This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3351/17ShZ52D0ID8_qOSpk1CSkdVt4A.mft File: 17ShZ52D0ID8_qOSpk1CSkdVt4A.mft (raw, json) Hash identifier: mV8vo+UJ+YI4jX+WxFa7QN+q45qnQrWgviBdy+pgO+A= Subject key identifier: 78:47:71:EF:7C:83:CC:DF:49:9C:7D:42:EA:01:D3:B7:5E:CF:4C:DC Authority key identifier: D7:B4:A1:67:9D:83:D0:80:FC:FE:A3:92:A6:4D:42:4A:47:55:B7:80 Certificate issuer: /CN=D7B4A1679D83D080FCFEA392A64D424A4755B780 Certificate serial: 05EE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/17ShZ52D0ID8_qOSpk1CSkdVt4A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3351/17ShZ52D0ID8_qOSpk1CSkdVt4A.mft Manifest number: 05EE Signing time: Sun 21 Dec 2025 14:38:20 +0000 Manifest this update: Sun 21 Dec 2025 14:38:20 +0000 Manifest next update: Sun 21 Dec 2025 20:38:20 +0000 Files and hashes: 1: 17ShZ52D0ID8_qOSpk1CSkdVt4A.crl (hash: 61Y99RpL8dKeIdP2Qz7Gixs34llF1BmG3ueouF5/GE4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3351/17ShZ52D0ID8_qOSpk1CSkdVt4A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3351/17ShZ52D0ID8_qOSpk1CSkdVt4A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/17ShZ52D0ID8_qOSpk1CSkdVt4A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 20:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7B4A1679D83D080FCFEA392A64D424A4755B780 Validity Not Before: Dec 21 14:38:20 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=784771EF7C83CCDF499C7D42EA01D3B75ECF4CDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:0b:88:43:47:11:66:8a:5c:73:9b:37:4f:cb: a5:99:bd:12:6e:cd:51:bd:7e:6f:16:fd:6b:0f:0e: 19:cf:a2:f5:f0:3f:54:d4:4d:e8:9b:1f:74:f9:19: f6:02:9d:39:d8:20:d0:58:dd:2e:e5:23:63:4c:d2: 25:b5:d4:3b:9f:f7:ff:bf:08:2e:3b:5f:1c:e8:08: b6:70:35:5a:25:8b:76:be:20:be:a0:c1:1e:7c:7a: 26:9c:bf:9f:5c:25:3e:03:18:c0:fb:ae:1b:34:c1: 0c:ff:80:24:ca:d4:2f:96:a7:47:7d:c2:26:68:b8: e3:c7:0a:2b:6c:91:52:36:26:a9:e8:c7:af:ec:4a: a1:26:c3:28:ea:b1:26:17:8d:02:62:ae:7f:88:6e: d3:d8:ee:77:52:27:72:c3:64:05:b2:fa:5e:ce:20: aa:c4:9b:e8:79:c2:a3:28:1e:c5:54:09:ce:fa:bf: 67:5b:86:b5:eb:51:34:86:54:8d:12:db:0c:81:ec: 4c:68:43:b6:a4:c7:02:a6:10:a9:0b:b8:8c:72:db: f7:b6:e5:98:45:27:31:23:22:ef:53:d0:12:15:26: 9d:00:a6:19:03:fe:c0:a4:dd:51:66:b7:99:93:96: 3a:df:bd:8c:06:61:ae:b8:cd:b6:a9:26:8e:9c:c1: 06:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:47:71:EF:7C:83:CC:DF:49:9C:7D:42:EA:01:D3:B7:5E:CF:4C:DC X509v3 Authority Key Identifier: keyid:D7:B4:A1:67:9D:83:D0:80:FC:FE:A3:92:A6:4D:42:4A:47:55:B7:80 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3351/17ShZ52D0ID8_qOSpk1CSkdVt4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/17ShZ52D0ID8_qOSpk1CSkdVt4A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3351/17ShZ52D0ID8_qOSpk1CSkdVt4A.