This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft File: fPRMBtXqffDL1PaFCPFOhNoIt1I.mft (raw, json) Hash identifier: eaYzcknHlmUQmk/dEAZtLWsMtudSwX7oXaLapFMdnvI= Subject key identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF Authority key identifier: 7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 Certificate issuer: /CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Certificate serial: 1AE0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft Manifest number: 1AD3 Signing time: Sun 11 Jan 2026 17:59:38 +0000 Manifest this update: Sun 11 Jan 2026 17:59:38 +0000 Manifest next update: Sun 11 Jan 2026 23:59:38 +0000 Files and hashes: 1: HIkT_nEnsLxGeI-3zJUHhtNyWj8.roa (hash: IhDC9QUQgRmJWF3Vdetq/G4pSKe6C+p+OntJsqXr45o=) 2: JysggbimOtIIYLd8H4W2mvAaKtk.roa (hash: 3dVEhqycSb5TWHE0dMoeeLFGJNYtZHoiwDeanRn76Yc=) 3: OYh5JEj0uWuUFwdKjB10pF76_pI.roa (hash: An6u7oH3sagNhBru0T5ojCoKJVfFfrmJ66mlx7PcbhI=) 4: USiwWmP7_uZv84RfFsFEk-_9H8Q.roa (hash: b7crNyxxWRj94oFuRTJxzkl+UkzfJZ2V5euQ8agMh3o=) 5: cIWlcgIlWrr7dPhvnLjAEmryGDc.roa (hash: qYlW/Je7TxRMGGbrH6KCQs+TJv0I6bBgau3xwOaOT6g=) 6: fPRMBtXqffDL1PaFCPFOhNoIt1I.crl (hash: /e0ces+A3dlGv+Ym0pL4ixul25oqwLh3r/oGCd18BxE=) 7: gALoy-WEClG9nOagRiQccU0WnpE.roa (hash: Gmv5mtUHklFp3j+m8mMU5eiB9lpckT1KXPsOboMEr50=) 8: nlfKk31w0-JMOBpbuydpYlmgaK4.roa (hash: Pd6xFisxhVIf9N5p5BSqwtwrTZp9+Wnd5CgCa9g0/nM=) 9: r78L_jfDaGDjaH3rsP83eK4kcG4.roa (hash: u1or2If1pLNDG9eB56Xw8Z+2kHObmlhnvE4GqSl5VaQ=) 10: xB_JUhaUTOLRuggWEFRDEbGKbdA.roa (hash: MUeQ6SBwA1FY7z2svn5ifPBc7LhDADwZ7QfDARqfH+4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 23:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6880 (0x1ae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Validity Not Before: Jan 11 17:59:38 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=7C23A77681714EFB35C901DA630F2C525EFE19BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2a:bb:7b:59:64:df:24:f6:6c:eb:bb:11:8a: b8:10:c4:dc:0b:39:e9:39:6c:d6:f4:fe:8e:d2:6e: e7:2d:e0:8d:d1:3e:30:0e:e9:e9:40:0f:13:58:9a: 69:08:05:09:2f:da:e8:f6:ad:0c:58:f4:89:f1:ca: 1d:29:f9:c3:d9:7f:c6:67:52:8e:67:28:ac:e3:d8: 38:37:9d:d0:40:be:39:4c:d1:d0:16:c4:e8:ef:c9: be:0c:de:94:15:2f:53:6a:a7:3a:00:77:42:a3:19: af:82:30:ff:13:d5:ad:8d:1e:56:28:9f:59:a7:74: 5d:f8:3c:7e:c9:cf:96:8d:f7:12:24:92:e7:5d:da: 7a:86:6c:c4:44:4e:34:4c:12:22:b8:ae:6b:4f:21: 78:f5:ca:31:5f:72:7c:2d:16:ae:01:e0:b5:f1:52: ae:78:6d:ac:46:c0:99:f9:ea:79:13:92:fa:7f:3e: 3b:d6:b1:98:50:b4:d0:4d:24:f2:1d:87:61:f9:75: 25:cc:b7:5f:cc:c7:a8:38:03:d3:32:d6:7a:73:37: e7:d2:db:ab:8a:b2:86:aa:9f:8d:c0:b6:f4:6e:cf: 