This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft File: dLHNkLnEHIANH1u3AQiWQC4auU4.mft (raw, json) Hash identifier: KTs6PsjcraW9k1WbE8uXxTdczmSlWHSXr3YJpiM8uis= Subject key identifier: B0:54:D2:70:E7:FB:43:E0:C7:77:B3:3D:79:CA:A9:F9:0E:52:26:B0 Authority key identifier: 74:B1:CD:90:B9:C4:1C:80:0D:1F:5B:B7:01:08:96:40:2E:1A:B9:4E Certificate issuer: /CN=74B1CD90B9C41C800D1F5BB7010896402E1AB94E Certificate serial: 075F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft Manifest number: 075F Signing time: Sun 21 Dec 2025 06:42:01 +0000 Manifest this update: Sun 21 Dec 2025 06:42:01 +0000 Manifest next update: Sun 21 Dec 2025 12:42:01 +0000 Files and hashes: 1: dLHNkLnEHIANH1u3AQiWQC4auU4.crl (hash: 7ErOGyO0tbfz2PbimYyI9RNNRRUIYAz+PePW4NqXkiI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 10:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1887 (0x75f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74B1CD90B9C41C800D1F5BB7010896402E1AB94E Validity Not Before: Dec 21 06:42:01 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=B054D270E7FB43E0C777B33D79CAA9F90E5226B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:83:0f:2d:e4:fc:fd:40:e6:c9:69:06:2c:d0: 63:f2:39:94:44:ab:77:3a:54:18:e1:c0:8b:d4:20: b5:d0:43:40:59:34:7a:aa:f6:39:9f:1e:33:db:12: ee:50:c0:ca:13:fc:45:b1:1d:b7:34:16:6d:80:c6: 5d:34:23:6d:aa:00:3b:ec:a7:1a:3c:5c:ac:75:3b: a9:01:17:f5:1f:18:2e:25:84:b9:d7:6b:4e:9c:10: 87:af:01:0b:e7:59:73:8c:28:a9:50:67:22:9a:cd: 72:96:01:0c:11:76:26:c0:92:aa:9b:34:5d:30:1e: 39:13:38:e1:1c:c6:1c:6e:11:34:f4:ad:4a:e1:13: 04:5e:12:53:7d:59:9c:7f:06:60:84:25:be:29:49: ae:e5:d2:fe:0c:5d:57:0b:7a:ed:33:47:1c:a8:ce: ef:03:5a:09:66:d1:a3:61:45:fa:d1:16:80:84:6d: 04:bf:e8:8f:a1:7a:70:d2:a9:96:dc:48:df:2b:b5: 04:a6:94:f3:4f:30:bb:68:5c:f0:06:6b:8b:88:4f: 60:80:e3:8a:b7:ee:8e:d7:88:58:0a:65:12:73:ae: a1:65:8b:b6:03:f7:c9:08:1c:e7:93:51:38:98:0c: 1d:ef:03:ac:63:26:e3:fd:e3:36:8e:25:6d:83:1f: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:54:D2:70:E7:FB:43:E0:C7:77:B3:3D:79:CA:A9:F9:0E:52:26:B0 X509v3 Authority Key Identifier: keyid:74:B1:CD:90:B9:C4:1C:80:0D:1F:5B:B7:01:08:96:40:2E:1A:B9:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dLHNkLnEHIANH1u3AQiWQC4auU4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3335/dLHNkLnEHIANH1u3AQiWQC4auU4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:73:8c:e3:70:ce:98:cb:48:d3:6e:2b:ed:db:5e:ff:a6:e2: b8:7c:68:9a:d8:31:dd:cb:a0:d4:a0:7d:72:95:89:eb:e6:36: 95:2d:ad:be:84:6c:49:2c:89:4d:ca:50:18:d7:bd:c8:e2:ea: 71:c8:ac:7a:e1:80:2e:4d:73:2b:45:9e:62:21:ce:44:58:e7: d1:0b:4e:11:e3:ea:6c:17:2b:ef:e8:c7:a0:db:28:f6:62:76: 2a:1c:6d:40:e5:25:88:13:0f:30:34:1b:75:04:98:ef:64:f4: 3a:da:50:05:c8:2d:36:15:6d:81:4e:b6:31:66:20:e1:49:e4: 36:ea:4d:ff:b2:86:be:38:db:ce:50:8a:f2:85:d8:f2:d8:f8: 46:73:a0:73:ae:d3:45:42:e0:d4:d3:4a:29:08:f4:c7:e4:b6: fe:c2:4c:dd:8d:36:3a:30:f4:11:83:01:b9:8f:58:d0:03:06: 4a:e7:df:ee:09:19:33:09:da:9c:d3:2c:be:9d:67:d7:30:96: 5b:43:48:be:32:fa:a8:e5:07:be:05:47:81:5c:57:16:a9:df: 83:b9:4b:8d:b4:ec:40:fb:9b:48:b0:3b:30:0e:80:a4:4b:5f: e1:55:9a:e1:e3:ae:26:76:d7:93:7c:54:cd:c1:e3:15:15:02: bd:e7:cf:9a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICB18wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRC MUNEOTBCOUM0MUM4MDBEMUY1QkI3MDEwODk2NDAyRTFBQjk0RTAeFw0yNTEyMjEw NjQyMDFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEIwNTREMjcwRTdGQjQz RTBDNzc3QjMzRDc5Q0FBOUY5MEU1MjI2QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1gw8t5Pz9QObJaQYs0GPyOZREq3c6VBjhwIvUILXQQ0BZNHqq 9jmfHjPbEu5QwMoT/EWxHbc0Fm2Axl00I22qADvspxo8XKx1O6kBF/UfGC4lhLnX a06cEIevAQvnWXOMKKlQZyKazXKWAQwRdibAkqqbNF0wHjkTOOEcxhxuETT0rUrh EwReElN9WZx/BmCEJb4pSa7l0v4MXVcLeu0zRxyozu8DWglm0aNhRfrRFoCEbQS/ 6I+henDSqZbcSN8rtQSmlPNPMLtoXPAGa4uIT2CA44q37o7XiFgKZRJzrqFli7YD 98kIHOeTUTiYDB3vA6xjJuP94zaOJW2DH1AjAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUsFTScOf7Q+DHd7M9ecqp+Q5SJrAwHwYDVR0jBBgwFoAUdLHNkLnEHIANH1u3 AQiWQC4auU4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMz NS9kTEhOa0xuRUhJQU5IMXUzQVFpV1FDNGF1VTQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2RMSE5rTG5FSElBTkgxdTNBUWlXUUM0YXVVNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMzUvZExITmtMbkVISUFO SDF1M0FRaVdRQzRhdVU0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBABdzjONwzpjLSNNuK+3bXv+m4rh8aJrYMd3LoNSgfXKVievmNpUtrb6EbEks iU3KUBjXvcji6nHIrHrhgC5NcytFnmIhzkRY59ELThHj6mwXK+/ox6DbKPZidioc bUDlJYgTDzA0G3UEmO9k9DraUAXILTYVbYFOtjFmIOFJ5DbqTf+yhr44285QivKF 2PLY+EZzoHOu00VC4NTTSikI9Mfktv7CTN2NNjow9BGDAbmPWNADBkrn3+4JGTMJ 2pzTLL6dZ9cwlltDSL4y+qjlB74FR4FcVxap34O5S4207ED7m0iwOzAOgKRLX+FV muHjriZ215N8VM3B4xUVAr3nz5o= -----END CERTIFICATE-----Generated at Sun Dec 21 09:51:53 2025 by rpki-client