This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.mft File: 1sXBjM5gMHMLwiKrF_Tj2PFgMDM.mft (raw, json) Hash identifier: Vzl85GKI9hKIKQZwQj6AIM6JWMKwl6K1kWNnIOXZnG0= Subject key identifier: 20:78:E0:15:44:2F:C6:5D:BF:74:11:83:58:79:23:57:14:E2:26:A4 Authority key identifier: D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33 Certificate issuer: /CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033 Certificate serial: 22EF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.mft Manifest number: 22E9 Signing time: Sun 25 Jan 2026 12:00:32 +0000 Manifest this update: Sun 25 Jan 2026 12:00:32 +0000 Manifest next update: Sun 25 Jan 2026 18:00:32 +0000 Files and hashes: 1: 1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl (hash: CbXsNAKZD2k/vMtIe6Njth3+O/HYm2TUg+PoWWVe4GY=) 2: Jjq7lUGmENI2hGsHBVMBajc7AM0.roa (hash: p6PoxLf28mqVaxNc2P0/8WawjpfYf7LL9ddnWyfyznY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 16:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8943 (0x22ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033 Validity Not Before: Jan 25 12:00:32 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=2078E015442FC65DBF7411835879235714E226A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:8e:cb:cb:20:1c:31:43:d5:f5:45:64:c6: 5e:b6:58:91:f9:8c:ba:6a:21:5f:21:5e:da:59:33: 2e:09:1f:ab:cf:a2:2f:d2:7b:ea:f1:5b:8d:e5:c5: c2:9e:bb:2b:6b:2b:56:54:cf:97:a6:95:ae:4e:0a: 25:45:6c:01:80:e4:09:cd:12:e7:b5:1b:d2:3f:3f: 78:08:d6:5d:62:54:b2:e9:7c:42:b8:2b:20:f5:10: 64:49:87:10:22:09:f8:5c:5c:fc:92:4d:71:0e:25: 19:dc:dc:78:58:35:36:74:12:13:bc:12:89:14:81: 0e:23:8e:b6:be:1e:15:2b:b1:36:77:d1:34:34:9a: c9:22:e8:34:e6:fd:ec:f5:9d:d0:9d:89:e9:7a:28: db:fa:21:54:9e:4e:eb:b1:db:7c:b2:27:b6:2b:3f: 36:0c:d8:c1:d6:b3:c4:39:fc:45:34:c9:18:75:1d: 16:2c:8d:d1:f8:da:a4:be:73:78:42:fa:6a:fa:b5: 49:8f:1c:9e:a1:39:85:67:61:a6:7e:9f:33:ba:e1: 26:a0:78:ed:bb:d1:49:eb:80:cf:a9:87:1c:15:f7: be:8d:7d:c6:46:1f:82:4a:99:8c:c5:5a:bf:97:df: 09:f9:ba:1c:d3:4d:a8:36:9d:a9:85:c3:89:73:ca: 5f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:78:E0:15:44:2F:C6:5D:BF:74:11:83:58:79:23:57:14:E2:26:A4 X509v3 Authority Key Identifier: keyid:D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ba:19:ff:92:6c:09:b5:4b:da:96:4d:fa:52:74:f8:01:8c: 55:dd:a9:2b:d4:d0:8b:df:a1:a8:54:7e:73:2f:ae:5a:ad:e2: f1:5e:f8:55:8b:74:9f:66:f0:e7:5a:d3:8a:c4:41:c3:b9:44: 5f:c3:ed:8d:85:1c:71:44:ed:ef:1e:1b:7f:b8:54:7c:99:2d: f3:d3:bd:69:56:54:a2:c3:b7:1e:a5:e1:66:8a:cf:1f:1c:e2: 09:7e:9c:28:40:fc:05:0a:c4:12:42:64:fd:10:9c:95:b6:63: 12:9e:29:b1:ad:48:8a:76:28:b4:94:a4:03:ce:a8:d6:d1:dd: 8f:97:c8:36:b3:57:b8:89:56:be:81:66:32:09:47:c6:5e:08: 27:f4:1e:11:c6:ca:32:d9:d8:e5:48:b1:c4:39:1f:df:8b:0e: bf:ea:6c:21:b2:54:6f:28:9c:4e:46:e0:8f:5a:e5:a2:c3:7d: 7b:78:5a:93:e8:b8:2f:69:fb:a8:e6:17:3e:ca:4b:b3:a0:38: 59:75:df:8f:c7:ea:95:65:34:f0:da:7e:ca:b5:07:14:7f:ec: eb:c0:8a:1b:97:dc:f3:3a:66:99:d1:d8:87:bf:4d:9f:2b:f8: 0a:64:cf:04:03:40:9e:9d:3e:6d:2a:32:45:27:1c:eb:e4:fc: 47:03:f5:c3 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIu8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDZD NUMxOENDRTYwMzA3MzBCQzIyMkFCMTdGNEUzRDhGMTYwMzAzMzAeFw0yNjAxMjUx MjAwMzJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDIwNzhFMDE1NDQyRkM2 NURCRjc0MTE4MzU4NzkyMzU3MTRFMjI2QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/247LyyAcMUPV9UVkxl62WJH5jLpqIV8hXtpZMy4JH6vPoi/S e+rxW43lxcKeuytrK1ZUz5emla5OCiVFbAGA5AnNEue1G9I/P3gI1l1iVLLpfEK4 KyD1EGRJhxAiCfhcXPySTXEOJRnc3HhYNTZ0EhO8EokUgQ4jjra+HhUrsTZ30TQ0 mski6DTm/ez1ndCdiel6KNv6IVSeTuux23yyJ7YrPzYM2MHWs8Q5/EU0yRh1HRYs jdH42qS+c3hC+mr6tUmPHJ6hOYVnYaZ+nzO64SageO270UnrgM+phxwV976NfcZG H4JKmYzFWr+X3wn5uhzTTag2namFw4lzyl+fAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUIHjgFUQvxl2/dBGDWHkjVxTiJqQwHwYDVR0jBBgwFoAU1sXBjM5gMHMLwiKr F/Tj2PFgMDMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc5 My8xc1hCak01Z01ITUx3aUtyRl9UajJQRmdNRE0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzFzWEJqTTVnTUhNTHdpS3JGX1RqMlBGZ01ETS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3OTMvMXNYQmpNNWdNSE1M d2lLckZfVGoyUEZnTURNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIG6Gf+SbAm1S9qWTfpSdPgBjFXdqSvU0IvfoahUfnMvrlqt4vFe+FWLdJ9m 8Oda04rEQcO5RF/D7Y2FHHFE7e8eG3+4VHyZLfPTvWlWVKLDtx6l4WaKzx8c4gl+ nChA/AUKxBJCZP0QnJW2YxKeKbGtSIp2KLSUpAPOqNbR3Y+XyDazV7iJVr6BZjIJ R8ZeCCf0HhHGyjLZ2OVIscQ5H9+LDr/qbCGyVG8onE5G4I9a5aLDfXt4WpPouC9p +6jmFz7KS7OgOFl134/H6pVlNPDafsq1BxR/7OvAihuX3PM6ZpnR2Ie/TZ8r+Apk zwQDQJ6dPm0qMkUnHOvk/EcD9cM= -----END CERTIFICATE-----Generated at Sun Jan 25 15:32:07 2026 by rpki-client