This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.mft File: OrqLQlIyvliWg5beMqjrWgXuplg.mft (raw, json) Hash identifier: FHZUjmN/ltK+qOT74rzp5+F9LMzFi3XXf6uGN0sdhRk= Subject key identifier: EE:3D:61:32:5F:A4:15:8F:6D:D8:75:32:51:AA:A0:A4:34:31:9D:AF Authority key identifier: 3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 Certificate issuer: /CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Certificate serial: 236B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.mft Manifest number: 2353 Signing time: Thu 12 Feb 2026 18:57:19 +0000 Manifest this update: Thu 12 Feb 2026 18:57:19 +0000 Manifest next update: Fri 13 Feb 2026 00:57:19 +0000 Files and hashes: 1: -BD1ScZ1qtVml1mtGMCl0VXuWnQ.roa (hash: Y4RnHF0olQOkJZCOgplKy6V5W3l+yjTdRv7vuxuxt/Y=) 2: 3XFAM1LR8bXrQO9-4KxTBRR6oUM.roa (hash: p3HTFnAwoQUplrWD0lDFeQnn6TtUf3uSH5E930q9wmY=) 3: 5gBAgORrLJ1HOd2UJI9VuTgWXLw.roa (hash: BzXsg9YDlLmZBk4wjszn8ron+o/kdkRGz8/J4E7WxpE=) 4: 7fQbZDA8tyj5MEHYs8eECTQqEJ4.roa (hash: oBOqnJZox1co4VueK7P6UmPhiXBxYSVNzp0LyLTBDng=) 5: Koq88Hkeq0z1orOFOt3sXUP1i7s.roa (hash: cUkd0p+vM60SjplpcTha44ZE3PZE50mAlZ76hhRNkkw=) 6: NS8ld6_e8jjTJ5NSmZlXmrsytmg.roa (hash: ue62yQ5UfjmW3GmSVVDJ5m+vcixMEBmN2imHAbo0koI=) 7: NeXIOaCZIioOy7ziawSIyD4woWg.roa (hash: ZqTBe0guzD9KLaSCWJGTcCkPLsZkZYyc2ZL6bz7lxFE=) 8: OrqLQlIyvliWg5beMqjrWgXuplg.crl (hash: drrfmClrfadQrGH3I9h/eGWftKRT3vb1a6IV1fs/nao=) 9: Z4ucuIoDOQ7ECal5D-VY1DrScvE.roa (hash: BdUnvquZvHpYLIFBwlsMwX3JdDiI48uDaE8PxvIMH+c=) 10: osUjb5gBSaQor-TU3i_rb5Up6_g.roa (hash: GbQSg+jIionWUDPH2Aacq0jFbjplc9PH4PJqqNZpw3g=) 11: rOLZuyZPB6j0aMAFjGGcCvT-Xks.roa (hash: pvA5LjRYZubqawi/TZBz+Jnw6EaTAjSubqty4ug9Fa4=) 12: xoiU_cNHrC9XYfowMsmLFuzbCUU.roa (hash: +3jAWysUr7r4XUdqqPf705TWZpvCt2uP+nwWgTNxgcA=) 13: zlUos4_Lnxtl0Za76SDtV7roYEg.roa (hash: 3gPFe9nQupimS5NzDb4pfhh3cdXZ3WndW8yV7WyaFm8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Feb 2026 21:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9067 (0x236b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Validity Not Before: Feb 12 18:57:19 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=EE3D61325FA4158F6DD8753251AAA0A434319DAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4a:bf:c1:b3:f6:44:ba:99:72:56:cb:1f:b3: 33:33:73:4e:03:34:6d:68:51:d4:2e:d3:f3:99:db: a5:47:b5:52:24:59:1f:31:c9:99:f2:42:a3:78:6b: 29:d6:70:26:97:8c:3d:d1:bf:0c:04:01:6e:72:9f: 9b:41:14:eb:2d:bc:db:b6:ab:ed:2b:5f:1b:a6:f1: 56:0b:6e:15:69:89:4b:3e:1f:d3:ce:ae:90:48:ab: fd:07:de:04:40:7a:ef:52:20:c2:c1:bd:b8:2e:19: 11:71:82:24:72:ad:09:42:84:cf:0a:ac:7e:6a:f4: 93:5e:20:86:65:82:6a:7a:15:fd:29:8e:59:74:0d: 0f:73:3f:78:d7:3b:11:e6:7c:af:e1:75:1b:58:82: 89:37:b1:c9:6a:b8:11:00:35:25:51:ff:81:2d:9b: 80:d6:88:03:10:90:f7:49:06:81:1f:ca:b1:fc:4c: 