This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft File: IdyHWWXCumHR2su0je4UBVSqWu8.mft (raw, json) Hash identifier: /A5BplH9GDE0TqwOaVpX4RUObXfDW2A70HvOdF8NnYE= Subject key identifier: E6:80:90:B1:B9:42:51:2A:C2:9F:64:03:96:02:39:A3:F1:F0:1B:32 Authority key identifier: 21:DC:87:59:65:C2:BA:61:D1:DA:CB:B4:8D:EE:14:05:54:AA:5A:EF Certificate issuer: /CN=21DC875965C2BA61D1DACBB48DEE140554AA5AEF Certificate serial: 1934 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft Manifest number: 192A Signing time: Sun 21 Dec 2025 01:39:14 +0000 Manifest this update: Sun 21 Dec 2025 01:39:14 +0000 Manifest next update: Sun 21 Dec 2025 07:39:14 +0000 Files and hashes: 1: IdyHWWXCumHR2su0je4UBVSqWu8.crl (hash: qz2jIMAoX59W0RA0fcdZfQtENGPacGr6GvjEGTKlGaw=) 2: at1w3aQ8pv-rnDv8DFVulwMAnx0.roa (hash: TD6E/O4qAYc9XInoBHUKPQQael3A9m1mMNdWDReSohc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 05:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6452 (0x1934) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21DC875965C2BA61D1DACBB48DEE140554AA5AEF Validity Not Before: Dec 21 01:39:14 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E68090B1B942512AC29F6403960239A3F1F01B32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:14:fa:5f:fc:6c:3b:90:84:16:c8:16:f7:1a: 76:ea:da:ef:9a:17:a6:a5:24:93:14:18:19:af:9b: d9:0b:22:9a:b6:18:da:c0:a1:e9:13:00:79:17:fc: d2:ee:ef:cb:cd:ae:96:d3:80:a3:b4:c7:17:a8:21: 12:20:77:ee:50:36:91:d8:34:03:07:92:b4:de:fe: 5a:79:ab:5a:34:9a:b4:79:d0:2a:dc:7d:11:95:42: 43:21:ea:0a:0e:8d:96:bc:a5:4d:af:fa:17:cc:8c: 29:38:3b:19:d1:50:21:63:69:b9:3a:02:68:6c:68: 6c:73:88:44:67:cc:ab:4f:44:45:58:b3:3c:cb:af: 6e:c9:b9:61:43:4e:8b:ec:63:3c:ce:de:71:ef:d4: d5:b7:f7:4b:62:7d:9e:37:2b:10:99:5e:1a:49:69: 7f:b0:69:25:a8:b7:6f:3c:6d:fb:51:88:f0:1e:c6: 08:e1:bb:45:2c:d3:bf:c5:30:7e:cf:a9:4b:28:ec: 83:07:c6:ef:bd:b0:ec:f1:be:6e:57:2f:0f:46:dd: b1:ba:43:e7:57:9d:63:12:6f:c1:fa:50:48:6e:b0: a4:af:97:7d:57:93:2f:1c:16:6d:a6:e5:35:62:ab: e2:46:ea:db:c8:c0:71:72:e7:d7:ee:de:0d:9a:64: a9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:80:90:B1:B9:42:51:2A:C2:9F:64:03:96:02:39:A3:F1:F0:1B:32 X509v3 Authority Key Identifier: keyid:21:DC:87:59:65:C2:BA:61:D1:DA:CB:B4:8D:EE:14:05:54:AA:5A:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IdyHWWXCumHR2su0je4UBVSqWu8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2620/IdyHWWXCumHR2su0je4UBVSqWu8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:6b:6c:03:67:da:50:f0:35:5e:ca:a4:15:cd:63:a6:ea:17: 