This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.mft File: 2GueAukE5bR2WU2yt5eONcp8HW4.mft (raw, json) Hash identifier: 4PyQNuMGP+Kj81s3wd/Bw6At+Gr2jdgxWvJYxexaBVM= Subject key identifier: 63:61:AC:F5:C7:06:11:74:05:73:5D:A1:DB:C1:45:84:1F:E7:E8:CF Authority key identifier: D8:6B:9E:02:E9:04:E5:B4:76:59:4D:B2:B7:97:8E:35:CA:7C:1D:6E Certificate issuer: /CN=D86B9E02E904E5B476594DB2B7978E35CA7C1D6E Certificate serial: 0711 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2GueAukE5bR2WU2yt5eONcp8HW4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.mft Manifest number: 0711 Signing time: Mon 05 Jan 2026 01:13:18 +0000 Manifest this update: Mon 05 Jan 2026 01:13:18 +0000 Manifest next update: Mon 05 Jan 2026 07:13:18 +0000 Files and hashes: 1: 2GueAukE5bR2WU2yt5eONcp8HW4.crl (hash: CPNluTfnlwRWzJFn8NHFayF0+y/SOqMdrq5DLPYp5Js=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2GueAukE5bR2WU2yt5eONcp8HW4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 03:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D86B9E02E904E5B476594DB2B7978E35CA7C1D6E Validity Not Before: Jan 5 01:13:18 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6361ACF5C706117405735DA1DBC145841FE7E8CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6d:e1:1e:1c:50:f8:51:6d:8b:dd:6b:57:64: 02:42:4e:11:f9:95:bd:ef:6b:7c:45:0b:94:45:98: 60:af:b4:58:f3:95:57:ec:e9:f3:ef:7f:be:ec:65: 09:bb:56:07:6b:63:d2:22:37:c8:7b:26:fc:6a:56: f2:14:58:79:6d:9a:7b:0a:32:a7:bb:e9:f9:d9:3d: 99:2c:c4:b5:5e:98:3b:8b:0d:42:9e:dd:2b:6e:ed: 1a:25:c8:6b:60:d4:dc:4a:9d:31:54:c8:a4:cf:e5: ba:a0:2c:59:d8:a8:fc:9c:f4:a6:62:61:cf:a1:0e: ab:d6:04:30:a4:6d:a5:68:1e:71:d2:69:1e:59:ec: 2e:28:43:1a:4a:63:af:b8:8d:52:3e:17:4c:30:13: 08:98:a7:0e:83:e9:8f:e5:b7:07:33:d9:d1:e3:93: 43:31:e1:96:6d:00:ba:7d:94:b7:58:48:30:ec:f3: 3b:7c:b1:9a:bf:d9:c3:ea:b2:3f:54:ba:c0:7c:12: 7b:2a:64:6e:fc:6c:17:9c:21:82:4a:1a:84:47:a7: fc:35:c5:77:df:81:e9:32:09:3d:c9:19:fd:9a:a2: 88:f3:b6:19:1b:4e:36:87:59:7f:f3:6a:ab:b4:62: 99:0c:ff:7a:6b:fc:bc:b9:06:81:c7:b1:35:fa:54: eb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:61:AC:F5:C7:06:11:74:05:73:5D:A1:DB:C1:45:84:1F:E7:E8:CF X509v3 Authority Key Identifier: keyid:D8:6B:9E:02:E9:04:E5:B4:76:59:4D:B2:B7:97:8E:35:CA:7C:1D:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2GueAukE5bR2WU2yt5eONcp8HW4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:8e:8c:8b:c5:12:77:b6:c0:31:9c:93:a7:df:25:f8:31:bc: 