This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft File: 5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft (raw, json) Hash identifier: ocFLCtOaQq4YTeQM83eC89Fu4SYgLo1m32RPySpB6eQ= Subject key identifier: C8:78:A0:D0:50:B9:93:35:16:51:7E:A5:08:7E:BA:12:24:41:2D:63 Authority key identifier: E5:ED:C5:64:FE:8B:02:F2:CF:87:00:93:BB:FD:DC:32:7D:6D:93:95 Certificate issuer: /CN=E5EDC564FE8B02F2CF870093BBFDDC327D6D9395 Certificate serial: 21F0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5e3FZP6LAvLPhwCTu_3cMn1tk5U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft Manifest number: 21F0 Signing time: Thu 01 Jan 2026 05:09:38 +0000 Manifest this update: Thu 01 Jan 2026 05:09:38 +0000 Manifest next update: Thu 01 Jan 2026 11:09:38 +0000 Files and hashes: 1: 5e3FZP6LAvLPhwCTu_3cMn1tk5U.crl (hash: eGS0Yhm8Nxs7QB3z+BbtVRUNOYxOMGZijJuMAHGlcxM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5e3FZP6LAvLPhwCTu_3cMn1tk5U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 08:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8688 (0x21f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5EDC564FE8B02F2CF870093BBFDDC327D6D9395 Validity Not Before: Jan 1 05:09:38 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C878A0D050B9933516517EA5087EBA1224412D63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:23:3f:58:00:f8:4d:85:6d:6f:ef:7d:5b:80: b1:14:d9:33:7e:2a:3c:4a:40:6e:b4:29:f8:90:f2: 8b:d4:49:d1:9a:0b:ed:d7:e0:8c:bb:a3:7e:30:ec: 1e:a5:d9:89:32:0c:63:44:c5:a8:e8:d3:b2:e5:9f: 5e:f4:23:d9:7c:e7:09:8b:38:36:aa:9a:07:e0:00: 42:15:39:f5:36:a3:2e:3a:3c:aa:5c:07:6b:79:a7: b5:02:02:1e:a8:ab:1d:ea:5d:f9:db:8c:7c:0f:1b: 3f:3c:75:b1:37:2a:86:58:68:50:c2:95:1f:02:05: 79:3c:06:55:8f:42:c2:d8:f4:fc:d2:79:20:3c:c9: 1b:d5:2f:41:96:af:7e:2b:b5:e9:2a:12:35:79:e5: 44:c8:05:0f:4d:c8:65:32:fd:30:0d:49:b0:e9:84: 8d:5c:e1:22:84:7d:29:62:c0:fb:d4:88:65:d5:65: 1c:66:1c:6f:4c:07:1a:2c:0e:44:f8:63:9d:c7:08: 8b:83:d7:af:b2:c0:b3:47:79:fe:0f:f5:da:cc:8b: 7f:a5:59:6f:ef:65:2f:f5:30:63:ee:b6:73:46:5a: df:4b:07:20:4f:55:2a:c7:8d:d1:49:c0:58:42:e6: 15:86:b6:04:aa:b0:9f:54:69:3f:1b:61:86:83:18: be:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:78:A0:D0:50:B9:93:35:16:51:7E:A5:08:7E:BA:12:24:41:2D:63 X509v3 Authority Key Identifier: keyid:E5:ED:C5:64:FE:8B:02:F2:CF:87:00:93:BB:FD:DC:32:7D:6D:93:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5e3FZP6LAvLPhwCTu_3cMn1tk5U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2748/5e3FZP6LAvLPhwCTu_3cMn1tk5U.