This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.mft File: TnhsicjML72c4lQNmb4SziD2uLM.mft (raw, json) Hash identifier: VoX3Ltxc5/339E6oMBNlfNr1pHSAkGlUH9q6C1i0p/E= Subject key identifier: 9F:63:9C:D9:A3:0D:BF:38:00:4F:0F:8F:1F:47:30:E9:EE:E7:DD:4D Authority key identifier: 4E:78:6C:89:C8:CC:2F:BD:9C:E2:54:0D:99:BE:12:CE:20:F6:B8:B3 Certificate issuer: /CN=4E786C89C8CC2FBD9CE2540D99BE12CE20F6B8B3 Certificate serial: 1B12 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TnhsicjML72c4lQNmb4SziD2uLM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.mft Manifest number: 1B12 Signing time: Sun 21 Dec 2025 04:38:28 +0000 Manifest this update: Sun 21 Dec 2025 04:38:28 +0000 Manifest next update: Sun 21 Dec 2025 10:38:28 +0000 Files and hashes: 1: TnhsicjML72c4lQNmb4SziD2uLM.crl (hash: b80eQOKU3uQUYceKvpnG0CkqnrHgrjL5cOAkewu4Jdo=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TnhsicjML72c4lQNmb4SziD2uLM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 10:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6930 (0x1b12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E786C89C8CC2FBD9CE2540D99BE12CE20F6B8B3 Validity Not Before: Dec 21 04:38:28 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=9F639CD9A30DBF38004F0F8F1F4730E9EEE7DD4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0a:d5:95:90:65:ec:e1:dd:9e:9c:49:5a:57: 6d:f6:b6:6a:3d:8d:6d:25:0e:d4:5d:f2:3e:77:48: 0f:c9:7d:ab:8a:44:55:7d:ae:fa:15:13:25:0b:42: 93:3f:09:bf:20:b6:4d:5f:be:ce:df:b8:0d:ac:55: 0a:07:5f:1b:cf:05:8b:c3:06:36:47:0b:9f:42:a7: 9f:b9:93:0b:e9:47:80:e8:59:b4:bf:72:85:f8:4a: a0:d9:50:87:7b:f1:77:ee:55:05:e8:ec:c5:74:b1: 9c:17:d4:bc:b1:74:4e:b5:a3:0a:10:f5:71:11:7b: 1b:43:d5:64:02:7b:d7:4e:59:ac:53:8c:ee:9e:c6: 93:27:16:5d:53:59:2b:f7:4e:6c:79:ce:72:3e:a7: 65:61:8b:75:41:12:f1:12:ab:51:8b:d9:b6:2a:d1: a4:9d:39:d2:7b:7d:11:e4:69:1a:4e:65:ce:0c:69: 57:b5:e5:da:d9:66:04:da:a2:4b:f3:ac:7d:3d:ee: 91:08:a6:31:16:7e:f6:97:d2:4b:28:6e:60:6d:8b: ab:89:73:f7:14:f2:64:4d:e2:5c:cb:cf:b2:e7:ca: 10:7a:e1:c7:1c:9f:66:76:9b:01:63:6f:56:80:af: ec:ab:e9:73:1d:11:d4:08:00:e4:96:27:06:a3:4e: 60:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:63:9C:D9:A3:0D:BF:38:00:4F:0F:8F:1F:47:30:E9:EE:E7:DD:4D X509v3 Authority Key Identifier: keyid:4E:78:6C:89:C8:CC:2F:BD:9C:E2:54:0D:99:BE:12:CE:20:F6:B8:B3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TnhsicjML72c4lQNmb4SziD2uLM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a2:56:1f:f1:f4:5a:3c:e3:a6:5f:22:c2:74:fc:de:e4:25: