This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3403/9aQ8YDK2YzIuOSW-qxAzl0xUB00.mft File: 9aQ8YDK2YzIuOSW-qxAzl0xUB00.mft (raw, json) Hash identifier: wxFs6qc+Lrbcu5nk1FFwxSNHjjLoXyD5RB67C8n07Os= Subject key identifier: D8:8D:07:F8:92:2E:46:56:87:FD:E0:F3:64:33:29:C6:A0:5F:92:91 Authority key identifier: F5:A4:3C:60:32:B6:63:32:2E:39:25:BE:AB:10:33:97:4C:54:07:4D Certificate issuer: /CN=F5A43C6032B663322E3925BEAB1033974C54074D Certificate serial: 01B5 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9aQ8YDK2YzIuOSW-qxAzl0xUB00.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3403/9aQ8YDK2YzIuOSW-qxAzl0xUB00.mft Manifest number: 01B5 Signing time: Mon 19 Jan 2026 11:57:39 +0000 Manifest this update: Mon 19 Jan 2026 11:57:39 +0000 Manifest next update: Mon 19 Jan 2026 17:57:39 +0000 Files and hashes: 1: 9aQ8YDK2YzIuOSW-qxAzl0xUB00.crl (hash: OpTqRitfeVSPZjRaBzQX9ER/XcC8lTeTyu7iFgmjU/E=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3403/9aQ8YDK2YzIuOSW-qxAzl0xUB00.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3403/9aQ8YDK2YzIuOSW-qxAzl0xUB00.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9aQ8YDK2YzIuOSW-qxAzl0xUB00.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A43C6032B663322E3925BEAB1033974C54074D Validity Not Before: Jan 19 11:57:39 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=D88D07F8922E465687FDE0F3643329C6A05F9291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:ae:82:5a:ba:57:a3:4c:0b:dc:cd:4a:92: 79:4a:69:8d:d0:9b:a6:39:c5:ab:65:f7:3c:a7:34: 73:48:be:5a:2f:04:d2:70:f6:f1:50:00:f9:a5:12: 8e:5d:98:8f:0a:14:5d:75:ec:18:c6:1c:6c:1c:ab: 28:1f:84:94:50:53:6a:de:8c:b7:0a:cc:7d:19:50: e7:b2:29:42:9b:17:e0:8c:95:bf:ab:d8:e6:4b:45: 79:95:ff:85:4f:4e:2c:54:59:b9:64:c7:b9:1d:a2: 00:e4:1a:a1:4d:34:eb:52:53:4e:eb:3a:c3:af:04: be:ef:12:fb:bb:81:dd:ef:01:bd:cd:2d:f5:7e:98: db:7e:1f:e9:32:2e:22:2f:6d:06:fb:48:a4:75:e5: 8b:26:73:c1:b4:c4:bb:b6:9e:0f:e9:b3:9c:16:bd: 9d:3d:d2:dd:4f:83:4b:fa:2e:56:e6:7c:cb:86:73: f1:ff:10:e2:aa:03:29:cc:a8:c3:b6:bf:77:f2:b7: b5:72:f0:5c:df:4e:2e:89:79:1a:cd:b6:4f:d7:fd: d3:8d:60:77:da:cb:c4:93:e7:a0:0b:32:8c:d4:75: a4:ab:a8:8a:8d:9a:05:94:03:0b:c7:ae:18:a0:69: a7:01:3b:52:92:56:c8:38:0d:df:e1:11:22:f6:44: 46:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8D:07:F8:92:2E:46:56:87:FD:E0:F3:64:33:29:C6:A0:5F:92:91 X509v3 Authority Key Identifier: keyid:F5:A4:3C:60:32:B6:63:32:2E:39:25:BE:AB:10:33:97:4C:54:07:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3403/9aQ8YDK2YzIuOSW-qxAzl0xUB00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9aQ8YDK2YzIuOSW-qxAzl0xUB00.