29:f1:db:4c:ca:e2:47:0d:52:28:cb:a5:9c:a0:09: 2d:ea:c8:95:1a:a0:bd:2e:93:af:0c:f6:c2:d2:89: 66:bc:0a:82:9d:2b:6d:40:29:8c:68:8b:06:85:7f: b7:85:1e:05:92:30:d7:7c:86:66:cb:9a:41:a4:52: 7b:e7:f9:ab:be:06:f1:8a:48:85:23:b5:45:f7:6f: ea:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:3D:61:32:5F:A4:15:8F:6D:D8:75:32:51:AA:A0:A4:34:31:9D:AF X509v3 Authority Key Identifier: keyid:3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:c8:a8:55:5d:6f:8b:d4:68:a6:4f:6e:40:6a:c5:9a:67:ff: 9b:ee:dc:16:b4:ca:8b:28:32:68:81:f2:f3:4c:75:52:00:73: 05:cc:6f:ae:b5:4f:f2:a3:98:76:e0:48:a3:aa:dc:d1:85:72: f1:cc:64:88:31:37:48:14:b7:1a:53:5b:67:51:3e:20:cb:d2: bf:28:f6:e9:68:29:73:dd:f7:59:94:26:a7:af:fd:b7:c0:27: 88:26:5d:c7:8d:b0:c2:f4:0a:82:b7:35:f9:be:9d:e5:74:b6: ac:7a:9c:b8:eb:db:94:92:ab:b9:9d:e0:7f:11:ee:cf:be:fe: 88:47:e3:ca:0c:06:4a:11:fb:60:42:dd:e2:1d:da:d2:b4:7e: ca:f5:03:55:04:ce:a2:76:f1:99:0e:b8:7e:1d:cb:6d:0f:1a: 95:57:e5:22:c6:b4:fe:09:5d:4c:03:40:ef:73:be:8a:09:12: 68:7f:b2:be:e2:11:5f:3c:06:47:2c:e6:d2:b2:15:b8:01:1e: 08:4e:09:5d:e0:7c:74:d6:b5:88:39:05:e1:8c:83:ba:80:81: 7e:c8:fc:9e:20:5e:eb:d9:e6:62:5d:a0:79:d1:3c:90:95:1f: 1c:3e:94:0a:60:d0:2e:66:b4:65:42:0e:38:b1:3b:59:d0:b8: be:f9:f0:f8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICI2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FC QThCNDI1MjMyQkU1ODk2ODM5NkRFMzJBOEVCNUEwNUVFQTY1ODAeFw0yNjAyMTIx ODU3MTlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEVFM0Q2MTMyNUZBNDE1 OEY2REQ4NzUzMjUxQUFBMEE0MzQzMTlEQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8Sr/Bs/ZEuplyVssfszMzc04DNG1oUdQu0/OZ26VHtVIkWR8x yZnyQqN4aynWcCaXjD3RvwwEAW5yn5tBFOstvNu2q+0rXxum8VYLbhVpiUs+H9PO rpBIq/0H3gRAeu9SIMLBvbguGRFxgiRyrQlChM8KrH5q9JNeIIZlgmp6Ff0pjll0 DQ9zP3jXOxHmfK/hdRtYgok3sclquBEANSVR/4Etm4DWiAMQkPdJBoEfyrH8TCnx 20zK4kcNUijLpZygCS3qyJUaoL0uk68M9sLSiWa8CoKdK21AKYxoiwaFf7eFHgWS MNd8hmbLmkGkUnvn+au+BvGKSIUjtUX3b+o3AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU7j1hMl+kFY9t2HUyUaqgpDQxna8wHwYDVR0jBBgwFoAUOrqLQlIyvliWg5be MqjrWgXuplgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 NS9PcnFMUWxJeXZsaVdnNWJlTXFqcldnWHVwbGcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09ycUxRbEl5dmxpV2c1YmVNcWpyV2dYdXBsZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzNzUvT3JxTFFsSXl2bGlX ZzViZU1xanJXZ1h1cGxnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALTIqFVdb4vUaKZPbkBqxZpn/5vu3Ba0yosoMmiB8vNMdVIAcwXMb661T/Kj mHbgSKOq3NGFcvHMZIgxN0gUtxpTW2dRPiDL0r8o9uloKXPd91mUJqev/bfAJ4gm XceNsML0CoK3Nfm+neV0tqx6nLjr25SSq7md4H8R7s++/ohH48oMBkoR+2BC3eId 2tK0fsr1A1UEzqJ28ZkOuH4dy20PGpVX5SLGtP4JXUwDQO9zvooJEmh/sr7iEV88 Bkcs5tKyFbgBHghOCV3gfHTWtYg5BeGMg7qAgX7I/J4gXuvZ5mJdoHnRPJCVHxw+ lApg0C5mtGVCDjixO1nQuL758Pg= -----END CERTIFICATE-----Generated at Thu Feb 12 20:15:23 2026 by rpki-client