This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft File: vcTZgftYN_Id2VEGP1m0dd1WJTY.mft (raw, json) Hash identifier: 4uyMCwjf2oo16GJmtKy8BSbSx43Tjp/C7fsjDjLOfjo= Subject key identifier: 48:ED:2D:04:59:DF:0F:E7:68:E6:07:DA:7C:6D:13:70:A3:01:41:9D Authority key identifier: BD:C4:D9:81:FB:58:37:F2:1D:D9:51:06:3F:59:B4:75:DD:56:25:36 Certificate issuer: /CN=BDC4D981FB5837F21DD951063F59B475DD562536 Certificate serial: 04F6 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft Manifest number: 04F5 Signing time: Mon 19 Jan 2026 09:56:24 +0000 Manifest this update: Mon 19 Jan 2026 09:56:24 +0000 Manifest next update: Mon 19 Jan 2026 15:56:24 +0000 Files and hashes: 1: ihz4sFLDfkN7Fk9DCBqiadh-ivQ.roa (hash: gR5LOmN4JF2dPB94elxL+UoXokAkI2kc2RKlgGd4ebs=) 2: vcTZgftYN_Id2VEGP1m0dd1WJTY.crl (hash: zA8AWAdUNSzYdr0oGZiJ0gEy5F5xT1q9GVoqebHR1r8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 15:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1270 (0x4f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDC4D981FB5837F21DD951063F59B475DD562536 Validity Not Before: Jan 19 09:56:24 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=48ED2D0459DF0FE768E607DA7C6D1370A301419D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:85:01:25:5d:b3:c7:08:4c:9d:8f:fb:8d:cc: f4:c4:07:1f:79:ca:fb:0d:18:3a:55:90:e8:6d:a6: 53:ed:b3:73:02:97:4d:46:3f:52:7d:2d:2a:9d:29: b0:92:90:d8:01:f3:25:ad:1f:dd:a1:17:0a:a4:69: d7:2e:a6:d1:2e:45:7b:ba:09:2d:c0:77:aa:d0:f5: cb:a3:50:a9:2f:7e:5a:a0:11:0b:96:c6:ff:49:78: 79:e4:59:a5:e2:b2:d0:82:37:69:da:01:40:4c:89: 3a:d1:c2:0b:d7:ea:5d:3e:7f:92:ed:ad:2b:b7:3e: ec:a9:b1:0e:34:16:c0:a2:8e:2f:c3:a0:06:0e:c6: 29:0e:62:a9:6a:9a:85:d9:32:83:51:7e:a0:e6:ab: 8d:e8:c2:45:7b:a1:94:9d:a5:04:29:32:a7:77:16: 8f:c7:e8:38:70:3f:43:8c:97:de:e7:3d:0e:e3:5d: e0:7d:70:c8:11:4d:16:a1:67:c6:94:11:6b:7e:c1: a6:1e:5a:43:06:58:74:49:a9:6f:b0:eb:54:ff:c2: ce:2e:61:27:de:29:59:21:92:1c:54:04:69:8b:70: 76:85:e4:83:21:38:3e:69:af:de:0e:9e:cb:27:a7: 40:06:b7:03:05:3f:3d:55:56:b3:44:b9:fc:2e:41: 58:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:ED:2D:04:59:DF:0F:E7:68:E6:07:DA:7C:6D:13:70:A3:01:41:9D X509v3 Authority Key Identifier: keyid:BD:C4:D9:81:FB:58:37:F2:1D:D9:51:06:3F:59:B4:75:DD:56:25:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:40:5f:b1:bc:29:fc:c5:59:92:21:31:d3:ae:ee:01:e4:8f: c6:c9:8f:13:3a:cc:3d:c8:b6:03:24:72:65:a8:86:ae:4d:df: 4c:83:71:03:e6:40:dd:84:a5:45:ce:9e:c1:95:ce:8a:72:27: 50:04:76:6e:42:b4:79:d7:21:22:b7:44:5e:c4:3e:d7:e8:1a: 2c:d2:99:c2:12:79:81:f9:77:ea:46:35:c7:91:cb:f4:18:a9: a5:a7:4f:35:cf:49:ef:25:02:87:8d:45:dc:a5:de:19:1b:d7: 1b:6b:e5:27:74:21:cb:c4:8e:f7:8a:68:fb:c2:23:ab:6a:6e: 1a:78:ce:5a:ae:ea:79:55:9b:dc:77:1a:6c:9f:f0:ec:f7:ba: af:94:f5:39:94:b2:08:3f:e9:d6:4b:8a:ad:b0:4e:01:9c:c9: 32:3c:e7:de:57:46:0e:1b:0a:61:e6:ba:46:fa:eb:e7:21:52: 06:7b:5c:34:ad:97:c5:34:5b:f8:3a:1f:b8:f3:fe:ce:ec:a6: 0e:ae:fb:44:81:ac:0b:0c:eb:32:19:d1:ba:a1:22:97:32:61: 83:52:1c:68:19:c3:52:71:19:b9:5f:b8:b7:c2:dd:6b:86:40: 70:45:48:e5:28:b7:10:98:59:36:36:57:ad:f4:d6:e8:dd:c6: 48:7b:47:a0 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRD NEQ5ODFGQjU4MzdGMjFERDk1MTA2M0Y1OUI0NzVERDU2MjUzNjAeFw0yNjAxMTkw OTU2MjRaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDQ4RUQyRDA0NTlERjBG RTc2OEU2MDdEQTdDNkQxMzcwQTMwMTQxOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDShQElXbPHCEydj/uNzPTEBx95yvsNGDpVkOhtplPts3MCl01G P1J9LSqdKbCSkNgB8yWtH92hFwqkadcuptEuRXu6CS3Ad6rQ9cujUKkvflqgEQuW xv9JeHnkWaXistCCN2naAUBMiTrRwgvX6l0+f5LtrSu3PuypsQ40FsCiji/DoAYO xikOYqlqmoXZMoNRfqDmq43owkV7oZSdpQQpMqd3Fo/H6DhwP0OMl97nPQ7jXeB9 cMgRTRahZ8aUEWt+waYeWkMGWHRJqW+w61T/ws4uYSfeKVkhkhxUBGmLcHaF5IMh OD5pr94Onssnp0AGtwMFPz1VVrNEufwuQVgNAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUSO0tBFnfD+do5gfafG0TcKMBQZ0wHwYDVR0jBBgwFoAUvcTZgftYN/Id2VEG P1m0dd1WJTYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY2 Mi92Y1RaZ2Z0WU5fSWQyVkVHUDFtMGRkMVdKVFkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3ZjVFpnZnRZTl9JZDJWRUdQMW0wZGQxV0pUWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NjIvdmNUWmdmdFlOX0lk MlZFR1AxbTBkZDFXSlRZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIdAX7G8KfzFWZIhMdOu7gHkj8bJjxM6zD3ItgMkcmWohq5N30yDcQPmQN2E pUXOnsGVzopyJ1AEdm5CtHnXISK3RF7EPtfoGizSmcISeYH5d+pGNceRy/QYqaWn TzXPSe8lAoeNRdyl3hkb1xtr5Sd0IcvEjveKaPvCI6tqbhp4zlqu6nlVm9x3Gmyf 8Oz3uq+U9TmUsgg/6dZLiq2wTgGcyTI8595XRg4bCmHmukb66+chUgZ7XDStl8U0 W/g6H7jz/s7spg6u+0SBrAsM6zIZ0bqhIpcyYYNSHGgZw1JxGblfuLfC3WuGQHBF SOUotxCYWTY2V6301ujdxkh7R6A= -----END CERTIFICATE-----Generated at Mon Jan 19 13:56:34 2026 by rpki-client