This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3350/NdjMXh0vNf-6p6kJ9VILPcTBWIw.mft File: NdjMXh0vNf-6p6kJ9VILPcTBWIw.mft (raw, json) Hash identifier: XlVVUXwAYKvZOl3N1JIJaj16sMHZ/xObi+DFlLMD7Gc= Subject key identifier: 12:4A:96:CE:A4:13:E3:58:2C:11:61:76:A9:8A:B4:05:9F:BA:56:1E Authority key identifier: 35:D8:CC:5E:1D:2F:35:FF:BA:A7:A9:09:F5:52:0B:3D:C4:C1:58:8C Certificate issuer: /CN=35D8CC5E1D2F35FFBAA7A909F5520B3DC4C1588C Certificate serial: 06C7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/NdjMXh0vNf-6p6kJ9VILPcTBWIw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3350/NdjMXh0vNf-6p6kJ9VILPcTBWIw.mft Manifest number: 06C4 Signing time: Fri 23 Jan 2026 08:28:25 +0000 Manifest this update: Fri 23 Jan 2026 08:28:25 +0000 Manifest next update: Fri 23 Jan 2026 14:28:25 +0000 Files and hashes: 1: 9a0INOwkczfY4HrZo0npiz6wge4.roa (hash: mdc2x6YC0BwO3VfbxMQgCLhbnrU0iA7dp7DPNMxDBuw=) 2: NdjMXh0vNf-6p6kJ9VILPcTBWIw.crl (hash: dYMUsvKQ/D80n9hi7VM+mVSK+j1yov0jtJrgOIXzSNA=) Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 1735 (0x6c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35D8CC5E1D2F35FFBAA7A909F5520B3DC4C1588C Validity Not Before: Jan 23 08:28:25 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=124A96CEA413E3582C116176A98AB4059FBA561E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:47:22:e6:1f:14:34:f6:5a:46:de:93:2d:3c: 69:e1:d6:4e:a7:5c:98:de:e1:78:32:9b:21:ce:10: ce:22:bc:79:86:0a:19:64:f8:77:6c:c0:30:c9:43: b5:3d:5c:49:be:26:f4:af:43:4a:10:7f:84:1f:67: a5:c0:1e:0b:4a:e7:2a:a8:a1:0d:42:9b:98:85:bc: 18:45:ab:94:01:be:50:9a:9a:e2:47:8d:dd:6f:60: 8e:00:9f:00:9c:00:8b:d0:6e:81:34:70:90:60:c1: a5:e9:ee:85:86:02:9e:e6:4c:dc:d4:bd:3f:2a:ba: 61:f1:88:35:75:44:04:5c:37:c1:37:dc:58:3b:ce: 8f:5c:7d:95:3f:81:93:e9:0c:03:42:1e:4b:96:42: 58:ba:c4:dd:af:43:d9:f1:e1:52:00:e9:6e:bc:24: 2f:8c:e3:d6:91:03:99:2c:2d:80:15:af:5f:32:50: 68:1a:62:8e:59:b1:f9:c8:a4:de:67:77:23:a5:da: 90:85:61:8a:68:75:3f:05:4f:7d:2c:6c:96:45:07: 2c:b7:fd:23:b1:7b:99:f4:09:dd:01:dd:c1:4a:f2: 2a:cd:47:b5:ed:8f:46:40:4a:e2:54:bb:d4:70:e9: eb:68:8d:b9:8d:8a:4e:5c:ac:0e:3b:6f:40:c1:da: 81:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4A:96:CE:A4:13:E3:58:2C:11:61:76:A9:8A:B4:05:9F:BA:56:1E X509v3 Authority Key Identifier: