This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft File: 5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft (raw, json) Hash identifier: +3Q+KjaatHgRQxxWxBU4MExLj1qFkUXklkRXqZVLFqc= Subject key identifier: C8:78:A0:D0:50:B9:93:35:16:51:7E:A5:08:7E:BA:12:24:41:2D:63 Authority key identifier: E5:ED:C5:64:FE:8B:02:F2:CF:87:00:93:BB:FD:DC:32:7D:6D:93:95 Certificate issuer: /CN=E5EDC564FE8B02F2CF870093BBFDDC327D6D9395 Certificate serial: 21BC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5e3FZP6LAvLPhwCTu_3cMn1tk5U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft Manifest number: 21BC Signing time: Sun 21 Dec 2025 16:39:09 +0000 Manifest this update: Sun 21 Dec 2025 16:39:09 +0000 Manifest next update: Sun 21 Dec 2025 22:39:09 +0000 Files and hashes: 1: 5e3FZP6LAvLPhwCTu_3cMn1tk5U.crl (hash: f8EuVQqB1yTgs6ZEnZ8gTtsKmf9PdcqkgS+VOTEEzGg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5e3FZP6LAvLPhwCTu_3cMn1tk5U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8636 (0x21bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5EDC564FE8B02F2CF870093BBFDDC327D6D9395 Validity Not Before: Dec 21 16:39:09 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C878A0D050B9933516517EA5087EBA1224412D63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:23:3f:58:00:f8:4d:85:6d:6f:ef:7d:5b:80: b1:14:d9:33:7e:2a:3c:4a:40:6e:b4:29:f8:90:f2: 8b:d4:49:d1:9a:0b:ed:d7:e0:8c:bb:a3:7e:30:ec: 1e:a5:d9:89:32:0c:63:44:c5:a8:e8:d3:b2:e5:9f: 5e:f4:23:d9:7c:e7:09:8b:38:36:aa:9a:07:e0:00: 42:15:39:f5:36:a3:2e:3a:3c:aa:5c:07:6b:79:a7: b5:02:02:1e:a8:ab:1d:ea:5d:f9:db:8c:7c:0f:1b: 3f:3c:75:b1:37:2a:86:58:68:50:c2:95:1f:02:05: 79:3c:06:55:8f:42:c2:d8:f4:fc:d2:79:20:3c:c9: 1b:d5:2f:41:96:af:7e:2b:b5:e9:2a:12:35:79:e5: 44:c8:05:0f:4d:c8:65:32:fd:30:0d:49:b0:e9:84: 8d:5c:e1:22:84:7d:29:62:c0:fb:d4:88:65:d5:65: 1c:66:1c:6f:4c:07:1a:2c:0e:44:f8:63:9d:c7:08: 8b:83:d7:af:b2:c0:b3:47:79:fe:0f:f5:da:cc:8b: 7f:a5:59:6f:ef:65:2f:f5:30:63:ee:b6:73:46:5a: df:4b:07:20:4f:55:2a:c7:8d:d1:49:c0:58:42:e6: 15:86:b6:04:aa:b0:9f:54:69:3f:1b:61:86:83:18: be:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:78:A0:D0:50:B9:93:35:16:51:7E:A5:08:7E:BA:12:24:41:2D:63 X509v3 Authority Key Identifier: keyid:E5:ED:C5:64:FE:8B:02:F2:CF:87:00:93:BB:FD:DC:32:7D:6D:93:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5e3FZP6LAvLPhwCTu_3cMn1tk5U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f7:39:46:b3:bb:74:21:52:82:fe:35:cf:b3:d1:c3:3b:f6: d5:13:2b:fd:0d:60:15:5b:9e:5f:c2:50:da:16:d7:28:02:cf: 8b:2f:a8:9f:6e:a0:48:91:19:84:3d:e5:40:50:82:2c:eb:4e: a6:91:48:46:ab:bc:00:5a:f9:1d:c5:d2:0e:42:f9:c5:98:38: 92:5b:34:f0:ec:d9:79:36:f2:76:9e:13:85:34:6b:c0:e2:7f: db:68:22:d8:3f:9b:78:8d:b0:81:6b:6b:7a:20:26:25:75:0d: d2:f7:d2:aa:cb:5c:33:12:0e:d1:95:35:2d:af:b7:bc:c8:a5: a5:96:cf:70:c6:cb:89:a5:0a:4d:df:98:17:f0:e0:95:c9:0d: 5e:01:a9:77:f2:b1:79:9e:0d:b8:39:d6:c4:72:69:ec:59:30: 26:25:da:1f:48:01:d8:04:4b:04:39:30:57:ee:e0:b2:5d:4f: 36:98:59:f7:c3:52:87:96:86:de:92:72:46:6f:10:fb:eb:6c: b3:ac:2d:34:09:e7:d1:54:1a:05:89:1f:54:44:aa:00:a8:ff: 3b:70:47:70:7e:ed:4f:3d:7b:34:33:ae:8d:f2:f6:d6:54:43: 76:c5:b6:75:97:99:73:25:57:fe:1e:63:e5:0e:1e:69:2a:9c: 35:14:92:f8 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTVF REM1NjRGRThCMDJGMkNGODcwMDkzQkJGRERDMzI3RDZEOTM5NTAeFw0yNTEyMjEx NjM5MDlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEM4NzhBMEQwNTBCOTkz MzUxNjUxN0VBNTA4N0VCQTEyMjQ0MTJENjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNIz9YAPhNhW1v731bgLEU2TN+KjxKQG60KfiQ8ovUSdGaC+3X 4Iy7o34w7B6l2YkyDGNExajo07Lln170I9l85wmLODaqmgfgAEIVOfU2oy46PKpc B2t5p7UCAh6oqx3qXfnbjHwPGz88dbE3KoZYaFDClR8CBXk8BlWPQsLY9PzSeSA8 yRvVL0GWr34rtekqEjV55UTIBQ9NyGUy/TANSbDphI1c4SKEfSliwPvUiGXVZRxm HG9MBxosDkT4Y53HCIuD16+ywLNHef4P9drMi3+lWW/vZS/1MGPutnNGWt9LByBP VSrHjdFJwFhC5hWGtgSqsJ9UaT8bYYaDGL53AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUyHig0FC5kzUWUX6lCH66EiRBLWMwHwYDVR0jBBgwFoAU5e3FZP6LAvLPhwCT u/3cMn1tk5UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 OC81ZTNGWlA2TEF2TFBod0NUdV8zY01uMXRrNVUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVlM0ZaUDZMQXZMUGh3Q1R1XzNjTW4xdGs1VS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDgvNWUzRlpQNkxBdkxQ aHdDVHVfM2NNbjF0azVVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJr3OUazu3QhUoL+Nc+z0cM79tUTK/0NYBVbnl/CUNoW1ygCz4svqJ9uoEiR GYQ95UBQgizrTqaRSEarvABa+R3F0g5C+cWYOJJbNPDs2Xk28naeE4U0a8Dif9to Itg/m3iNsIFra3ogJiV1DdL30qrLXDMSDtGVNS2vt7zIpaWWz3DGy4mlCk3fmBfw 4JXJDV4BqXfysXmeDbg51sRyaexZMCYl2h9IAdgESwQ5MFfu4LJdTzaYWffDUoeW ht6SckZvEPvrbLOsLTQJ59FUGgWJH1REqgCo/ztwR3B+7U89ezQzro3y9tZUQ3bF tnWXmXMlV/4eY+UOHmkqnDUUkvg= -----END CERTIFICATE-----Generated at Sun Dec 21 18:19:31 2025 by rpki-client