This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft File: m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft (raw, json) Hash identifier: 8FLS2Oaeft+f1vjjnlcWjgSBtzDhL7xogRtPR9YzYkE= Subject key identifier: 42:CA:EE:A6:60:60:CA:33:38:7B:50:1B:B1:26:DC:FB:B8:C4:4E:4E Authority key identifier: 9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76 Certificate issuer: /CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76 Certificate serial: 1DA4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft Manifest number: 1D9D Signing time: Sun 25 Jan 2026 02:29:22 +0000 Manifest this update: Sun 25 Jan 2026 02:29:22 +0000 Manifest next update: Sun 25 Jan 2026 08:29:22 +0000 Files and hashes: 1: U8G90-YYRgh6k3HDnDRzn22nZOU.roa (hash: 1ypHTYDNhHGShZNbyXb5EDdy2PfInXRHSiQUuVslDdQ=) 2: gcv3IRtBMP0g_QP2HXkJ4IuRlKU.roa (hash: W4N2kLS/TBnU7hLEU2XcWlrf1fkrk2tPC5ARdXrekA0=) 3: m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl (hash: iFXBqfZmz1sQNVAZS8RR1tvNJU5VT3IrFQ5IWAS6//k=) Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 7588 (0x1da4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76 Validity Not Before: Jan 25 02:29:22 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=42CAEEA66060CA33387B501BB126DCFBB8C44E4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:75:e9:fb:c8:37:26:30:8e:a9:73:91:eb:0d: d3:a8:4b:94:58:77:f2:a5:18:d1:24:94:c9:4f:84: 16:5f:19:49:15:da:ef:5e:46:93:09:48:dc:21:2c: d6:38:6e:8c:9f:77:57:5a:af:4b:1a:53:6b:a1:32: 77:5c:75:26:c5:51:ab:17:75:bb:8c:26:74:b9:60: a0:77:e6:e7:14:62:f8:98:12:6f:35:59:62:2b:d5: 56:2d:e1:58:51:dc:35:6b:0f:ed:38:ac:0f:ee:24: 37:8e:94:8a:4d:81:d5:49:03:f1:af:58:e6:ac:dd: 33:3d:a6:ab:5d:64:4f:6c:78:8f:0e:7c:91:09:6d: a5:b9:9f:23:ee:d3:d9:86:81:84:20:f7:2a:94:9a: a0:25:0f:f5:5c:1c:8d:b3:2c:e2:9a:65:e5:8e:ef: 85:ec:ee:e0:2a:ce:77:5c:30:7a:0a:6b:66:38:c7: 58:60:8e:49:9a:c9:90:12:99:73:35:b4:ac:e4:85: ab:30:0d:a7:fa:ef:97:8c:64:c1:cc:93:a0:dc:0d: e6:18:f4:6d:f3:e3:2b:78:3c:4e:ba:97:98:c5:1b: bf:46:10:5f:f0:ef:cd:13:be:9c:a8:39:68:90:65: 51:b5:2f:20:8e:20:42:06:5d:58:4b:33:2b:a1:fb: f6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CA:EE:A6:60:60:CA:33:38:7B:50:1B:B1:26:DC:FB:B8:C4:4E:4E X509v3 Authority Key Identifier: keyid:9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:f8:8f:5d:19:4b:ea:65:be:7a:6e:63:88:50:93:ef:30:cd: 71:fe:44:1d:12:77:cf:1e:d0:85:c6:32:51:0e:45:29:04:83: c5:90:fd:56:23:61:1a:70:d1:03:7d:62:88:13:69:57:89:63: 9f:a9:41:d3:47:fe:b1:a2:cd:98:da:f6:3f:33:f9:df:da:d7: 57:ec:9f:13:85:72:94:94:18:bc:5e:53:77:e0:4e:f4:9b:d6: e8:ce:74:a7:1c:5a:d3:a9:db:35:ef:41:4c:af:c5:9a:44:a4: 04:8d:4d:8b:c2:26:07:ce:a3:c2:3c:7d:24:41:c7:da:f1:7f: 22:c2:3e:a2:19:9d:2a:2b:d1:5e:c9:c6:aa:3b:ca:c8:94:03: 0c:43:f6:d4:53:be:d4:17:f5:85:23:64:76:6c:ce:b3:a1:b1: d3:34:e8:9d:13:82:50:11:2b:84:56:5d:3e:e7:6d:fd:01:32: 40:31:6f:75:cc:32:75:eb:3a:63:55:5b:60:8c:1a:e6:49:90: d8:83:13:4d:30:ad:34:fd:99:5c:5f:0b:c5:e3:67:01:81:1b: 9f:13:f1:5d:d4:01:7b:f6:a3:cd:a3:b1:16:fa:58:43:70:88: c4:22:38:e4:a7:26:72:ea:24:21:15:4d:ab:72:63:37:90:64: 0d:e0:69:e5 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICHaQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI0 QTNDMzZCNDIzNDdBQ0VGMzZFODRBNjZFNjlFRTU5QkVEOEI3NjAeFw0yNjAxMjUw MjI5MjJaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDQyQ0FFRUE2NjA2MENB MzMzODdCNTAxQkIxMjZEQ0ZCQjhDNDRFNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlden7yDcmMI6pc5HrDdOoS5RYd/KlGNEklMlPhBZfGUkV2u9e RpMJSNwhLNY4boyfd1dar0saU2uhMndcdSbFUasXdbuMJnS5YKB35ucUYviYEm81 WWIr1VYt4VhR3DVrD+04rA/uJDeOlIpNgdVJA/GvWOas3TM9pqtdZE9seI8OfJEJ baW5nyPu09mGgYQg9yqUmqAlD/VcHI2zLOKaZeWO74Xs7uAqzndcMHoKa2Y4x1hg jkmayZASmXM1tKzkhaswDaf675eMZMHMk6DcDeYY9G3z4yt4PE66l5jFG79GEF/w 780TvpyoOWiQZVG1LyCOIEIGXVhLMyuh+/ZrAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUQsrupmBgyjM4e1AbsSbc+7jETk4wHwYDVR0jBBgwFoAUm0o8NrQjR6zvNuhK Zuae5Zvti3YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTA4 L20wbzhOclFqUjZ6dk51aEtadWFlNVp2dGkzWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbTBvOE5yUWpSNnp2TnVoS1p1YWU1WnZ0aTNZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTA4L20wbzhOclFqUjZ6dk51 aEtadWFlNVp2dGkzWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBT+I9dGUvqZb56bmOIUJPvMM1x/kQdEnfPHtCFxjJRDkUpBIPFkP1WI2EacNED fWKIE2lXiWOfqUHTR/6xos2Y2vY/M/nf2tdX7J8ThXKUlBi8XlN34E70m9boznSn HFrTqds170FMr8WaRKQEjU2LwiYHzqPCPH0kQcfa8X8iwj6iGZ0qK9FeycaqO8rI lAMMQ/bUU77UF/WFI2R2bM6zobHTNOidE4JQESuEVl0+5239ATJAMW91zDJ16zpj VVtgjBrmSZDYgxNNMK00/ZlcXwvF42cBgRufE/Fd1AF79qPNo7EW+lhDcIjEIjjk pyZy6iQhFU2rcmM3kGQN4Gnl -----END CERTIFICATE-----Generated at Sun Jan 25 09:25:13 2026 by rpki-client