8d:8f:3c:69:99:b6:07:1d:af:c5:23:e0:a2:01:63: df:7a:72:b4:89:b0:38:aa:e4:f5:97:12:29:1d:f1: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF X509v3 Authority Key Identifier: keyid:7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:62:37:e8:87:49:ad:1a:23:41:b5:37:a0:e5:ca:cb:99:8b: 89:e9:3a:49:59:22:f6:01:14:0b:04:5e:69:21:2c:40:d2:b6: e8:d2:d1:4e:f8:60:ed:ab:a6:ce:5b:83:19:ab:04:6e:86:c5: 64:f2:6b:68:87:f2:61:61:7e:d5:6a:56:88:72:b1:8f:45:31: f0:a6:8a:44:cb:e4:be:29:2b:5b:2b:78:15:7e:f4:e3:77:03: 57:4e:10:ce:19:c9:14:7e:67:49:f6:7a:ae:29:f1:fa:c5:22: 81:34:f5:db:73:f4:bc:e8:c5:f5:5a:a4:53:23:54:33:b6:82: 3d:18:76:46:d2:e8:38:b0:de:8d:09:6e:f9:35:ac:ff:a8:85: 3e:75:1c:8c:fc:48:0d:51:de:8f:df:ef:21:c5:f7:90:d6:5c: 9b:37:8a:e9:2d:ae:41:72:e9:98:58:b7:18:33:ad:c9:1e:e1: 29:54:a8:10:cf:5b:1a:ad:5c:ef:1e:a0:a6:24:13:0a:bb:ae: 86:bd:ee:2f:11:17:6a:ee:b6:0a:4d:e3:4b:ab:4c:c1:c5:3d: 0b:4d:bf:a0:ce:4c:f4:52:13:31:1a:cc:76:7b:0f:29:fd:fe: 0e:48:c1:3e:e0:52:75:3a:40:39:eb:ce:a7:eb:c2:5a:9a:e0: df:3c:76:02 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGuAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0NG NDRDMDZENUVBN0RGMENCRDRGNjg1MDhGMTRFODREQTA4Qjc1MjAeFw0yNjAxMTEx NzU5MzhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDdDMjNBNzc2ODE3MTRF RkIzNUM5MDFEQTYzMEYyQzUyNUVGRTE5QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuKrt7WWTfJPZs67sRirgQxNwLOek5bNb0/o7Sbuct4I3RPjAO 6elADxNYmmkIBQkv2uj2rQxY9Inxyh0p+cPZf8ZnUo5nKKzj2Dg3ndBAvjlM0dAW xOjvyb4M3pQVL1NqpzoAd0KjGa+CMP8T1a2NHlYon1mndF34PH7Jz5aN9xIkkudd 2nqGbMRETjRMEiK4rmtPIXj1yjFfcnwtFq4B4LXxUq54baxGwJn56nkTkvp/PjvW sZhQtNBNJPIdh2H5dSXMt1/Mx6g4A9My1npzN+fS26uKsoaqn43AtvRuz42PPGmZ tgcdr8Uj4KIBY996crSJsDiq5PWXEikd8QdHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfCOndoFxTvs1yQHaYw8sUl7+Gb8wHwYDVR0jBBgwFoAUfPRMBtXqffDL1PaF CPFOhNoIt1IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU3 OC9mUFJNQnRYcWZmREwxUGFGQ1BGT2hOb0l0MUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2ZQUk1CdFhxZmZETDFQYUZDUEZPaE5vSXQxSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1NzgvZlBSTUJ0WHFmZkRM MVBhRkNQRk9oTm9JdDFJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAViN+iHSa0aI0G1N6DlysuZi4npOklZIvYBFAsEXmkhLEDStujS0U74YO2r ps5bgxmrBG6GxWTya2iH8mFhftVqVohysY9FMfCmikTL5L4pK1sreBV+9ON3A1dO EM4ZyRR+Z0n2eq4p8frFIoE09dtz9LzoxfVapFMjVDO2gj0YdkbS6Diw3o0Jbvk1 rP+ohT51HIz8SA1R3o/f7yHF95DWXJs3iuktrkFy6ZhYtxgzrcke4SlUqBDPWxqt XO8eoKYkEwq7roa97i8RF2rutgpN40urTMHFPQtNv6DOTPRSEzEazHZ7Dyn9/g5I wT7gUnU6QDnrzqfrwlqa4N88dgI= -----END CERTIFICATE-----Generated at Sun Jan 11 22:48:39 2026 by rpki-client