5b:f7:d3:52:91:1a:09:ff:2b:a8:aa:aa:04:c3:9a:5d:72:ce: 0d:99:3a:5c:b9:82:2c:71:98:b6:3e:3e:0b:ad:78:b3:72:ba: d8:2e:44:e0:5b:6a:97:0b:99:ab:17:8f:fc:a5:52:31:df:32: d1:c4:55:cc:19:63:a4:69:f9:49:85:4c:07:a1:48:4d:63:9a: 00:4a:5b:46:c0:05:28:27:55:e8:37:a2:b2:d8:36:c9:78:7e: 42:f1:02:5e:c2:37:54:e9:dd:30:ea:37:20:96:b9:bd:52:e7: ce:42:11:39:ee:a3:e3:07:4f:59:cd:d6:b6:7e:a1:e4:1d:c3: fd:4e:7e:fc:6f:bf:3a:99:f7:45:5f:87:18:9f:0b:77:73:da: 20:cf:a3:b9:df:64:86:6d:c4:03:68:d3:b3:ed:45:c2:64:79: 05:1d:09:12:09:93:5d:1a:2a:ed:f8:b0:2e:7b:bc:1e:e3:60: 3c:40:33:39:8e:ce:43:c7:3c:ca:bf:20:ef:a7:df:95:44:85: 6e:b3:7c:17:9d:8b:c3:11:86:7a:fc:e3:fc:d0:15:b0:0d:c5: 3e:e8:0d:0c:5e:65:00:a8:ec:ee:a0:ef:a3:82:65:d8:13:6f: 9d:42:67:f0 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjFE Qzg3NTk2NUMyQkE2MUQxREFDQkI0OERFRTE0MDU1NEFBNUFFRjAeFw0yNTEyMjEw MTM5MTRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU2ODA5MEIxQjk0MjUx MkFDMjlGNjQwMzk2MDIzOUEzRjFGMDFCMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSFPpf/Gw7kIQWyBb3Gnbq2u+aF6alJJMUGBmvm9kLIpq2GNrA oekTAHkX/NLu78vNrpbTgKO0xxeoIRIgd+5QNpHYNAMHkrTe/lp5q1o0mrR50Crc fRGVQkMh6goOjZa8pU2v+hfMjCk4OxnRUCFjabk6AmhsaGxziERnzKtPREVYszzL r27JuWFDTovsYzzO3nHv1NW390tifZ43KxCZXhpJaX+waSWot288bftRiPAexgjh u0Us07/FMH7PqUso7IMHxu+9sOzxvm5XLw9G3bG6Q+dXnWMSb8H6UEhusKSvl31X ky8cFm2m5TViq+JG6tvIwHFy59fu3g2aZKkHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU5oCQsblCUSrCn2QDlgI5o/HwGzIwHwYDVR0jBBgwFoAUIdyHWWXCumHR2su0 je4UBVSqWu8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjYy MC9JZHlIV1dYQ3VtSFIyc3UwamU0VUJWU3FXdTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0lkeUhXV1hDdW1IUjJzdTBqZTRVQlZTcVd1OC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2MjAvSWR5SFdXWEN1bUhS MnN1MGplNFVCVlNxV3U4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHZrbANn2lDwNV7KpBXNY6bqF1v301KRGgn/K6iqqgTDml1yzg2ZOly5gixx mLY+PguteLNyutguROBbapcLmasXj/ylUjHfMtHEVcwZY6Rp+UmFTAehSE1jmgBK W0bABSgnVeg3orLYNsl4fkLxAl7CN1Tp3TDqNyCWub1S585CETnuo+MHT1nN1rZ+ oeQdw/1OfvxvvzqZ90VfhxifC3dz2iDPo7nfZIZtxANo07PtRcJkeQUdCRIJk10a Ku34sC57vB7jYDxAMzmOzkPHPMq/IO+n35VEhW6zfBedi8MRhnr84/zQFbANxT7o DQxeZQCo7O6g76OCZdgTb51CZ/A= -----END CERTIFICATE-----Generated at Sun Dec 21 05:06:24 2025 by rpki-client