This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft File: 3MTV8l8-ospnw9i-tmvzCTPlkWo.mft (raw, json) Hash identifier: 13/MhO877fMpMdcF65XB/3O9eozkHwFxJbG1dGFVUmE= Subject key identifier: 91:A5:20:C0:CA:F5:59:4B:54:50:3E:1A:F9:B3:37:B9:2A:50:B3:E0 Authority key identifier: DC:C4:D5:F2:5F:3E:A2:CA:67:C3:D8:BE:B6:6B:F3:09:33:E5:91:6A Certificate issuer: /CN=DCC4D5F25F3EA2CA67C3D8BEB66BF30933E5916A Certificate serial: 0E06 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3MTV8l8-ospnw9i-tmvzCTPlkWo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft Manifest number: 0E03 Signing time: Sun 25 Jan 2026 15:58:51 +0000 Manifest this update: Sun 25 Jan 2026 15:58:51 +0000 Manifest next update: Sun 25 Jan 2026 21:58:51 +0000 Files and hashes: 1: 3MTV8l8-ospnw9i-tmvzCTPlkWo.crl (hash: RDx2OXmtDnYXk+XPmGnZZ0dI1x27Rvrp2I1dZWG+6Bk=) 2: P7uWjXjonyWWDUrUE1VsBjgamkk.roa (hash: jhYkTgyRVhWCnlzsLbr8rLzp25f785WwAe+V21SuVA0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3MTV8l8-ospnw9i-tmvzCTPlkWo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 20:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3590 (0xe06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCC4D5F25F3EA2CA67C3D8BEB66BF30933E5916A Validity Not Before: Jan 25 15:58:51 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=91A520C0CAF5594B54503E1AF9B337B92A50B3E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b6:16:81:d4:29:dd:a6:37:0c:c1:46:98:1d: 4e:df:ca:de:f1:b0:9c:67:99:92:a6:fa:14:6f:f4: 1d:2d:ea:8a:6a:fc:33:d8:77:6d:9b:0b:fa:eb:ba: b9:a5:22:b9:fa:4f:17:49:4a:51:84:51:51:aa:7f: 45:a1:ef:b3:e3:61:42:07:04:21:c8:a4:42:d4:7b: 6a:68:d1:2d:de:92:5d:89:8c:40:8c:71:84:6d:28: 95:74:ca:09:99:6e:61:f1:c4:3a:86:ef:04:c1:67: 3f:e2:bb:59:c0:50:16:66:6d:22:87:42:78:8d:d6: 75:6a:0e:8d:b2:c5:aa:09:57:9f:58:99:66:63:6a: 82:07:5c:60:2a:ff:63:53:2f:db:d3:ba:4b:8c:69: d3:44:49:05:c1:85:ec:3e:bc:4b:9a:42:96:87:ae: 72:fd:ca:53:e3:78:bf:9e:f1:d7:ac:3a:2c:c8:17: a0:82:70:75:7e:99:79:00:7c:73:78:70:d1:6f:11: 63:fb:0f:f7:10:75:9c:e2:a0:b1:85:a7:3f:e4:a1: 9f:e5:74:86:ab:2c:24:89:0c:29:02:9d:11:06:27: c8:37:84:77:54:86:34:06:41:5e:a2:59:26:ce:35: 5c:68:77:2e:30:0f:95:2a:e8:79:c0:95:c5:8d:09: 4a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A5:20:C0:CA:F5:59:4B:54:50:3E:1A:F9:B3:37:B9:2A:50:B3:E0 X509v3 Authority Key Identifier: