This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft File: fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft (raw, json) Hash identifier: WRKEr2s8GCvj1h0viXBnogb8MMj07e7ptnGkup0EsFA= Subject key identifier: EC:D1:84:15:3C:40:20:3B:AB:D9:6D:98:CF:4D:A7:4F:5A:41:A1:0E Authority key identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 Certificate issuer: /CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2 Certificate serial: 2270 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft Manifest number: 225E Signing time: Sun 21 Dec 2025 16:43:15 +0000 Manifest this update: Sun 21 Dec 2025 16:43:15 +0000 Manifest next update: Sun 21 Dec 2025 22:43:15 +0000 Files and hashes: 1: 1D2UmyE5-gCb0damhvuEDH8YtAY.roa (hash: AMmfBM3qaK1itXqyZ4SgnT4JGnqlgrL/Gh5C0EIxR5E=) 2: CiBAH9JduuLsmuuCF8EVZqj7e_Y.roa (hash: bd7DjAkds7VcKmf/Fltkc6yJTfqF8NsglOW0Ic2RF7A=) 3: fkCukAEA4rl7Mc4AaQLzHn0dKvI.crl (hash: w75mJzoyJXbdB3WvLP0jmGlc/pmO/2MJcPjkqJjHPV0=) 4: i1vcqehnPWMsGkHyBt_JD5k4A6s.roa (hash: 7Vby9l7O2UfOHc1jCfza0GDpjmXF68GhT4vaR2Ve+lE=) 5: imU9bcBr7hgyeXFqfTZmnAeJlhU.roa (hash: PY4enp06hDmmPvbNRcj0KK93xTkmT6kRWJIbjK/rHGs=) 6: ql9qcTEflj32Qvouuf74e7XIVH0.roa (hash: J5GlJW+RyK4nchWDPsGIHuSYVc8CVW/wpZ54lJLJtnA=) 7: xhyJQ6fLIljnRE3vjXjVdtzD-60.roa (hash: pw3KaKc1CqxoWC2rbY7xD+pjw8LfXPIJcNclxnFFohI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8816 (0x2270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2 Validity Not Before: Dec 21 16:43:15 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=ECD184153C40203BABD96D98CF4DA74F5A41A10E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:46:8a:79:8e:44:18:25:d7:0b:96:bf:57:a5: 15:1a:7b:81:3e:c9:c4:7b:f4:40:ec:ed:3f:05:e5: 44:ec:31:55:56:2a:65:a2:aa:0b:5d:8b:8c:1f:b1: b1:78:46:3d:1c:4d:7f:02:bb:8a:f0:a5:25:f5:59: 22:91:d6:a4:03:2d:ac:54:d7:2d:9b:3f:a1:15:5f: be:f7:c0:1b:04:54:f4:e7:6a:e4:00:53:38:62:31: 2f:32:8c:b4:a6:cd:58:f3:aa:1d:97:9b:e5:2b:a4: bd:42:98:18:08:dc:a2:fd:d0:80:41:98:8c:0c:97: 0c:3e:7c:6c:1f:0d:c3:71:ad:89:37:b7:a9:01:93: 4a:33:57:5a:44:6d:9c:bd:cd:63:9f:7b:a1:65:09: 34:c1:93:8f:6e:67:6e:4d:07:4a:dc:d1:4a:40:b4: d7:e3:41:cc:00:a3:b3:e5:3e:e8:0f:e1:0a:74:02: d6:79:f9:00:37:ea:8a:33:1a:42:4d:a5:c4:a5:e1: 21:3e:e3:bf:5b:4d:89:84:f1:9e:63:8a:a6:80:e5: 9c:46:da:9c:18:75:98:07:de:d8:58:27:f3:34:d7: c3:c9:14:65:5d:3a:e7:30:f7:b6:fb:66:76:9c:86: 30:7c:9b:fc:ba:4f:9a:2f:ec:04:48:50:1f:36:d7: 44:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D1:84:15:3C:40:20:3B:AB:D9:6D:98:CF:4D:A7:4F:5A:41:A1:0E