This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft File: UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft (raw, json) Hash identifier: EYjiWiGRvL0lILHmo8FheivHWwrjRYhGQqhuO2lyCcM= Subject key identifier: 1B:D3:26:D0:FA:2F:91:2E:0B:55:2A:A4:38:0F:6D:E7:47:45:FF:AD Authority key identifier: 51:C4:C1:D5:2D:2E:3F:E6:BF:3D:9B:F1:B3:D6:92:4B:49:C5:D4:E5 Certificate issuer: /CN=51C4C1D52D2E3FE6BF3D9BF1B3D6924B49C5D4E5 Certificate serial: 4F51 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UcTB1S0uP-a_PZvxs9aSS0nF1OU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft Manifest number: 4F4D Signing time: Mon 19 Jan 2026 11:58:46 +0000 Manifest this update: Mon 19 Jan 2026 11:58:46 +0000 Manifest next update: Mon 19 Jan 2026 17:58:46 +0000 Files and hashes: 1: DO26kV11bZc29OtBTF6DwEgSFfo.roa (hash: eebJsYY/1T5gtOI9uUDpkP6O0+REZg4VZuwANoBsKo8=) 2: UcTB1S0uP-a_PZvxs9aSS0nF1OU.crl (hash: yATjXeyLU2+t6i8yr/JR8HJRKaMqBYwAyIAEhwUbpgY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UcTB1S0uP-a_PZvxs9aSS0nF1OU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20305 (0x4f51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51C4C1D52D2E3FE6BF3D9BF1B3D6924B49C5D4E5 Validity Not Before: Jan 19 11:58:46 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=1BD326D0FA2F912E0B552AA4380F6DE74745FFAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f8:93:8d:9e:c6:83:7b:17:ea:21:78:60:96: 4a:66:cb:6f:af:86:75:80:39:a9:92:32:09:71:30: 72:53:bb:10:a3:d9:d2:6a:1b:e5:8e:d1:d3:8f:28: 13:26:02:5f:3a:bf:80:3f:1e:ba:b6:31:7a:33:fd: d0:77:c9:17:a2:5e:f2:85:f5:a9:9e:20:93:fc:fb: be:48:9e:f4:d8:18:26:cf:d4:7d:ed:54:89:68:52: ac:21:2c:2c:1a:32:38:1e:51:a0:29:61:df:b9:3c: 50:14:21:eb:c2:5c:04:5c:c0:f5:04:31:3d:f4:2c: f0:7b:4e:21:49:63:d1:29:3c:b6:49:a7:52:41:b0: 4c:38:1a:96:a4:b4:b4:3b:2e:5b:3a:ce:fd:93:e6: e8:c2:87:33:db:c4:80:29:6d:6f:13:65:dd:ef:2d: b2:a0:76:09:54:0f:d4:7e:12:f7:9b:9e:2a:da:06: ee:71:b9:62:78:d2:80:3e:ac:cd:a6:94:77:c5:d3: e0:8a:4a:a4:25:3e:3b:f4:7f:c7:d5:22:47:cf:d5: 8d:c4:1b:d5:bc:42:84:11:d8:67:ad:6d:3b:c6:4d: 8c:50:02:c7:f7:f2:47:a2:09:34:38:a3:86:76:9a: 20:a8:17:06:f1:35:4e:ab:1b:9d:8c:f5:48:28:5d: 76:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D3:26:D0:FA:2F:91:2E:0B:55:2A:A4:38:0F:6D:E7:47:45:FF:AD X509v3 Authority Key Identifier: keyid:51:C4:C1:D5:2D:2E:3F:E6:BF:3D:9B:F1:B3:D6:92:4B:49:C5:D4:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UcTB1S0uP-a_PZvxs9aSS0nF1OU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:3a:65:c4:60:54:27:20:64:67:18:4e:90:46:e3:0b:c9:15: 