e7:4e:a5:18:36:c4:19:17:ff:bc:58:af:c7:fa:d8:67:9f:23: 6c:1d:0f:dd:ff:bb:ea:af:f7:3e:8c:65:d4:1d:57:62:0b:d5: a8:6e:2e:18:92:8c:27:7a:2d:4d:d4:3a:5c:ff:10:fd:20:eb: 78:bc:3e:1d:5e:03:91:a1:b1:f2:33:db:5a:00:01:87:4c:82: b8:45:64:17:a2:14:1e:50:4e:41:85:d9:c3:75:a0:81:0a:f5: 85:11:56:48:6f:90:7a:1d:b6:ac:47:b0:1c:88:ec:0b:89:a5: bc:c2:31:50:63:95:e5:d9:ac:cf:a2:70:39:a5:b3:7e:a6:0c: eb:02:48:16:a9:38:3c:f5:a7:8a:22:39:87:18:58:31:8b:ea: 93:23:80:d6:29:00:cb:3f:e4:1a:5f:7e:83:e3:1b:ca:46:d2: 48:fa:a1:2b:db:8c:5d:3b:60:9b:c9:ab:cb:7a:31:48:f0:15: 8a:53:48:8c:b7:75:4b:0f:ef:09:27:2f:e0:55:ad:83:01:0e: fc:53:a1:0e:62:0e:34:2e:35:47:09:9d:99:04:18:1f:61:bc: c8:92:16:eb:de:28:8d:5b:b3:d9:11:5c:d7:71:c8:f4:61:f2: 8e:92:0c:09 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGxIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3 ODZDODlDOENDMkZCRDlDRTI1NDBEOTlCRTEyQ0UyMEY2QjhCMzAeFw0yNTEyMjEw NDM4MjhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDlGNjM5Q0Q5QTMwREJG MzgwMDRGMEY4RjFGNDczMEU5RUVFN0RENEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtCtWVkGXs4d2enElaV232tmo9jW0lDtRd8j53SA/JfauKRFV9 rvoVEyULQpM/Cb8gtk1fvs7fuA2sVQoHXxvPBYvDBjZHC59Cp5+5kwvpR4DoWbS/ coX4SqDZUId78XfuVQXo7MV0sZwX1LyxdE61owoQ9XERextD1WQCe9dOWaxTjO6e xpMnFl1TWSv3Tmx5znI+p2Vhi3VBEvESq1GL2bYq0aSdOdJ7fRHkaRpOZc4MaVe1 5drZZgTaokvzrH097pEIpjEWfvaX0ksobmBti6uJc/cU8mRN4lzLz7LnyhB64ccc n2Z2mwFjb1aAr+yr6XMdEdQIAOSWJwajTmBrAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUn2Oc2aMNvzgATw+PH0cw6e7n3U0wHwYDVR0jBBgwFoAUTnhsicjML72c4lQN mb4SziD2uLMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQx L1RuaHNpY2pNTDcyYzRsUU5tYjRTemlEMnVMTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvVG5oc2ljak1MNzJjNGxRTm1iNFN6aUQydUxNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQxL1RuaHNpY2pNTDcyYzRs UU5tYjRTemlEMnVMTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA4olYf8fRaPOOmXyLCdPze5CXnTqUYNsQZF/+8WK/H+thnnyNsHQ/d/7vqr/c+ jGXUHVdiC9Wobi4Ykownei1N1Dpc/xD9IOt4vD4dXgORobHyM9taAAGHTIK4RWQX ohQeUE5BhdnDdaCBCvWFEVZIb5B6HbasR7AciOwLiaW8wjFQY5Xl2azPonA5pbN+ pgzrAkgWqTg89aeKIjmHGFgxi+qTI4DWKQDLP+QaX36D4xvKRtJI+qEr24xdO2Cb yavLejFI8BWKU0iMt3VLD+8JJy/gVa2DAQ78U6EOYg40LjVHCZ2ZBBgfYbzIkhbr 3iiNW7PZEVzXccj0YfKOkgwJ -----END CERTIFICATE-----Generated at Sun Dec 21 09:57:59 2025 by rpki-client