This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft File: VZPMkzM9chHxN7wfzRxXcSWoWyo.mft (raw, json) Hash identifier: JLXJEyJSFZtST/LpBm09YxdGHxXZq9LkZVSwIeo/FW8= Subject key identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 Authority key identifier: 55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A Certificate issuer: /CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Certificate serial: 14CF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft Manifest number: 14CF Signing time: Sun 21 Dec 2025 16:41:43 +0000 Manifest this update: Sun 21 Dec 2025 16:41:42 +0000 Manifest next update: Sun 21 Dec 2025 22:41:42 +0000 Files and hashes: 1: VZPMkzM9chHxN7wfzRxXcSWoWyo.crl (hash: eZtlMJFXaM+sg+8BdcMMwrOopn/Vuj1ZeoEDxxzMv4c=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5327 (0x14cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5593CC93333D7211F137BC1FCD1C577125A85B2A Validity Not Before: Dec 21 16:41:42 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4F6C2F9AED87CF698D7A7422C83968FDE51BDE81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:a9:20:26:87:f8:1e:64:24:e6:e4:f4:bb: 8f:3b:3c:24:c4:0a:1c:06:10:9f:1b:dd:f0:99:99: cc:28:d2:3c:94:ad:05:f2:2f:16:47:12:9b:10:c5: 70:3a:7f:f0:f5:d6:c9:df:89:cd:23:fe:1a:67:4d: d1:77:8f:52:2e:86:02:39:b7:9f:73:c1:59:a4:6b: da:ab:f8:9a:5c:aa:fa:51:97:79:ae:01:83:82:95: f7:c9:99:8e:1d:f3:15:4d:9b:c5:64:95:76:93:86: 0a:e1:60:a3:04:6d:38:be:68:c8:e8:23:a8:38:dd: 9a:ba:dd:c3:45:c3:ea:c4:4f:6f:b6:b3:af:20:fe: b5:ac:ac:a9:b4:ed:fe:ad:c3:b2:8c:fc:79:64:70: 78:e6:43:71:2e:b8:31:55:a4:d6:3b:e9:70:fd:64: 3d:ea:e3:5d:b8:4f:8b:bb:b7:6f:bf:90:70:56:53: e4:6a:38:85:db:03:9b:24:6e:ce:9a:d9:61:cc:f5: 5b:53:27:50:75:ed:76:97:38:36:26:d1:3d:03:12: 93:35:9c:f9:ee:df:17:3a:ee:92:cc:10:90:91:48: d8:d4:95:0a:a4:22:2b:06:1e:4a:70:80:d6:33:7a: fc:4a:0e:b1:0b:41:a4:e5:17:85:31:d6:bd:2d:75: 41:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6C:2F:9A:ED:87:CF:69:8D:7A:74:22:C8:39:68:FD:E5:1B:DE:81 X509v3 Authority Key Identifier: keyid:55:93:CC:93:33:3D:72:11:F1:37:BC:1F:CD:1C:57:71:25:A8:5B:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/VZPMkzM9chHxN7wfzRxXcSWoWyo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3177/VZPMkzM9chHxN7wfzRxXcSWoWyo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:68:32:cf:94:f0:ee:6f:91:2a:7b:47:4f:5f:a8:c5:5c:a4: da:0a:de:73:d7:b7:7b:61:7c:04:35:95:67:d8:9a:00:f0:74: d8:96:57:6c:ed:f6:1f:3b:64:a8:65:05:82:4e:8c:e1:a4:20: 8a:d3:49:73:77:ce:ee:fd:50:6b:d5:cd:6b:10:39:20:9b:53: db:8a:06:27:2f:df:2f:eb:28:12:fa:96:db:51:ea:7a:2b:c8: 3d:36:4d:c5:ae:9b:d5:9a:eb:5e:9f:5e:a3:c1:db:7d:67:4e: 3a:a2:68:2f:70:c6:a4:11:b5:a3:ed:5b:1f:fa:21:f2:61:6d: 2a:a4:af:63:25:b1:88:6e:4a:bf:92:59:f5:5a:0c:5f:8d:50: 18:cc:06:c8:52:3c:78:e9:08:1e:84:01:da:35:f5:b0:ed:d4: fe:1b:24:6c:60:78:73:8b:58:b2:3e:30:70:07:38:dd:d3:11: b3:9c:71:9c:a2:0a:90:30:3c:1f:3d:2d:cf:87:24:82:15:9e: a2:a5:67:18:3f:e4:9f:ad:4a:71:2f:4c:02:6e:5c:6b:58:14: fe:b6:da:ba:15:ee:ee:81:62:24:28:ce:0a:1b:47:29:f0:66: c0:b2:04:27:4a:f4:53:e2:c1:3b:bd:0e:fd:94:47:38:7e:20: 19:16:4c:09 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICFM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTU5 M0NDOTMzMzNENzIxMUYxMzdCQzFGQ0QxQzU3NzEyNUE4NUIyQTAeFw0yNTEyMjEx NjQxNDJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDRGNkMyRjlBRUQ4N0NG Njk4RDdBNzQyMkM4Mzk2OEZERTUxQkRFODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqP6kgJof4HmQk5uT0u487PCTEChwGEJ8b3fCZmcwo0jyUrQXy LxZHEpsQxXA6f/D11snfic0j/hpnTdF3j1IuhgI5t59zwVmka9qr+JpcqvpRl3mu AYOClffJmY4d8xVNm8VklXaThgrhYKMEbTi+aMjoI6g43Zq63cNFw+rET2+2s68g /rWsrKm07f6tw7KM/HlkcHjmQ3EuuDFVpNY76XD9ZD3q4124T4u7t2+/kHBWU+Rq OIXbA5skbs6a2WHM9VtTJ1B17XaXODYm0T0DEpM1nPnu3xc67pLMEJCRSNjUlQqk IisGHkpwgNYzevxKDrELQaTlF4Ux1r0tdUHlAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUT2wvmu2Hz2mNenQiyDlo/eUb3oEwHwYDVR0jBBgwFoAUVZPMkzM9chHxN7wf zRxXcSWoWyowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 Ny9WWlBNa3pNOWNoSHhON3dmelJ4WGNTV29XeW8uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1ZaUE1rek05Y2hIeE43d2Z6UnhYY1NXb1d5by5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzcvVlpQTWt6TTljaEh4 Tjd3ZnpSeFhjU1dvV3lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAFZoMs+U8O5vkSp7R09fqMVcpNoK3nPXt3thfAQ1lWfYmgDwdNiWV2zt9h87 ZKhlBYJOjOGkIIrTSXN3zu79UGvVzWsQOSCbU9uKBicv3y/rKBL6lttR6noryD02 TcWum9Wa616fXqPB231nTjqiaC9wxqQRtaPtWx/6IfJhbSqkr2MlsYhuSr+SWfVa DF+NUBjMBshSPHjpCB6EAdo19bDt1P4bJGxgeHOLWLI+MHAHON3TEbOccZyiCpAw PB89Lc+HJIIVnqKlZxg/5J+tSnEvTAJuXGtYFP622roV7u6BYiQozgobRynwZsCy BCdK9FPiwTu9Dv2URzh+IBkWTAk= -----END CERTIFICATE-----Generated at Sun Dec 21 18:37:10 2025 by rpki-client