This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft File: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft (raw, json) Hash identifier: 0cAfsdwPizwaGaexAVQ2emjbl/LamkY6J+yH8J0YK0E= Subject key identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B Authority key identifier: F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A Certificate issuer: /CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Certificate serial: 15C2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft Manifest number: 15B8 Signing time: Sun 21 Dec 2025 16:41:05 +0000 Manifest this update: Sun 21 Dec 2025 16:41:05 +0000 Manifest next update: Sun 21 Dec 2025 22:41:05 +0000 Files and hashes: 1: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl (hash: 2eY9CrinyPrZNAaXBuZhQzipcc3Y9keeFbTzbYUceFU=) 2: _K85EDzCVCt1pVVYSb2NSlH5sJs.roa (hash: eSDB40TI669OfppSy2WcGhDz0KocFI5RU5LpLB+t1Ng=) 3: uG9LWLpK67qpxjgXRPMAAm6hR9Y.roa (hash: URTxuyS38BOkzq2ChrFnplSe6g+QKSVcXtGhOX6pla8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5570 (0x15c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Validity Not Before: Dec 21 16:41:05 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=772D59F81B388CADC0607D6B8A284603EF6E296B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:a6:65:9c:e4:3f:1a:f8:4c:65:02:42:d8: 44:71:a7:a6:c2:64:48:59:ca:83:76:f1:7b:1f:f6: e2:c1:10:9d:c4:35:8f:2c:44:94:72:e2:03:e4:6a: d5:04:79:5a:59:d1:4b:3e:8e:96:65:7c:0a:2b:64: 95:41:b9:10:fd:30:c9:29:d7:48:a2:64:1c:9d:3c: 57:5b:69:17:43:d8:fc:a5:4b:1e:c6:18:7f:c5:d9: ce:10:82:cb:d7:4e:ca:b7:de:14:c4:93:7d:ae:b4: 84:02:05:92:7d:9c:05:3d:14:ce:a0:ac:c4:e9:63: ef:0f:67:ea:24:93:25:4a:9c:b0:d6:3b:5c:ea:4c: 3d:09:d0:4b:d7:83:cd:25:46:d6:a3:0a:19:30:9a: 7c:91:70:5b:78:41:3a:fc:65:bf:93:07:10:fe:9d: 95:db:39:84:d9:86:97:e2:e6:b0:0b:be:87:5a:95: 62:74:4f:ae:c9:ee:de:82:4a:26:81:5a:ca:b5:1f: af:7f:fc:02:4e:8c:2e:5f:c7:10:4e:9b:70:15:f4: 10:d1:46:d9:1e:bd:ab:19:07:53:79:d6:11:d3:53: 0a:87:e6:03:94:43:c5:46:b3:22:5d:62:d2:6e:b0: 6b:c3:91:6b:96:5a:e8:ec:bc:c1:46:9b:b8:ab:13: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B X509v3 Authority Key Identifier: keyid:F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:00:35:6b:cc:d0:b0:67:95:68:9f:ed:35:fd:52:2e:c3:e3: 13:b7:43:8c:7c:eb:8f:f5:2f:a7:b1:83:2d:6f:6e:1a:17:0c: 76:f1:be:df:73:1f:73:23:b9:0f:28:3f:38:ec:21:2b:15:d1: b5:6a:4a:13:c7:6d:fe:22:bd:38:81:04:6c:5b:e8:73:c1:72: 34:79:d5:31:30:b9:ae:fd:56:68:7d:23:72:39:af:1e:56:cc: 65:61:40:cc:b5:e9:cd:c1:1e:ea:98:af:8b:36:03:49:93:52: 89:62:c9:6e:08:f0:e2:f0:ff:c9:a4:cc:85:1c:f6:24:1b:05: 73:02:ff:14:1c:82:06:f8:d6:b2:f8:24:a2:71:c2:8c:89:8b: 7f:87:13:b6:59:88:ba:af:e9:3f:40:e6:2e:db:b8:58:4d:c3: ae:f8:47:23:c8:e4:44:b4:e8:fa:f2:1b:75:13:e3:3d:b5:d8: 3c:b6:99:2c:30:7f:22:14:70:97:3e:59:f9:73:34:d3:22:5e: 0c:92:2b:91:08:47:84:8c:4d:2d:4c:d2:19:33:6d:57:42:59: 9a:69:3e:2f:fe:a3:76:6a:40:da:3d:0c:16:c2:54:40:b9:5b: 7c:b4:2f:90:07:8e:79:71:df:46:60:a0:66:65:83:45:bf:02: de:89:dd:3d -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICFcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjU1 NkMzQUFBMTAwMUY4OURDMEZDRUQ1NDM2QTIxQkI0RkYzNUQ3QTAeFw0yNTEyMjEx NjQxMDVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDc3MkQ1OUY4MUIzODhD QURDMDYwN0Q2QjhBMjg0NjAzRUY2RTI5NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTs6ZlnOQ/GvhMZQJC2ERxp6bCZEhZyoN28Xsf9uLBEJ3ENY8s RJRy4gPkatUEeVpZ0Us+jpZlfAorZJVBuRD9MMkp10iiZBydPFdbaRdD2PylSx7G GH/F2c4QgsvXTsq33hTEk32utIQCBZJ9nAU9FM6grMTpY+8PZ+okkyVKnLDWO1zq TD0J0EvXg80lRtajChkwmnyRcFt4QTr8Zb+TBxD+nZXbOYTZhpfi5rALvodalWJ0 T67J7t6CSiaBWsq1H69//AJOjC5fxxBOm3AV9BDRRtkevasZB1N51hHTUwqH5gOU Q8VGsyJdYtJusGvDkWuWWujsvMFGm7irExy9AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUdy1Z+Bs4jK3AYH1riihGA+9uKWswHwYDVR0jBBgwFoAU9VbDqqEAH4ncD87V Q2ohu0/zXXowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5 LzlWYkRxcUVBSDRuY0Q4N1ZRMm9odTBfelhYby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOVZiRHFxRUFING5jRDg3VlEyb2h1MF96WFhvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5LzlWYkRxcUVBSDRuY0Q4 N1ZRMm9odTBfelhYby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAhADVrzNCwZ5Von+01/VIuw+MTt0OMfOuP9S+nsYMtb24aFwx28b7fcx9zI7kP KD847CErFdG1akoTx23+Ir04gQRsW+hzwXI0edUxMLmu/VZofSNyOa8eVsxlYUDM tenNwR7qmK+LNgNJk1KJYsluCPDi8P/JpMyFHPYkGwVzAv8UHIIG+Nay+CSiccKM iYt/hxO2WYi6r+k/QOYu27hYTcOu+EcjyOREtOj68ht1E+M9tdg8tpksMH8iFHCX Pln5czTTIl4MkiuRCEeEjE0tTNIZM21XQlmaaT4v/qN2akDaPQwWwlRAuVt8tC+Q B455cd9GYKBmZYNFvwLeid09 -----END CERTIFICATE-----Generated at Sun Dec 21 18:37:11 2025 by rpki-client