This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft File: USN2g1L_1eSeSpn0-TWAPoNb35Y.mft (raw, json) Hash identifier: q74WFz61L234/1FT+R3TYnLHOWoUJLS8AxXD5ojeUmU= Subject key identifier: 7E:9E:E0:90:3F:FE:91:E9:63:B2:B8:E8:9E:D7:23:94:AA:68:A5:31 Authority key identifier: 51:23:76:83:52:FF:D5:E4:9E:4A:99:F4:F9:35:80:3E:83:5B:DF:96 Certificate issuer: /CN=5123768352FFD5E49E4A99F4F935803E835BDF96 Certificate serial: 0913 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/USN2g1L_1eSeSpn0-TWAPoNb35Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft Manifest number: 0913 Signing time: Mon 10 Nov 2025 02:12:42 +0000 Manifest this update: Mon 10 Nov 2025 02:12:42 +0000 Manifest next update: Mon 10 Nov 2025 08:12:42 +0000 Files and hashes: 1: USN2g1L_1eSeSpn0-TWAPoNb35Y.crl (hash: w+Cai/cnZIATwCa2MpVaMMKdrUULwSaR/Jj9UcZ4x7I=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 2323 (0x913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5123768352FFD5E49E4A99F4F935803E835BDF96 Validity Not Before: Nov 10 02:12:42 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=7E9EE0903FFE91E963B2B8E89ED72394AA68A531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9a:9d:f9:db:d7:5e:9b:ea:09:7d:fd:85:6b: 77:8b:7d:07:20:7a:11:87:2d:f3:bf:be:bf:15:ee: a2:cc:b0:df:f3:19:de:42:46:1f:de:67:d8:f2:14: 53:b7:3b:0d:71:63:82:c7:e2:02:20:d3:74:e2:81: 2d:7c:66:6d:e0:e4:bd:5e:3a:5d:76:8e:71:ef:56: 87:4e:e3:f9:4a:df:2b:19:54:82:dd:71:4a:4d:65: b2:99:ee:4d:b7:36:b2:89:d9:38:0c:de:58:7e:e6: e2:93:b0:e5:64:3c:ee:7e:5c:86:00:57:20:29:60: 0b:76:9d:c7:6c:82:3e:5c:7a:09:5d:6e:77:72:18: e6:76:03:2e:e3:1a:82:90:82:5e:2c:ef:8f:8a:30: 24:92:d1:7a:4e:3c:88:d7:73:31:0b:d8:d9:20:95: 61:73:11:aa:c4:6d:b4:d6:70:7a:18:90:b3:4e:d4: 01:72:fa:b6:35:73:11:ea:af:78:c1:b7:1d:fe:4e: ba:92:c8:62:f6:8b:21:09:b8:57:2b:48:02:de:af: 1d:67:46:03:b9:5d:5f:f5:94:e5:ca:0d:d9:b4:4c: 4c:cf:13:98:47:fe:4f:e0:89:0a:2e:89:78:02:3b: b4:82:a1:ed:2e:8d:ad:d3:c6:a4:af:d3:b2:a3:6e: 11:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9E:E0:90:3F:FE:91:E9:63:B2:B8:E8:9E:D7:23:94:AA:68:A5:31 X509v3 Authority Key Identifier: keyid:51:23:76:83:52:FF:D5:E4:9E:4A:99:F4:F9:35:80:3E:83:5B:DF:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/USN2g1L_1eSeSpn0-TWAPoNb35Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:04:05:56:9d:a1:c8:f6:07:0a:e8:5a:49:ab:bf:6f:1d:67: 45:50:6b:60:42:9f:9e:a3:b8:66:e5:f0:f8:cd:47:c3:0d:b6: 30:2d:a5:c6:bc:dd:3c:40:ad:75:1b:5e:a8:0b:c4:83:4f:8d: 2f:ad:b4:ba:61:7d:36:36:82:0d:62:e6:4c:82:a2:2b:b6:6a: 22:79:a2:cc:b8:1b:0e:bd:9f:d6:59:e0:bd:b8:5f:5a:fe:6f: 36:8d:92:bb:a4:b2:03:42:c1:88:f9:f9:e9:21:b9:31:2f:48: 55:b2:e3:02:f1:76:7b:a9:69:50:e2:90:7d:b7:ce:4a:df:29: 93:34:d0:d8:53:79:b0:ae:33:3b:2e:0c:d4:56:c8:1b:8b:5a: c6:25:27:b8:83:e2:4d:e4:f6:c4:01:6f:6b:4d:cf:93:79:91: e3:fc:cd:d0:bf:de:27:31:0d:85:fc:37:60:b7:19:df:16:39: b1:be:42:72:f1:d5:15:bf:b5:a2:4d:42:53:2d:e8:70:1d:c6: f0:98:3a:61:a2:cf:51:3a:50:90:0e:43:c9:da:82:96:24:48: a8:88:cf:d6:7d:97:a4:5a:41:a0:9a:76:c1:18:82:ed:6e:33: 20:26:06:81:87:7f:56:c1:f8:f3:0e:d1:aa:84:a1:95:28:99: 98:87:04:93 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy Mzc2ODM1MkZGRDVFNDlFNEE5OUY0RjkzNTgwM0U4MzVCREY5NjAeFw0yNTExMTAw MjEyNDJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDdFOUVFMDkwM0ZGRTkx RTk2M0IyQjhFODlFRDcyMzk0QUE2OEE1MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcmp3529dem+oJff2Fa3eLfQcgehGHLfO/vr8V7qLMsN/zGd5C Rh/eZ9jyFFO3Ow1xY4LH4gIg03TigS18Zm3g5L1eOl12jnHvVodO4/lK3ysZVILd cUpNZbKZ7k23NrKJ2TgM3lh+5uKTsOVkPO5+XIYAVyApYAt2ncdsgj5cegldbndy GOZ2Ay7jGoKQgl4s74+KMCSS0XpOPIjXczEL2NkglWFzEarEbbTWcHoYkLNO1AFy +rY1cxHqr3jBtx3+TrqSyGL2iyEJuFcrSALerx1nRgO5XV/1lOXKDdm0TEzPE5hH /k/giQouiXgCO7SCoe0uja3TxqSv07KjbhG3AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfp7gkD/+keljsrjontcjlKpopTEwHwYDVR0jBBgwFoAUUSN2g1L/1eSeSpn0 +TWAPoNb35YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw Ny9VU04yZzFMXzFlU2VTcG4wLVRXQVBvTmIzNVkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VTTjJnMUxfMWVTZVNwbjAtVFdBUG9OYjM1WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDcvVVNOMmcxTF8xZVNl U3BuMC1UV0FQb05iMzVZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAIQEBVadocj2BwroWkmrv28dZ0VQa2BCn56juGbl8PjNR8MNtjAtpca83TxA rXUbXqgLxINPjS+ttLphfTY2gg1i5kyCoiu2aiJ5osy4Gw69n9ZZ4L24X1r+bzaN kruksgNCwYj5+ekhuTEvSFWy4wLxdnupaVDikH23zkrfKZM00NhTebCuMzsuDNRW yBuLWsYlJ7iD4k3k9sQBb2tNz5N5keP8zdC/3icxDYX8N2C3Gd8WObG+QnLx1RW/ taJNQlMt6HAdxvCYOmGiz1E6UJAOQ8nagpYkSKiIz9Z9l6RaQaCadsEYgu1uMyAm BoGHf1bB+PMO0aqEoZUomZiHBJM= -----END CERTIFICATE-----Generated at Mon Jan 5 03:02:28 2026 by rpki-client