This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft File: gL0CjXa7PVXmZBaamvDfKpjHUFU.mft (raw, json) Hash identifier: oHc0bNttOn+fkdwZipez9g47q20kh89gFAOdhOe93Fg= Subject key identifier: FA:3F:BB:B8:7E:5C:7B:29:FA:21:7F:39:55:03:60:5A:00:1E:68:CC Authority key identifier: 80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 Certificate issuer: /CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Certificate serial: 04BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft Manifest number: 04BA Signing time: Sun 25 Jan 2026 01:57:09 +0000 Manifest this update: Sun 25 Jan 2026 01:57:09 +0000 Manifest next update: Sun 25 Jan 2026 07:57:09 +0000 Files and hashes: 1: 8C2_C6gmSDmgalrvcm8Ft5YQ9fc.roa (hash: cFvjS3C7Ni9jMGlyzmgHeGCnydk3CR0hQkqEtMnTBtQ=) 2: gL0CjXa7PVXmZBaamvDfKpjHUFU.crl (hash: 1nxd8WfDTQi5saLMkTvW3cFmj8YyaQyjZwi2BNs4omk=) 3: rG9SJlY2VCyvJqAzoBsnhQ0xcBM.roa (hash: JIOcK/4hBjG98Ni9c37B+JALVOIlIpEiHyXVV83dZhY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 07:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Validity Not Before: Jan 25 01:57:09 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=FA3FBBB87E5C7B29FA217F395503605A001E68CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:27:e1:84:0a:83:ff:ec:79:a2:9d:4a:97:a8: 69:00:14:a3:9d:11:75:70:8d:a7:1c:d4:66:d5:51: c7:10:fc:49:8f:34:62:61:f7:b2:61:e1:51:ba:51: 71:61:35:9c:f3:16:0c:cf:41:80:40:e8:c4:6a:d1: 20:dc:80:0a:bf:c2:a1:46:db:20:68:d8:d5:6b:66: 92:8d:36:f5:cd:8e:c0:00:fe:a8:f1:35:64:13:00: 34:65:0d:4d:03:67:2e:da:ca:1c:41:6b:cd:dd:cb: f2:af:be:43:b0:4d:6c:98:a2:6d:ef:89:00:a9:03: df:11:50:c2:95:21:9c:db:3d:a8:cc:4c:81:ed:be: 06:06:44:63:60:67:89:d9:fb:83:49:94:c9:fd:26: 62:c4:20:29:28:a2:b2:c3:cf:0e:dd:21:41:f5:3f: 5a:ed:c9:7c:62:4a:dd:44:9f:c7:be:9d:a0:e8:86: 48:5c:dc:de:a5:4e:cf:0a:c7:9d:e3:d8:59:82:62: 12:94:a9:5b:fe:cc:a4:f2:54:05:32:7d:07:7c:7a: ba:1a:e9:08:a8:c0:6a:cb:fa:db:f5:f1:69:54:d5: 74:72:4d:71:a3:6c:02:7e:b0:81:d8:de:46:19:32: ad:37:ae:d1:f1:87:43:36:c8:8b:6a:25:cd:3d:82: 78:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3F:BB:B8:7E:5C:7B:29:FA:21:7F:39:55:03:60:5A:00:1E:68:CC X509v3 Authority Key Identifier: keyid:80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:b0:04:04:40:22:0d:dd:64:f0:27:50:4a:db:4b:8d:18:3c: 55:99:7c:74:9d:a1:3f:04:0d:d3:bd:ef:72:07:d7:f1:dc:25: 7c:49:c0:35:60:2e:aa:35:4b:29:e0:b4:27:13:e7:52:a8:5f: c7:fc:71:ac:02:76:a8:a9:8a:3e:db:02:bf:0c:97:ca:55:1e: d3:64:6f:e1:92:08:f4:ac:8e:b4:9a:0d:89:9b:f5:30:ac:dc: a4:c0:e6:3f:9b:d7:83:d9:e2:01:fb:99:bf:1a:47:b4:35:1a: 08:93:87:1e:57:ef:b7:90:96:e2:02:8c:90:45:2f:7f:7c:7f: 25:d0:aa:e9:b6:de:79:51:53:4d:68:9e:f7:17:72:46:0a:76: e5:34:35:c3:45:cb:d3:45:ef:cb:d6:17:7f:22:5f:41:9a:47: e9:03:bc:5d:f7:0c:80:2c:21:3e:71:a2:64:1f:b5:f0:31:19: 54:e6:5f:b2:f8:25:4e:9b:94:c3:e8:05:3e:09:4d:8f:b7:44: b6:af:eb:63:b5:63:ef:6c:46:67:94:26:fc:e7:0b:78:e6:81: f8:66:ff:e3:c7:5f:ef:be:be:8e:cd:91:09:d4:9b:42:d5:81: c9:98:0e:da:c2:50:4d:fc:e0:f4:01:57:47:78:91:e8:40:58: a4:c1:44:96 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODBC RDAyOEQ3NkJCM0Q1NUU2NjQxNjlBOUFGMERGMkE5OEM3NTA1NTAeFw0yNjAxMjUw MTU3MDlaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEZBM0ZCQkI4N0U1QzdC MjlGQTIxN0YzOTU1MDM2MDVBMDAxRTY4Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaJ+GECoP/7HminUqXqGkAFKOdEXVwjacc1GbVUccQ/EmPNGJh 97Jh4VG6UXFhNZzzFgzPQYBA6MRq0SDcgAq/wqFG2yBo2NVrZpKNNvXNjsAA/qjx NWQTADRlDU0DZy7ayhxBa83dy/KvvkOwTWyYom3viQCpA98RUMKVIZzbPajMTIHt vgYGRGNgZ4nZ+4NJlMn9JmLEICkoorLDzw7dIUH1P1rtyXxiSt1En8e+naDohkhc 3N6lTs8Kx53j2FmCYhKUqVv+zKTyVAUyfQd8eroa6QiowGrL+tv18WlU1XRyTXGj bAJ+sIHY3kYZMq03rtHxh0M2yItqJc09gnghAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU+j+7uH5ceyn6IX85VQNgWgAeaMwwHwYDVR0jBBgwFoAUgL0CjXa7PVXmZBaa mvDfKpjHUFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2 NC9nTDBDalhhN1BWWG1aQmFhbXZEZktwakhVRlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2dMMENqWGE3UFZYbVpCYWFtdkRmS3BqSFVGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjQvZ0wwQ2pYYTdQVlht WkJhYW12RGZLcGpIVUZVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAH+wBARAIg3dZPAnUErbS40YPFWZfHSdoT8EDdO973IH1/HcJXxJwDVgLqo1 SyngtCcT51KoX8f8cawCdqipij7bAr8Ml8pVHtNkb+GSCPSsjrSaDYmb9TCs3KTA 5j+b14PZ4gH7mb8aR7Q1GgiThx5X77eQluICjJBFL398fyXQqum23nlRU01onvcX ckYKduU0NcNFy9NF78vWF38iX0GaR+kDvF33DIAsIT5xomQftfAxGVTmX7L4JU6b lMPoBT4JTY+3RLav62O1Y+9sRmeUJvznC3jmgfhm/+PHX+++vo7NkQnUm0LVgcmY DtrCUE384PQBV0d4kehAWKTBRJY= -----END CERTIFICATE-----Generated at Sun Jan 25 07:50:46 2026 by rpki-client