01:88:13:78:04:04:ea:77:d6:96:dd:d7:83:20:b0:ab:8e:ca: 4b:52:37:ea:0a:bd:8f:25:49:ea:1e:57:bd:f8:a2:28:1d:da: c1:89:64:80:db:55:9b:1b:6d:37:18:a3:52:e9:9d:36:f6:4b: 9b:bf:6c:11:70:23:f6:47:3b:9a:1a:7b:02:9f:64:de:06:bb: 99:ac:85:e8:92:ba:90:86:0f:6d:bb:1b:a5:2f:6d:fc:a3:02: 9b:c0:d7:d2:85:84:30:72:93:77:87:37:42:2a:ba:88:c4:49: cb:34:6b:54:27:ae:de:c6:68:22:09:a3:c4:66:ec:85:1d:10: 43:18:6b:69:3a:a2:32:62:3b:00:3b:4e:2c:d6:18:1f:3b:a1: c7:9d:b4:d4:a1:8f:ad:09:a0:2d:5d:5a:11:f9:30:4b:95:cf: da:6d:a7:c6:f6:56:4f:f5:6d:53:eb:d5:fa:e7:41:af:96:2e: 69:bb:04:ce:5c:d3:95:90:0c:b7:50:6e:b4:10:9f:fd:79:9e: af:56:35:e7:37:9b:09:43:9a:97:a3:0d:36:5e:cc:fc:fd:01: 15:58:7b:54:6f:e3:04:02:93:ee:30:51:f7:55:4e:52:48:7a: 66:7f:1d:c9 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDg2 QjlFMDJFOTA0RTVCNDc2NTk0REIyQjc5NzhFMzVDQTdDMUQ2RTAeFw0yNjAxMDUw MTEzMThaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDYzNjFBQ0Y1QzcwNjEx NzQwNTczNURBMURCQzE0NTg0MUZFN0U4Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjbeEeHFD4UW2L3WtXZAJCThH5lb3va3xFC5RFmGCvtFjzlVfs 6fPvf77sZQm7VgdrY9IiN8h7JvxqVvIUWHltmnsKMqe76fnZPZksxLVemDuLDUKe 3Stu7RolyGtg1NxKnTFUyKTP5bqgLFnYqPyc9KZiYc+hDqvWBDCkbaVoHnHSaR5Z 7C4oQxpKY6+4jVI+F0wwEwiYpw6D6Y/ltwcz2dHjk0Mx4ZZtALp9lLdYSDDs8zt8 sZq/2cPqsj9UusB8EnsqZG78bBecIYJKGoRHp/w1xXffgekyCT3JGf2aoojzthkb TjaHWX/zaqu0YpkM/3pr/Ly5BoHHsTX6VOsvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUY2Gs9ccGEXQFc12h28FFhB/n6M8wHwYDVR0jBBgwFoAU2GueAukE5bR2WU2y t5eONcp8HW4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 Ni8yR3VlQXVrRTViUjJXVTJ5dDVlT05jcDhIVzQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzJHdWVBdWtFNWJSMldVMnl0NWVPTmNwOEhXNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDYvMkd1ZUF1a0U1YlIy V1UyeXQ1ZU9OY3A4SFc0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAG2OjIvFEne2wDGck6ffJfgxvAGIE3gEBOp31pbd14MgsKuOyktSN+oKvY8l SeoeV734oigd2sGJZIDbVZsbbTcYo1LpnTb2S5u/bBFwI/ZHO5oaewKfZN4Gu5ms heiSupCGD227G6UvbfyjApvA19KFhDByk3eHN0IquojEScs0a1Qnrt7GaCIJo8Rm 7IUdEEMYa2k6ojJiOwA7TizWGB87ocedtNShj60JoC1dWhH5MEuVz9ptp8b2Vk/1 bVPr1frnQa+WLmm7BM5c05WQDLdQbrQQn/15nq9WNec3mwlDmpejDTZezPz9ARVY e1Rv4wQCk+4wUfdVTlJIemZ/Hck= -----END CERTIFICATE-----Generated at Mon Jan 5 03:02:23 2026 by rpki-client