This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft File: D0BCGu_TepwoYqhQBOR57yH1tgg.mft (raw, json) Hash identifier: Sira76Mn0CrNCFOQYfy7Xtuhgf4WeVsgC4OEC9DP7gk= Subject key identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 Authority key identifier: 0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 Certificate issuer: /CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Certificate serial: 2256 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft Manifest number: 2256 Signing time: Sun 21 Dec 2025 16:40:26 +0000 Manifest this update: Sun 21 Dec 2025 16:40:26 +0000 Manifest next update: Sun 21 Dec 2025 22:40:26 +0000 Files and hashes: 1: D0BCGu_TepwoYqhQBOR57yH1tgg.crl (hash: 5p6Ur+YJVO0Edo0an2VJ/uVZkHYE1KSoO+wUpCj/Em8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8790 (0x2256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F40421AEFD37A9C2862A85004E479EF21F5B608 Validity Not Before: Dec 21 16:40:26 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D2AA2B81B1CF2E13B3388C736592AD2D540B6133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ff:49:6b:0a:0c:5a:00:44:15:cc:66:d8:93: d4:4c:39:17:54:a6:3a:37:3b:62:cd:d5:45:b1:d4: 57:2d:3b:e0:b2:b2:d4:fb:04:44:40:4b:6b:04:4c: 72:d0:14:1b:3b:79:ac:62:4b:7a:58:35:f6:46:6b: 5e:be:43:19:9b:6c:74:d5:00:86:21:f5:34:e4:34: 48:f8:bd:29:10:3f:51:10:67:71:08:fa:fb:bd:c6: 3e:dc:b5:1d:e6:6f:a0:a5:4f:35:be:d1:02:fe:17: c8:64:7e:0c:fe:59:77:ce:30:1c:eb:a9:09:25:1c: b7:ed:e9:5d:c0:10:02:a4:45:f7:b4:91:63:d4:34: 3c:53:47:39:58:3f:8e:14:bc:27:7c:8b:e5:56:12: 6a:a7:93:3d:9f:a3:bd:61:6b:ff:97:da:31:4a:5d: 25:c4:00:ec:f9:09:8f:4e:c6:e9:96:d8:51:21:59: ef:b2:45:c6:91:19:14:ab:04:32:bc:0c:6a:f5:73: 0a:69:04:61:46:b1:fb:fe:72:8c:15:50:fd:1e:67: 6b:b3:f7:ca:2b:73:6a:00:e1:cb:d6:a0:e0:cb:1a: 84:88:e1:11:11:63:2d:c0:10:56:64:d4:f3:5f:fd: 55:aa:92:2e:9b:3a:1b:df:65:58:df:81:02:8b:ad: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AA:2B:81:B1:CF:2E:13:B3:38:8C:73:65:92:AD:2D:54:0B:61:33 X509v3 Authority Key Identifier: keyid:0F:40:42:1A:EF:D3:7A:9C:28:62:A8:50:04:E4:79:EF:21:F5:B6:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D0BCGu_TepwoYqhQBOR57yH1tgg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1089/D0BCGu_TepwoYqhQBOR57yH1tgg.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:5c:67:29:5a:27:73:d6:1b:4e:bf:b4:4a:4a:c5:1d:64:18: 6c:4f:60:c1:8b:5a:70:14:fe:09:82:fe:f1:88:c1:f1:52:11: e1:cb:de:1a:79:f0:f8:83:07:83:a5:14:7e:c6:49:9c:25:b7: 45:76:a3:8b:34:63:9f:81:52:f1:08:e7:53:fb:42:66:e1:7d: 2a:77:cc:7a:18:3b:14:3d:5c:42:a2:9b:8c:32:32:44:95:02: 40:8f:0b:27:09:3e:2d:d9:e8:5c:f4:81:94:59:b8:3d:e1:4e: 19:f6:a8:df:79:13:a6:b0:f2:f2:4d:31:84:c8:d5:45:c2:b1: ee:63:5a:49:be:2d:6f:12:fc:fb:c7:eb:59:b5:c8:79:c1:12: 20:2e:f3:91:57:99:b9:1c:33:b7:70:1d:b6:64:b5:6f:cb:ae: 24:07:d0:ca:45:5b:01:f1:a5:3c:54:22:0a:ee:30:26:93:fd: 5f:97:d3:57:08:f1:5e:ec:8c:c3:29:5f:14:81:26:3f:88:cd: a1:7d:6e:84:96:6b:a2:48:ca:5b:eb:b8:ed:a7:9a:e0:2a:ec: d4:38:c2:11:86:ce:b1:0f:a9:28:5d:16:ba:48:b5:bd:5c:e8: 7f:29:13:ff:e5:d2:a3:2c:78:ee:78:16:9a:85:73:db:ab:91: 09:b8:67:d2 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIlYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY0 MDQyMUFFRkQzN0E5QzI4NjJBODUwMDRFNDc5RUYyMUY1QjYwODAeFw0yNTEyMjEx NjQwMjZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQyQUEyQjgxQjFDRjJF MTNCMzM4OEM3MzY1OTJBRDJENTQwQjYxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT/0lrCgxaAEQVzGbYk9RMORdUpjo3O2LN1UWx1FctO+CystT7 BERAS2sETHLQFBs7eaxiS3pYNfZGa16+QxmbbHTVAIYh9TTkNEj4vSkQP1EQZ3EI +vu9xj7ctR3mb6ClTzW+0QL+F8hkfgz+WXfOMBzrqQklHLft6V3AEAKkRfe0kWPU NDxTRzlYP44UvCd8i+VWEmqnkz2fo71ha/+X2jFKXSXEAOz5CY9OxumW2FEhWe+y RcaRGRSrBDK8DGr1cwppBGFGsfv+cowVUP0eZ2uz98orc2oA4cvWoODLGoSI4RER Yy3AEFZk1PNf/VWqki6bOhvfZVjfgQKLrcZJAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU0qorgbHPLhOzOIxzZZKtLVQLYTMwHwYDVR0jBBgwFoAUD0BCGu/TepwoYqhQ BOR57yH1tggwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA4 OS9EMEJDR3VfVGVwd29ZcWhRQk9SNTd5SDF0Z2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0QwQkNHdV9UZXB3b1lxaFFCT1I1N3lIMXRnZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwODkvRDBCQ0d1X1RlcHdv WXFoUUJPUjU3eUgxdGdnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKJcZylaJ3PWG06/tEpKxR1kGGxPYMGLWnAU/gmC/vGIwfFSEeHL3hp58PiD B4OlFH7GSZwlt0V2o4s0Y5+BUvEI51P7QmbhfSp3zHoYOxQ9XEKim4wyMkSVAkCP CycJPi3Z6Fz0gZRZuD3hThn2qN95E6aw8vJNMYTI1UXCse5jWkm+LW8S/PvH61m1 yHnBEiAu85FXmbkcM7dwHbZktW/LriQH0MpFWwHxpTxUIgruMCaT/V+X01cI8V7s jMMpXxSBJj+IzaF9boSWa6JIylvruO2nmuAq7NQ4whGGzrEPqShdFrpItb1c6H8p E//l0qMseO54FpqFc9urkQm4Z9I= -----END CERTIFICATE-----Generated at Sun Dec 21 18:37:12 2025 by rpki-client