This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.mft File: UgcnAEPag5sInL-JHVe0GrI5rYo.mft (raw, json) Hash identifier: EQTBg9/BdwCmC+etEuxcNS9P8v66olPyMOU1gXzlWKs= Subject key identifier: 07:6B:FC:AB:6C:1B:91:6D:A2:F5:0F:1A:9F:03:3F:91:66:7C:4A:22 Authority key identifier: 52:07:27:00:43:DA:83:9B:08:9C:BF:89:1D:57:B4:1A:B2:39:AD:8A Certificate issuer: /CN=5207270043DA839B089CBF891D57B41AB239AD8A Certificate serial: 0D00 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UgcnAEPag5sInL-JHVe0GrI5rYo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.mft Manifest number: 0D00 Signing time: Sun 25 Jan 2026 16:57:57 +0000 Manifest this update: Sun 25 Jan 2026 16:57:57 +0000 Manifest next update: Sun 25 Jan 2026 22:57:57 +0000 Files and hashes: 1: UgcnAEPag5sInL-JHVe0GrI5rYo.crl (hash: VRFbZid3nQakdbXoPSPUor7HlnEIeC9c+HQwBodo7xY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UgcnAEPag5sInL-JHVe0GrI5rYo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 20:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3328 (0xd00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5207270043DA839B089CBF891D57B41AB239AD8A Validity Not Before: Jan 25 16:57:57 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=076BFCAB6C1B916DA2F50F1A9F033F91667C4A22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:25:7c:17:61:a5:b7:97:2d:83:0c:08:aa:14: d8:8c:da:f3:0e:a4:fc:c6:60:69:23:35:d3:df:a5: 20:17:4c:f8:ca:fd:24:d5:c1:f9:f7:8c:87:fd:a4: 13:37:70:b9:a7:1a:c6:76:5a:ff:65:eb:00:3b:cb: ad:70:e4:62:6e:f6:50:78:0e:c8:91:02:42:ec:a8: 27:89:a2:d7:b2:94:c8:85:90:8f:2a:4c:b5:19:14: 42:33:cb:83:e8:38:27:72:1b:29:71:b5:41:2e:0f: 54:25:dd:8b:f0:ef:4b:32:1f:5f:12:dd:c7:d0:7f: 4a:db:7b:a1:21:0e:dd:b8:75:97:d2:05:98:95:13: 81:44:09:41:d6:8a:14:c0:b5:a1:f0:1c:8c:a1:a3: d5:ad:fe:da:d8:ac:a9:6b:bf:54:27:b1:96:6b:88: 3b:60:23:36:5e:d1:5d:7a:7c:80:9c:f6:84:40:c8: 2f:88:31:94:f7:9e:bc:50:d2:2e:15:9a:23:df:9c: 20:39:42:88:d7:c5:d7:1a:10:b1:2c:7a:0f:e3:ed: 0d:d9:d7:c2:6f:be:8b:a0:84:51:8f:b2:97:b8:54: 00:f4:b8:7f:3a:44:5d:5f:5d:2b:6a:25:01:02:73: 4c:71:ea:b9:7a:64:61:27:ca:ec:99:79:8a:c1:83: 20:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:6B:FC:AB:6C:1B:91:6D:A2:F5:0F:1A:9F:03:3F:91:66:7C:4A:22 X509v3 Authority Key Identifier: keyid:52:07:27:00:43:DA:83:9B:08:9C:BF:89:1D:57:B4:1A:B2:39:AD:8A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UgcnAEPag5sInL-JHVe0GrI5rYo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:91:0c:2f:27:3e:60:6c:90:6b:10:95:11:9b:db:2a:32:e7: