39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:93:d7:b9:d7:6c:0b:ad:0c:11:33:d8:10:42:12:f5:95:ca: 5a:a4:a5:19:7a:c2:80:ac:a8:ce:d7:07:c5:a0:21:d8:57:52: 98:63:ce:e0:f5:66:1e:0a:cd:cc:59:20:ab:07:be:34:bf:dd: fc:7f:5d:b6:19:3f:35:91:52:41:3a:16:a9:c3:cc:9e:3b:cf: b7:19:05:c9:38:62:b8:03:e8:be:94:dd:98:a2:1b:30:3d:01: 88:c3:f5:66:d3:4a:c3:bb:e7:4f:55:82:59:42:27:20:24:47: 1b:51:e2:dd:bd:2c:f4:6f:79:2a:43:2b:08:65:1f:18:67:be: 25:45:ad:70:bb:c3:c3:0f:93:c3:8f:5f:6b:70:ce:9d:f2:e4: 46:d1:a7:bf:fd:ff:1e:f1:d8:c0:51:1d:a7:26:2f:2c:e0:97: 2d:d1:01:88:1e:13:06:41:6c:34:1f:45:c1:ab:a4:03:55:84: b4:88:27:3d:be:1e:51:13:d6:3d:82:6c:0e:61:37:5a:d2:b1: b1:0a:6d:cc:04:b4:62:ed:58:cc:91:81:53:93:b1:93:75:c7: b1:24:e8:c9:cc:62:9e:6f:12:76:d9:96:dd:4b:87:39:30:f0: 8a:30:7f:66:bb:1a:c7:38:d6:c5:24:42:35:18:1a:3e:20:0c: 5e:a5:76:f2 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICIhswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF NDc4OTkyNDkzMjVEQjQ5OUJGQzY5MTA5MTlEMkYzNjAwM0U5QTAeFw0yNjAxMjUx NTU5MDJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQ1QzA4NDY0QjQwQTYz NEZEQkU2NzkxQTc0MTU5NDBCNzlGQUJCNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG2ZiQeFUsIMuisynt3PMlTaA2QkIPEo9B5JJ5KISf8IC9bCIz Qm78RLRJjxSBu5S6RFi+RfKBIOCIhlj4ra2XRm+wjF96at+UocyqM3MboIcXD/cW xaaituL1d0f7N4XgbIP+JU2cTQLdbcSRWDy/oQv01zXopv34N13eBGBdweXrgEiM arzw6DdUrjXH3PiYcdiq9Oh6rPa5HmDD27nu/JulJK54UbiY120YQUA7SkURtpCf eFQ0McWDzqdQY9OX8q2W+u8hag+sACsNk0S4yy9XSTeWCpMo42TOTla/QU8uGhKi bKT2i71LEohQD+RwIExe8IRwSsaeaRo5jI2LAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQU1cCEZLQKY0/b5nkadBWUC3n6u2EwHwYDVR0jBBgwFoAUOeR4mSSTJdtJm/xp EJGdLzYAPpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcv T2VSNG1TU1RKZHRKbV94cEVKR2RMellBUHBvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9PZVI0bVNTVEpkdEptX3hwRUpHZEx6WUFQcG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNy9PZVI0bVNTVEpkdEptX3hw RUpHZEx6WUFQcG8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA WZPXuddsC60METPYEEIS9ZXKWqSlGXrCgKyoztcHxaAh2FdSmGPO4PVmHgrNzFkg qwe+NL/d/H9dthk/NZFSQToWqcPMnjvPtxkFyThiuAPovpTdmKIbMD0BiMP1ZtNK w7vnT1WCWUInICRHG1Hi3b0s9G95KkMrCGUfGGe+JUWtcLvDww+Tw49fa3DOnfLk RtGnv/3/HvHYwFEdpyYvLOCXLdEBiB4TBkFsNB9FwaukA1WEtIgnPb4eURPWPYJs DmE3WtKxsQptzAS0Yu1YzJGBU5Oxk3XHsSToycxinm8SdtmW3UuHOTDwijB/Zrsa xzjWxSRCNRgaPiAMXqV28g== -----END CERTIFICATE-----Generated at Sun Jan 25 20:05:26 2026 by rpki-client