keyid:DC:C4:D5:F2:5F:3E:A2:CA:67:C3:D8:BE:B6:6B:F3:09:33:E5:91:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3MTV8l8-ospnw9i-tmvzCTPlkWo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:8a:66:9d:3c:8f:31:d3:0d:f6:d7:d1:ff:14:cc:96:68:d8: 75:a0:1e:c4:54:31:64:72:31:27:fc:15:4a:9a:8c:eb:64:31: 1f:64:7a:4d:aa:22:f1:34:fc:fa:80:2e:7a:64:17:c9:3c:b2: 54:e7:5a:92:fe:ab:17:89:17:66:23:53:c1:f6:59:54:1a:26: 89:36:64:f6:0f:05:a0:d9:4c:db:6e:fd:17:f0:b4:6f:b6:b1: f2:33:58:a3:d9:a8:b0:69:17:6b:b2:f0:c1:7e:08:79:41:ee: d5:1e:ec:25:d4:67:cf:e0:2d:e4:51:c9:3b:95:99:81:d0:43: ae:5c:4e:17:cf:4d:52:1d:18:5a:d6:07:12:27:cd:40:34:14: 24:8c:7a:71:06:76:ad:82:4c:fb:a7:0b:4a:e5:6e:f5:b2:7f: 33:5e:5a:d6:58:0b:cc:53:fb:bb:8f:92:b4:4a:30:7d:5e:f3: c8:0c:2e:f0:db:8c:09:4d:01:8e:b1:ad:29:79:4f:f9:56:87: 02:43:d5:64:e9:33:69:48:a2:f2:2e:cb:e9:18:d5:45:bc:4a: 73:fd:b8:35:52:68:a9:ce:d5:17:bc:88:48:64:45:7d:50:46: e8:9a:89:35:2e:66:67:93:3d:26:9e:b3:41:05:31:16:98:6d: 2d:c1:ae:0e -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREND NEQ1RjI1RjNFQTJDQTY3QzNEOEJFQjY2QkYzMDkzM0U1OTE2QTAeFw0yNjAxMjUx NTU4NTFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDkxQTUyMEMwQ0FGNTU5 NEI1NDUwM0UxQUY5QjMzN0I5MkE1MEIzRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIthaB1CndpjcMwUaYHU7fyt7xsJxnmZKm+hRv9B0t6opq/DPY d22bC/rrurmlIrn6TxdJSlGEUVGqf0Wh77PjYUIHBCHIpELUe2po0S3ekl2JjECM cYRtKJV0ygmZbmHxxDqG7wTBZz/iu1nAUBZmbSKHQniN1nVqDo2yxaoJV59YmWZj aoIHXGAq/2NTL9vTukuMadNESQXBhew+vEuaQpaHrnL9ylPjeL+e8desOizIF6CC cHV+mXkAfHN4cNFvEWP7D/cQdZzioLGFpz/koZ/ldIarLCSJDCkCnREGJ8g3hHdU hjQGQV6iWSbONVxody4wD5Uq6HnAlcWNCUp7AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUkaUgwMr1WUtUUD4a+bM3uSpQs+AwHwYDVR0jBBgwFoAU3MTV8l8+ospnw9i+ tmvzCTPlkWowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 MS8zTVRWOGw4LW9zcG53OWktdG12ekNUUGxrV28uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzNNVFY4bDgtb3Nwbnc5aS10bXZ6Q1RQbGtXby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjEvM01UVjhsOC1vc3Bu dzlpLXRtdnpDVFBsa1dvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACmKZp08jzHTDfbX0f8UzJZo2HWgHsRUMWRyMSf8FUqajOtkMR9kek2qIvE0 /PqALnpkF8k8slTnWpL+qxeJF2YjU8H2WVQaJok2ZPYPBaDZTNtu/RfwtG+2sfIz WKPZqLBpF2uy8MF+CHlB7tUe7CXUZ8/gLeRRyTuVmYHQQ65cThfPTVIdGFrWBxIn zUA0FCSMenEGdq2CTPunC0rlbvWyfzNeWtZYC8xT+7uPkrRKMH1e88gMLvDbjAlN AY6xrSl5T/lWhwJD1WTpM2lIovIuy+kY1UW8SnP9uDVSaKnO1Re8iEhkRX1QRuia iTUuZmeTPSaes0EFMRaYbS3Brg4= -----END CERTIFICATE-----Generated at Sun Jan 25 20:12:59 2026 by rpki-client