This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft File: yiG6irdU_NZK2pljjW_l5HJTtME.mft (raw, json) Hash identifier: h3irItldgPfd0jGpuIxlGaAL//9A11JnijCVG2Jsuos= Subject key identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 Authority key identifier: CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 Certificate issuer: /CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Certificate serial: 2E6E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft Manifest number: 2E6E Signing time: Sun 25 Jan 2026 02:27:43 +0000 Manifest this update: Sun 25 Jan 2026 02:27:43 +0000 Manifest next update: Sun 25 Jan 2026 08:27:43 +0000 Files and hashes: 1: yiG6irdU_NZK2pljjW_l5HJTtME.crl (hash: gOsQwB2j9HRmzMAHabPixRhXOhDBlLuP970qd7Wx+Lo=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 08:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11886 (0x2e6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Validity Not Before: Jan 25 02:27:43 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=68C24A1388FC9D03DDD1064E2D286614B99B9434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:45:84:0d:f7:9c:a7:65:94:83:6d:ed:a4: ef:0e:58:34:52:71:ae:b9:fc:eb:af:f2:19:7c:fa: 68:fd:76:de:aa:43:e7:01:5f:f2:a7:a7:18:11:ec: 70:de:c2:50:21:52:73:aa:4d:79:8a:20:5b:b8:6d: 8a:6b:59:68:28:7c:ee:84:19:8d:5e:88:82:df:2e: 3e:6f:e9:bf:95:65:32:57:49:c1:74:64:c8:64:44: 38:5e:32:9c:a4:34:b0:55:6b:e3:60:9c:a4:b2:a0: e4:74:71:87:d2:f4:73:d7:31:61:cc:55:e1:06:eb: 2d:06:5d:b5:d0:7d:a7:b4:95:2b:db:63:f6:24:35: 82:6f:1a:4d:96:b3:95:c3:f5:88:8b:81:44:bf:08: 8d:b2:b9:73:8e:47:26:16:fa:e9:be:36:09:a2:fc: 2b:ad:76:9e:20:5f:89:4e:7e:06:3c:b9:70:38:55: 44:ad:5b:b1:8c:75:45:f2:ae:35:12:62:1f:98:16: 4c:96:a6:83:1d:48:2e:e2:3f:3c:df:7e:dd:44:17: 7f:eb:30:b1:a8:ae:e8:a5:40:ef:a9:ae:af:00:80: 84:a1:68:96:2f:48:08:fd:e2:fc:bc:ec:74:3c:bb: 16:27:13:a3:8b:fc:38:0e:ac:af:fe:16:67:3a:36: 2d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 X509v3 Authority Key Identifier: keyid:CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:99:4e:54:06:c9:8b:37:69:df:e5:3f:40:af:7a:b7:d8:38: 9c:e5:69:a9:98:b1:a1:e3:b4:b1:10:76:bf:0b:8e:55:93:e1: 08:87:7c:6a:a2:c3:7e:dd:4c:38:fc:3f:30:cc:60:3f:a0:8b: 95:d4:d3:a6:79:dc:ad:8e:09:ce:9f:38:49:47:05:b7:07:f8: a3:48:6d:a9:8b:30:78:b8:d0:93:a1:6b:93:01:ed:f7:32:69: c8:83:4a:a7:af:d1:e9:5b:45:69:d3:7e:61:d3:ab:b5:9a:83: 81:94:8d:5a:b0:ba:4d:5f:72:ff:a7:4d:9d:f0:14:d1:69:8b: e7:41:0e:9a:68:9f:c3:c9:78:f5:0d:79:d3:8f:87:b1:ec:69: 43:e4:55:cf:f6:fb:7b:e0:4a:79:59:eb:c7:bb:4e:23:e9:db: fa:d0:13:f8:77:8d:5b:b1:89:40:77:6c:0f:57:ac:65:1e:7a: b2:7f:e3:87:e5:d6:f6:84:86:44:d4:87:34:28:0a:4e:03:5e: f3:1d:c6:03:8a:86:58:1f:c8:6e:f4:69:83:59:6a:9f:67:95: b8:14:cb:5a:fa:56:73:25:c4:2b:46:af:fe:da:91:b7:57:6d: 25:16:fc:8e:bb:25:c4:15:70:71:d8:0b:f1:f3:f5:a5:ae:75: 02:b8:da:76 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICLm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ey MUJBOEFCNzU0RkNENjRBREE5OTYzOEQ2RkU1RTQ3MjUzQjRDMTAeFw0yNjAxMjUw MjI3NDNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDY4QzI0QTEzODhGQzlE MDNEREQxMDY0RTJEMjg2NjE0Qjk5Qjk0MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpNUWEDfecp2WUg23tpO8OWDRSca65/Ouv8hl8+mj9dt6qQ+cB X/KnpxgR7HDewlAhUnOqTXmKIFu4bYprWWgofO6EGY1eiILfLj5v6b+VZTJXScF0 ZMhkRDheMpykNLBVa+NgnKSyoOR0cYfS9HPXMWHMVeEG6y0GXbXQfae0lSvbY/Yk NYJvGk2Ws5XD9YiLgUS/CI2yuXOORyYW+um+Ngmi/Cutdp4gX4lOfgY8uXA4VUSt W7GMdUXyrjUSYh+YFkyWpoMdSC7iPzzfft1EF3/rMLGoruilQO+prq8AgIShaJYv SAj94vy87HQ8uxYnE6OL/DgOrK/+Fmc6Ni3hAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUaMJKE4j8nQPd0QZOLShmFLmblDQwHwYDVR0jBBgwFoAUyiG6irdU/NZK2plj jW/l5HJTtMEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvOTgv eWlHNmlyZFVfTlpLMnBsampXX2w1SEpUdE1FLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC95aUc2aXJkVV9OWksycGxqaldfbDVISlR0TUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC85OC95aUc2aXJkVV9OWksycGxq aldfbDVISlR0TUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA NZlOVAbJizdp3+U/QK96t9g4nOVpqZixoeO0sRB2vwuOVZPhCId8aqLDft1MOPw/ MMxgP6CLldTTpnncrY4Jzp84SUcFtwf4o0htqYsweLjQk6FrkwHt9zJpyINKp6/R 6VtFadN+YdOrtZqDgZSNWrC6TV9y/6dNnfAU0WmL50EOmmifw8l49Q1504+Hsexp Q+RVz/b7e+BKeVnrx7tOI+nb+tAT+HeNW7GJQHdsD1esZR56sn/jh+XW9oSGRNSH NCgKTgNe8x3GA4qGWB/IbvRpg1lqn2eVuBTLWvpWcyXEK0av/tqRt1dtJRb8jrsl xBVwcdgL8fP1pa51Arjadg== -----END CERTIFICATE-----Generated at Sun Jan 25 07:49:20 2026 by rpki-client