This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft File: 406o9-mW0qoqsVi7lztBbAR30cw.mft (raw, json) Hash identifier: 6TwFXUa8/8U8np66n3+vgVIszIq9nmx+PhOfoNGuDeQ= Subject key identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 Authority key identifier: E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC Certificate issuer: /CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Certificate serial: 07BC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft Manifest number: 07BC Signing time: Sun 21 Dec 2025 16:41:54 +0000 Manifest this update: Sun 21 Dec 2025 16:41:54 +0000 Manifest next update: Sun 21 Dec 2025 22:41:54 +0000 Files and hashes: 1: 406o9-mW0qoqsVi7lztBbAR30cw.crl (hash: azkwCuzI7EjWAwfi6LTgpP2sGgBN/NQ8K34NsDAQq7c=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E34EA8F7E996D2AA2AB158BB973B416C0477D1CC Validity Not Before: Dec 21 16:41:54 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6BFA67FFC3FA63CA3D1CDB3CD19222E913A984E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:55:51:4e:6a:d3:08:f1:32:68:ab:2b:45: 7c:5d:fd:a7:c8:d9:59:46:ee:1d:33:bc:5a:e7:c3: 02:65:b8:cf:c3:ab:3a:30:9e:b4:a7:d9:b0:dc:45: 1f:8b:9f:1d:4d:50:cd:42:d3:f2:8f:71:47:41:45: e2:45:8a:2c:36:b1:c3:f3:ba:58:a5:af:35:8b:a1: 69:ae:b4:8c:91:f2:75:93:9c:94:fb:78:59:64:99: 08:35:78:e3:bf:73:a6:81:f7:9c:0d:8c:cc:99:ac: 46:30:eb:fe:62:ff:29:c7:ff:ff:a1:03:0e:a2:b9: 16:9d:b3:8c:71:fb:86:4b:c5:17:df:12:80:c2:9d: ab:b2:42:0e:51:a6:a3:00:94:4f:f0:87:37:d7:10: ba:a4:39:d4:c5:5b:9e:65:19:58:83:39:86:d4:7b: 79:63:8e:38:5e:b4:99:19:68:10:ac:c3:0f:ee:fa: 32:1e:b6:6a:89:3d:8b:6c:ae:94:c8:a3:8c:11:89: 58:a7:e0:69:b2:d0:72:97:69:4d:01:b8:00:b5:cd: e1:f5:c8:25:78:17:fe:6b:44:49:03:03:ce:7d:70: ea:18:b8:49:5e:0a:54:ba:d4:2a:67:cc:6d:88:50: 24:33:9e:5e:0e:9c:85:77:35:f2:25:7c:63:95:e0: 57:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FA:67:FF:C3:FA:63:CA:3D:1C:DB:3C:D1:92:22:E9:13:A9:84:E3 X509v3 Authority Key Identifier: keyid:E3:4E:A8:F7:E9:96:D2:AA:2A:B1:58:BB:97:3B:41:6C:04:77:D1:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/406o9-mW0qoqsVi7lztBbAR30cw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/406o9-mW0qoqsVi7lztBbAR30cw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:09:04:ee:3d:eb:82:6f:41:40:bd:0a:c5:e5:20:07:b7:a9: 52:df:53:8b:8a:c7:46:a1:a0:90:cc:23:bf:1f:ee:b7:91:a9: 75:96:17:b8:01:a5:b6:b5:69:e5:4d:33:88:74:49:1f:cd:4e: d5:e7:f3:df:2f:e8:af:d1:24:f1:c5:ec:c5:bd:0a:4a:0e:39: f2:97:99:de:92:3d:12:d1:06:9e:63:33:a7:ae:b1:9d:0c:cb: e9:e2:80:7a:2b:92:cb:65:56:b7:74:33:c1:60:b8:5c:89:0d: 86:4e:ce:4c:68:d7:69:23:15:b6:19:5c:57:51:1d:dc:06:df: 0d:a3:6a:2a:b7:7a:24:a4:fd:d2:7a:0e:54:60:54:9c:55:78: 44:fd:0d:61:8d:b5:44:bd:a1:3b:fe:1a:2a:0f:95:27:5d:29: 4f:53:8c:99:d8:c0:09:45:36:1c:3c:7b:37:2b:d8:76:f6:a4: 94:06:9b:85:84:2f:22:e1:f3:64:e9:6c:6a:99:e1:10:81:e1: c2:03:45:66:46:97:33:d4:a5:0c:d6:fc:23:10:df:6b:29:22: 5a:a5:79:3e:6d:81:fa:02:25:82:42:31:c6:26:42:30:8b:f1: c6:27:bd:ae:1d:54:ff:e2:04:a4:7a:c4:27:05:01:cc:3d:7e: 32:b4:44:e7 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTM0 RUE4RjdFOTk2RDJBQTJBQjE1OEJCOTczQjQxNkMwNDc3RDFDQzAeFw0yNTEyMjEx NjQxNTRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDZCRkE2N0ZGQzNGQTYz Q0EzRDFDREIzQ0QxOTIyMkU5MTNBOTg0RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5WlVRTmrTCPEyaKsrRXxd/afI2VlG7h0zvFrnwwJluM/Dqzow nrSn2bDcRR+Lnx1NUM1C0/KPcUdBReJFiiw2scPzulilrzWLoWmutIyR8nWTnJT7 eFlkmQg1eOO/c6aB95wNjMyZrEYw6/5i/ynH//+hAw6iuRads4xx+4ZLxRffEoDC nauyQg5RpqMAlE/whzfXELqkOdTFW55lGViDOYbUe3ljjjhetJkZaBCsww/u+jIe tmqJPYtsrpTIo4wRiVin4Gmy0HKXaU0BuAC1zeH1yCV4F/5rREkDA859cOoYuEle ClS61CpnzG2IUCQznl4OnIV3NfIlfGOV4FdtAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUa/pn/8P6Y8o9HNs80ZIi6ROphOMwHwYDVR0jBBgwFoAU406o9+mW0qoqsVi7 lztBbAR30cwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy OC80MDZvOS1tVzBxb3FzVmk3bHp0QmJBUjMwY3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzQwNm85LW1XMHFvcXNWaTdsenRCYkFSMzBjdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjgvNDA2bzktbVcwcW9x c1ZpN2x6dEJiQVIzMGN3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAFYJBO4964JvQUC9CsXlIAe3qVLfU4uKx0ahoJDMI78f7reRqXWWF7gBpba1 aeVNM4h0SR/NTtXn898v6K/RJPHF7MW9CkoOOfKXmd6SPRLRBp5jM6eusZ0My+ni gHorkstlVrd0M8FguFyJDYZOzkxo12kjFbYZXFdRHdwG3w2jaiq3eiSk/dJ6DlRg VJxVeET9DWGNtUS9oTv+GioPlSddKU9TjJnYwAlFNhw8ezcr2Hb2pJQGm4WELyLh 82TpbGqZ4RCB4cIDRWZGlzPUpQzW/CMQ32spIlqleT5tgfoCJYJCMcYmQjCL8cYn va4dVP/iBKR6xCcFAcw9fjK0ROc= -----END CERTIFICATE-----Generated at Sun Dec 21 18:22:57 2025 by rpki-client