This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft File: E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft (raw, json) Hash identifier: FuDWR/ZiG1qE7LtmGc4UmSuT9QK9dlrUh6Gcyo3iU90= Subject key identifier: B9:43:8C:55:06:FC:B9:C4:7B:7F:7F:60:BA:4C:12:3B:FB:48:4F:87 Authority key identifier: 13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75 Certificate issuer: /CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75 Certificate serial: 10C2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft Manifest number: 10BE Signing time: Sun 25 Jan 2026 10:58:27 +0000 Manifest this update: Sun 25 Jan 2026 10:58:27 +0000 Manifest next update: Sun 25 Jan 2026 16:58:27 +0000 Files and hashes: 1: E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl (hash: iWjOMwpZZXuHmi9Nz2QCUhwKv1Owtw305p1FlpjfvyA=) 2: aoCzfRxZ2-L1gM2xlNnF5TJocgc.roa (hash: 5UBuha1VpzUGgTtdOzk2lSCl0/m1ejK0SAA7aTXxIU4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 16:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4290 (0x10c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75 Validity Not Before: Jan 25 10:58:27 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=B9438C5506FCB9C47B7F7F60BA4C123BFB484F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:01:84:3c:bc:71:4c:46:3d:ab:2e:d8:52:f4: b7:ec:1a:b2:26:2c:91:04:ab:9d:e5:db:17:1c:5a: 30:36:89:dd:3e:9a:0f:9a:16:e5:8b:34:05:67:0f: da:fe:e5:81:1b:06:9d:46:f5:de:30:76:34:a6:34: ce:34:e5:88:0b:72:dd:0c:e7:11:59:cb:06:28:04: be:61:e0:cf:8a:93:47:cc:16:df:d1:94:62:f7:60: 26:f4:c5:25:97:28:90:96:0e:51:0b:f4:56:0b:87: b5:28:e8:ff:45:69:e9:35:08:5c:a5:91:c5:6b:a5: c2:07:fe:f2:c3:6f:cb:44:ec:25:1f:36:e2:4e:de: 60:ab:54:cd:87:10:48:68:cb:88:62:d0:f5:4f:4f: ac:92:4b:7a:a6:a4:4e:ee:68:0e:67:4f:f1:2a:36: 0e:f1:43:e0:3a:da:78:ee:ca:89:a0:dc:88:54:c6: 04:f5:1e:a2:58:04:04:85:8b:8a:b0:9e:21:b8:61: 66:42:61:84:53:f6:ef:4f:45:9c:f8:a5:83:ad:9b: 9a:1c:a4:0b:1d:63:b8:9e:67:c0:4f:8a:e0:d2:02: 88:84:91:d9:06:b0:1c:b3:1e:ed:54:d8:34:e5:34: 50:4e:c8:2e:4f:7c:1c:74:a0:e4:65:a5:f7:a5:8e: c9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:43:8C:55:06:FC:B9:C4:7B:7F:7F:60:BA:4C:12:3B:FB:48:4F:87 X509v3 Authority Key Identifier: keyid:13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:e1:e0:78:60:d2:c6:e6:90:6d:19:cf:92:82:f2:4f:b3:a0: 5d:ad:1a:87:f2:4e:61:02:39:28:8f:26:26:77:f5:42:25:0a: 8e:ff:4b:fa:49:38:d8:93:03:23:d9:94:25:fa:1b:34:66:d3: 12:f8:67:e3:43:a8:88:f4:47:46:1f:59:f1:df:74:e3:ae:39: 9e:a8:9b:8b:ce:a2:ab:b5:06:ec:f9:ac:60:27:ab:1d:00:1d: 1f:b7:03:43:06:af:fa:ee:ad:60:68:22:bd:12:19:8d:2f:b9: 9f:c5:a9:1c:4b:7f:64:cb:de:cc:5a:7b:2a:4e:a3:3d:cd:62: 6d:37:6c:ad:53:e2:96:64:4c:71:38:34:dc:f5:b9:75:7c:63: 3e:7e:53:24:47:21:d8:ac:15:71:4c:49:66:f5:24:49:dd:c6: 72:81:85:ad:57:30:35:81:62:cf:f7:19:72:ee:2f:da:99:4b: cd:b3:d4:5d:5e:2d:4d:ba:87:29:ea:a8:c4:81:28:94:01:f1: a1:19:56:e7:e5:cb:d3:2c:16:bd:2d:ab:af:93:a4:87:90:8e: 5b:70:03:a1:4f:de:3a:8c:4a:4d:f1:f2:14:6d:d5:2d:71:fb: 72:97:97:4e:2d:45:95:32:0e:6e:55:25:24:82:93:b0:21:8f: e9:24:21:91 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICEMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTM2 QTM5Qzc2MzBBM0M3NDkxMDUwRDNFOURCRDVCNkY3OTA2RkQ3NTAeFw0yNjAxMjUx MDU4MjdaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEI5NDM4QzU1MDZGQ0I5 QzQ3QjdGN0Y2MEJBNEMxMjNCRkI0ODRGODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1AYQ8vHFMRj2rLthS9LfsGrImLJEEq53l2xccWjA2id0+mg+a FuWLNAVnD9r+5YEbBp1G9d4wdjSmNM405YgLct0M5xFZywYoBL5h4M+Kk0fMFt/R lGL3YCb0xSWXKJCWDlEL9FYLh7Uo6P9Faek1CFylkcVrpcIH/vLDb8tE7CUfNuJO 3mCrVM2HEEhoy4hi0PVPT6ySS3qmpE7uaA5nT/EqNg7xQ+A62njuyomg3IhUxgT1 HqJYBASFi4qwniG4YWZCYYRT9u9PRZz4pYOtm5ocpAsdY7ieZ8BPiuDSAoiEkdkG sByzHu1U2DTlNFBOyC5PfBx0oORlpfeljsnzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUuUOMVQb8ucR7f39gukwSO/tIT4cwHwYDVR0jBBgwFoAUE2o5x2MKPHSRBQ0+ nb1bb3kG/XUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE4 MS9FMm81eDJNS1BIU1JCUTAtbmIxYmIza0dfWFUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0UybzV4Mk1LUEhTUkJRMC1uYjFiYjNrR19YVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxODEvRTJvNXgyTUtQSFNS QlEwLW5iMWJiM2tHX1hVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACjh4Hhg0sbmkG0Zz5KC8k+zoF2tGofyTmECOSiPJiZ39UIlCo7/S/pJONiT AyPZlCX6GzRm0xL4Z+NDqIj0R0YfWfHfdOOuOZ6om4vOoqu1Buz5rGAnqx0AHR+3 A0MGr/rurWBoIr0SGY0vuZ/FqRxLf2TL3sxaeypOoz3NYm03bK1T4pZkTHE4NNz1 uXV8Yz5+UyRHIdisFXFMSWb1JEndxnKBha1XMDWBYs/3GXLuL9qZS82z1F1eLU26 hynqqMSBKJQB8aEZVufly9MsFr0tq6+TpIeQjltwA6FP3jqMSk3x8hRt1S1x+3KX l04tRZUyDm5VJSSCk7Ahj+kkIZE= -----END CERTIFICATE-----Generated at Sun Jan 25 13:51:33 2026 by rpki-client