e8:81:19:4a:db:a6:7f:6a:66:e9:bd:27:c4:5f:ab:63:7d:27: fb:0f:50:aa:78:29:ac:53:7e:00:b2:5f:b7:5e:fd:54:dd:4c: ec:05:f7:88:05:e7:cd:f7:dd:09:0b:fe:60:42:91:47:2c:af: ed:af:32:30:ed:b1:f7:94:58:ff:89:8e:f3:27:59:53:21:83: d3:4e:36:37:87:af:f2:10:f2:eb:40:a6:1a:63:af:9b:d2:59: 4b:a4:3d:31:76:86:1a:fe:c0:09:b0:65:08:3c:b2:9c:bd:95: 32:ed:cf:b6:5e:8d:a2:b9:3c:4e:03:6f:15:8d:e7:d7:2f:d4: 28:bf:ba:e7:40:8b:f3:c2:da:b8:67:a7:89:60:5a:f2:89:c9: 29:bb:ca:73:ad:5c:2d:1e:8e:26:f5:85:48:28:92:c3:d6:c5: 98:47:f8:6f:0f:36:97:73:22:d0:ca:00:36:20:99:c3:2d:51: ed:28:7c:6f:4a:ef:fc:5a:70:9a:25:42:74:ae:04:1e:e2:4d: 6a:6e:dc:64:4d:45:3b:cd:7d:81:70:87:99:a4:dc:94:fe:1e: c3:cb:e8:23:dc:79:51:09:e6:32:a6:ea:82:1f:85:37:0b:09: d2:af:fb:6b -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICDQAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTIw NzI3MDA0M0RBODM5QjA4OUNCRjg5MUQ1N0I0MUFCMjM5QUQ4QTAeFw0yNjAxMjUx NjU3NTdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDA3NkJGQ0FCNkMxQjkx NkRBMkY1MEYxQTlGMDMzRjkxNjY3QzRBMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8JXwXYaW3ly2DDAiqFNiM2vMOpPzGYGkjNdPfpSAXTPjK/STV wfn3jIf9pBM3cLmnGsZ2Wv9l6wA7y61w5GJu9lB4DsiRAkLsqCeJoteylMiFkI8q TLUZFEIzy4PoOCdyGylxtUEuD1Ql3Yvw70syH18S3cfQf0rbe6EhDt24dZfSBZiV E4FECUHWihTAtaHwHIyho9Wt/trYrKlrv1QnsZZriDtgIzZe0V16fICc9oRAyC+I MZT3nrxQ0i4VmiPfnCA5QojXxdcaELEseg/j7Q3Z18JvvoughFGPspe4VAD0uH86 RF1fXStqJQECc0xx6rl6ZGEnyuyZeYrBgyCRAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUB2v8q2wbkW2i9Q8anwM/kWZ8SiIwHwYDVR0jBBgwFoAUUgcnAEPag5sInL+J HVe0GrI5rYowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI3 MS9VZ2NuQUVQYWc1c0luTC1KSFZlMEdySTVyWW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VnY25BRVBhZzVzSW5MLUpIVmUwR3JJNXJZby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNzEvVWdjbkFFUGFnNXNJ bkwtSkhWZTBHckk1cllvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJ+RDC8nPmBskGsQlRGb2yoy5+iBGUrbpn9qZum9J8Rfq2N9J/sPUKp4KaxT fgCyX7de/VTdTOwF94gF58333QkL/mBCkUcsr+2vMjDtsfeUWP+JjvMnWVMhg9NO NjeHr/IQ8utAphpjr5vSWUukPTF2hhr+wAmwZQg8spy9lTLtz7ZejaK5PE4DbxWN 59cv1Ci/uudAi/PC2rhnp4lgWvKJySm7ynOtXC0ejib1hUgoksPWxZhH+G8PNpdz ItDKADYgmcMtUe0ofG9K7/xacJolQnSuBB7iTWpu3GRNRTvNfYFwh5mk3JT+HsPL 6CPceVEJ5jKm6oIfhTcLCdKv+2s= -----END CERTIFICATE-----Generated at Sun Jan 25 20:12:05 2026 by rpki-client