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:da:b6:a9:a4:aa:74:e1:b6:81:6d:64:b9:9d:6c:6b:9b:e8: 9c:5e:c4:5b:bc:9f:a2:ec:b9:51:df:5c:46:50:fa:57:0b:b8: af:c6:9f:80:f5:8c:73:fc:73:9e:ff:88:64:85:48:51:d5:4c: 6e:4a:5d:65:54:0e:92:6c:85:87:8c:bd:f3:ff:73:e9:5f:fc: 38:23:a5:c0:87:91:9e:32:bd:bc:e4:ee:32:38:6d:b8:75:f7: 60:89:4a:f5:f6:8b:ca:b8:3b:07:9c:72:80:01:73:bc:78:3c: c5:ca:69:0b:7f:5b:e5:c1:79:37:09:81:98:1c:79:9c:35:ad: 02:08:e8:bb:cf:5c:ed:21:d4:85:99:8c:8d:35:b5:07:33:80: 2a:c3:63:d3:77:2c:a3:28:b8:09:96:5d:14:02:28:8b:f5:a9: 20:8b:e3:3e:e1:15:59:e0:60:d8:bb:af:0a:5b:b4:47:90:08: c8:55:3c:11:d0:fc:96:12:11:c9:93:13:93:e5:48:e6:c1:61: 49:7f:f0:5f:a3:d7:bf:f0:b7:e6:f6:d0:b2:68:7e:39:bb:21: 0b:51:94:6f:a9:1d:4b:70:bb:d6:e4:91:d1:22:06:da:30:0e: d8:bd:a5:f7:3b:ed:ed:1c:a6:1e:c4:71:cc:26:50:de:c5:73: a2:5f:36:8b -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDdC NEExNjc5RDgzRDA4MEZDRkVBMzkyQTY0RDQyNEE0NzU1Qjc4MDAeFw0yNTEyMjEx NDM4MjBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDc4NDc3MUVGN0M4M0ND REY0OTlDN0Q0MkVBMDFEM0I3NUVDRjRDREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTC4hDRxFmilxzmzdPy6WZvRJuzVG9fm8W/WsPDhnPovXwP1TU TeibH3T5GfYCnTnYINBY3S7lI2NM0iW11Duf9/+/CC47XxzoCLZwNVoli3a+IL6g wR58eiacv59cJT4DGMD7rhs0wQz/gCTK1C+Wp0d9wiZouOPHCitskVI2Jqnox6/s SqEmwyjqsSYXjQJirn+IbtPY7ndSJ3LDZAWy+l7OIKrEm+h5wqMoHsVUCc76v2db hrXrUTSGVI0S2wyB7ExoQ7akxwKmEKkLuIxy2/e25ZhFJzEjIu9T0BIVJp0AphkD /sCk3VFmt5mTljrfvYwGYa64zbapJo6cwQavAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUeEdx73yDzN9JnH1C6gHTt17PTNwwHwYDVR0jBBgwFoAU17ShZ52D0ID8/qOS pk1CSkdVt4AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 MS8xN1NoWjUyRDBJRDhfcU9TcGsxQ1NrZFZ0NEEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzE3U2haNTJEMElEOF9xT1NwazFDU2tkVnQ0QS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTEvMTdTaFo1MkQwSUQ4 X3FPU3BrMUNTa2RWdDRBLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAnatqmkqnThtoFtZLmdbGub6JxexFu8n6LsuVHfXEZQ+lcLuK/Gn4D1jHP8 c57/iGSFSFHVTG5KXWVUDpJshYeMvfP/c+lf/DgjpcCHkZ4yvbzk7jI4bbh192CJ SvX2i8q4OweccoABc7x4PMXKaQt/W+XBeTcJgZgceZw1rQII6LvPXO0h1IWZjI01 tQczgCrDY9N3LKMouAmWXRQCKIv1qSCL4z7hFVngYNi7rwpbtEeQCMhVPBHQ/JYS EcmTE5PlSObBYUl/8F+j17/wt+b20LJofjm7IQtRlG+pHUtwu9bkkdEiBtowDti9 pfc77e0cph7EccwmUN7Fc6JfNos= -----END CERTIFICATE-----Generated at Sun Dec 21 18:18:56 2025 by rpki-client