This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.mft File: aKDPmms080wyohTyM89mbhBEwAI.mft (raw, json) Hash identifier: YjnsqYzJdScKEkGK2WdveLntkzPRrL4qnTNPaMsUdCM= Subject key identifier: 0C:14:A9:B1:57:FC:93:E5:61:6B:7E:23:3A:B1:86:F1:91:D6:6B:9C Authority key identifier: 68:A0:CF:9A:6B:34:F3:4C:32:A2:14:F2:33:CF:66:6E:10:44:C0:02 Certificate issuer: /CN=68A0CF9A6B34F34C32A214F233CF666E1044C002 Certificate serial: 1924 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aKDPmms080wyohTyM89mbhBEwAI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.mft Manifest number: 1924 Signing time: Sun 21 Dec 2025 06:41:23 +0000 Manifest this update: Sun 21 Dec 2025 06:41:23 +0000 Manifest next update: Sun 21 Dec 2025 12:41:23 +0000 Files and hashes: 1: aKDPmms080wyohTyM89mbhBEwAI.crl (hash: GJl0n/uHP49NpxekwrzJL9kcZ+vzhte0iUQZHJFmjhc=) Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 6436 (0x1924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A0CF9A6B34F34C32A214F233CF666E1044C002 Validity Not Before: Dec 21 06:41:23 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=0C14A9B157FC93E5616B7E233AB186F191D66B9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:be:03:98:94:a5:bd:2b:9e:32:47:e9:84:41: 2d:25:14:18:42:3f:b9:3e:c8:8a:d5:03:3e:12:26: ef:78:d6:f5:dc:ee:12:42:a0:bd:3b:67:3b:ff:9c: de:9b:59:8e:dc:c8:d8:97:c5:73:93:39:3b:5b:8a: a1:fe:13:47:76:82:b8:01:d8:59:39:30:bd:a8:74: 9f:a1:08:18:1a:fc:95:2d:ce:3a:5c:b1:3f:14:34: e1:03:00:55:e1:26:a4:e3:d1:23:c9:63:21:2f:62: cf:c1:e7:51:56:18:76:a8:2a:b4:86:68:d7:0b:99: 64:71:63:3f:33:42:56:16:ad:70:4c:9a:c5:18:8c: af:9e:14:28:fb:d0:8d:5e:c9:42:30:7c:2f:d4:44: 31:b0:e8:65:2e:d0:44:ff:7c:7d:9b:16:93:16:16: 29:20:59:4b:f7:60:66:da:95:63:4b:97:1e:63:b8: 5c:3f:f2:8e:2e:26:73:6d:b1:2f:c5:12:d3:7c:c4: e4:30:0f:6c:61:dd:71:bd:9f:e1:9e:c2:d9:08:f6: d1:a2:67:dc:a7:89:b6:7b:f1:2e:45:87:d9:74:1d: 8b:96:0b:57:91:f7:46:01:e7:7a:ce:48:7a:50:5d: 2e:72:f1:7e:e3:ca:e7:ec:cb:92:6a:1d:56:0d:a3: 7b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:14:A9:B1:57:FC:93:E5:61:6B:7E:23:3A:B1:86:F1:91:D6:6B:9C X509v3 Authority Key Identifier: keyid:68:A0:CF:9A:6B:34:F3:4C:32:A2:14:F2:33:CF:66:6E:10:44:C0:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aKDPmms080wyohTyM89mbhBEwAI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f9:ae:f6:84:b0:79:80:43:a7:2d:ed:de:6a:77:73:b8:9a: 67:75:91:6e:bf:e0:19:e6:46:60:bf:df:58:f5:12:cc:2b:d0: 0f:3a:2a:c1:67:18:2a:21:74:12:f8:ee:d0:36:db:67:d7:a9: 8b:d5:20:81:1b:42:59:9e:08:7e:b7:d5:46:e6:53:e1:f3:05: 7e:5f:d6:6f:93:0a:45:ca:23:d9:13:63:c3:f1:c8:a1:cd:28: e6:72:e3:47:ea:95:ff:94:c1:55:ef:b1:c3:24:81:a1:9e:39: a2:ea:ac:71:87:a9:eb:a8:d5:1e:38:94:79:77:cd:c0:e9:84: 0c:cf:73:02:7c:ce:7b:a1:33:46:1a:ab:8a:cc:7a:3d:5b:bd: d6:ba:52:92:a2:77:d2:8d:29:0d:53:db:04:5d:8e:c0:80:4d: 80:ce:f2:02:06:4b:fb:6f:6a:db:08:15:b9:b5:57:48:cd:c5: 5c:58:5e:a8:6d:d3:90:3c:bc:2c:48:a8:2e:f8:fe:e6:c7:ef: b3:82:70:81:17:e5:36:4f:ed:13:6b:bd:32:0f:a8:71:15:2e: fe:ee:76:48:86:7d:73:60:12:08:78:22:88:dd:f8:76:dc:59: 08:10:e6:a7:e1:0b:94:c6:40:79:27:e5:e0:09:64:c3:c7:7c: 21:df:c1:14 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGSQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjhB MENGOUE2QjM0RjM0QzMyQTIxNEYyMzNDRjY2NkUxMDQ0QzAwMjAeFw0yNTEyMjEw NjQxMjNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDBDMTRBOUIxNTdGQzkz RTU2MTZCN0UyMzNBQjE4NkYxOTFENjZCOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDavgOYlKW9K54yR+mEQS0lFBhCP7k+yIrVAz4SJu941vXc7hJC oL07Zzv/nN6bWY7cyNiXxXOTOTtbiqH+E0d2grgB2Fk5ML2odJ+hCBga/JUtzjpc sT8UNOEDAFXhJqTj0SPJYyEvYs/B51FWGHaoKrSGaNcLmWRxYz8zQlYWrXBMmsUY jK+eFCj70I1eyUIwfC/URDGw6GUu0ET/fH2bFpMWFikgWUv3YGbalWNLlx5juFw/ 8o4uJnNtsS/FEtN8xOQwD2xh3XG9n+GewtkI9tGiZ9ynibZ78S5Fh9l0HYuWC1eR 90YB53rOSHpQXS5y8X7jyufsy5JqHVYNo3u7AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUDBSpsVf8k+Vha34jOrGG8ZHWa5wwHwYDVR0jBBgwFoAUaKDPmms080wyohTy M89mbhBEwAIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEw L2FLRFBtbXMwODB3eW9oVHlNODltYmhCRXdBSS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvYUtEUG1tczA4MHd5b2hUeU04OW1iaEJFd0FJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEwL2FLRFBtbXMwODB3eW9o VHlNODltYmhCRXdBSS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBq+a72hLB5gEOnLe3eandzuJpndZFuv+AZ5kZgv99Y9RLMK9APOirBZxgqIXQS +O7QNttn16mL1SCBG0JZngh+t9VG5lPh8wV+X9ZvkwpFyiPZE2PD8cihzSjmcuNH 6pX/lMFV77HDJIGhnjmi6qxxh6nrqNUeOJR5d83A6YQMz3MCfM57oTNGGquKzHo9 W73WulKSonfSjSkNU9sEXY7AgE2AzvICBkv7b2rbCBW5tVdIzcVcWF6obdOQPLws SKgu+P7mx++zgnCBF+U2T+0Ta70yD6hxFS7+7nZIhn1zYBIIeCKI3fh23FkIEOan 4QuUxkB5J+XgCWTDx3wh38EU -----END CERTIFICATE-----Generated at Sun Dec 21 13:06:49 2025 by rpki-client