This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft File: 5nly8uDEjmq9G__KM5YicDZJm28.mft (raw, json) Hash identifier: 383bEpAz5HUpdo/JV4IZEl0VnXaQy8+utDUg2NEaFTI= Subject key identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC Authority key identifier: E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F Certificate issuer: /CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Certificate serial: 134E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft Manifest number: 134E Signing time: Mon 19 Jan 2026 11:56:24 +0000 Manifest this update: Mon 19 Jan 2026 11:56:24 +0000 Manifest next update: Mon 19 Jan 2026 17:56:24 +0000 Files and hashes: 1: 5nly8uDEjmq9G__KM5YicDZJm28.crl (hash: o3wIQpj0tUXZLWqfHNC1wnMEUk3vgdMaeAj07KWq2GI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4942 (0x134e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Validity Not Before: Jan 19 11:56:24 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E81B8D2CD9AABC3441DFC8A1756818541B6D89DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:11:47:e9:65:0b:f8:62:f2:4f:c0:1e:78:b5: 8a:c9:c5:07:a5:ab:c1:bd:2c:76:a6:79:a4:ac:7c: bb:50:37:04:83:e6:0d:dd:01:dc:fb:d5:3a:f6:c9: d3:1f:48:43:96:08:34:db:92:0f:54:3c:44:e1:05: 9f:95:d7:94:30:2f:be:81:7f:4b:84:83:93:9e:a9: ce:ae:8b:36:1c:63:fb:d9:49:7c:0e:89:f3:33:f1: e0:eb:56:ec:45:fb:f2:4f:fb:ae:f0:59:3b:7e:b8: 54:68:e7:44:a8:d2:bb:e5:1b:4d:42:e3:2d:ad:dd: 5c:53:b6:05:f2:3c:2d:a4:d7:a8:6c:aa:90:cf:3b: ff:71:b2:50:0f:61:65:b5:5d:bf:1a:33:61:a0:7c: 4e:f0:7b:89:61:c7:ba:1e:ff:6f:91:e6:40:2c:f6: fd:3f:25:3a:64:92:f7:78:8e:e6:b5:2b:58:48:aa: d7:da:26:71:5a:dd:f4:bb:4c:9f:b7:cb:77:2d:df: b3:cb:c8:6c:b9:1f:fe:03:7c:a7:a0:9c:65:ed:06: 97:b3:d6:a3:48:58:e0:ef:b8:7a:46:85:2a:ef:ce: a7:9a:7a:8a:70:10:b2:d1:80:d6:89:33:ba:e4:ba: d4:a5:ea:87:25:6c:0b:c4:8f:97:8f:1d:e8:96:e5: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC X509v3 Authority Key Identifier: keyid:E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:7d:bd:ba:3c:1b:40:d1:b0:14:47:67:95:49:16:91:01:a2: 58:5b:1c:a3:c7:da:d7:ba:8c:71:dc:3c:00:54:73:e5:cb:e4: 73:5d:17:e5:90:51:3e:aa:dc:89:d2:ca:0e:88:b5:01:c3:ea: 29:73:45:05:d1:c4:4f:41:a8:3c:e5:a4:66:a2:c0:84:fe:fb: 3f:9d:57:94:12:8e:0b:ec:2c:8d:48:66:c8:65:c3:a2:da:a3: 3a:5f:7c:0f:3b:43:1f:8f:9b:2b:34:19:72:88:48:0b:84:02: 34:3f:cf:fe:95:29:1b:61:c3:8f:d3:92:e6:47:38:9f:b6:c6: a9:ed:5e:b0:21:06:5f:8e:f5:95:9e:fe:ad:6b:87:f9:9e:82: c8:c0:30:25:14:c5:97:b4:37:82:37:ac:46:35:80:11:76:87: 75:14:29:d3:90:ad:f3:dc:68:52:8d:c2:ca:d3:ed:ab:48:8f: 03:98:da:08:6b:7d:ba:70:de:44:80:47:3c:13:3b:e3:33:29: 97:49:26:a9:ef:02:53:85:dc:d4:47:29:cf:e9:27:2e:67:4a: 71:c3:67:d2:bc:e7:e8:dc:8d:1f:c2:94:9c:62:7c:25:0c:34: 7b:db:b3:db:c4:05:18:95:30:06:53:90:5c:b5:75:a0:5d:88: e4:48:0a:88 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICE04wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTY3 OTcyRjJFMEM0OEU2QUJEMUJGRkNBMzM5NjIyNzAzNjQ5OUI2RjAeFw0yNjAxMTkx MTU2MjRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU4MUI4RDJDRDlBQUJD MzQ0MURGQzhBMTc1NjgxODU0MUI2RDg5REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8EUfpZQv4YvJPwB54tYrJxQelq8G9LHameaSsfLtQNwSD5g3d Adz71Tr2ydMfSEOWCDTbkg9UPEThBZ+V15QwL76Bf0uEg5Oeqc6uizYcY/vZSXwO ifMz8eDrVuxF+/JP+67wWTt+uFRo50So0rvlG01C4y2t3VxTtgXyPC2k16hsqpDP O/9xslAPYWW1Xb8aM2GgfE7we4lhx7oe/2+R5kAs9v0/JTpkkvd4jua1K1hIqtfa JnFa3fS7TJ+3y3ct37PLyGy5H/4DfKegnGXtBpez1qNIWODvuHpGhSrvzqeaeopw ELLRgNaJM7rkutSl6oclbAvEj5ePHeiW5dA/AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU6BuNLNmqvDRB38ihdWgYVBttidwwHwYDVR0jBBgwFoAU5nly8uDEjmq9G//K M5YicDZJm28wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIx NS81bmx5OHVERWptcTlHX19LTTVZaWNEWkptMjguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVubHk4dURFam1xOUdfX0tNNVlpY0RaSm0yOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMTUvNW5seTh1REVqbXE5 R19fS001WWljRFpKbTI4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALJ9vbo8G0DRsBRHZ5VJFpEBolhbHKPH2te6jHHcPABUc+XL5HNdF+WQUT6q 3InSyg6ItQHD6ilzRQXRxE9BqDzlpGaiwIT++z+dV5QSjgvsLI1IZshlw6Laozpf fA87Qx+Pmys0GXKISAuEAjQ/z/6VKRthw4/TkuZHOJ+2xqntXrAhBl+O9ZWe/q1r h/megsjAMCUUxZe0N4I3rEY1gBF2h3UUKdOQrfPcaFKNwsrT7atIjwOY2ghrfbpw 3kSARzwTO+MzKZdJJqnvAlOF3NRHKc/pJy5nSnHDZ9K85+jcjR/ClJxifCUMNHvb s9vEBRiVMAZTkFy1daBdiORICog= -----END CERTIFICATE-----Generated at Mon Jan 19 13:58:45 2026 by rpki-client