This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft File: 7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft (raw, json) Hash identifier: +Tm43N/FPSoPmOljAJsXnUQaFzZ7XBNODiybtRs1BNU= Subject key identifier: 84:B2:46:AC:88:B2:39:A0:6B:33:57:4C:E0:F4:1B:77:81:94:AA:21 Authority key identifier: EC:10:C9:34:55:75:9C:65:9D:2B:B8:19:FB:07:FF:70:63:CE:CC:32 Certificate issuer: /CN=EC10C93455759C659D2BB819FB07FF7063CECC32 Certificate serial: 2335 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft Manifest number: 22FA Signing time: Mon 26 Jan 2026 07:59:31 +0000 Manifest this update: Mon 26 Jan 2026 07:59:31 +0000 Manifest next update: Mon 26 Jan 2026 13:59:31 +0000 Files and hashes: 1: 7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl (hash: 9CDbBFC6aoiYRAiKnEx8JRBuI1U4/x5eSTYBg24Yq3g=) 2: 8ypWC-ydp4xXcqy2gTFAqdh61HU.roa (hash: g3uVKvV3ChCu619q82Y0FOakVd+GS7pJK/pnr7R0GZo=) 3: IRr695QzmDBgZ8NqzXfvfrq0UR0.roa (hash: j7aSVgDTArk2OXLoDcCl1YiisNUMwRrqK4XtzD3t5RM=) 4: KsqHOeCiWS2Kdpys1p-sTUFqm5Y.roa (hash: 7anzXk0SCWozouKyc26QDPQMlgqO7/eiugF+fh4EXQo=) 5: ZtEW3mf0tOr51N-v73EgOdQmFa8.roa (hash: fujKtms1hTOgx9YDmwyQ56yd/9XZ45UpEKME+vZ6F8s=) 6: _WOgPad0W1kn45ia-U0MvBzC24c.roa (hash: USnlmKZvKeApDkmsw/iEDm10VzsUHxApky3Wv+X1AUo=) 7: bGKERT2i7Kg7erENgDhlZoQVV4U.roa (hash: w1VPC2jQipuGeYvKEgjTTSU/2tR9i/LYPMYPOPh+jSM=) 8: f_Vjrqe4d2JgUhcmGXzjlF0OOpI.roa (hash: 7t1s/FDaF+lAvSx83zMhNai1MQH5TkwUR13K3qHRDaw=) 9: lwugNpl7ON15Py-fGSFHCJofW5s.roa (hash: r0cYOwFvNoFE4I7bgdVGf5MmRu0wsVXSvz23VO8XWmk=) 10: o41ABfq_RN50Q6JuNOYLyZxWhyU.roa (hash: EATu2epUFhkYOfHp9GgLIt/0Hk+GwgOPAHpPCXc+Q4U=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9013 (0x2335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC10C93455759C659D2BB819FB07FF7063CECC32 Validity Not Before: Jan 26 07:59:31 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=84B246AC88B239A06B33574CE0F41B778194AA21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d4:83:33:f7:e8:35:66:fc:41:d5:38:bf:41: 50:d3:bc:85:e9:5e:f3:30:72:7e:b2:f6:ee:16:86: 9f:78:74:fe:c0:32:1b:6c:80:33:2f:38:7e:28:9e: b3:f8:13:f4:ee:0a:bc:9c:b6:65:ea:b6:61:2a:8d: 0f:f6:53:c3:ce:74:e5:24:43:1a:29:32:28:28:9d: d8:fe:11:6b:12:4c:d0:6b:e7:81:65:c3:d5:64:9f: f5:9e:0a:1e:66:94:09:c8:9f:2a:46:fb:1e:b3:22: be:84:dd:bd:ec:64:b7:2e:cf:c8:de:80:d9:f8:db: 6e:45:aa:93:98:ec:ec:31:2d:7d:38:c5:2c:02:08: fe:ca:c5:46:8e:ce:3c:9f:90:be:bc:f7:e5:0b:fe: d6:48:2c:22:90:ef:3c:fb:da:e3:6f:4c:09:0f:83: e6:d1:5c:cb:cd:75:30:88:3c:c6:04:1b:e0:c9:83: 51:79:ef:07:77:f8:81:13:b6:86:1f:80:d2:21:f8: 67:3a:0b:55:9f:d5:bc:93:9b:b6:45:c1:e8:b9:1f: 0d:8e:32:ce:f9:f9:b9:e7:2b:e1:72:14:8c:dc:b7: c0:90:02:fd:0f:5c:23:7d:ae:07:b9:8d:51:9d:0a: 4b:7c:c5:f7:ca:9e:a0:a1:96:ce:b3:34:46:80:6c: 12:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B2:46:AC:88:B2:39:A0:6B:33:57:4C:E0:F4:1B:77:81:94:AA:21 X509v3 Authority Key Identifier: keyid:EC:10:C9:34:55:75:9C:65:9D:2B:B8:19:FB:07:FF:70:63:CE:CC:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2329/7BDJNFV1nGWdK7gZ-wf_cGPOzDI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f3:75:df:d8:0e:74:8e:4d:2c:e7:17:ee:3d:ac:61:de:c7: 8b:82:3b:d7:72:6f:7e:6c:93:f0:1a:c3:ac:c0:d5:db:ad:43: b7:2d:cb:ab:54:32:fd:b6:79:a5:3c:0d:df:41:2d:33:b8:63: 5c:c1:7a:36:59:3b:7f:77:cc:90:c3:6d:0b:fd:a8:b0:59:21: fc:9f:40:f9:ff:45:e3:e5:83:34:d0:3e:44:ed:3e:93:41:65: 7e:59:19:65:77:5f:1a:93:d2:58:32:43:81:2c:6f:b6:15:b1: 33:f6:58:74:62:e9:bc:6a:b2:83:55:bf:f0:d3:73:c0:c5:8c: 00:ad:5e:ed:a5:c2:4f:18:c4:f2:b8:4d:e9:8f:83:80:62:f0: b8:57:d1:6d:25:18:7e:eb:db:9f:9f:b9:0f:16:06:1d:76:c9: 3d:0f:41:9d:08:de:1a:6d:5c:6c:ef:ad:09:9f:82:53:82:70: d5:82:3f:71:60:6d:53:5a:45:3e:13:67:0d:e0:db:da:ed:32: 54:23:7b:e1:40:92:4c:97:e8:ee:18:1f:19:5d:18:aa:8b:d8: e9:fe:73:ae:52:f5:9d:e5:a0:3d:4e:64:8b:1f:54:cf:15:1f: bf:e2:30:20:8a:4a:d2:29:f5:12:41:69:49:fc:83:97:7c:12: 40:21:7b:ad -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIzUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUMx MEM5MzQ1NTc1OUM2NTlEMkJCODE5RkIwN0ZGNzA2M0NFQ0MzMjAeFw0yNjAxMjYw NzU5MzFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDg0QjI0NkFDODhCMjM5 QTA2QjMzNTc0Q0UwRjQxQjc3ODE5NEFBMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw1IMz9+g1ZvxB1Ti/QVDTvIXpXvMwcn6y9u4Whp94dP7AMhts gDMvOH4onrP4E/TuCryctmXqtmEqjQ/2U8POdOUkQxopMigondj+EWsSTNBr54Fl w9Vkn/WeCh5mlAnInypG+x6zIr6E3b3sZLcuz8jegNn4225FqpOY7OwxLX04xSwC CP7KxUaOzjyfkL689+UL/tZILCKQ7zz72uNvTAkPg+bRXMvNdTCIPMYEG+DJg1F5 7wd3+IETtoYfgNIh+Gc6C1Wf1byTm7ZFwei5Hw2OMs75+bnnK+FyFIzct8CQAv0P XCN9rge5jVGdCkt8xffKnqChls6zNEaAbBJ/AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUhLJGrIiyOaBrM1dM4PQbd4GUqiEwHwYDVR0jBBgwFoAU7BDJNFV1nGWdK7gZ +wf/cGPOzDIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjMy OS83QkRKTkZWMW5HV2RLN2daLXdmX2NHUE96REkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzdCREpORlYxbkdXZEs3Z1otd2ZfY0dQT3pESS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIzMjkvN0JESk5GVjFuR1dk SzdnWi13Zl9jR1BPekRJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGzzdd/YDnSOTSznF+49rGHex4uCO9dyb35sk/Aaw6zA1dutQ7cty6tUMv22 eaU8Dd9BLTO4Y1zBejZZO393zJDDbQv9qLBZIfyfQPn/RePlgzTQPkTtPpNBZX5Z GWV3XxqT0lgyQ4Esb7YVsTP2WHRi6bxqsoNVv/DTc8DFjACtXu2lwk8YxPK4TemP g4Bi8LhX0W0lGH7r25+fuQ8WBh12yT0PQZ0I3hptXGzvrQmfglOCcNWCP3FgbVNa RT4TZw3g29rtMlQje+FAkkyX6O4YHxldGKqL2On+c65S9Z3loD1OZIsfVM8VH7/i MCCKStIp9RJBaUn8g5d8EkAhe60= -----END CERTIFICATE-----Generated at Mon Jan 26 09:56:44 2026 by rpki-client