This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3233/nK_iVscKcA-tbifoO3QusmjjtdE.mft File: nK_iVscKcA-tbifoO3QusmjjtdE.mft (raw, json) Hash identifier: ufa71V7FeuA+v3dpk/Bd2uVXxusMScQ4vbZItYBzBOI= Subject key identifier: 17:91:07:6E:4D:36:68:45:2F:30:E8:69:CF:7D:E4:95:D5:C3:06:9F Authority key identifier: 9C:AF:E2:56:C7:0A:70:0F:AD:6E:27:E8:3B:74:2E:B2:68:E3:B5:D1 Certificate issuer: /CN=9CAFE256C70A700FAD6E27E83B742EB268E3B5D1 Certificate serial: 10F7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nK_iVscKcA-tbifoO3QusmjjtdE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3233/nK_iVscKcA-tbifoO3QusmjjtdE.mft Manifest number: 10F7 Signing time: Sun 21 Dec 2025 16:42:11 +0000 Manifest this update: Sun 21 Dec 2025 16:42:11 +0000 Manifest next update: Sun 21 Dec 2025 22:42:11 +0000 Files and hashes: 1: nK_iVscKcA-tbifoO3QusmjjtdE.crl (hash: EaP2+czb4IvTOlXWkvhp3ldn1x7iYr35gf6f7N8e+og=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3233/nK_iVscKcA-tbifoO3QusmjjtdE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3233/nK_iVscKcA-tbifoO3QusmjjtdE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nK_iVscKcA-tbifoO3QusmjjtdE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4343 (0x10f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CAFE256C70A700FAD6E27E83B742EB268E3B5D1 Validity Not Before: Dec 21 16:42:11 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=1791076E4D3668452F30E869CF7DE495D5C3069F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7f:32:c3:cb:82:c9:3e:35:3c:8b:e7:17:d5: b3:2d:ec:d1:f2:4f:7d:36:96:5f:49:ca:d7:42:4b: 0c:ff:8a:1f:85:5f:4f:b3:56:01:d2:2f:27:f3:c7: 62:94:e8:14:af:ab:03:1b:83:f4:94:32:9e:b1:d8: 69:23:9a:e4:23:80:9b:ae:a9:1c:61:45:06:0a:1b: 1f:60:09:26:0a:92:b0:3f:6c:9a:85:13:c6:d8:6e: fc:dc:62:6a:64:8b:42:98:c5:d0:2e:b8:40:0c:d7: 17:9a:8b:53:27:1c:49:99:a7:1d:a0:9b:64:96:2a: 34:de:ff:12:94:02:17:42:28:20:fe:79:69:1c:e6: 52:c3:2e:53:bf:9d:7e:c3:49:17:3e:56:d4:b5:85: b8:48:0b:73:3d:07:1c:d8:ec:43:91:b0:57:af:6e: 15:ff:aa:b2:f5:8b:42:ef:52:7c:3a:2b:0a:89:25: 8b:39:02:5c:0d:8d:db:1b:9d:d5:9c:98:02:9f:9e: 42:0f:0e:56:41:c2:37:a9:af:1a:22:85:42:b6:05: db:73:0c:a4:1a:3c:95:55:87:1d:83:2c:a4:e6:83: c4:ed:d4:cc:2f:0b:8c:44:41:93:c6:14:48:5d:dd: 32:5c:8b:c9:ff:d9:b7:c5:27:56:64:79:42:2b:af: cd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:91:07:6E:4D:36:68:45:2F:30:E8:69:CF:7D:E4:95:D5:C3:06:9F X509v3 Authority Key Identifier: