This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft File: 2wnDhcqGTQSV-VGV_38HvFdh4XY.mft (raw, json) Hash identifier: Pj43yxowPZp+pPifwqk3kok2inICuQDFvvN87YccMtI= Subject key identifier: 04:1A:A5:E8:17:43:B7:42:48:C3:C1:96:FF:3D:92:37:B7:68:7F:F7 Authority key identifier: DB:09:C3:85:CA:86:4D:04:95:F9:51:95:FF:7F:07:BC:57:61:E1:76 Certificate issuer: /CN=DB09C385CA864D0495F95195FF7F07BC5761E176 Certificate serial: 0758 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft Manifest number: 0758 Signing time: Sun 21 Dec 2025 06:42:01 +0000 Manifest this update: Sun 21 Dec 2025 06:42:01 +0000 Manifest next update: Sun 21 Dec 2025 12:42:01 +0000 Files and hashes: 1: 2wnDhcqGTQSV-VGV_38HvFdh4XY.crl (hash: udktkRGiRC2+fpIrRD31usjDbGGVGKNwRQnhW4pv4bY=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 12:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1880 (0x758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB09C385CA864D0495F95195FF7F07BC5761E176 Validity Not Before: Dec 21 06:42:01 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=041AA5E81743B74248C3C196FF3D9237B7687FF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0e:76:e4:6b:ce:10:9a:1b:62:cc:f1:71:7e: 61:36:c7:6b:20:47:da:a5:25:c4:bc:d0:40:10:60: 35:fd:34:4c:6b:c5:32:bf:8b:d8:d4:36:a3:2a:63: 51:5a:a4:3f:a8:d8:71:40:65:03:dc:8d:bc:4f:7f: 4a:aa:8c:80:55:83:73:ef:9a:4e:92:94:1d:b4:bd: eb:37:17:2c:32:a1:35:26:32:fc:aa:00:cf:9d:d3: 49:74:19:ca:0d:92:0d:29:b5:f8:ad:88:67:db:3a: 92:17:68:83:a9:dc:51:09:5f:f6:5d:7c:b1:34:37: f4:73:d9:01:14:88:09:e0:94:f4:59:f2:8a:01:98: 36:20:d7:59:9c:65:e5:4a:20:b6:e8:47:fb:ea:c6: cc:13:56:a1:a0:63:d5:d4:13:e8:6e:86:04:cb:4e: f2:0a:5d:27:82:4c:16:86:7d:b4:87:b3:aa:49:48: df:a0:d3:20:29:9f:08:fc:64:79:84:22:16:50:d0: 63:ea:89:4d:d1:08:87:13:04:7a:17:4e:97:fc:e7: 5d:14:6d:af:83:03:16:b3:7e:23:58:a9:7e:b5:12: ae:4b:b3:74:84:fd:7b:6a:c0:f4:49:7c:e3:d6:66: 54:b9:d7:dd:44:50:85:04:8e:78:5a:ed:2c:04:96: 0a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1A:A5:E8:17:43:B7:42:48:C3:C1:96:FF:3D:92:37:B7:68:7F:F7 X509v3 Authority Key Identifier: keyid:DB:09:C3:85:CA:86:4D:04:95:F9:51:95:FF:7F:07:BC:57:61:E1:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2wnDhcqGTQSV-VGV_38HvFdh4XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3337/2wnDhcqGTQSV-VGV_38HvFdh4XY.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:2d:be:7c:5d:4c:b6:c0:64:fd:d7:be:87:42:26:f2:fb:26: b3:fa:c6:6d:4a:f7:7c:9a:b4:cc:06:25:e5:3c:18:1a:7b:98: 48:42:8d:95:8b:d8:73:55:39:b4:41:82:aa:71:8b:76:a7:19: 5e:84:21:05:d3:19:50:71:80:ec:2b:de:2f:97:71:dc:e0:b9: fc:d4:08:cd:e2:9c:4e:3a:39:a8:43:98:0d:de:d3:68:a3:56: 77:dd:2c:33:e0:b6:8c:73:6d:16:9d:c0:0f:fd:37:50:53:ef: 68:33:b1:b2:9c:d6:12:43:06:13:27:da:aa:72:89:fc:8d:2c: 22:38:a8:1a:c4:a7:3e:53:da:9c:9f:76:8d:b3:fe:80:cd:87: 22:00:3b:a7:50:b4:d8:38:fd:39:c5:d5:80:cc:2d:c1:03:2e: 44:9f:ca:3b:cf:b5:39:9e:ae:c5:61:15:1e:a4:73:9b:22:79: b4:e7:9a:b9:a7:ba:29:43:8d:ac:dc:aa:94:ed:00:51:25:08: e2:c9:4c:4b:38:2f:44:1e:87:a3:2d:39:bb:ef:63:97:fb:1c: c0:b8:cb:75:81:ee:8b:00:ef:33:07:c9:28:f8:3e:37:09:c8: 49:80:08:9a:c8:eb:70:97:d1:f4:8e:1b:b4:df:48:46:80:3b: 33:ee:04:1d -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICB1gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIw OUMzODVDQTg2NEQwNDk1Rjk1MTk1RkY3RjA3QkM1NzYxRTE3NjAeFw0yNTEyMjEw NjQyMDFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDA0MUFBNUU4MTc0M0I3 NDI0OEMzQzE5NkZGM0Q5MjM3Qjc2ODdGRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqDnbka84QmhtizPFxfmE2x2sgR9qlJcS80EAQYDX9NExrxTK/ i9jUNqMqY1FapD+o2HFAZQPcjbxPf0qqjIBVg3Pvmk6SlB20ves3FywyoTUmMvyq AM+d00l0GcoNkg0ptfitiGfbOpIXaIOp3FEJX/ZdfLE0N/Rz2QEUiAnglPRZ8ooB mDYg11mcZeVKILboR/vqxswTVqGgY9XUE+huhgTLTvIKXSeCTBaGfbSHs6pJSN+g 0yApnwj8ZHmEIhZQ0GPqiU3RCIcTBHoXTpf8510Uba+DAxazfiNYqX61Eq5Ls3SE /XtqwPRJfOPWZlS5191EUIUEjnha7SwElgotAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUBBql6BdDt0JIw8GW/z2SN7dof/cwHwYDVR0jBBgwFoAU2wnDhcqGTQSV+VGV /38HvFdh4XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMz Ny8yd25EaGNxR1RRU1YtVkdWXzM4SHZGZGg0WFkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzJ3bkRoY3FHVFFTVi1WR1ZfMzhIdkZkaDRYWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMzcvMnduRGhjcUdUUVNW LVZHVl8zOEh2RmRoNFhZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBACUtvnxdTLbAZP3XvodCJvL7JrP6xm1K93yatMwGJeU8GBp7mEhCjZWL2HNV ObRBgqpxi3anGV6EIQXTGVBxgOwr3i+XcdzgufzUCM3inE46OahDmA3e02ijVnfd LDPgtoxzbRadwA/9N1BT72gzsbKc1hJDBhMn2qpyifyNLCI4qBrEpz5T2pyfdo2z /oDNhyIAO6dQtNg4/TnF1YDMLcEDLkSfyjvPtTmersVhFR6kc5siebTnmrmnuilD jazcqpTtAFElCOLJTEs4L0Qeh6MtObvvY5f7HMC4y3WB7osA7zMHySj4PjcJyEmA CJrI63CX0fSOG7TfSEaAOzPuBB0= -----END CERTIFICATE-----Generated at Sun Dec 21 11:30:56 2025 by rpki-client