This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.mft File: 1t0LRn7o11sVFGYoyZGsMUBVj5Q.mft (raw, json) Hash identifier: HrBRZJKCDe/pM3Pli1uZ8yiLpWIVdvthDJ/zMHb0PoQ= Subject key identifier: 07:FD:51:87:5C:37:F9:3D:2E:40:BF:6E:6E:C6:36:33:78:E0:6E:DE Authority key identifier: D6:DD:0B:46:7E:E8:D7:5B:15:14:66:28:C9:91:AC:31:40:55:8F:94 Certificate issuer: /CN=D6DD0B467EE8D75B15146628C991AC3140558F94 Certificate serial: 2282 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.mft Manifest number: 227C Signing time: Mon 19 Jan 2026 11:59:26 +0000 Manifest this update: Mon 19 Jan 2026 11:59:26 +0000 Manifest next update: Mon 19 Jan 2026 17:59:26 +0000 Files and hashes: 1: -a1jdxdHPICbVsGbYZhm8xBMOls.roa (hash: 9kCwOnNKxY6VM8dDFxiIule25mLmEQcmiPBStuJwclU=) 2: 1t0LRn7o11sVFGYoyZGsMUBVj5Q.crl (hash: DO/0de12egx2HlrkWBEiaS/zCBV+Mxd2iH4ZwKYyoBM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8834 (0x2282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6DD0B467EE8D75B15146628C991AC3140558F94 Validity Not Before: Jan 19 11:59:26 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=07FD51875C37F93D2E40BF6E6EC6363378E06EDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6b:26:f7:fb:1c:7a:2f:ad:71:9f:27:07:8e: e1:a8:17:cb:24:31:4f:d5:c7:7f:8e:3a:bd:e6:db: 6f:61:94:36:03:28:d0:db:a7:37:28:2b:e9:b2:2f: 02:d5:d5:58:27:ec:7f:25:65:10:0b:90:3d:02:b1: 2c:71:64:d8:e0:be:b5:55:e8:e0:6c:4d:25:c1:b1: 31:1d:0d:78:53:29:3f:a3:b4:f9:e6:1c:81:eb:05: 48:c6:f8:5b:8b:2e:3a:01:de:91:06:59:a4:3f:e8: 65:e0:85:77:4f:c5:aa:f5:9e:7b:ae:49:e6:b9:24: e2:30:dd:cc:ad:7b:82:5e:1b:0e:16:72:f7:20:be: d2:66:0a:ce:bb:4b:88:2f:32:39:d2:ca:41:ab:60: 77:5a:ee:42:ed:10:83:cc:fb:a0:15:b2:fe:0f:5e: 4c:5d:44:14:12:77:04:db:7a:c8:b7:97:24:b6:e5: 2e:d2:27:3d:cb:2d:bc:81:ac:ba:9c:87:c3:b0:f3: b0:38:5c:9e:3f:33:4c:c6:db:4e:cd:c5:f5:94:a1: 97:0c:a3:e7:ed:5f:ad:83:8d:a5:28:d2:d9:56:f4: 8b:23:27:b8:3d:88:3b:9c:0e:6a:a3:0e:8b:a9:ec: 0e:62:a8:0d:9e:fc:d1:83:42:c2:ed:b7:1b:f8:28: ff:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FD:51:87:5C:37:F9:3D:2E:40:BF:6E:6E:C6:36:33:78:E0:6E:DE X509v3 Authority Key Identifier: keyid:D6:DD:0B:46:7E:E8:D7:5B:15:14:66:28:C9:91:AC:31:40:55:8F:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1t0LRn7o11sVFGYoyZGsMUBVj5Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2742/1t0LRn7o11sVFGYoyZGsMUBVj5Q.