This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft File: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft (raw, json) Hash identifier: JAEwwC4kcZ05oYN5VICSP6HTP/MoTlgfbn7uPgmIJe0= Subject key identifier: 8A:A6:CC:CC:42:80:9E:E4:4F:B0:1A:46:D5:B7:C5:E3:4A:EB:7D:D6 Authority key identifier: 8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 Certificate issuer: /CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Certificate serial: 284361411E681CCEE2DF748CB6A494E62EE64C0D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft Manifest number: 09 Signing time: Sun 25 Jan 2026 05:20:57 +0000 Manifest this update: Sun 25 Jan 2026 05:15:57 +0000 Manifest next update: Mon 26 Jan 2026 06:12:57 +0000 Files and hashes: 1: 3136312e3234382e38342e302f32332d3234203d3e20323134343332.roa (hash: mlTgfa8G8bpPl2rXhrQPOT+Ph5gV0rocuvelVPbWKdk=) 2: 8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl (hash: VDKwa3SUl4sn1nPcy/ya8T7L2DbFX+fwLPrWXZ07Kfw=) Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 06:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:43:61:41:1e:68:1c:ce:e2:df:74:8c:b6:a4:94:e6:2e:e6:4c:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8 Validity Not Before: Jan 25 05:15:57 2026 GMT Not After : Jan 26 06:12:57 2026 GMT Subject: CN=8AA6CCCC42809EE44FB01A46D5B7C5E34AEB7DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:70:a2:78:71:85:27:a8:6f:02:7c:19:51:a9: 72:d9:26:b9:9a:71:b0:43:91:5f:52:01:2d:86:6b: b3:74:e3:be:b1:2e:e8:4a:5c:99:95:1c:0a:ea:07: 4f:83:8a:53:85:e1:92:bd:7e:1a:db:38:d0:a4:a5: 82:14:1d:bb:6a:2a:86:17:18:09:2f:b6:9b:d0:53: d1:bc:d3:ee:aa:7f:78:56:d8:2d:ae:e2:6f:ba:46: a3:9d:a1:67:24:ce:0a:8e:a7:0b:ea:e6:12:c8:cd: cb:29:20:66:34:79:27:28:24:5d:7c:b1:57:ce:1e: 7e:f5:e3:72:3d:72:8d:8f:f0:f7:0a:02:57:98:b8: 62:73:22:00:03:74:1d:11:dd:b1:bb:47:1c:b2:33: 03:50:60:66:72:71:65:7f:b4:54:93:8f:77:c1:b0: 25:84:06:94:a6:aa:1d:d2:52:cc:95:b1:a0:a3:9e: 1c:4b:d1:98:91:e7:84:82:7d:bf:6e:34:8c:11:cb: 37:09:2d:19:6d:14:e5:9d:9b:ff:78:5e:93:6e:75: bc:9b:42:cf:cc:a1:a7:de:ac:35:dd:53:de:11:87: 38:a7:53:90:0e:7b:07:12:43:48:c2:0b:3e:e2:a1: 3f:25:11:ef:b4:f6:60:a0:08:2a:2b:ba:16:6f:31: 02:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A6:CC:CC:42:80:9E:E4:4F:B0:1A:46:D5:B7:C5:E3:4A:EB:7D:D6 X509v3 Authority Key Identifier: keyid:8B:D8:35:B2:E2:15:D6:86:F2:4F:B3:1A:8A:EC:EE:E4:4F:BD:BD:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217586179/1/8BD835B2E215D686F24FB31A8AECEEE44FBDBDC8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:fe:03:a0:68:38:55:a6:a8:4b:9c:1c:92:c9:36:c9:0d:de: 