This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft File: u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft (raw, json) Hash identifier: +4rf5c/7FAbJGjG7D95Jeaqk8Ka9pJWxFHwRbn7kh7c= Subject key identifier: 02:53:C1:7D:25:A1:E0:73:AD:A2:39:EE:AB:C6:3F:6F:08:F4:25:69 Authority key identifier: BB:FB:51:F1:C5:79:3C:38:82:13:84:FA:98:2C:FE:68:8A:5D:84:0C Certificate issuer: /CN=BBFB51F1C5793C38821384FA982CFE688A5D840C Certificate serial: 0814 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/u_tR8cV5PDiCE4T6mCz-aIpdhAw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft Manifest number: 0814 Signing time: Sun 25 Jan 2026 07:29:18 +0000 Manifest this update: Sun 25 Jan 2026 07:29:18 +0000 Manifest next update: Sun 25 Jan 2026 13:29:18 +0000 Files and hashes: 1: u_tR8cV5PDiCE4T6mCz-aIpdhAw.crl (hash: 34wEHR/pULCN3S/h+X4sPTpz7f11ECjnRMkzoDvk+U8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/u_tR8cV5PDiCE4T6mCz-aIpdhAw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 11:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBFB51F1C5793C38821384FA982CFE688A5D840C Validity Not Before: Jan 25 07:29:18 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=0253C17D25A1E073ADA239EEABC63F6F08F42569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:ef:86:8d:7a:f1:02:b0:0f:dd:9a:f5:e2: e0:22:79:aa:26:0b:fe:d5:ab:d6:60:d3:45:92:07: c9:86:1e:7f:d7:a1:a6:5e:87:fb:c6:5b:8a:42:96: 08:a2:60:75:54:c8:3a:bb:76:f6:1c:9d:90:ea:7d: 89:95:80:a1:7d:47:25:9b:6f:b8:50:62:0a:70:79: a0:a6:6e:a9:77:30:7c:de:32:e3:96:99:27:e1:2c: 54:41:9e:47:1c:2c:0d:8b:ed:ce:3d:ef:5e:57:d1: 7a:74:ab:27:86:f8:1c:97:82:e9:1d:3d:7b:23:46: 39:b2:a8:79:cc:d7:09:2e:e7:fa:58:59:e4:a0:c7: bd:6c:88:fc:64:95:55:c0:f1:ad:19:0f:ce:e9:2b: 95:3b:df:ca:3a:f8:c3:f0:e0:a9:fe:2a:43:72:c3: 9f:a5:12:27:f4:8b:d7:83:82:f0:e7:30:99:2c:d4: c7:a2:f1:f6:ca:6a:90:11:a1:0c:78:ab:ce:b8:d2: 23:53:94:a0:4d:3c:60:bb:df:ca:94:5d:7a:48:a6: 5f:92:09:b6:f1:e5:c1:be:07:ea:b1:9f:f4:66:02: d9:18:34:5c:09:2f:81:f8:c0:85:13:0c:85:f4:81: 2c:57:32:35:7d:cc:ad:7b:ac:be:50:58:69:8e:94: c8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:53:C1:7D:25:A1:E0:73:AD:A2:39:EE:AB:C6:3F:6F:08:F4:25:69 X509v3 Authority Key Identifier: keyid:BB:FB:51:F1:C5:79:3C:38:82:13:84:FA:98:2C:FE:68:8A:5D:84:0C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/u_tR8cV5PDiCE4T6mCz-aIpdhAw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:87:9a:c2:51:2b:58:00:57:45:c8:8a:19:5c:c5:43:f2:a2: 9e:a1:14:b5:63:17:8c:4f:6c:a3:b9:5b:d3:07:75:05:05:04: 92:a3:5d:85:bc:78:fb:61:3a:13:75:b4:5f:20:4c:0a:43:80: 28:58:a6:54:ed:78:72:a1:23:60:bc:f4:71:95:28:89:5b:f1: 9e:c1:a5:3e:be:8a:80:33:cb:8b:53:b6:55:1b:5a:5c:89:9d: fa:4e:c0:31:a8:60:b4:3e:db:4f:a6:1b:38:ef:3b:d3:27:be: 2f:b0:4d:f1:41:d5:cf:f4:7b:c0:3c:a2:24:52:3f:e6:40:6f: e5:f1:b7:c5:6a:cb:10:55:16:65:31:5e:02:32:ca:e6:04:fe: ab:70:a3:c3:b9:6e:ba:2c:46:fb:10:f3:fd:6f:70:1e:70:dc: ae:40:41:9c:63:dc:39:70:15:45:ff:4d:b3:e7:10:1e:20:8a: 70:3b:bc:31:13:98:ad:6a:02:85:75:33:37:2d:52:65:49:4a: 01:1b:98:c2:2e:bd:46:3e:89:48:d6:1a:b1:40:d3:29:22:37: 82:2c:2d:14:d3:5c:6d:fd:04:cc:b1:c1:75:96:30:3d:ac:a1: 2e:ea:3d:71:31:d4:f3:87:bc:c0:6f:5a:46:a5:71:0e:c8:90: f4:5d:61:ec -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJG QjUxRjFDNTc5M0MzODgyMTM4NEZBOTgyQ0ZFNjg4QTVEODQwQzAeFw0yNjAxMjUw NzI5MThaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDAyNTNDMTdEMjVBMUUw NzNBREEyMzlFRUFCQzYzRjZGMDhGNDI1NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQfe+GjXrxArAP3Zr14uAieaomC/7Vq9Zg00WSB8mGHn/XoaZe h/vGW4pClgiiYHVUyDq7dvYcnZDqfYmVgKF9RyWbb7hQYgpweaCmbql3MHzeMuOW mSfhLFRBnkccLA2L7c49715X0Xp0qyeG+ByXgukdPXsjRjmyqHnM1wku5/pYWeSg x71siPxklVXA8a0ZD87pK5U738o6+MPw4Kn+KkNyw5+lEif0i9eDgvDnMJks1Mei 8fbKapARoQx4q8640iNTlKBNPGC738qUXXpIpl+SCbbx5cG+B+qxn/RmAtkYNFwJ L4H4wIUTDIX0gSxXMjV9zK17rL5QWGmOlMhBAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUAlPBfSWh4HOtojnuq8Y/bwj0JWkwHwYDVR0jBBgwFoAUu/tR8cV5PDiCE4T6 mCz+aIpdhAwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMz NC91X3RSOGNWNVBEaUNFNFQ2bUN6LWFJcGRoQXcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3VfdFI4Y1Y1UERpQ0U0VDZtQ3otYUlwZGhBdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMzQvdV90UjhjVjVQRGlD RTRUNm1Dei1hSXBkaEF3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEOHmsJRK1gAV0XIihlcxUPyop6hFLVjF4xPbKO5W9MHdQUFBJKjXYW8ePth OhN1tF8gTApDgChYplTteHKhI2C89HGVKIlb8Z7BpT6+ioAzy4tTtlUbWlyJnfpO wDGoYLQ+20+mGzjvO9Mnvi+wTfFB1c/0e8A8oiRSP+ZAb+Xxt8VqyxBVFmUxXgIy yuYE/qtwo8O5brosRvsQ8/1vcB5w3K5AQZxj3DlwFUX/TbPnEB4ginA7vDETmK1q AoV1MzctUmVJSgEbmMIuvUY+iUjWGrFA0ykiN4IsLRTTXG39BMyxwXWWMD2soS7q PXEx1POHvMBvWkalcQ7IkPRdYew= -----END CERTIFICATE-----Generated at Sun Jan 25 10:41:46 2026 by rpki-client