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:11:f1:6b:c2:81:db:54:f9:df:b8:91:cc:d0:19:38:2a:b8: 64:c7:20:a7:36:e6:3c:46:d8:15:72:91:f9:b8:4e:c5:12:e1: 9a:cb:bf:2c:c7:7f:30:a6:18:e7:45:ca:7c:97:3a:43:4e:17: 1a:8e:0c:9e:04:9d:39:75:7a:80:a0:87:fb:25:c9:60:ec:1a: cc:17:03:dd:61:a4:93:b3:4d:7d:b3:d7:dc:7c:ca:e2:64:9a: 4d:2c:16:7b:97:44:3c:43:f1:4a:b2:7e:ff:5c:84:8c:bf:6e: 3f:6b:1d:70:f1:c3:a9:6c:74:97:f6:58:b6:77:67:f9:6e:f6: 0e:f9:39:f4:16:60:52:6d:98:a2:3e:ba:61:a9:1b:f2:ab:8b: fa:8c:38:ca:ee:8a:39:0c:3d:69:0a:55:b1:b1:7e:24:72:3b: ec:18:7e:af:b1:2d:f3:7a:1b:f3:ff:46:e9:7c:a3:56:ad:63: af:5f:f1:78:9b:42:f4:2b:cb:4e:f8:92:a1:48:59:bf:a2:0e: 48:59:e0:f5:ac:46:b4:0d:75:39:e8:9f:43:2a:f5:30:d6:b6: 31:00:4e:57:a4:41:7a:11:d7:56:fb:08:8f:6e:80:e6:f2:52: 82:5d:3e:eb:38:b6:0c:b3:05:8e:5e:01:22:f4:09:05:45:ac: a9:9b:77:08 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIoIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDZE RDBCNDY3RUU4RDc1QjE1MTQ2NjI4Qzk5MUFDMzE0MDU1OEY5NDAeFw0yNjAxMTkx MTU5MjZaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDA3RkQ1MTg3NUMzN0Y5 M0QyRTQwQkY2RTZFQzYzNjMzNzhFMDZFREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuayb3+xx6L61xnycHjuGoF8skMU/Vx3+OOr3m229hlDYDKNDb pzcoK+myLwLV1Vgn7H8lZRALkD0CsSxxZNjgvrVV6OBsTSXBsTEdDXhTKT+jtPnm HIHrBUjG+FuLLjoB3pEGWaQ/6GXghXdPxar1nnuuSea5JOIw3cyte4JeGw4Wcvcg vtJmCs67S4gvMjnSykGrYHda7kLtEIPM+6AVsv4PXkxdRBQSdwTbesi3lyS25S7S Jz3LLbyBrLqch8Ow87A4XJ4/M0zG207NxfWUoZcMo+ftX62DjaUo0tlW9IsjJ7g9 iDucDmqjDoup7A5iqA2e/NGDQsLttxv4KP+rAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUB/1Rh1w3+T0uQL9ubsY2M3jgbt4wHwYDVR0jBBgwFoAU1t0LRn7o11sVFGYo yZGsMUBVj5QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 Mi8xdDBMUm43bzExc1ZGR1lveVpHc01VQlZqNVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzF0MExSbjdvMTFzVkZHWW95WkdzTVVCVmo1US5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDIvMXQwTFJuN28xMXNW RkdZb3laR3NNVUJWajVRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALsR8WvCgdtU+d+4kczQGTgquGTHIKc25jxG2BVykfm4TsUS4ZrLvyzHfzCm GOdFynyXOkNOFxqODJ4EnTl1eoCgh/slyWDsGswXA91hpJOzTX2z19x8yuJkmk0s FnuXRDxD8Uqyfv9chIy/bj9rHXDxw6lsdJf2WLZ3Z/lu9g75OfQWYFJtmKI+umGp G/Kri/qMOMruijkMPWkKVbGxfiRyO+wYfq+xLfN6G/P/Rul8o1atY69f8XibQvQr y074kqFIWb+iDkhZ4PWsRrQNdTnon0Mq9TDWtjEATlekQXoR11b7CI9ugObyUoJd Pus4tgyzBY5eASL0CQVFrKmbdwg= -----END CERTIFICATE-----Generated at Mon Jan 19 13:58:44 2026 by rpki-client