keyid:35:D8:CC:5E:1D:2F:35:FF:BA:A7:A9:09:F5:52:0B:3D:C4:C1:58:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3350/NdjMXh0vNf-6p6kJ9VILPcTBWIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/NdjMXh0vNf-6p6kJ9VILPcTBWIw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3350/NdjMXh0vNf-6p6kJ9VILPcTBWIw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:72:e8:bc:b5:7b:47:9f:1f:56:fa:02:10:f9:2d:44:6e:2e: dc:d6:47:9b:38:6b:d2:c3:26:b8:2e:ef:3e:ec:b2:34:b7:85: 13:88:cd:8f:34:13:8f:14:f1:62:ed:38:db:34:6d:85:cc:b1: e8:a4:1a:cf:13:a8:82:31:62:4f:24:3a:74:88:10:57:9e:a0: 6d:07:62:9a:b8:72:e2:06:ec:a3:84:80:2a:e9:3f:87:f7:e4: 12:dd:b3:36:f8:39:95:f2:b9:8e:b4:0f:c9:7e:25:ee:3d:41: 12:c7:e8:5e:6f:cf:b7:f7:57:33:d0:ac:23:52:20:da:58:c3: f6:15:4b:36:81:cc:22:12:74:60:f0:c9:c8:2d:93:a6:50:dd: f2:bd:da:01:d7:6a:fd:37:a2:59:6a:bc:b4:2a:c7:4c:a6:9d: 97:dd:7b:f5:ca:67:a3:70:86:37:99:f2:a5:f8:f9:e4:cd:45: 55:cf:4c:54:9f:e9:64:e3:40:d8:05:e4:f0:b1:84:ed:88:e3: 87:02:42:0e:00:63:77:19:93:c2:54:00:e1:8f:ad:7c:7d:2d: cf:0c:6f:4a:f4:30:03:f1:57:ba:9d:1f:4e:0c:a6:c8:75:0b: 10:ea:73:b6:99:23:b5:ae:5a:69:c7:88:af:92:1c:bf:7e:c7: 85:70:16:68 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVE OENDNUUxRDJGMzVGRkJBQTdBOTA5RjU1MjBCM0RDNEMxNTg4QzAeFw0yNjAxMjMw ODI4MjVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDEyNEE5NkNFQTQxM0Uz NTgyQzExNjE3NkE5OEFCNDA1OUZCQTU2MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlRyLmHxQ09lpG3pMtPGnh1k6nXJje4XgymyHOEM4ivHmGChlk +HdswDDJQ7U9XEm+JvSvQ0oQf4QfZ6XAHgtK5yqooQ1Cm5iFvBhFq5QBvlCamuJH jd1vYI4AnwCcAIvQboE0cJBgwaXp7oWGAp7mTNzUvT8qumHxiDV1RARcN8E33Fg7 zo9cfZU/gZPpDANCHkuWQli6xN2vQ9nx4VIA6W68JC+M49aRA5ksLYAVr18yUGga Yo5ZsfnIpN5ndyOl2pCFYYpodT8FT30sbJZFByy3/SOxe5n0Cd0B3cFK8irNR7Xt j0ZASuJUu9Rw6etojbmNik5crA47b0DB2oHHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUEkqWzqQT41gsEWF2qYq0BZ+6Vh4wHwYDVR0jBBgwFoAUNdjMXh0vNf+6p6kJ 9VILPcTBWIwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 MC9OZGpNWGgwdk5mLTZwNmtKOVZJTFBjVEJXSXcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL05kak1YaDB2TmYtNnA2a0o5VklMUGNUQldJdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTAvTmRqTVhoMHZOZi02 cDZrSjlWSUxQY1RCV0l3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKNy6Ly1e0efH1b6AhD5LURuLtzWR5s4a9LDJrgu7z7ssjS3hROIzY80E48U 8WLtONs0bYXMseikGs8TqIIxYk8kOnSIEFeeoG0HYpq4cuIG7KOEgCrpP4f35BLd szb4OZXyuY60D8l+Je49QRLH6F5vz7f3VzPQrCNSINpYw/YVSzaBzCISdGDwycgt k6ZQ3fK92gHXav03ollqvLQqx0ymnZfde/XKZ6NwhjeZ8qX4+eTNRVXPTFSf6WTj QNgF5PCxhO2I44cCQg4AY3cZk8JUAOGPrXx9Lc8Mb0r0MAPxV7qdH04Mpsh1CxDq c7aZI7WuWmnHiK+SHL9+x4VwFmg= -----END CERTIFICATE-----Generated at Fri Jan 23 15:24:20 2026 by rpki-client