This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft File: Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft (raw, json) Hash identifier: C7mEzwX/sXT0LsNEDsTIXAqf1M8XEGZ1pgJx5wBmcaY= Subject key identifier: DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59 Authority key identifier: 45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7 Certificate issuer: /CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7 Certificate serial: 0A0A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft Manifest number: 0A08 Signing time: Sun 21 Dec 2025 01:41:08 +0000 Manifest this update: Sun 21 Dec 2025 01:41:08 +0000 Manifest next update: Sun 21 Dec 2025 07:41:08 +0000 Files and hashes: 1: DIfl7bXQFvsh3gCOalGnbUgUcMk.roa (hash: +BdTskyWDVY72kL9VxG7J9DMW9izo6rXOBqj4uLMOeI=) 2: Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl (hash: q6qkovH6LLdm1akwdfDd6xZyAz3xu3XqSsBCYdeoKqU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 07:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2570 (0xa0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7 Validity Not Before: Dec 21 01:41:08 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=DBD804ECB5B5B7C6D35D7864957AB30CB3756959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1e:90:4d:ec:7d:11:9a:79:e8:9d:22:fa:8b: ee:d3:e5:be:21:46:76:b6:55:d3:66:c2:01:85:63: 97:ea:fc:c6:b8:d8:cf:30:9e:6a:c4:00:2d:e6:99: a0:21:9f:ab:b6:ca:03:c6:56:32:70:12:32:1a:db: 8a:8e:7c:91:8f:9e:1f:c8:e7:9b:e4:c7:8c:a7:69: 3f:9a:9a:7f:bc:69:81:2f:ad:0c:4f:94:86:70:62: d7:8b:2e:f5:88:46:f1:19:4f:0c:49:40:05:9d:47: 2e:d3:22:b6:f4:2c:b3:4c:8e:5e:d9:18:af:ad:81: 75:33:0a:9c:8a:df:16:8b:99:6c:7d:cb:19:07:80: 45:79:33:28:f5:b6:2f:10:2c:da:d9:8f:80:8e:05: cb:79:40:88:fd:d5:3a:2b:62:68:eb:bc:87:88:e3: fa:bf:a2:76:f1:38:63:2e:c0:3f:e7:b1:82:db:52: cf:68:db:56:0c:92:7a:95:a3:9a:69:f9:90:45:f9: 8c:3f:8b:88:61:7e:40:fa:55:5b:57:b5:71:7c:d6: 4a:05:bd:c1:85:42:b3:69:74:6f:d8:e6:da:14:fb: f8:41:67:3f:1d:1b:4c:b4:bc:66:2e:88:85:63:ba: 36:ae:bd:1f:a9:03:8b:8e:d2:08:cf:35:3d:80:3c: 55:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59 X509v3 Authority Key Identifier: keyid:45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:4f:e0:a8:f8:2a:07:75:55:21:71:d7:c0:bb:6a:f7:3d:e1: 6e:07:10:db:6d:63:e2:b2:34:9f:1e:4d:11:19:2b:b8:4b:74: e7:d0:56:26:f5:d9:71:7a:d7:8c:61:4d:11:f4:f4:c5:cf:05: 33:cf:56:1a:4f:ff:c7:fb:42:b4:40:d4:c2:af:eb:9e:10:5b: 3a:0f:c1:e4:27:5f:cb:58:1c:62:dd:39:fb:d1:0f:16:02:aa: 0b:24:e7:8b:e3:51:c2:0a:95:49:1f:5d:a0:38:99:69:97:49: 69:32:26:b9:10:96:dc:4c:94:6d:44:ff:3b:15:2f:fc:d2:7f: 04:fa:ee:72:cf:c7:43:62:29:f6:d6:ae:46:3b:3c:84:9e:42: 81:f1:9f:3a:6a:e3:96:ac:19:72:db:c8:4a:81:14:b0:95:6b: f8:3f:46:b2:c0:35:5b:12:64:cb:6f:29:2e:84:b6:5b:1b:22: f5:f6:f4:54:eb:a2:43:23:fa:9a:55:43:0d:40:fc:60:f5:ec: d3:fc:ea:5b:55:4f:62:f6:5e:3b:29:8f:29:b0:25:fd:11:12: 6c:b1:87:6b:c8:27:85:e2:f2:68:9b:d1:31:fd:65:d9:64:f8: b5:41:2b:01:73:71:9a:fe:32:41:9c:51:c8:14:6c:15:d3:e4: 27:15:c8:05 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDVD RjVCMjYyQTU2Rjg1MTM0QzhGRTk1RDY0REYwODlGMUI3NjJFNzAeFw0yNTEyMjEw MTQxMDhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKERCRDgwNEVDQjVCNUI3 QzZEMzVENzg2NDk1N0FCMzBDQjM3NTY5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdHpBN7H0RmnnonSL6i+7T5b4hRna2VdNmwgGFY5fq/Ma42M8w nmrEAC3mmaAhn6u2ygPGVjJwEjIa24qOfJGPnh/I55vkx4ynaT+amn+8aYEvrQxP lIZwYteLLvWIRvEZTwxJQAWdRy7TIrb0LLNMjl7ZGK+tgXUzCpyK3xaLmWx9yxkH gEV5Myj1ti8QLNrZj4COBct5QIj91TorYmjrvIeI4/q/onbxOGMuwD/nsYLbUs9o 21YMknqVo5pp+ZBF+Yw/i4hhfkD6VVtXtXF81koFvcGFQrNpdG/Y5toU+/hBZz8d G0y0vGYuiIVjujauvR+pA4uO0gjPNT2APFVhAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU29gE7LW1t8bTXXhklXqzDLN1aVkwHwYDVR0jBBgwFoAURc9bJipW+FE0yP6V 1k3wifG3YucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjE4 Ny9SYzliSmlwVy1GRTB5UDZWMWszd2lmRzNZdWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1JjOWJKaXBXLUZFMHlQNlYxazN3aWZHM1l1Yy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxODcvUmM5YkppcFctRkUw eVA2VjFrM3dpZkczWXVjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBADdP4Kj4Kgd1VSFx18C7avc94W4HENttY+KyNJ8eTREZK7hLdOfQVib12XF6 14xhTRH09MXPBTPPVhpP/8f7QrRA1MKv654QWzoPweQnX8tYHGLdOfvRDxYCqgsk 54vjUcIKlUkfXaA4mWmXSWkyJrkQltxMlG1E/zsVL/zSfwT67nLPx0NiKfbWrkY7 PISeQoHxnzpq45asGXLbyEqBFLCVa/g/RrLANVsSZMtvKS6EtlsbIvX29FTrokMj +ppVQw1A/GD17NP86ltVT2L2XjspjymwJf0REmyxh2vIJ4Xi8mib0TH9Zdlk+LVB KwFzcZr+MkGcUcgUbBXT5CcVyAU= -----END CERTIFICATE-----Generated at Sun Dec 21 05:00:51 2025 by rpki-client