This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft File: Z7bHlviRA1kP8cyQcd_kwN84_U0.mft (raw, json) Hash identifier: taS8NZ83qw+KTwLtxWNYcBPIDcFyoZc5hFTxXcZS1pA= Subject key identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A Authority key identifier: 67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D Certificate issuer: /CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Certificate serial: 0260 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft Manifest number: 025E Signing time: Sun 25 Jan 2026 20:57:17 +0000 Manifest this update: Sun 25 Jan 2026 20:57:17 +0000 Manifest next update: Mon 26 Jan 2026 02:57:17 +0000 Files and hashes: 1: Avn43BaBZTTez8dzXXC5ev5n_E4.roa (hash: Ub77vZnk4oLPBJQVHv+HVLLuQJPSrWkHLBI8wCAEF84=) 2: Z7bHlviRA1kP8cyQcd_kwN84_U0.crl (hash: cF3fqspRIK/eTzidMVOG41FS1TevvwytMG1JKdGKX0k=) Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67B6C796F89103590FF1CC9071DFE4C0DF38FD4D Validity Not Before: Jan 25 20:57:17 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=59EACF823B3E15F69CD6255F54243BC415EB806A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:04:fb:58:14:da:e3:78:b4:21:e8:0f:fe: ad:d0:0a:2c:6a:40:e7:4a:59:df:e4:ba:d4:9c:06: 1d:03:cf:b8:c3:ea:c3:ab:f5:d9:77:f3:6a:8c:6f: eb:8a:80:4d:b7:a9:ee:7d:e0:14:fe:e4:3c:de:fc: 76:1e:79:c5:4b:d0:a3:92:a6:ad:b8:c0:78:84:4e: a3:b3:e6:74:ff:20:c5:e8:ed:3a:65:4d:bc:44:f9: 8f:68:ed:31:96:45:4a:2a:3d:35:4e:27:2f:fb:36: 55:8e:c5:1e:c7:09:c4:96:25:39:14:cf:3d:7e:07: 75:a9:96:24:d5:a2:af:cf:30:09:a9:48:91:d7:41: b5:6c:7a:4c:ea:31:3a:43:16:80:e0:b5:4e:ac:4a: dd:0b:a5:9f:07:bd:c2:8b:bc:e4:4e:2e:92:74:68: 05:04:1d:fc:80:ac:ea:b0:07:51:2b:4f:35:2a:95: e7:52:5d:7b:65:52:4b:60:c5:25:28:2b:38:5a:2d: 7a:38:c5:e4:4a:91:e5:1d:ce:26:1e:48:b9:00:c4: c3:d2:3d:4c:9d:45:d6:6a:c0:99:66:ab:bd:5b:fc: 86:4d:97:e6:b2:9e:90:aa:e5:cc:3c:9e:c1:1b:2f: bd:74:8d:23:65:b8:03:85:87:f1:c3:26:a0:37:4a: 05:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EA:CF:82:3B:3E:15:F6:9C:D6:25:5F:54:24:3B:C4:15:EB:80:6A X509v3 Authority Key Identifier: keyid:67:B6:C7:96:F8:91:03:59:0F:F1:CC:90:71:DF:E4:C0:DF:38:FD:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Z7bHlviRA1kP8cyQcd_kwN84_U0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/Z7bHlviRA1kP8cyQcd_kwN84_U0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:40:b7:cb:86:1f:5a:8d:70:a0:8d:45:c3:dd:bb:d4:85:d5: bb:69:4c:e9:ab:cf:5a:64:34:9e:92:6d:d3:51:91:35:aa:82: 12:be:0a:bd:87:7e:e4:c4:55:8e:b7:ba:5f:dd:66:0f:3f:c1: b8:0a:85:59:de:fe:3e:5e:3c:13:6b:b8:11:8b:2a:4c:ac:d7: 0d:39:82:c0:c8:a6:89:7e:a7:2d:31:93:31:52:f3:eb:49:30: 7a:bc:c8:28:0d:a6:bc:6c:12:79:de:b1:54:94:5f:67:92:2b: ff:84:45:a0:82:d6:f7:6d:2b:e1:ac:3d:5c:23:3b:ac:a9:62: cb:e8:61:ea:5b:d3:aa:60:e0:89:7a:99:ec:ac:86:11:b4:cf: 01:44:81:5f:22:8c:b1:91:fc:ab:46:35:96:3c:d2:e2:56:de: 66:35:f0:79:4a:11:4a:af:a5:f3:57:ee:ed:1e:ec:be:1c:61: e8:c6:ff:ff:22:f2:91:49:c9:94:ca:b8:1c:63:ca:11:95:97: 29:42:f5:98:ef:20:4f:d4:56:16:c6:5f:5e:42:ae:75:48:4a: 85:91:a6:ae:87:44:dc:c0:81:09:6a:f2:70:d9:b2:ab:75:bb: 9b:2d:ba:29:38:a7:a0:cb:f8:55:7a:4c:39:1b:cc:b7:27:61: b1:85:8f:7c -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjdC NkM3OTZGODkxMDM1OTBGRjFDQzkwNzFERkU0QzBERjM4RkQ0RDAeFw0yNjAxMjUy MDU3MTdaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDU5RUFDRjgyM0IzRTE1 RjY5Q0Q2MjU1RjU0MjQzQkM0MTVFQjgwNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtxQT7WBTa43i0IegP/q3QCixqQOdKWd/kutScBh0Dz7jD6sOr 9dl382qMb+uKgE23qe594BT+5Dze/HYeecVL0KOSpq24wHiETqOz5nT/IMXo7Tpl TbxE+Y9o7TGWRUoqPTVOJy/7NlWOxR7HCcSWJTkUzz1+B3WpliTVoq/PMAmpSJHX QbVsekzqMTpDFoDgtU6sSt0LpZ8HvcKLvOROLpJ0aAUEHfyArOqwB1ErTzUqledS XXtlUktgxSUoKzhaLXo4xeRKkeUdziYeSLkAxMPSPUydRdZqwJlmq71b/IZNl+ay npCq5cw8nsEbL710jSNluAOFh/HDJqA3SgWPAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUWerPgjs+Ffac1iVfVCQ7xBXrgGowHwYDVR0jBBgwFoAUZ7bHlviRA1kP8cyQ cd/kwN84/U0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 Ni9aN2JIbHZpUkExa1A4Y3lRY2Rfa3dOODRfVTAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1o3YkhsdmlSQTFrUDhjeVFjZF9rd044NF9VMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTYvWjdiSGx2aVJBMWtQ OGN5UWNkX2t3Tjg0X1UwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAMRAt8uGH1qNcKCNRcPdu9SF1btpTOmrz1pkNJ6SbdNRkTWqghK+Cr2HfuTE VY63ul/dZg8/wbgKhVne/j5ePBNruBGLKkys1w05gsDIpol+py0xkzFS8+tJMHq8 yCgNprxsEnnesVSUX2eSK/+ERaCC1vdtK+GsPVwjO6ypYsvoYepb06pg4Il6meys hhG0zwFEgV8ijLGR/KtGNZY80uJW3mY18HlKEUqvpfNX7u0e7L4cYejG//8i8pFJ yZTKuBxjyhGVlylC9ZjvIE/UVhbGX15CrnVISoWRpq6HRNzAgQlq8nDZsqt1u5st uik4p6DL+FV6TDkbzLcnYbGFj3w= -----END CERTIFICATE-----Generated at Mon Jan 26 03:32:24 2026 by rpki-client