This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft File: cWgV4hPhAadE_JLy-1sSReSx0m8.mft (raw, json) Hash identifier: JVqAIuANRDWqbN6MHWUShgNA+e9KSP24IpRuKQPVyAE= Subject key identifier: 6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14 Authority key identifier: 71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F Certificate issuer: /CN=716815E213E101A744FC92F2FB5B1245E4B1D26F Certificate serial: 1916 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft Manifest number: 1916 Signing time: Sun 21 Dec 2025 16:42:28 +0000 Manifest this update: Sun 21 Dec 2025 16:42:28 +0000 Manifest next update: Sun 21 Dec 2025 22:42:28 +0000 Files and hashes: 1: cWgV4hPhAadE_JLy-1sSReSx0m8.crl (hash: aCiLEaEgWdcyTTjCPhZNd8RiYPkkh+pj054IYlv0+wA=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6422 (0x1916) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=716815E213E101A744FC92F2FB5B1245E4B1D26F Validity Not Before: Dec 21 16:42:28 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6A9033A4801751A3A582D79DA3E3DB9FBA68C214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:c6:ff:5d:0c:7e:5f:74:a7:23:4e:af:3e: 50:55:5d:39:60:5c:ce:68:a9:c7:15:33:25:20:e3: 96:b8:ff:9c:6b:57:45:6d:f5:51:ce:d8:d5:1c:9e: 19:e1:c8:bc:5d:ba:1d:81:e3:7a:8b:13:a7:c1:79: 20:06:89:58:29:bf:a5:74:b2:a0:b7:20:0f:95:b7: 4c:51:2b:b4:7a:a9:7e:6a:46:27:57:84:b3:e2:14: 9c:e2:b4:d7:03:f3:4d:0b:56:fd:c3:0d:3a:ae:c3: 07:34:d9:12:9e:5d:b3:3b:75:c7:1f:e3:b6:c2:62: fd:29:8c:b1:dd:44:8c:e1:86:c0:41:d7:38:87:d3: 82:d7:fc:9b:77:6f:b8:ea:64:79:25:f4:08:e1:ee: 82:07:d0:23:8b:27:63:df:10:60:71:4a:8b:df:48: bb:08:5a:35:b8:02:d8:f0:d0:cd:da:c9:78:2d:92: ea:cc:c8:93:21:1c:83:5f:53:3b:79:7e:41:2a:54: d1:6b:b0:87:1b:5b:73:d3:2c:de:00:da:00:fe:46: 04:be:87:e5:14:2d:04:ba:d9:50:6d:56:1e:d7:47: d5:b7:60:de:f4:c6:03:d7:be:2e:f7:19:cf:1a:82: c3:fe:02:a1:19:01:fe:3e:c1:25:14:33:c9:2b:90: 28:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14 X509v3 Authority Key Identifier: keyid:71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:66:63:44:1b:7d:f0:c3:74:e3:c4:40:e7:48:4e:77:c0:b1: b4:a0:b0:78:8a:c3:8c:c3:2e:ee:16:67:ba:38:31:f7:e0:0c: 5c:8f:8c:e7:3e:fe:e9:28:44:37:f1:c0:8e:a2:6e:68:c2:d5: 44:b4:16:81:16:0c:a0:a6:6e:02:72:43:66:4c:70:60:6c:0c: 2f:c5:0b:12:a0:97:b3:6b:ec:32:e7:97:68:89:97:58:9a:90: 57:54:b4:50:1f:2e:a5:14:44:8f:e5:2f:c4:30:70:e3:65:d2: 01:1a:42:c2:fe:f8:c0:ee:a6:d8:f8:5c:f2:be:ef:71:67:5b: 37:0f:1d:a1:2c:bd:66:08:a0:30:a5:8d:92:2e:01:f8:69:df: 4c:3f:30:c6:67:90:83:42:13:47:95:57:84:2a:90:20:ef:44: 1e:8f:4e:3e:84:ca:6e:73:41:5c:97:85:ca:f5:50:d3:77:1f: b7:46:95:7b:09:96:ee:7f:49:51:91:21:4a:4c:6c:c5:1b:93: ce:7e:81:64:b6:76:4d:6a:7b:99:5c:21:ca:71:63:4b:98:fa: 0c:06:de:74:cc:1f:5b:e5:b7:7a:d2:c5:87:78:12:61:36:f6: a2:03:25:55:09:6e:d7:84:09:73:04:dd:af:12:e3:7c:59:50: a1:7e:4e:a7 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzE2 ODE1RTIxM0UxMDFBNzQ0RkM5MkYyRkI1QjEyNDVFNEIxRDI2RjAeFw0yNTEyMjEx NjQyMjhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDZBOTAzM0E0ODAxNzUx QTNBNTgyRDc5REEzRTNEQjlGQkE2OEMyMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCypsb/XQx+X3SnI06vPlBVXTlgXM5oqccVMyUg45a4/5xrV0Vt 9VHO2NUcnhnhyLxduh2B43qLE6fBeSAGiVgpv6V0sqC3IA+Vt0xRK7R6qX5qRidX hLPiFJzitNcD800LVv3DDTquwwc02RKeXbM7dccf47bCYv0pjLHdRIzhhsBB1ziH 04LX/Jt3b7jqZHkl9Ajh7oIH0COLJ2PfEGBxSovfSLsIWjW4Atjw0M3ayXgtkurM yJMhHINfUzt5fkEqVNFrsIcbW3PTLN4A2gD+RgS+h+UULQS62VBtVh7XR9W3YN70 xgPXvi73Gc8agsP+AqEZAf4+wSUUM8krkCgpAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUapAzpIAXUaOlgtedo+Pbn7powhQwHwYDVR0jBBgwFoAUcWgV4hPhAadE/JLy +1sSReSx0m8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU5 MC9jV2dWNGhQaEFhZEVfSkx5LTFzU1JlU3gwbTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NXZ1Y0aFBoQWFkRV9KTHktMXNTUmVTeDBtOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1OTAvY1dnVjRoUGhBYWRF X0pMeS0xc1NSZVN4MG04Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAMFmY0QbffDDdOPEQOdITnfAsbSgsHiKw4zDLu4WZ7o4MffgDFyPjOc+/uko RDfxwI6ibmjC1US0FoEWDKCmbgJyQ2ZMcGBsDC/FCxKgl7Nr7DLnl2iJl1iakFdU tFAfLqUURI/lL8QwcONl0gEaQsL++MDuptj4XPK+73FnWzcPHaEsvWYIoDCljZIu Afhp30w/MMZnkINCE0eVV4QqkCDvRB6PTj6Eym5zQVyXhcr1UNN3H7dGlXsJlu5/ SVGRIUpMbMUbk85+gWS2dk1qe5lcIcpxY0uY+gwG3nTMH1vlt3rSxYd4EmE29qID JVUJbteECXME3a8S43xZUKF+Tqc= -----END CERTIFICATE-----Generated at Sun Dec 21 18:20:58 2025 by rpki-client