X509v3 Authority Key Identifier: keyid:7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:a1:67:08:11:8e:13:54:0c:53:f5:81:ed:1b:31:f1:2d:e8: b9:8c:07:08:c3:58:a3:32:ba:42:95:61:28:c8:f5:24:f1:d0: fa:ac:ac:c0:63:3d:65:d2:5b:97:fe:8d:a9:7e:1c:72:cd:b9: 08:46:c9:97:3e:87:30:05:c2:2a:39:2a:57:3d:9a:32:70:db: e7:e6:ae:12:f8:ce:ce:f8:5e:4b:06:d6:98:c7:45:c2:85:a6: 2d:3e:15:d9:1a:27:35:30:b5:31:19:a6:cc:8d:2c:d7:93:ab: 98:f7:de:d3:a4:c3:2a:d0:65:eb:d2:73:3b:6b:36:11:e0:fd: f0:18:a5:e2:70:06:0a:3a:51:77:61:df:51:54:13:75:c8:4f: 14:f0:fc:4e:02:39:bd:38:30:8a:a8:c7:48:18:69:ef:9d:ec: 16:a0:d2:74:34:aa:9e:ef:d5:d1:60:d2:e7:4a:86:83:43:43: 70:7e:c2:44:3c:23:6f:1a:71:b6:a0:ec:db:5f:fe:16:23:c7: 71:dd:7f:14:65:7c:59:e7:a6:b4:22:76:c6:c2:97:4b:48:0d: b5:af:d1:3d:3f:c5:d8:23:88:99:fa:36:b4:4d:ad:79:11:5b: ad:91:8c:fd:6c:c0:b8:00:dc:1e:77:33:af:06:aa:b0:4e:c5: 5a:61:81:83 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICInAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0U0 MEFFOTAwMTAwRTJCOTdCMzFDRTAwNjkwMkYzMUU3RDFEMkFGMjAeFw0yNTEyMjEx NjQzMTVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEVDRDE4NDE1M0M0MDIw M0JBQkQ5NkQ5OENGNERBNzRGNUE0MUExMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcRop5jkQYJdcLlr9XpRUae4E+ycR79EDs7T8F5UTsMVVWKmWi qgtdi4wfsbF4Rj0cTX8Cu4rwpSX1WSKR1qQDLaxU1y2bP6EVX773wBsEVPTnauQA UzhiMS8yjLSmzVjzqh2Xm+UrpL1CmBgI3KL90IBBmIwMlww+fGwfDcNxrYk3t6kB k0ozV1pEbZy9zWOfe6FlCTTBk49uZ25NB0rc0UpAtNfjQcwAo7PlPugP4Qp0AtZ5 +QA36oozGkJNpcSl4SE+479bTYmE8Z5jiqaA5ZxG2pwYdZgH3thYJ/M018PJFGVd Oucw97b7ZnachjB8m/y6T5ov7ARIUB8210TzAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU7NGEFTxAIDur2W2Yz02nT1pBoQ4wHwYDVR0jBBgwFoAUfkCukAEA4rl7Mc4A aQLzHn0dKvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3 L2ZrQ3VrQUVBNHJsN01jNEFhUUx6SG4wZEt2SS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZmtDdWtBRUE0cmw3TWM0QWFRTHpIbjBkS3ZJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3L2ZrQ3VrQUVBNHJsN01j NEFhUUx6SG4wZEt2SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCEoWcIEY4TVAxT9YHtGzHxLei5jAcIw1ijMrpClWEoyPUk8dD6rKzAYz1l0luX /o2pfhxyzbkIRsmXPocwBcIqOSpXPZoycNvn5q4S+M7O+F5LBtaYx0XChaYtPhXZ Gic1MLUxGabMjSzXk6uY997TpMMq0GXr0nM7azYR4P3wGKXicAYKOlF3Yd9RVBN1 yE8U8PxOAjm9ODCKqMdIGGnvnewWoNJ0NKqe79XRYNLnSoaDQ0NwfsJEPCNvGnG2 oOzbX/4WI8dx3X8UZXxZ56a0InbGwpdLSA21r9E9P8XYI4iZ+ja0Ta15EVutkYz9 bMC4ANwedzOvBqqwTsVaYYGD -----END CERTIFICATE-----Generated at Sun Dec 21 18:22:30 2025 by rpki-client