This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft File: 0VDidxb20dIqOfSm3lvj6JNPgUI.mft (raw, json) Hash identifier: KLLAPq0vegzgttPihf5uDmOERJ1uXSQsZh2Aml67eY0= Subject key identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85 Authority key identifier: D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42 Certificate issuer: /CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142 Certificate serial: 05D7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft Manifest number: 05D7 Signing time: Sun 21 Dec 2025 16:38:20 +0000 Manifest this update: Sun 21 Dec 2025 16:38:20 +0000 Manifest next update: Sun 21 Dec 2025 22:38:20 +0000 Files and hashes: 1: 0VDidxb20dIqOfSm3lvj6JNPgUI.crl (hash: aWxzHSlwT4Yfh/WJ3qlzb4U+JVCpMHNloS3hL64i+4s=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142 Validity Not Before: Dec 21 16:38:20 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=1F5671BB92B87E4A947EBE45F2DCA129C0B59985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:b3:91:12:fd:4a:ca:29:b9:98:23:9c:5e: 07:53:17:99:67:58:79:46:79:a7:d6:2f:6f:ca:9d: 63:df:21:5e:81:85:13:cb:21:44:f7:d3:f1:f7:43: 53:06:9d:a4:e5:db:61:88:09:be:7c:18:72:57:db: e7:cc:c2:6c:27:81:6e:ff:1d:0a:9d:f3:14:ad:c5: 6b:d6:a7:e3:6e:cc:3d:28:d0:01:23:51:58:11:3d: f1:96:20:3f:8c:0f:e1:6a:63:c8:4f:46:a3:e4:72: 5a:57:1d:37:52:b4:b5:23:41:bd:97:a6:bd:80:97: d6:cf:76:0c:42:f8:66:fb:82:d1:d5:58:ac:e5:58: 0f:fd:34:ea:37:69:2b:69:af:7a:cc:00:8d:86:42: d5:20:a2:7f:13:33:4a:c0:79:0c:82:1a:30:3b:25: b8:78:87:f3:77:5d:ae:db:ae:b9:d1:a9:b4:47:e5: 0a:67:ec:ec:bf:ad:88:bf:f1:ed:e9:6d:0c:11:34: 5e:c0:03:3c:d9:97:c8:d8:49:e0:22:79:b8:da:8c: b8:69:fe:fa:d2:90:45:78:ee:32:1c:a3:46:d2:a0: 4c:6f:bf:b3:b4:ed:1c:9d:90:9b:07:d5:f5:f1:ac: 5c:a6:9e:1b:73:77:41:e2:f3:7c:7e:6c:48:38:a1: fc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85 X509v3 Authority Key Identifier: keyid:D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:6f:c3:68:b6:ce:6c:20:19:ab:e5:b7:cd:40:f0:a5:5c:d2: b9:22:1c:e7:ae:a7:5b:2f:f9:56:cd:f6:58:9a:af:69:d4:09: 00:3a:0e:f2:17:86:50:8e:36:ff:b2:99:79:a5:ce:06:08:84: 50:70:97:dc:fb:ab:c8:7a:8f:84:01:1b:da:f3:7f:64:0e:07: c3:0d:42:63:cf:52:e5:6a:25:1a:2a:e4:37:54:3e:62:37:2f: b4:bc:c4:a4:d5:cb:09:1e:ee:1b:cf:93:4d:2b:c5:80:be:80: cf:6e:8a:07:7a:22:cf:2d:ed:32:bf:4c:a2:9a:d8:6f:5f:01: 88:38:28:57:15:61:b5:10:18:41:e2:88:b6:16:12:1a:b2:c4: 94:fe:f5:5c:30:e3:69:1f:7c:bf:eb:f0:1d:4b:16:a7:7f:6b: 3c:97:a8:97:47:44:1e:cc:f9:69:64:16:99:cb:03:e0:2b:4b: 47:c0:80:71:5b:77:97:23:20:09:8a:c3:19:49:2b:21:eb:f9: c5:32:e8:65:4a:4e:19:76:af:63:b1:24:6b:90:08:09:18:f9: 93:9b:ac:11:2d:5f:3d:92:ee:ca:9e:5a:47:c3:59:4c:c7:dc: 57:06:eb:a0:5e:f5:c8:aa:4e:2e:87:d2:a2:47:65:5e:f8:26: f2:cb:a9:e5 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE1 MEUyNzcxNkY2RDFEMjJBMzlGNEE2REU1QkUzRTg5MzRGODE0MjAeFw0yNTEyMjEx NjM4MjBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDFGNTY3MUJCOTJCODdF NEE5NDdFQkU0NUYyRENBMTI5QzBCNTk5ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwkbOREv1Kyim5mCOcXgdTF5lnWHlGeafWL2/KnWPfIV6BhRPL IUT30/H3Q1MGnaTl22GICb58GHJX2+fMwmwngW7/HQqd8xStxWvWp+NuzD0o0AEj UVgRPfGWID+MD+FqY8hPRqPkclpXHTdStLUjQb2Xpr2Al9bPdgxC+Gb7gtHVWKzl WA/9NOo3aStpr3rMAI2GQtUgon8TM0rAeQyCGjA7Jbh4h/N3Xa7brrnRqbRH5Qpn 7Oy/rYi/8e3pbQwRNF7AAzzZl8jYSeAiebjajLhp/vrSkEV47jIco0bSoExvv7O0 7RydkJsH1fXxrFymnhtzd0Hi83x+bEg4ofyVAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUH1Zxu5K4fkqUfr5F8tyhKcC1mYUwHwYDVR0jBBgwFoAU0VDidxb20dIqOfSm 3lvj6JNPgUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM1 NS8wVkRpZHhiMjBkSXFPZlNtM2x2ajZKTlBnVUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBWRGlkeGIyMGRJcU9mU20zbHZqNkpOUGdVSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNTUvMFZEaWR4YjIwZElx T2ZTbTNsdmo2Sk5QZ1VJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAE9vw2i2zmwgGavlt81A8KVc0rkiHOeup1sv+VbN9liar2nUCQA6DvIXhlCO Nv+ymXmlzgYIhFBwl9z7q8h6j4QBG9rzf2QOB8MNQmPPUuVqJRoq5DdUPmI3L7S8 xKTVywke7hvPk00rxYC+gM9uigd6Is8t7TK/TKKa2G9fAYg4KFcVYbUQGEHiiLYW EhqyxJT+9Vww42kffL/r8B1LFqd/azyXqJdHRB7M+WlkFpnLA+ArS0fAgHFbd5cj IAmKwxlJKyHr+cUy6GVKThl2r2OxJGuQCAkY+ZObrBEtXz2S7sqeWkfDWUzH3FcG 66Be9ciqTi6H0qJHZV74JvLLqeU= -----END CERTIFICATE-----Generated at Sun Dec 21 18:22:30 2025 by rpki-client