This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft File: MhLECXbovqr84IRHL8u8MS-Szow.mft (raw, json) Hash identifier: VeLP4PQGbcRbJstrP1IogvlGuQRBSMrPhMJwGY1vIUE= Subject key identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 Authority key identifier: 32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C Certificate issuer: /CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Certificate serial: 066A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft Manifest number: 066A Signing time: Mon 19 Jan 2026 10:27:59 +0000 Manifest this update: Mon 19 Jan 2026 10:27:59 +0000 Manifest next update: Mon 19 Jan 2026 16:27:59 +0000 Files and hashes: 1: MhLECXbovqr84IRHL8u8MS-Szow.crl (hash: nU58l2M5wKPQTv4FIZYzEonzQPgPBS6U7hW0LI50mtk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1642 (0x66a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C Validity Not Before: Jan 19 10:27:59 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=8F4E72369CB7C3913592C8ED1BD18339AB1E9AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:73:c0:0a:10:46:57:fc:81:4a:e0:16:96: 31:df:e3:b6:c6:55:c2:5b:37:e9:32:93:3c:d6:08: 4b:ad:c3:79:e9:c9:ca:d1:66:48:f0:81:07:20:30: 9a:21:e2:86:e4:b3:6c:94:7a:f7:66:52:19:6e:54: a5:56:6c:4a:33:eb:bf:c7:b1:b3:1a:4e:45:3f:09: 67:cf:88:10:38:9e:1b:dd:33:b6:40:d3:d5:57:e0: ab:a1:56:98:80:67:1a:8d:79:2a:f2:37:a0:58:ce: cf:6c:df:56:ac:ce:8f:66:3f:83:43:14:57:f5:3c: 49:58:7b:e1:5e:e0:96:92:3e:28:28:b1:d8:27:7a: 6c:98:45:ba:fd:d3:2d:8a:4b:25:74:83:ea:ad:7d: c9:7c:54:8a:0c:ac:9d:85:8f:26:a6:95:06:4d:0a: b7:91:7d:8e:e8:40:48:ab:f1:f4:67:25:9f:33:5f: d0:88:92:1d:d2:f7:52:f6:3b:a9:bb:d4:9d:8e:15: ef:33:78:3f:91:12:1a:19:32:ca:01:da:b1:e3:15: ec:94:f1:ce:a4:93:4b:3a:02:05:ef:34:e5:a3:9b: 82:22:32:60:50:c0:b5:46:87:fe:ee:2a:b9:14:fb: 7d:89:98:11:31:c8:4d:08:e5:32:d2:37:93:72:d2: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1 X509v3 Authority Key Identifier: keyid:32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:cc:87:f0:d5:e0:2a:76:f8:41:2a:85:d6:e9:3e:f4:a8:d7: 41:01:3e:d9:e2:17:09:37:ad:bc:d7:1f:79:02:a4:fa:29:53: 92:e9:83:6e:30:1b:a6:b7:6b:38:33:bc:6b:de:47:09:d6:76: fe:f0:f6:5e:9e:58:b3:24:00:c2:03:c5:e7:98:ec:5e:7c:03: 93:e5:4f:4b:39:15:25:73:4d:ca:00:4f:a1:5a:76:a0:14:8d: c3:13:d4:96:49:6e:41:7f:3b:ab:12:1f:fd:ab:7b:ef:d8:c8: d3:72:f0:d0:41:1f:de:e3:69:70:41:a1:06:6e:fa:f2:a5:bd: 3a:1d:ed:5c:5c:c2:f1:e8:6c:4c:bf:d4:f1:ee:29:0d:e2:74: 6c:c2:aa:ca:1b:3c:23:b1:e3:05:16:ac:c4:1e:78:ff:60:96: 26:b8:fb:88:60:70:7f:87:27:2c:b7:b5:c2:97:ca:27:df:d8: 5b:c3:9c:62:a1:3e:12:cc:6b:63:01:3c:92:ac:eb:74:0d:2b: 58:17:41:d3:92:53:3b:57:d9:1f:0d:fa:0c:de:e8:31:a9:52: 96:f1:4a:5c:4a:f1:de:43:2e:20:7c:c9:74:11:6b:bf:db:66: da:6e:47:2f:bf:32:70:35:77:74:d2:d6:b0:69:cb:f0:07:66: ef:95:41:62 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzIx MkM0MDk3NkU4QkVBQUZDRTA4NDQ3MkZDQkJDMzEyRjkyQ0U4QzAeFw0yNjAxMTkx MDI3NTlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDhGNEU3MjM2OUNCN0Mz OTEzNTkyQzhFRDFCRDE4MzM5QUIxRTlBQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrF3PAChBGV/yBSuAWljHf47bGVcJbN+kykzzWCEutw3npycrR ZkjwgQcgMJoh4obks2yUevdmUhluVKVWbEoz67/HsbMaTkU/CWfPiBA4nhvdM7ZA 09VX4KuhVpiAZxqNeSryN6BYzs9s31aszo9mP4NDFFf1PElYe+Fe4JaSPigosdgn emyYRbr90y2KSyV0g+qtfcl8VIoMrJ2FjyamlQZNCreRfY7oQEir8fRnJZ8zX9CI kh3S91L2O6m71J2OFe8zeD+REhoZMsoB2rHjFeyU8c6kk0s6AgXvNOWjm4IiMmBQ wLVGh/7uKrkU+32JmBExyE0I5TLSN5Ny0rXvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUj05yNpy3w5E1ksjtG9GDOasemqEwHwYDVR0jBBgwFoAUMhLECXbovqr84IRH L8u8MS+SzowwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 My9NaExFQ1hib3Zxcjg0SVJITDh1OE1TLVN6b3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL01oTEVDWGJvdnFyODRJUkhMOHU4TVMtU3pvdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTMvTWhMRUNYYm92cXI4 NElSSEw4dThNUy1Tem93Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHzMh/DV4Cp2+EEqhdbpPvSo10EBPtniFwk3rbzXH3kCpPopU5Lpg24wG6a3 azgzvGveRwnWdv7w9l6eWLMkAMIDxeeY7F58A5PlT0s5FSVzTcoAT6FadqAUjcMT 1JZJbkF/O6sSH/2re+/YyNNy8NBBH97jaXBBoQZu+vKlvTod7VxcwvHobEy/1PHu KQ3idGzCqsobPCOx4wUWrMQeeP9glia4+4hgcH+HJyy3tcKXyiff2FvDnGKhPhLM a2MBPJKs63QNK1gXQdOSUztX2R8N+gze6DGpUpbxSlxK8d5DLiB8yXQRa7/bZtpu Ry+/MnA1d3TS1rBpy/AHZu+VQWI= -----END CERTIFICATE-----Generated at Mon Jan 19 13:58:41 2026 by rpki-client