keyid:9C:AF:E2:56:C7:0A:70:0F:AD:6E:27:E8:3B:74:2E:B2:68:E3:B5:D1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3233/nK_iVscKcA-tbifoO3QusmjjtdE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nK_iVscKcA-tbifoO3QusmjjtdE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3233/nK_iVscKcA-tbifoO3QusmjjtdE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:67:63:18:5a:61:7c:5c:f3:2b:0d:7d:62:a0:32:ac:b9:cb: 09:1f:ae:92:62:49:39:6b:8d:71:ff:88:d3:c0:b6:cc:c4:67: 26:e6:4d:8e:88:6f:97:27:54:ea:ff:56:70:0a:eb:f1:86:d8: 4c:8c:34:05:93:62:33:64:3d:d2:1d:38:dc:ca:15:62:2f:25: 67:e1:74:6d:7a:34:fd:48:a0:5d:a6:86:53:a2:b9:29:d6:08: df:30:55:eb:ff:4d:cb:44:77:46:9d:dc:f9:cd:23:9f:b1:29: a9:39:86:a7:2f:90:ab:1d:47:b1:f5:97:ff:a1:97:f2:29:8c: 29:4d:a9:f5:5e:80:ea:8c:11:a9:30:2e:06:c3:c2:de:14:b1: db:1e:27:7c:03:9d:f4:8a:fe:30:cb:ab:9a:2f:9e:d9:c2:99: 77:91:9a:bc:b4:6d:40:e3:a5:8b:91:4a:47:b0:4d:ff:19:81: f8:89:3f:d9:e3:81:a6:76:1c:7b:24:3e:de:e1:ac:45:3a:53: e2:75:c6:56:8e:d2:65:06:28:49:21:3e:4b:2b:66:dd:c7:4f: af:cd:6b:10:98:16:9b:3e:52:53:5b:e9:78:77:cd:a8:1b:e5: f1:a2:6c:91:7f:31:ee:eb:2b:8f:3c:3c:56:ff:30:6e:63:06: c4:72:eb:35 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICEPcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUNB RkUyNTZDNzBBNzAwRkFENkUyN0U4M0I3NDJFQjI2OEUzQjVEMTAeFw0yNTEyMjEx NjQyMTFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDE3OTEwNzZFNEQzNjY4 NDUyRjMwRTg2OUNGN0RFNDk1RDVDMzA2OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTfzLDy4LJPjU8i+cX1bMt7NHyT302ll9JytdCSwz/ih+FX0+z VgHSLyfzx2KU6BSvqwMbg/SUMp6x2GkjmuQjgJuuqRxhRQYKGx9gCSYKkrA/bJqF E8bYbvzcYmpki0KYxdAuuEAM1xeai1MnHEmZpx2gm2SWKjTe/xKUAhdCKCD+eWkc 5lLDLlO/nX7DSRc+VtS1hbhIC3M9BxzY7EORsFevbhX/qrL1i0LvUnw6KwqJJYs5 AlwNjdsbndWcmAKfnkIPDlZBwjeprxoihUK2BdtzDKQaPJVVhx2DLKTmg8Tt1Mwv C4xEQZPGFEhd3TJci8n/2bfFJ1ZkeUIrr81NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUF5EHbk02aEUvMOhpz33kldXDBp8wHwYDVR0jBBgwFoAUnK/iVscKcA+tbifo O3QusmjjtdEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIz My9uS19pVnNjS2NBLXRiaWZvTzNRdXNtamp0ZEUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL25LX2lWc2NLY0EtdGJpZm9PM1F1c21qanRkRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMzMvbktfaVZzY0tjQS10 Ymlmb08zUXVzbWpqdGRFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABxnYxhaYXxc8ysNfWKgMqy5ywkfrpJiSTlrjXH/iNPAtszEZybmTY6Ib5cn VOr/VnAK6/GG2EyMNAWTYjNkPdIdONzKFWIvJWfhdG16NP1IoF2mhlOiuSnWCN8w Vev/TctEd0ad3PnNI5+xKak5hqcvkKsdR7H1l/+hl/IpjClNqfVegOqMEakwLgbD wt4UsdseJ3wDnfSK/jDLq5ovntnCmXeRmry0bUDjpYuRSkewTf8ZgfiJP9njgaZ2 HHskPt7hrEU6U+J1xlaO0mUGKEkhPksrZt3HT6/NaxCYFps+UlNb6Xh3zagb5fGi bJF/Me7rK488PFb/MG5jBsRy6zU= -----END CERTIFICATE-----Generated at Sun Dec 21 18:19:36 2025 by rpki-client