This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft File: vCE9aodm-DafWThfda8AgjreZgQ.mft (raw, json) Hash identifier: XL18bI1/zRC+cgO7ktqEjtb6zohIkrizZCMDYHygUZw= Subject key identifier: E5:37:31:37:0F:30:FD:B2:60:24:BF:A4:9C:E6:31:57:A0:6E:E4:97 Authority key identifier: BC:21:3D:6A:87:66:F8:36:9F:59:38:5F:75:AF:00:82:3A:DE:66:04 Certificate issuer: /CN=BC213D6A8766F8369F59385F75AF00823ADE6604 Certificate serial: 1B07 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft Manifest number: 1B07 Signing time: Sun 21 Dec 2025 16:42:33 +0000 Manifest this update: Sun 21 Dec 2025 16:42:33 +0000 Manifest next update: Sun 21 Dec 2025 22:42:33 +0000 Files and hashes: 1: vCE9aodm-DafWThfda8AgjreZgQ.crl (hash: jOoBiSHyOHAZDan1G+ngBBeRcHfh+PnGwfxmDOuLWkQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6919 (0x1b07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC213D6A8766F8369F59385F75AF00823ADE6604 Validity Not Before: Dec 21 16:42:33 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E53731370F30FDB26024BFA49CE63157A06EE497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0b:fe:3b:37:bc:61:45:56:d7:30:80:48:3b: 74:d7:66:f5:fa:3d:5b:1f:ec:fd:85:de:58:b3:5a: 8b:ba:06:8b:d7:8d:c0:39:27:70:29:a3:8f:d5:a4: a5:ae:2b:ea:27:e1:0b:11:75:8d:6e:0d:bb:38:b9: 5b:af:bf:3e:90:db:2c:9d:22:b9:c5:1a:fc:66:27: 9f:2c:6d:65:05:df:9a:98:38:88:b3:67:60:c4:0f: 0d:17:00:86:f8:fe:9d:9f:e0:c6:af:b6:b8:12:60: 4d:67:e3:a6:cf:b1:81:24:eb:4d:88:81:10:90:b2: 85:5b:6b:f3:f5:7d:da:bc:ed:bd:41:fb:88:34:7a: 4e:65:18:0d:e0:25:e2:b4:c0:77:b7:d7:4f:3a:0a: af:1c:c1:2f:be:89:7d:59:5b:b2:91:5b:dc:9a:79: 78:be:27:1c:1c:e9:ea:cc:62:e0:2d:aa:0e:ab:e8: c0:92:a2:cd:07:db:86:7e:59:51:60:05:6f:a1:59: 3e:20:05:a4:16:c4:85:11:68:a3:61:cf:e4:ba:5f: c7:e0:f6:a1:0f:5c:76:30:d7:fa:56:b7:b8:6a:ab: e7:17:11:51:75:86:27:1e:f7:a6:4a:c2:10:2d:a1: fb:4d:71:da:9f:09:8e:b1:4b:3f:9b:a8:c6:c9:44: 22:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:37:31:37:0F:30:FD:B2:60:24:BF:A4:9C:E6:31:57:A0:6E:E4:97 X509v3 Authority Key Identifier: keyid:BC:21:3D:6A:87:66:F8:36:9F:59:38:5F:75:AF:00:82:3A:DE:66:04 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c8:ac:ba:18:aa:0a:e7:8f:a2:03:61:8f:78:c6:0a:19:ed: ec:b5:81:62:94:a0:b4:74:d8:bf:ec:df:61:29:ef:da:1b:48: 9b:2d:a5:61:1f:a7:76:92:40:53:80:6f:40:e1:7b:02:84:b5: d7:0a:b6:99:21:06:d0:7c:b3:3d:42:40:0c:12:e3:6d:58:f2: 7c:dc:1a:59:c0:84:ff:9d:fb:2f:81:a7:af:d4:75:fb:14:8e: 89:87:49:f4:81:75:df:0f:2c:96:16:e1:24:a0:4d:cc:b9:54: c9:22:1a:04:99:b5:f8:5b:65:22:ff:8c:16:79:9f:e2:ad:82: e3:fe:24:67:a7:de:31:12:57:bc:30:99:fb:24:ab:41:ff:aa: 30:17:8b:e1:15:db:ee:5c:f8:9f:b9:aa:74:5e:0a:fc:7d:7d: ce:f5:7e:0b:7f:77:59:68:54:f7:80:6d:54:5b:07:4c:1a:c1: 8b:fd:e2:9a:e2:53:39:e3:4e:5c:e7:d3:b0:b1:aa:14:e9:cd: 7f:82:d2:9c:67:56:31:78:b1:a8:d8:69:6b:ac:b2:e8:c9:e4: 58:ee:6b:92:b9:92:a4:f2:7a:e2:d0:a8:f7:00:4b:84:36:8c: 40:c9:b2:15:bd:8e:e9:4e:e5:a4:b4:76:15:f7:68:ef:b6:29: 48:ca:61:8a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGwcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkMy MTNENkE4NzY2RjgzNjlGNTkzODVGNzVBRjAwODIzQURFNjYwNDAeFw0yNTEyMjEx NjQyMzNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU1MzczMTM3MEYzMEZE QjI2MDI0QkZBNDlDRTYzMTU3QTA2RUU0OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnC/47N7xhRVbXMIBIO3TXZvX6PVsf7P2F3lizWou6BovXjcA5 J3Apo4/VpKWuK+on4QsRdY1uDbs4uVuvvz6Q2yydIrnFGvxmJ58sbWUF35qYOIiz Z2DEDw0XAIb4/p2f4MavtrgSYE1n46bPsYEk602IgRCQsoVba/P1fdq87b1B+4g0 ek5lGA3gJeK0wHe31086Cq8cwS++iX1ZW7KRW9yaeXi+Jxwc6erMYuAtqg6r6MCS os0H24Z+WVFgBW+hWT4gBaQWxIURaKNhz+S6X8fg9qEPXHYw1/pWt7hqq+cXEVF1 hice96ZKwhAtoftNcdqfCY6xSz+bqMbJRCJrAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU5TcxNw8w/bJgJL+knOYxV6Bu5JcwHwYDVR0jBBgwFoAUvCE9aodm+DafWThf da8AgjreZgQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 Ny92Q0U5YW9kbS1EYWZXVGhmZGE4QWdqcmVaZ1EuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3ZDRTlhb2RtLURhZldUaGZkYThBZ2pyZVpnUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzNzcvdkNFOWFvZG0tRGFm V1RoZmRhOEFnanJlWmdRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACnIrLoYqgrnj6IDYY94xgoZ7ey1gWKUoLR02L/s32Ep79obSJstpWEfp3aS QFOAb0DhewKEtdcKtpkhBtB8sz1CQAwS421Y8nzcGlnAhP+d+y+Bp6/UdfsUjomH SfSBdd8PLJYW4SSgTcy5VMkiGgSZtfhbZSL/jBZ5n+KtguP+JGen3jESV7wwmfsk q0H/qjAXi+EV2+5c+J+5qnReCvx9fc71fgt/d1loVPeAbVRbB0wawYv94priUznj Tlzn07CxqhTpzX+C0pxnVjF4sajYaWussujJ5Fjua5K5kqTyeuLQqPcAS4Q2jEDJ shW9julO5aS0dhX3aO+2KUjKYYo= -----END CERTIFICATE-----Generated at Sun Dec 21 18:21:01 2025 by rpki-client