This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft File: OLYZ9BoGgZD-7QQul78QRCJYnkE.mft (raw, json) Hash identifier: NQ8+m0JBMXxbcjc2uluNHtZRiPLZQIji22bg8MnutWI= Subject key identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F Authority key identifier: 38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41 Certificate issuer: /CN=38B619F41A068190FEED042E97BF104422589E41 Certificate serial: 0C28 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft Manifest number: 0C28 Signing time: Sun 25 Jan 2026 06:26:32 +0000 Manifest this update: Sun 25 Jan 2026 06:26:32 +0000 Manifest next update: Sun 25 Jan 2026 12:26:32 +0000 Files and hashes: 1: OLYZ9BoGgZD-7QQul78QRCJYnkE.crl (hash: 8teVzun56ikHgen10n4k4wIPJSAvEej9Npx6gkr0ZVM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 11:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3112 (0xc28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38B619F41A068190FEED042E97BF104422589E41 Validity Not Before: Jan 25 06:26:32 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=795B12F48C5A66122DA21CC6799E226BD99D7B6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:31:a1:70:f2:c2:e8:60:d9:f8:60:61:8c:fd: 09:ca:51:3a:d4:1d:00:9b:34:cc:42:ae:a0:59:dd: 40:63:ea:9f:e8:62:43:e8:68:88:5e:59:10:59:8c: a1:70:97:ef:1e:59:b7:0e:53:b6:61:f3:d2:c5:a2: 37:26:ec:43:c3:a2:c6:ce:10:50:49:f1:fd:a0:72: 1b:b7:3c:d8:12:97:fc:de:82:28:93:d7:1d:21:cb: f1:ad:44:d0:04:65:89:c1:84:17:28:76:fd:14:13: c9:aa:03:56:ad:8b:85:e8:19:5a:c4:e4:0c:3b:2c: 07:c5:20:78:0b:7d:58:fe:72:4a:37:56:80:37:63: c3:d1:9c:eb:9b:e9:49:84:bf:9a:65:fb:3c:6a:37: 93:f5:68:62:03:50:8b:f1:0d:83:6f:24:35:2e:4f: 0c:25:8b:a7:9d:4e:52:28:60:b1:d9:9d:f6:11:55: b5:97:69:15:cc:1c:4f:86:6e:06:c5:1f:43:59:95: 15:16:d3:f2:65:8b:9a:f0:ee:c9:25:84:61:43:34: e3:0b:6e:43:a0:82:0f:e2:92:5e:e5:fd:a9:28:4a: da:e0:af:4d:ff:70:5e:8c:39:53:6f:37:65:60:ad: 24:c3:04:74:55:1f:9e:34:1c:ad:3a:7f:96:6b:a3: 5f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F X509v3 Authority Key Identifier: keyid:38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:84:dd:95:6b:37:7c:78:06:ab:bb:fa:ef:c8:94:c1:d9:49: 93:3b:ac:71:73:67:80:ea:ae:87:25:04:49:2d:fa:ca:b6:e4: 1d:8d:05:8d:0c:79:fa:f5:4d:b8:bb:a6:dc:ab:f0:da:20:e8: ee:62:70:e6:23:00:95:9a:78:12:ce:59:2d:a9:19:96:99:06: 8f:bc:2f:0f:8a:fe:c9:29:b6:05:28:8e:be:4b:70:16:c1:c7: 12:22:f3:d1:42:c8:74:0d:c8:d9:0a:e8:fa:08:26:11:b1:6b: 3d:dd:52:13:37:f5:5f:5d:34:85:f0:be:b9:98:3e:ab:2e:ef: 94:dd:f1:19:a2:cf:50:04:0d:9c:c9:fd:9c:08:2c:42:69:9f: 2d:61:34:76:67:3d:bd:61:97:25:df:e9:29:a0:1e:c8:34:78: ee:d6:07:f9:74:c8:c6:0f:5a:66:c5:0f:69:25:9c:48:00:ca: 4e:a6:79:6f:9d:9f:07:33:1a:a0:36:07:57:78:90:6b:29:24: 1c:5e:cf:00:a4:ff:9b:5c:f8:1f:41:06:bf:b0:f8:02:13:8c: 17:f1:74:65:fa:e2:b6:b2:7b:65:98:85:33:72:a8:cd:7d:60: 0f:9a:0a:09:a5:15:5d:20:fa:5f:72:31:31:20:cd:1d:25:f9: ce:64:63:b7 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDCgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzhC NjE5RjQxQTA2ODE5MEZFRUQwNDJFOTdCRjEwNDQyMjU4OUU0MTAeFw0yNjAxMjUw NjI2MzJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDc5NUIxMkY0OEM1QTY2 MTIyREEyMUNDNjc5OUUyMjZCRDk5RDdCNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8MaFw8sLoYNn4YGGM/QnKUTrUHQCbNMxCrqBZ3UBj6p/oYkPo aIheWRBZjKFwl+8eWbcOU7Zh89LFojcm7EPDosbOEFBJ8f2gchu3PNgSl/zegiiT 1x0hy/GtRNAEZYnBhBcodv0UE8mqA1ati4XoGVrE5Aw7LAfFIHgLfVj+cko3VoA3 Y8PRnOub6UmEv5pl+zxqN5P1aGIDUIvxDYNvJDUuTwwli6edTlIoYLHZnfYRVbWX aRXMHE+GbgbFH0NZlRUW0/Jli5rw7sklhGFDNOMLbkOggg/ikl7l/akoStrgr03/ cF6MOVNvN2VgrSTDBHRVH540HK06f5Zro187AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUeVsS9IxaZhItohzGeZ4ia9mde28wHwYDVR0jBBgwFoAUOLYZ9BoGgZD+7QQu l78QRCJYnkEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 NS9PTFlaOUJvR2daRC03UVF1bDc4UVJDSllua0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09MWVo5Qm9HZ1pELTdRUXVsNzhRUkNKWW5rRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjUvT0xZWjlCb0dnWkQt N1FRdWw3OFFSQ0pZbmtFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJyE3ZVrN3x4Bqu7+u/IlMHZSZM7rHFzZ4DqroclBEkt+sq25B2NBY0Mefr1 Tbi7ptyr8Nog6O5icOYjAJWaeBLOWS2pGZaZBo+8Lw+K/skptgUojr5LcBbBxxIi 89FCyHQNyNkK6PoIJhGxaz3dUhM39V9dNIXwvrmYPqsu75Td8Rmiz1AEDZzJ/ZwI LEJpny1hNHZnPb1hlyXf6SmgHsg0eO7WB/l0yMYPWmbFD2klnEgAyk6meW+dnwcz GqA2B1d4kGspJBxezwCk/5tc+B9BBr+w+AITjBfxdGX64raye2WYhTNyqM19YA+a CgmlFV0g+l9yMTEgzR0l+c5kY7c= -----END CERTIFICATE-----Generated at Sun Jan 25 10:46:01 2026 by rpki-client