This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft File: th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft (raw, json) Hash identifier: gydB6Ert4p/yeApfLtOP04JI2HkbJ8RRU92Okh1mUgM= Subject key identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B Authority key identifier: B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC Certificate issuer: /CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC Certificate serial: 06CB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft Manifest number: 06CB Signing time: Sun 21 Dec 2025 01:42:31 +0000 Manifest this update: Sun 21 Dec 2025 01:42:31 +0000 Manifest next update: Sun 21 Dec 2025 07:42:31 +0000 Files and hashes: 1: th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl (hash: eNshuuUZQvY1b75gfwZHnl/OVDB3LfAoq05mnIbS+Y0=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 05:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC Validity Not Before: Dec 21 01:42:31 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=186E78B45B3C95AF28F99FC95D6D94940A37551B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:c6:9f:2c:76:70:3d:16:0a:60:0c:28:9d: 0b:6e:02:15:0e:70:04:d0:29:47:03:3c:0b:c3:d4: 2e:d2:75:0e:ae:c0:63:70:93:c2:34:17:5a:cc:ce: 15:f6:7a:c8:84:9a:ac:9e:6b:a3:69:2c:43:28:77: d9:af:a0:84:40:eb:b2:39:05:b9:b8:ba:c6:a3:9d: 02:aa:02:c0:33:24:9c:05:b7:eb:04:7a:98:0e:0a: f3:2d:a9:c4:59:52:36:21:d2:c0:39:47:e2:13:81: 57:60:4f:a8:7b:6c:4e:f8:26:f8:15:f8:aa:b1:21: 91:c7:63:e8:23:65:39:20:4e:1a:ff:13:66:69:bf: f6:22:44:57:bf:17:8c:bd:e4:d1:51:45:63:7a:e3: 5c:cd:2f:bc:fa:33:3f:9b:12:3e:2c:80:d9:3d:64: 81:00:bc:71:04:f9:4c:3d:00:8f:dd:ee:5a:83:0a: 84:34:cd:b6:39:52:8e:bf:af:6a:c4:4a:86:24:17: fd:b6:cf:8a:46:d6:c9:1e:12:b4:95:2e:54:a3:10: 33:fa:36:8e:c2:4a:a8:d5:ac:0e:ef:73:3f:d1:1c: ed:44:b6:f5:80:fa:02:da:cf:06:f8:a4:cd:0f:3b: b1:27:10:ec:52:61:b6:bc:94:7a:f8:00:32:6f:fd: 37:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B X509v3 Authority Key Identifier: keyid:B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:57:3f:3e:bc:d2:41:49:39:bb:6e:bb:55:ed:aa:9e:8e:81: 78:5a:b1:c2:01:f8:ff:4f:d7:c8:11:21:64:41:ac:f2:5a:86: fa:dd:f7:3d:d3:d2:44:cb:e7:20:57:a7:b2:76:46:04:eb:49: d5:1d:4e:bb:09:73:a3:05:fe:9b:4b:6f:3f:ab:77:3a:ee:5d: 8b:1f:02:e1:6f:c1:8f:d2:39:d5:94:d9:6c:0c:22:a6:db:8b: 4a:96:63:7d:4f:30:db:36:09:1f:8c:a0:e8:d6:42:86:cb:95: 39:21:87:4a:9d:1f:b7:3c:e9:b2:ce:26:46:08:cb:b8:f4:81: 30:db:73:e5:0a:1b:52:6b:76:b0:f5:5c:a6:fa:d9:00:de:3f: fa:8b:72:79:8a:7c:5f:f8:22:21:67:9c:8a:ba:70:90:4c:63: 6b:16:17:72:d4:71:e9:f1:ba:ee:37:60:eb:fd:98:f6:3c:60: 0c:42:2d:71:f8:a5:d3:78:90:3f:dc:48:89:57:99:e9:ac:de: 31:13:1e:6d:e8:c5:0c:15:60:5d:c1:d8:c7:ac:0e:a4:99:57: f4:4c:be:32:ce:d5:94:12:d8:06:22:a0:41:09:51:3c:d2:d1: 97:0b:fc:b8:a5:ff:cd:69:09:bd:08:5b:ba:88:98:2c:1f:87: f3:45:9b:97 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBsswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjYx RTkxMzhDRkVCN0Q4OUFCOENGNTQyNzZFRDI5QjNEODA4RTBCQzAeFw0yNTEyMjEw MTQyMzFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDE4NkU3OEI0NUIzQzk1 QUYyOEY5OUZDOTVENkQ5NDk0MEEzNzU1MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1G8afLHZwPRYKYAwonQtuAhUOcATQKUcDPAvD1C7SdQ6uwGNw k8I0F1rMzhX2esiEmqyea6NpLEMod9mvoIRA67I5Bbm4usajnQKqAsAzJJwFt+sE epgOCvMtqcRZUjYh0sA5R+ITgVdgT6h7bE74JvgV+KqxIZHHY+gjZTkgThr/E2Zp v/YiRFe/F4y95NFRRWN641zNL7z6Mz+bEj4sgNk9ZIEAvHEE+Uw9AI/d7lqDCoQ0 zbY5Uo6/r2rESoYkF/22z4pG1skeErSVLlSjEDP6No7CSqjVrA7vcz/RHO1EtvWA +gLazwb4pM0PO7EnEOxSYba8lHr4ADJv/TchAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUGG54tFs8la8o+Z/JXW2UlAo3VRswHwYDVR0jBBgwFoAUth6ROM/rfYmrjPVC du0ps9gI4LwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 NS90aDZST01fcmZZbXJqUFZDZHUwcHM5Z0k0THcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3RoNlJPTV9yZlltcmpQVkNkdTBwczlnSTRMdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDUvdGg2Uk9NX3JmWW1y alBWQ2R1MHBzOWdJNEx3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAF5XPz680kFJObtuu1Xtqp6OgXhascIB+P9P18gRIWRBrPJahvrd9z3T0kTL 5yBXp7J2RgTrSdUdTrsJc6MF/ptLbz+rdzruXYsfAuFvwY/SOdWU2WwMIqbbi0qW Y31PMNs2CR+MoOjWQobLlTkhh0qdH7c86bLOJkYIy7j0gTDbc+UKG1JrdrD1XKb6 2QDeP/qLcnmKfF/4IiFnnIq6cJBMY2sWF3LUcenxuu43YOv9mPY8YAxCLXH4pdN4 kD/cSIlXmems3jETHm3oxQwVYF3B2MesDqSZV/RMvjLO1ZQS2AYioEEJUTzS0ZcL /Lil/81pCb0IW7qImCwfh/NFm5c= -----END CERTIFICATE-----Generated at Sun Dec 21 04:59:59 2025 by rpki-client