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c0:68:0f:bc:f3:ff:b0:91:be:9a:79:1d:ba:22:ed:7b:15: e3:f8:ac:e4:cb:25:bf:bf:1e:19:fc:bf:1a:91:42:d1:2e:ea: 17:15:7f:72:ed:da:c6:4e:5e:77:24:26:7a:79:c7:72:c4:7c: 76:83:e9:48:88:3e:c2:10:23:91:17:c0:49:75:3c:ec:6d:e8: 3b:54:c5:e4:95:17:b9:93:3d:7a:b4:d7:e9:6d:26:a9:6b:ca: ee:da:02:7b:12:2a:03:fe:87:19:ba:e1:ec:a4:e2:3b:6c:05: 88:73:50:5f:82:ca:e1:52:e6:f0:a8:81:cb:cd:06:50:05:01: 17:c4:e9:0f:6c:8a:d7:63:9b:f9:2b:cc:2f:9b:11:99:5f:d5: 21:90:bd:5d:85:fa:62:09:01:b4:86:3a:70:c6:4a:d6:98:88: a7:3a:49:5d:8d:06:cc:9c:18:7b:6a:26:49:1f:24:66:ec:cc: 45:4b:bb:40:21:f7:ef:d1:ca:62:a7:ec:a1:20:fa:35:94:a5: 6f:ea:f0:30:c2:8a:3b:8e:17:98:af:7a:f3:a7:03:a4:55:d3: b6:e1:f0:c7:1a:fc:d7:19:73:20:ed:75:14:9e:bd:bc:ca:5c: f5:60:0a:a0:7e:8d:d7:08:ff:f6:83:a3:f0:07:92:9b:5f:1a: f6:04:75:fc -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTVF REM1NjRGRThCMDJGMkNGODcwMDkzQkJGRERDMzI3RDZEOTM5NTAeFw0yNjAxMDEw NTA5MzhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEM4NzhBMEQwNTBCOTkz MzUxNjUxN0VBNTA4N0VCQTEyMjQ0MTJENjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNIz9YAPhNhW1v731bgLEU2TN+KjxKQG60KfiQ8ovUSdGaC+3X 4Iy7o34w7B6l2YkyDGNExajo07Lln170I9l85wmLODaqmgfgAEIVOfU2oy46PKpc B2t5p7UCAh6oqx3qXfnbjHwPGz88dbE3KoZYaFDClR8CBXk8BlWPQsLY9PzSeSA8 yRvVL0GWr34rtekqEjV55UTIBQ9NyGUy/TANSbDphI1c4SKEfSliwPvUiGXVZRxm HG9MBxosDkT4Y53HCIuD16+ywLNHef4P9drMi3+lWW/vZS/1MGPutnNGWt9LByBP VSrHjdFJwFhC5hWGtgSqsJ9UaT8bYYaDGL53AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUyHig0FC5kzUWUX6lCH66EiRBLWMwHwYDVR0jBBgwFoAU5e3FZP6LAvLPhwCT u/3cMn1tk5UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 OC81ZTNGWlA2TEF2TFBod0NUdV8zY01uMXRrNVUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVlM0ZaUDZMQXZMUGh3Q1R1XzNjTW4xdGs1VS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDgvNWUzRlpQNkxBdkxQ aHdDVHVfM2NNbjF0azVVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACnAaA+88/+wkb6aeR26Iu17FeP4rOTLJb+/Hhn8vxqRQtEu6hcVf3Lt2sZO XnckJnp5x3LEfHaD6UiIPsIQI5EXwEl1POxt6DtUxeSVF7mTPXq01+ltJqlryu7a AnsSKgP+hxm64eyk4jtsBYhzUF+CyuFS5vCogcvNBlAFARfE6Q9sitdjm/krzC+b EZlf1SGQvV2F+mIJAbSGOnDGStaYiKc6SV2NBsycGHtqJkkfJGbszEVLu0Ah9+/R ymKn7KEg+jWUpW/q8DDCijuOF5ivevOnA6RV07bh8Mca/NcZcyDtdRSevbzKXPVg CqB+jdcI//aDo/AHkptfGvYEdfw= -----END CERTIFICATE-----Generated at Thu Jan 1 07:17:47 2026 by rpki-client