20:53:a9:50:c0:57:58:bd:2f:19:ab:9f:74:23:c4:f4:4c:15: 2b:61:0a:06:95:76:bb:6b:78:40:8f:38:a1:d3:f0:54:a5:d2: ad:ca:57:07:0a:ab:35:f4:c1:54:c2:d7:b9:ab:64:27:25:f6: 24:1b:e4:22:ce:5c:dc:be:00:b5:9c:bf:66:22:db:2a:e0:a4: fd:c6:8a:21:c7:19:7d:0a:b4:99:d2:39:f7:9c:f6:ba:3a:30: bc:ba:83:67:7a:7a:f9:92:a3:34:e6:9e:67:85:80:6f:6f:e6: 17:ca:03:1c:20:30:3d:46:27:6d:8e:12:36:bd:92:20:49:d9: 6f:20:d7:c7:15:f4:f1:ed:16:b1:3e:80:43:01:20:55:dd:7a: 30:ee:2c:94:0a:c1:82:df:1d:81:86:35:00:0e:85:1f:96:84: ad:14:cd:30:d1:ad:43:4d:60:f8:ed:34:4e:b4:cb:09:36:6d: 19:13:e3:6e:13:bb:47:9a:99:73:fa:3e:eb:67:aa:e7:76:fc: ab:7f:89:5f:30:d5:c9:d9:de:85:b1:5b:79:44:f7:7f:32:d9: 8e:d9:b8:f9:bf:0a:2d:fb:d5:55:95:75:86:f7:0b:71:af:9e: 78:9d:ce:b1 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICT1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTFD NEMxRDUyRDJFM0ZFNkJGM0Q5QkYxQjNENjkyNEI0OUM1RDRFNTAeFw0yNjAxMTkx MTU4NDZaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDFCRDMyNkQwRkEyRjkx MkUwQjU1MkFBNDM4MEY2REU3NDc0NUZGQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE+JONnsaDexfqIXhglkpmy2+vhnWAOamSMglxMHJTuxCj2dJq G+WO0dOPKBMmAl86v4A/Hrq2MXoz/dB3yReiXvKF9ameIJP8+75InvTYGCbP1H3t VIloUqwhLCwaMjgeUaApYd+5PFAUIevCXARcwPUEMT30LPB7TiFJY9EpPLZJp1JB sEw4GpaktLQ7Lls6zv2T5ujChzPbxIApbW8TZd3vLbKgdglUD9R+EvebniraBu5x uWJ40oA+rM2mlHfF0+CKSqQlPjv0f8fVIkfP1Y3EG9W8QoQR2GetbTvGTYxQAsf3 8keiCTQ4o4Z2miCoFwbxNU6rG52M9UgoXXaRAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUG9Mm0PovkS4LVSqkOA9t50dF/60wHwYDVR0jBBgwFoAUUcTB1S0uP+a/PZvx s9aSS0nF1OUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzk5 L1VjVEIxUzB1UC1hX1BadnhzOWFTUzBuRjFPVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvVWNUQjFTMHVQLWFfUFp2eHM5YVNTMG5GMU9VLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzk5L1VjVEIxUzB1UC1hX1Ba dnhzOWFTUzBuRjFPVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCzOmXEYFQnIGRnGE6QRuMLyRUgU6lQwFdYvS8Zq590I8T0TBUrYQoGlXa7a3hA jzih0/BUpdKtylcHCqs19MFUwte5q2QnJfYkG+QizlzcvgC1nL9mItsq4KT9xooh xxl9CrSZ0jn3nPa6OjC8uoNnenr5kqM05p5nhYBvb+YXygMcIDA9RidtjhI2vZIg SdlvINfHFfTx7RaxPoBDASBV3Xow7iyUCsGC3x2BhjUADoUfloStFM0w0a1DTWD4 7TROtMsJNm0ZE+NuE7tHmplz+j7rZ6rndvyrf4lfMNXJ2d6FsVt5RPd/MtmO2bj5 vwot+9VVlXWG9wtxr554nc6x -----END CERTIFICATE-----Generated at Mon Jan 19 13:57:44 2026 by rpki-client