2a:e6:fa:6f:12:c8:c5:6f:d1:38:21:7c:4e:e8:94:fa:7e:3f: 72:2c:53:f3:1c:a1:8d:c6:92:ac:7c:69:11:05:eb:de:20:ab: 33:86:51:20:5a:8b:fd:3b:3d:50:46:01:8a:79:38:b1:55:93: 72:91:42:ba:6b:7c:7b:70:cf:71:1e:2a:30:bb:2b:62:6d:e6: ca:a2:f0:1b:39:a4:88:70:e7:0a:f3:ed:4e:3b:a7:d1:c6:7e: c2:13:db:36:0b:8a:a9:c0:88:80:a3:18:b2:51:48:ac:9d:73: 88:96:c8:5e:97:c4:1c:23:79:7c:af:3c:d7:cc:53:64:38:5a: 6f:33:9b:7e:98:c9:da:71:28:8e:b4:e4:58:45:27:07:35:75: 70:34:4b:e9:7e:66:f6:44:ac:b8:24:94:9b:03:e6:cc:59:e6: 24:5d:bc:eb:9a:8a:64:ec:66:03:fe:ea:4e:9e:d8:e9:f0:92: d2:99:c2:ac:7a:b3:1b:c6:47:49:5f:57:85:90:3f:fb:4e:00: fe:4b:a0:c3:9b:2e:24:7d:3e:49:fa:d3:6e:b0:04:32:30:f0: ae:b0:45:77:5e:45:97:4f:66:a2:de:0d:2a:4b:77:00:1d:db: 42:15:ef:e2 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUKENhQR5oHM7i33SMtqSU5i7mTA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0 RkJEQkRDODAeFw0yNjAxMjUwNTE1NTdaFw0yNjAxMjYwNjEyNTdaMDMxMTAvBgNV BAMTKDhBQTZDQ0NDNDI4MDlFRTQ0RkIwMUE0NkQ1QjdDNUUzNEFFQjdERDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfcKJ4cYUnqG8CfBlRqXLZJrma cbBDkV9SAS2Ga7N0476xLuhKXJmVHArqB0+DilOF4ZK9fhrbONCkpYIUHbtqKoYX GAkvtpvQU9G80+6qf3hW2C2u4m+6RqOdoWckzgqOpwvq5hLIzcspIGY0eScoJF18 sVfOHn7143I9co2P8PcKAleYuGJzIgADdB0R3bG7RxyyMwNQYGZycWV/tFSTj3fB sCWEBpSmqh3SUsyVsaCjnhxL0ZiR54SCfb9uNIwRyzcJLRltFOWdm/94XpNudbyb Qs/MoaferDXdU94RhzinU5AOewcSQ0jCCz7ioT8lEe+09mCgCCoruhZvMQKRAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUiqbMzEKAnuRPsBpG1bfF40rrfdYwHwYDVR0j BBgwFoAUi9g1suIV1obyT7Maiuzu5E+9vcgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzU4NjE3OS8xLzhCRDgzNUIyRTIxNUQ2ODZGMjRGQjMxQThBRUNF RUU0NEZCREJEQzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvOEJEODM1QjJFMjE1RDY4NkYyNEZCMzFBOEFFQ0VFRTQ0RkJEQkRDOC5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTc1ODYxNzkvMS84QkQ4MzVCMkUyMTVE Njg2RjI0RkIzMUE4QUVDRUVFNDRGQkRCREM4Lm1mdDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYI KwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfv4DoGg4Vaao S5wcksk2yQ3eKub6bxLIxW/ROCF8TuiU+n4/cixT8xyhjcaSrHxpEQXr3iCrM4ZR IFqL/Ts9UEYBink4sVWTcpFCumt8e3DPcR4qMLsrYm3myqLwGzmkiHDnCvPtTjun 0cZ+whPbNguKqcCIgKMYslFIrJ1ziJbIXpfEHCN5fK8818xTZDhabzObfpjJ2nEo jrTkWEUnBzV1cDRL6X5m9kSsuCSUmwPmzFnmJF2865qKZOxmA/7qTp7Y6fCS0pnC rHqzG8ZHSV9XhZA/+04A/kugw5suJH0+SfrTbrAEMjDwrrBFd15Fl09mot4NKkt3 AB3bQhXv4g== -----END CERTIFICATE-----Generated at Sun Jan 25 12:45:55 2026 by rpki-client