This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
File:                     Lowd4ZR0A1y-pngFS22U9a-lM2E.mft (raw, json)
Hash identifier:          E0u6fYzFee64XII577pG1duC0CBYkBTb/B6Xyl+mSpc=
Subject key identifier:   FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
Authority key identifier: 2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61
Certificate issuer:       /CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
Certificate serial:       1F9C
Authority info access:    rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer
Subject info access:      rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
Manifest number:          1F8A
Signing time:             Mon 26 Jan 2026 16:27:51 +0000
Manifest this update:     Mon 26 Jan 2026 16:27:51 +0000
Manifest next update:     Mon 26 Jan 2026 22:27:51 +0000
Files and hashes:         1: -Mm11tejrqk61wSAldRhB69HTQA.roa (hash: lRVxJ7t0/AkOywuPuigCifvcZhUs87v2Uh4KWM90fFc=)
                          2: 450N7fwLv8pQflKVuwsapP8RTas.roa (hash: v1E9iG1FEaxd+t/wnGLaGAbJ4H6g39idwuIVRcR48QM=)
                          3: 6lgNokrHquzfMY4o0Ue-xILR_FM.roa (hash: bnnFnI4gkAVdY9+fYPbtHDBHofbyD67V5npIc05vTNI=)
                          4: Af3TYKyAmWG3f3wRT4FwONVWh0E.roa (hash: WIpuVfkuPz+LipchXzs38odxTKr63ACk4GOPFnDDDQY=)
                          5: CdYSPaqTjHDQqoFZJ5vmPkQNpY8.roa (hash: 2hSUzzrrHhoV+leHgGGXhH0H0eP//nQX8tn6HCyCUeA=)
                          6: Lowd4ZR0A1y-pngFS22U9a-lM2E.crl (hash: V2+8/GoIIHDFx/x7kJg6gXTmL0TyluQRiKDx/J3B02c=)
                          7: M8L4ONjaKBoFJOwyFIfN_QL2Tn4.roa (hash: 6JL10RiuFvg5F0bZseuVtZv3iY+6VEd+5IItQvVfiV8=)
                          8: S4wFMhuxShBISoepIMT7J0pKx3k.roa (hash: U7UiWrQkJelvyopRtRqGDW0g4Pu1C0z06V7voETr1Pc=)
                          9: lwkVdD9XADeiD0DPl7lvqM4ItpQ.roa (hash: YYmUXAYWXwrCBJM5y0kPQOh2qDNOuJxksVsvgzTPY7s=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8092 (0x1f9c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
        Validity
            Not Before: Jan 26 16:27:51 2026 GMT
            Not After : Oct 23 03:01:03 2026 GMT
        Subject: CN=FF932E425E060B53CC63EEF8B42B916DB3C01C6C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:ce:ca:10:5a:c9:8f:d2:27:85:80:bb:25:3e:
                    26:96:85:3f:5b:51:fb:24:48:0d:d4:0d:5e:91:18:
                    04:52:77:b0:2d:d3:78:33:73:59:ab:3d:50:93:aa:
                    29:dd:c9:6d:31:6a:60:fb:17:57:f1:b6:f3:a5:bf:
                    ce:7d:00:da:c1:8f:9c:11:a4:28:73:44:98:bd:2f:
                    63:2c:f2:d6:d5:1f:e7:f0:e8:6f:42:ec:2c:4a:d4:
                    53:f8:f3:4e:f4:bb:5c:01:19:43:9f:2b:b4:3c:cd:
                    8e:20:5d:b4:f1:30:b7:0d:be:35:06:12:30:a0:cb:
                    80:f1:c0:44:2c:b2:20:c8:53:66:f2:2c:36:d1:53:
                    f6:aa:45:78:6d:b6:9c:13:2d:81:42:14:e2:e9:3d:
                    76:92:3a:5d:98:cc:7b:db:66:b1:88:a1:47:2b:1d:
                    41:d5:b1:0c:78:bb:83:ca:f7:02:ff:e7:5f:d5:53:
                    f0:0b:95:fc:83:77:e4:a3:ff:19:71:e2:0a:73:a5:
                    18:c1:12:1c:c9:77:90:c4:05:91:12:72:b2:af:fa:
                    f4:c1:eb:93:09:a5:4b:fb:0a:49:d4:2d:00:f4:ac:
                    02:11:35:44:af:04:83:7d:28:49:09:f4:8a:c5:84:
                    fd:3c:9a:04:0b:e6:34:60:9f:20:19:e6:a5:85:96:
                    45:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
            X509v3 Authority Key Identifier:
                keyid:2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
                RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:ae:a9:45:cd:27:6d:fe:2a:b8:94:6a:32:8d:72:b6:92:e5:
         4f:f9:1c:fc:ec:6b:af:68:df:94:f8:8a:d7:d0:93:56:47:d2:
         f0:c4:d4:c8:53:52:49:c0:73:fe:e0:4c:1d:02:03:3c:2a:86:
         6d:b0:52:e8:04:c3:cc:77:27:bb:fa:4e:73:3b:ab:0e:75:09:
         b2:18:e0:6b:2b:ba:79:3f:2d:58:00:83:fe:ad:de:3d:7e:04:
         8d:40:dc:78:d0:c8:09:f4:b2:dd:79:68:3b:55:9e:33:0d:23:
         ed:c4:bd:9f:d9:f5:de:09:2d:67:10:f5:4e:22:76:12:73:c5:
         c5:24:d2:e5:16:03:1d:ee:53:7f:8c:75:8a:a3:45:af:2d:8b:
         d6:92:c2:61:9f:25:c9:52:68:60:44:08:8b:3c:4e:74:2a:7c:
         57:aa:e3:53:7c:de:05:1a:89:a1:84:19:b3:bd:a5:59:82:06:
         11:c9:1e:41:e4:d1:0e:1c:7a:4d:5b:36:a4:6c:2d:88:63:67:
         20:12:af:b6:a6:a7:8a:5f:0e:93:67:e3:18:31:bb:79:fc:06:
         52:72:60:50:8f:2c:6f:06:55:29:39:ad:00:ed:e7:37:81:56:
         45:a1:1d:0f:4e:f3:65:de:0f:a6:84:e5:39:9c:d1:9d:18:54:
         49:18:c3:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----