This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft File: yiG6irdU_NZK2pljjW_l5HJTtME.mft (raw, json) Hash identifier: +PLR06Pxf+D6RmKk18/vaqvNAQ/N1nQy8na1FiJ9BVQ= Subject key identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 Authority key identifier: CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 Certificate issuer: /CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Certificate serial: 2E52 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft Manifest number: 2E52 Signing time: Mon 19 Jan 2026 10:27:40 +0000 Manifest this update: Mon 19 Jan 2026 10:27:40 +0000 Manifest next update: Mon 19 Jan 2026 16:27:40 +0000 Files and hashes: 1: yiG6irdU_NZK2pljjW_l5HJTtME.crl (hash: 5hgoqe3PRx/gj5ACR+4lajNZvb0Ad7W0I3O6emCQLzk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11858 (0x2e52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Validity Not Before: Jan 19 10:27:40 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=68C24A1388FC9D03DDD1064E2D286614B99B9434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:45:84:0d:f7:9c:a7:65:94:83:6d:ed:a4: ef:0e:58:34:52:71:ae:b9:fc:eb:af:f2:19:7c:fa: 68:fd:76:de:aa:43:e7:01:5f:f2:a7:a7:18:11:ec: 70:de:c2:50:21:52:73:aa:4d:79:8a:20:5b:b8:6d: 8a:6b:59:68:28:7c:ee:84:19:8d:5e:88:82:df:2e: 3e:6f:e9:bf:95:65:32:57:49:c1:74:64:c8:64:44: 38:5e:32:9c:a4:34:b0:55:6b:e3:60:9c:a4:b2:a0: e4:74:71:87:d2:f4:73:d7:31:61:cc:55:e1:06:eb: 2d:06:5d:b5:d0:7d:a7:b4:95:2b:db:63:f6:24:35: 82:6f:1a:4d:96:b3:95:c3:f5:88:8b:81:44:bf:08: 8d:b2:b9:73:8e:47:26:16:fa:e9:be:36:09:a2:fc: 2b:ad:76:9e:20:5f:89:4e:7e:06:3c:b9:70:38:55: 44:ad:5b:b1:8c:75:45:f2:ae:35:12:62:1f:98:16: 4c:96:a6:83:1d:48:2e:e2:3f:3c:df:7e:dd:44:17: 7f:eb:30:b1:a8:ae:e8:a5:40:ef:a9:ae:af:00:80: 84:a1:68:96:2f:48:08:fd:e2:fc:bc:ec:74:3c:bb: 16:27:13:a3:8b:fc:38:0e:ac:af:fe:16:67:3a:36: 2d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 X509v3 Authority Key Identifier: keyid:CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ee:36:da:ed:de:db:3a:66:59:a9:1c:16:47:68:76:b8:7b: 94:7f:93:7c:bd:91:f6:0a:9e:88:24:70:13:8c:d9:78:99:bc: 86:5a:99:b5:3d:c0:df:75:b2:e6:98:15:d1:5c:e0:74:7b:c0: 5e:a7:50:da:23:29:38:cc:a8:0a:d0:79:37:6d:32:5c:06:6d: df:29:00:41:53:63:00:f5:27:ac:85:8b:4e:7c:ab:f4:38:43: 92:41:c1:96:4f:6c:1c:2f:33:64:2e:96:27:a0:2e:9e:ef:23: 9b:a6:1b:bf:41:3e:61:c8:4b:e9:28:eb:94:c0:86:a0:1f:b0: 93:d1:46:5d:7c:a8:bf:3e:10:a2:80:aa:ed:1c:8b:d0:1f:80: 43:8b:54:78:b8:a9:18:7b:a4:f9:51:5b:9f:f0:07:64:49:aa: 3d:37:03:09:48:4d:b0:ab:5e:34:c3:bd:52:02:65:73:49:ef: ce:03:f9:68:ed:b1:e7:74:20:14:2a:40:19:cf:7a:b7:73:ee: 08:26:65:05:74:ff:01:15:c7:55:7c:3a:62:61:1c:19:bb:5b: b5:af:da:8b:3c:bf:c5:ef:5a:8a:40:42:60:e2:05:c3:fa:23: af:d9:4a:39:4f:8a:1f:fd:ea:fb:99:69:23:6e:8b:6f:4e:54: 0c:5a:1f:c3 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICLlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ey MUJBOEFCNzU0RkNENjRBREE5OTYzOEQ2RkU1RTQ3MjUzQjRDMTAeFw0yNjAxMTkx MDI3NDBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDY4QzI0QTEzODhGQzlE MDNEREQxMDY0RTJEMjg2NjE0Qjk5Qjk0MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpNUWEDfecp2WUg23tpO8OWDRSca65/Ouv8hl8+mj9dt6qQ+cB X/KnpxgR7HDewlAhUnOqTXmKIFu4bYprWWgofO6EGY1eiILfLj5v6b+VZTJXScF0 ZMhkRDheMpykNLBVa+NgnKSyoOR0cYfS9HPXMWHMVeEG6y0GXbXQfae0lSvbY/Yk NYJvGk2Ws5XD9YiLgUS/CI2yuXOORyYW+um+Ngmi/Cutdp4gX4lOfgY8uXA4VUSt W7GMdUXyrjUSYh+YFkyWpoMdSC7iPzzfft1EF3/rMLGoruilQO+prq8AgIShaJYv SAj94vy87HQ8uxYnE6OL/DgOrK/+Fmc6Ni3hAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUaMJKE4j8nQPd0QZOLShmFLmblDQwHwYDVR0jBBgwFoAUyiG6irdU/NZK2plj jW/l5HJTtMEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvOTgv eWlHNmlyZFVfTlpLMnBsampXX2w1SEpUdE1FLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC95aUc2aXJkVV9OWksycGxqaldfbDVISlR0TUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC85OC95aUc2aXJkVV9OWksycGxq aldfbDVISlR0TUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA Fu422u3e2zpmWakcFkdodrh7lH+TfL2R9gqeiCRwE4zZeJm8hlqZtT3A33Wy5pgV 0VzgdHvAXqdQ2iMpOMyoCtB5N20yXAZt3ykAQVNjAPUnrIWLTnyr9DhDkkHBlk9s HC8zZC6WJ6Aunu8jm6Ybv0E+YchL6SjrlMCGoB+wk9FGXXyovz4QooCq7RyL0B+A Q4tUeLipGHuk+VFbn/AHZEmqPTcDCUhNsKteNMO9UgJlc0nvzgP5aO2x53QgFCpA Gc96t3PuCCZlBXT/ARXHVXw6YmEcGbtbta/aizy/xe9aikBCYOIFw/ojr9lKOU+K H/3q+5lpI26Lb05UDFofww== -----END CERTIFICATE-----Generated at Mon Jan 19 13:58:39 2026 by rpki-client