This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft File: qaFpos8CL7oK84PKmXtFZP7V-Js.mft (raw, json) Hash identifier: jcEOwpIjUkxjuqLY4MS7ryB/YFt6RkRGkLoylhboIF4= Subject key identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE Authority key identifier: A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B Certificate issuer: /CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Certificate serial: 01E3 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft Manifest number: 01E1 Signing time: Sun 25 Jan 2026 15:58:39 +0000 Manifest this update: Sun 25 Jan 2026 15:58:39 +0000 Manifest next update: Sun 25 Jan 2026 21:58:39 +0000 Files and hashes: 1: bd9GrxZEfHWtOWHMuYJUpax949Y.roa (hash: Vy2eK3SQCyGw1GNGKXYuy4gqV0cZkl9Rql6LWidAWcA=) 2: qaFpos8CL7oK84PKmXtFZP7V-Js.crl (hash: R7RwOYfjQLRxF6N/67jy3tSx06EWOhmTBtJec2k/qJM=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Validity Not Before: Jan 25 15:58:39 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=2B165718FFB471E6D983811B349FCF8F44B998BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bf:94:ff:7b:7c:37:5a:1f:e8:b6:66:c3:6f: 66:38:b7:ae:da:2e:b1:ad:5c:ff:df:d7:a7:ad:7e: 70:4b:4f:7a:44:61:e8:b8:4d:e6:c5:b6:2f:95:6b: 48:87:0a:24:3a:f8:b7:f7:6f:36:c0:5f:ac:96:66: 8c:fb:47:ea:8a:ae:1b:f7:3f:f2:eb:4e:20:90:c7: 47:99:75:23:d0:0b:fe:4c:ba:60:7c:45:db:e8:0a: 8e:97:2a:87:33:b0:0a:be:54:cd:69:a8:71:14:25: 20:ca:dd:e8:72:a5:11:4d:9e:41:8b:97:66:1b:bc: 45:16:61:05:54:25:aa:c6:24:05:5d:b0:36:3b:da: 80:35:25:bb:ec:85:6e:30:5c:a6:91:52:70:7f:f1: 74:72:0a:27:32:4a:70:b5:dd:e3:eb:4d:d3:c2:55: 2c:ab:e3:37:59:98:9c:63:51:eb:29:63:8d:6a:1b: dd:6c:f4:44:87:eb:1e:7d:f8:60:93:05:1b:5f:58: f0:fc:5b:f1:cf:68:78:d7:46:3f:d5:b9:73:06:10: af:9c:56:1f:0a:8b:b5:0e:80:ad:c3:92:90:07:f2: ec:b8:a4:e1:7b:b9:53:f7:db:1b:8a:a5:bd:ea:c1: 65:04:13:7a:d3:d4:b6:06:d0:a7:bf:83:5a:ef:1f: c5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE X509v3 Authority Key Identifier: keyid:A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:3c:15:fe:ad:cc:98:30:cc:cf:7c:19:3d:e7:5d:a2:0c:be: 43:a9:f7:73:4f:b8:db:ff:50:f2:91:17:93:b4:97:f5:89:a7: b1:c2:b7:74:74:16:75:fd:3c:ab:62:6f:79:6d:e5:3c:13:cc: 86:0f:c3:01:5f:3e:05:f4:a9:b8:0d:3a:a6:a2:e4:37:81:d4: 47:44:5b:61:b8:47:52:41:06:67:27:f3:90:80:99:be:66:79: 92:4c:55:69:dc:27:4b:49:b1:4c:3d:d0:9b:b8:11:81:8d:9f: 52:7f:80:43:db:3f:4a:35:f2:ac:77:50:c1:9b:c9:99:83:69: b5:ec:25:68:93:ad:f2:0c:1b:e3:fd:06:07:a6:f1:3f:a3:50: 54:2b:ab:8d:9b:50:a7:35:cb:71:0f:ff:37:11:81:c8:cd:c0: cd:fc:e5:28:6d:16:86:d2:17:a2:bd:b2:c2:bb:4e:7b:af:4a: ee:68:b0:11:24:3b:fb:48:c5:81:ac:4f:eb:e9:d8:93:3f:14: bb:97:01:41:85:c4:83:b8:7b:bb:5f:f6:43:a1:fe:ed:3f:82: 1a:9e:41:35:ec:84:44:8e:c8:36:0b:8d:5b:76:d4:52:47:a3: 2f:63:c3:b9:88:56:61:d2:4f:db:63:e3:94:3a:9c:de:9e:8d: 29:6b:cc:f6 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTlB MTY5QTJDRjAyMkZCQTBBRjM4M0NBOTk3QjQ1NjRGRUQ1Rjg5QjAeFw0yNjAxMjUx NTU4MzlaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDJCMTY1NzE4RkZCNDcx RTZEOTgzODExQjM0OUZDRjhGNDRCOTk4QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjv5T/e3w3Wh/otmbDb2Y4t67aLrGtXP/f16etfnBLT3pEYei4 TebFti+Va0iHCiQ6+Lf3bzbAX6yWZoz7R+qKrhv3P/LrTiCQx0eZdSPQC/5MumB8 RdvoCo6XKoczsAq+VM1pqHEUJSDK3ehypRFNnkGLl2YbvEUWYQVUJarGJAVdsDY7 2oA1JbvshW4wXKaRUnB/8XRyCicySnC13ePrTdPCVSyr4zdZmJxjUespY41qG91s 9ESH6x59+GCTBRtfWPD8W/HPaHjXRj/VuXMGEK+cVh8Ki7UOgK3DkpAH8uy4pOF7 uVP32xuKpb3qwWUEE3rT1LYG0Ke/g1rvH8UhAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUKxZXGP+0cebZg4EbNJ/Pj0S5mL4wHwYDVR0jBBgwFoAUqaFpos8CL7oK84PK mXtFZP7V+JswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 OS9xYUZwb3M4Q0w3b0s4NFBLbVh0RlpQN1YtSnMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3FhRnBvczhDTDdvSzg0UEttWHRGWlA3Vi1Kcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTkvcWFGcG9zOENMN29L ODRQS21YdEZaUDdWLUpzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAA8Ff6tzJgwzM98GT3nXaIMvkOp93NPuNv/UPKRF5O0l/WJp7HCt3R0FnX9 PKtib3lt5TwTzIYPwwFfPgX0qbgNOqai5DeB1EdEW2G4R1JBBmcn85CAmb5meZJM VWncJ0tJsUw90Ju4EYGNn1J/gEPbP0o18qx3UMGbyZmDabXsJWiTrfIMG+P9Bgem 8T+jUFQrq42bUKc1y3EP/zcRgcjNwM385ShtFobSF6K9ssK7TnuvSu5osBEkO/tI xYGsT+vp2JM/FLuXAUGFxIO4e7tf9kOh/u0/ghqeQTXshESOyDYLjVt21FJHoy9j w7mIVmHST9tj45Q6nN6ejSlrzPY= -----END CERTIFICATE-----Generated at Sun Jan 25 21:38:59 2026 by rpki-client