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3403/9aQ8YDK2YzIuOSW-qxAzl0xUB00.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5f:64:43:57:a6:32:92:9a:05:9c:c8:f5:11:b6:d5:93:9b: 93:c0:ad:2d:97:2a:5a:f9:2b:04:f2:24:34:fc:7d:c0:f9:6f: d8:5b:5b:5e:52:2a:1b:c1:27:26:9c:b0:0c:af:dd:3b:88:12: ed:5b:4d:24:11:2c:01:0b:c9:16:42:dd:64:7d:d9:33:a2:3f: 43:d9:49:a0:9f:a2:53:e5:f4:39:6c:70:58:f2:94:66:13:91: 38:37:a9:45:68:88:f0:e1:97:09:d2:d1:75:f3:8f:68:78:26: 85:b4:55:47:2d:e9:01:ba:d9:54:12:59:65:9d:b4:02:8f:c7: cf:cd:fe:01:4a:ec:e9:f2:b0:71:c6:5a:12:60:26:5a:6f:19: 0e:5d:78:40:f1:51:37:92:ae:7c:b6:a9:67:e3:b5:7c:28:ff: 48:27:e1:19:2b:81:ec:76:3c:68:21:d7:c4:33:66:7a:ac:17: bd:fd:4e:90:43:23:af:84:3e:54:bd:13:9f:1a:9c:59:6f:65: 20:7b:92:d2:c1:31:c5:3c:9a:ce:ab:61:78:ae:ee:d7:80:f6: 0d:98:72:06:ba:97:19:26:f9:ee:76:55:44:8b:7a:dd:b0:5f: e6:ed:31:68:e2:f8:07:96:44:c2:a0:99:39:33:b4:ae:74:1d: 8c:f9:26:d3 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDNDNjAzMkI2NjMzMjJFMzkyNUJFQUIxMDMzOTc0QzU0MDc0RDAeFw0yNjAxMTkx MTU3MzlaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEQ4OEQwN0Y4OTIyRTQ2 NTY4N0ZERTBGMzY0MzMyOUM2QTA1RjkyOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMfK6CWrpXo0wL3M1KknlKaY3Qm6Y5xatl9zynNHNIvlovBNJw 9vFQAPmlEo5dmI8KFF117BjGHGwcqygfhJRQU2rejLcKzH0ZUOeyKUKbF+CMlb+r 2OZLRXmV/4VPTixUWblkx7kdogDkGqFNNOtSU07rOsOvBL7vEvu7gd3vAb3NLfV+ mNt+H+kyLiIvbQb7SKR15Ysmc8G0xLu2ng/ps5wWvZ090t1Pg0v6LlbmfMuGc/H/ EOKqAynMqMO2v3fyt7Vy8FzfTi6JeRrNtk/X/dONYHfay8ST56ALMozUdaSrqIqN mgWUAwvHrhigaacBO1KSVsg4Dd/hESL2REYFAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU2I0H+JIuRlaH/eDzZDMpxqBfkpEwHwYDVR0jBBgwFoAU9aQ8YDK2YzIuOSW+ qxAzl0xUB00wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQw My85YVE4WURLMll6SXVPU1ctcXhBemwweFVCMDAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzlhUThZREsyWXpJdU9TVy1xeEF6bDB4VUIwMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzM0MDMvOWFROFlESzJZekl1 T1NXLXF4QXpsMHhVQjAwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACpfZENXpjKSmgWcyPURttWTm5PArS2XKlr5KwTyJDT8fcD5b9hbW15SKhvB JyacsAyv3TuIEu1bTSQRLAELyRZC3WR92TOiP0PZSaCfolPl9DlscFjylGYTkTg3 qUVoiPDhlwnS0XXzj2h4JoW0VUct6QG62VQSWWWdtAKPx8/N/gFK7OnysHHGWhJg JlpvGQ5deEDxUTeSrny2qWfjtXwo/0gn4Rkrgex2PGgh18QzZnqsF739TpBDI6+E PlS9E58anFlvZSB7ktLBMcU8ms6rYXiu7teA9g2Ycga6lxkm+e52VUSLet2wX+bt MWji+AeWRMKgmTkztK50HYz5JtM= -----END CERTIFICATE-----Generated at Mon Jan 19 13:57:45 2026 by rpki-client