This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft File: 4LWzbEhxQqoAYPpbVHULJsXPW9w.mft (raw, json) Hash identifier: Kn2qFreynl4JlNYz9bOSeNkUSMKLXdKwHqf//bkBJ7k= Subject key identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A Authority key identifier: E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC Certificate issuer: /CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Certificate serial: 0405 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft Manifest number: 0404 Signing time: Sun 21 Dec 2025 16:08:25 +0000 Manifest this update: Sun 21 Dec 2025 16:08:25 +0000 Manifest next update: Sun 21 Dec 2025 22:08:25 +0000 Files and hashes: 1: 4LWzbEhxQqoAYPpbVHULJsXPW9w.crl (hash: VG4bQaqHq2E1g5aRO7M0pSJeQmdCjz1bbeeWMfjiBis=) 2: nQe8cqEREUIsJzuFPvvw2A1_6e4.roa (hash: M7HEBLqrcF9Cc43K//Uhar4sJlCkmK82tTZ8yw7MBD8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC Validity Not Before: Dec 21 16:08:25 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E60A2EE9386F8CB4CC5FD551C6B67FAEA7E4C31A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:56:da:d2:cb:7f:a2:3b:9e:7f:2b:fe:7e: d2:68:1a:40:3f:d8:ee:3b:2e:46:d9:c9:8f:5a:e2: 63:fe:f3:1c:a1:6d:e2:eb:70:e6:93:e2:35:18:24: 72:e8:30:84:77:c9:53:90:39:26:13:0c:4a:5b:24: 2f:70:dd:15:22:2f:c0:92:eb:56:4c:25:bb:26:29: 67:82:6d:e2:86:ad:de:8a:79:8a:69:2c:ea:ec:50: 40:90:c8:f4:9f:33:af:d2:2a:e9:0b:40:2e:39:c9: bb:3f:75:9d:ef:7d:b8:3c:98:23:8e:21:f1:e3:a3: 2c:a7:fa:2f:b8:95:6c:d9:bd:a5:dc:85:0a:f2:c8: 58:6e:76:c9:33:d1:a1:cc:22:49:1e:3c:fe:cf:a6: 82:1d:78:7b:29:78:07:19:98:40:e0:3e:7d:8c:c5: 0c:00:4f:f3:e9:b3:42:29:7e:2e:4b:30:f1:e2:bf: 1d:39:85:78:33:e5:4f:bf:f6:db:2f:1d:64:5f:f6: de:1f:14:c7:d2:89:33:b5:d3:04:e6:74:f4:dd:03: 39:d7:8d:3d:cf:02:34:de:f0:18:66:7c:b0:a5:04: 03:58:6d:5a:88:c9:5b:09:a7:52:0d:c1:2f:e8:a0: e4:c4:c8:9b:6c:f9:f3:2f:38:5c:e9:aa:21:8b:b4: c6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A X509v3 Authority Key Identifier: keyid:E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d8:b8:91:ef:54:91:0c:13:2d:7d:b2:6e:6a:02:59:40:24: d1:9d:08:b9:71:bd:ef:32:2c:12:e8:40:09:77:b5:04:de:8a: b0:df:b3:48:d0:84:cd:43:26:be:f9:80:b5:69:e9:ff:28:d1: 61:b0:9f:ce:05:76:7c:b4:56:c8:43:40:7c:37:68:80:c3:2c: f0:90:2a:53:07:d0:32:50:45:e4:68:0a:37:97:9a:1d:ad:5c: ec:64:4c:5c:d1:3d:5a:3e:22:69:9c:59:6b:3b:79:4a:d4:60: 3d:d3:c6:49:38:3c:00:a6:bb:9e:2f:8f:07:9a:46:3e:3e:61: de:f0:d1:41:2a:19:15:8e:cb:b1:18:8d:e7:68:9e:dd:99:b2: a3:f9:9e:fd:de:91:73:82:91:bd:db:b1:82:83:29:c9:d7:ab: 6b:85:9d:38:7b:c8:18:43:57:20:21:0f:bb:76:1d:63:6d:be: 2e:df:a5:db:95:d8:e9:2d:63:76:2c:80:0a:52:52:c3:10:5d: 46:c1:4d:01:2a:3b:20:8e:83:58:ba:84:72:7e:69:fe:93:48: dc:51:23:12:58:b6:23:51:74:5b:18:ad:90:91:09:e0:ce:9c: 73:00:28:35:ea:56:85:ca:a6:c3:df:0e:b4:7b:26:25:d4:7b: b3:18:27:0a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBC NUIzNkM0ODcxNDJBQTAwNjBGQTVCNTQ3NTBCMjZDNUNGNUJEQzAeFw0yNTEyMjEx NjA4MjVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU2MEEyRUU5Mzg2RjhD QjRDQzVGRDU1MUM2QjY3RkFFQTdFNEMzMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmWVba0st/ojuefyv+ftJoGkA/2O47LkbZyY9a4mP+8xyhbeLr cOaT4jUYJHLoMIR3yVOQOSYTDEpbJC9w3RUiL8CS61ZMJbsmKWeCbeKGrd6KeYpp LOrsUECQyPSfM6/SKukLQC45ybs/dZ3vfbg8mCOOIfHjoyyn+i+4lWzZvaXchQry yFhudskz0aHMIkkePP7PpoIdeHspeAcZmEDgPn2MxQwAT/Pps0Ipfi5LMPHivx05 hXgz5U+/9tsvHWRf9t4fFMfSiTO10wTmdPTdAznXjT3PAjTe8BhmfLClBANYbVqI yVsJp1INwS/ooOTEyJts+fMvOFzpqiGLtMbvAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU5gou6ThvjLTMX9VRxrZ/rqfkwxowHwYDVR0jBBgwFoAU4LWzbEhxQqoAYPpb VHULJsXPW9wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0 LzRMV3piRWh4UXFvQVlQcGJWSFVMSnNYUFc5dy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNExXemJFaHhRcW9BWVBwYlZIVUxKc1hQVzl3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA0LzRMV3piRWh4UXFvQVlQ cGJWSFVMSnNYUFc5dy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBR2LiR71SRDBMtfbJuagJZQCTRnQi5cb3vMiwS6EAJd7UE3oqw37NI0ITNQya+ +YC1aen/KNFhsJ/OBXZ8tFbIQ0B8N2iAwyzwkCpTB9AyUEXkaAo3l5odrVzsZExc 0T1aPiJpnFlrO3lK1GA908ZJODwAprueL48HmkY+PmHe8NFBKhkVjsuxGI3naJ7d mbKj+Z793pFzgpG927GCgynJ16trhZ04e8gYQ1cgIQ+7dh1jbb4u36XbldjpLWN2 LIAKUlLDEF1GwU0BKjsgjoNYuoRyfmn+k0jcUSMSWLYjUXRbGK2QkQngzpxzACg1 6laFyqbD3w60eyYl1HuzGCcK -----END CERTIFICATE-----Generated at Sun Dec 21 18:25:53 2025 by rpki-client