This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft File: qaFpos8CL7oK84PKmXtFZP7V-Js.mft (raw, json) Hash identifier: PYgij/NsUxVwH/iKKz4xnZYPgNcflAX/X0dkSslCr84= Subject key identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE Authority key identifier: A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B Certificate issuer: /CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Certificate serial: 01E5 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft Manifest number: 01E3 Signing time: Mon 26 Jan 2026 01:58:40 +0000 Manifest this update: Mon 26 Jan 2026 01:58:40 +0000 Manifest next update: Mon 26 Jan 2026 07:58:40 +0000 Files and hashes: 1: bd9GrxZEfHWtOWHMuYJUpax949Y.roa (hash: Vy2eK3SQCyGw1GNGKXYuy4gqV0cZkl9Rql6LWidAWcA=) 2: qaFpos8CL7oK84PKmXtFZP7V-Js.crl (hash: zpd7tPoHgYRiof74/hOHQj/wBKQIxp5CAzMWcUqf6EY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 06:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Validity Not Before: Jan 26 01:58:40 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=2B165718FFB471E6D983811B349FCF8F44B998BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bf:94:ff:7b:7c:37:5a:1f:e8:b6:66:c3:6f: 66:38:b7:ae:da:2e:b1:ad:5c:ff:df:d7:a7:ad:7e: 70:4b:4f:7a:44:61:e8:b8:4d:e6:c5:b6:2f:95:6b: 48:87:0a:24:3a:f8:b7:f7:6f:36:c0:5f:ac:96:66: 8c:fb:47:ea:8a:ae:1b:f7:3f:f2:eb:4e:20:90:c7: 47:99:75:23:d0:0b:fe:4c:ba:60:7c:45:db:e8:0a: 8e:97:2a:87:33:b0:0a:be:54:cd:69:a8:71:14:25: 20:ca:dd:e8:72:a5:11:4d:9e:41:8b:97:66:1b:bc: 45:16:61:05:54:25:aa:c6:24:05:5d:b0:36:3b:da: 80:35:25:bb:ec:85:6e:30:5c:a6:91:52:70:7f:f1: 74:72:0a:27:32:4a:70:b5:dd:e3:eb:4d:d3:c2:55: 2c:ab:e3:37:59:98:9c:63:51:eb:29:63:8d:6a:1b: dd:6c:f4:44:87:eb:1e:7d:f8:60:93:05:1b:5f:58: f0:fc:5b:f1:cf:68:78:d7:46:3f:d5:b9:73:06:10: af:9c:56:1f:0a:8b:b5:0e:80:ad:c3:92:90:07:f2: ec:b8:a4:e1:7b:b9:53:f7:db:1b:8a:a5:bd:ea:c1: 65:04:13:7a:d3:d4:b6:06:d0:a7:bf:83:5a:ef:1f: c5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE X509v3 Authority Key Identifier: keyid:A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e6:0d:92:ca:b9:00:9b:13:a8:ad:09:27:42:bd:66:26:5e: e2:d7:6e:be:66:5b:a4:a5:f5:9c:ac:53:c7:70:e2:f1:0e:18: a5:e7:01:08:bb:f1:c5:6d:ff:7e:34:65:f7:45:1a:6f:27:3d: b1:78:94:9b:12:db:52:20:99:83:19:b5:0d:37:3a:fb:02:62: 70:46:48:0e:2b:00:27:71:69:5e:21:42:1c:1c:20:3b:8c:b2: b6:65:9b:61:6b:20:3d:fc:c3:1b:c6:12:bd:26:89:1e:9f:60: c2:5c:7a:34:1b:7d:7a:42:cf:fb:6f:5b:6c:81:21:69:12:8e: da:26:57:e1:ee:33:41:dd:af:90:1a:ba:fe:2b:4c:a7:5b:55: a1:6d:cf:ce:e0:32:5a:ce:1f:20:ae:ea:59:60:dc:a6:ad:0d: b8:3a:b1:c9:b2:91:89:3f:89:d4:60:24:18:ed:1b:01:39:77: be:82:8f:13:76:b8:8b:69:93:0e:ad:cc:0a:a3:46:b7:97:d6: f5:f8:8a:c1:a8:35:ff:0c:eb:82:62:df:a5:c2:7d:ec:1a:f6: a9:ce:d2:1f:a6:15:a0:bf:f8:c1:f8:39:0e:f3:4e:d9:e4:72: ac:da:35:58:a5:e1:4e:8b:24:d6:84:33:20:88:72:c3:de:dd: 3c:ae:8b:4a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTlB MTY5QTJDRjAyMkZCQTBBRjM4M0NBOTk3QjQ1NjRGRUQ1Rjg5QjAeFw0yNjAxMjYw MTU4NDBaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDJCMTY1NzE4RkZCNDcx RTZEOTgzODExQjM0OUZDRjhGNDRCOTk4QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjv5T/e3w3Wh/otmbDb2Y4t67aLrGtXP/f16etfnBLT3pEYei4 TebFti+Va0iHCiQ6+Lf3bzbAX6yWZoz7R+qKrhv3P/LrTiCQx0eZdSPQC/5MumB8 RdvoCo6XKoczsAq+VM1pqHEUJSDK3ehypRFNnkGLl2YbvEUWYQVUJarGJAVdsDY7 2oA1JbvshW4wXKaRUnB/8XRyCicySnC13ePrTdPCVSyr4zdZmJxjUespY41qG91s 9ESH6x59+GCTBRtfWPD8W/HPaHjXRj/VuXMGEK+cVh8Ki7UOgK3DkpAH8uy4pOF7 uVP32xuKpb3qwWUEE3rT1LYG0Ke/g1rvH8UhAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUKxZXGP+0cebZg4EbNJ/Pj0S5mL4wHwYDVR0jBBgwFoAUqaFpos8CL7oK84PK mXtFZP7V+JswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 OS9xYUZwb3M4Q0w3b0s4NFBLbVh0RlpQN1YtSnMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3FhRnBvczhDTDdvSzg0UEttWHRGWlA3Vi1Kcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTkvcWFGcG9zOENMN29L ODRQS21YdEZaUDdWLUpzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEzmDZLKuQCbE6itCSdCvWYmXuLXbr5mW6Sl9ZysU8dw4vEOGKXnAQi78cVt /340ZfdFGm8nPbF4lJsS21IgmYMZtQ03OvsCYnBGSA4rACdxaV4hQhwcIDuMsrZl m2FrID38wxvGEr0miR6fYMJcejQbfXpCz/tvW2yBIWkSjtomV+HuM0Hdr5Aauv4r TKdbVaFtz87gMlrOHyCu6llg3KatDbg6scmykYk/idRgJBjtGwE5d76CjxN2uItp kw6tzAqjRreX1vX4isGoNf8M64Ji36XCfewa9qnO0h+mFaC/+MH4OQ7zTtnkcqza NVil4U6LJNaEMyCIcsPe3Tyui0o= -----END CERTIFICATE-----Generated at Mon Jan 26 03:29:46 2026 by rpki-client