This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft File: aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft (raw, json) Hash identifier: yqTNYS8CP78YdD0xs5u4YsFopIsZB1nHhUdsW5yZNgY= Subject key identifier: AA:54:C7:33:A6:46:C8:4D:43:40:0E:F5:B3:B5:FE:12:DF:33:E3:CE Authority key identifier: 69:74:47:C3:97:D1:8C:9E:11:0B:24:E5:05:C1:14:6C:F1:3E:A8:71 Certificate issuer: /CN=697447C397D18C9E110B24E505C1146CF13EA871 Certificate serial: 0170 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft Manifest number: 016F Signing time: Sun 21 Dec 2025 14:38:23 +0000 Manifest this update: Sun 21 Dec 2025 14:38:23 +0000 Manifest next update: Sun 21 Dec 2025 20:38:23 +0000 Files and hashes: 1: BZUi2Cy-x-5xY8XLQ7H-sa3JIuI.roa (hash: r4NPIAsWOPVI4/TlBnHCHN0/vB3fsl6rRgv0C6aogiE=) 2: aXRHw5fRjJ4RCyTlBcEUbPE-qHE.crl (hash: 0MWgMHCm6w6Zl47bPZPTk6iKhF9k7BT25EXjLNLNJLg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 20:38:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=697447C397D18C9E110B24E505C1146CF13EA871 Validity Not Before: Dec 21 14:38:23 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=AA54C733A646C84D43400EF5B3B5FE12DF33E3CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:19:f4:45:c8:e1:99:dc:ac:f8:b0:ab:32:f1: ec:35:60:05:c1:82:85:2a:68:82:d4:ce:52:46:71: df:ff:e3:66:54:ed:49:c4:c0:a8:e2:b7:d5:49:a2: f6:aa:aa:ca:24:79:c9:3f:7c:88:59:e6:b3:37:b9: 95:fb:98:63:34:0b:d2:a0:8c:b0:19:73:71:3a:bf: a5:b8:31:77:d3:16:14:3c:4a:26:e2:ab:4b:00:d4: ef:ae:07:ee:49:34:7c:d3:28:4c:44:47:97:7a:24: e0:dc:e8:51:bf:1b:10:74:c1:05:45:09:11:73:9d: 40:cf:c3:82:09:97:11:12:9f:89:af:f1:9f:16:f1: 0b:6f:60:17:70:07:7f:af:9b:67:58:22:e4:13:26: 7d:42:a0:eb:48:55:9f:55:bc:0e:40:5e:aa:a0:80: 64:65:f7:c0:7e:88:55:98:8d:bd:13:90:59:54:10: 34:50:03:45:73:b3:4d:40:15:9c:28:aa:fc:88:a7: c5:e6:35:82:8f:fc:90:48:77:d7:16:14:70:16:9d: d7:38:43:89:0f:d7:4b:17:d5:25:53:9b:0a:6c:b2: bd:08:f4:49:2f:16:d4:24:63:2d:9c:db:1d:56:18: 8b:bf:92:fb:e5:da:38:c1:ac:5c:a1:67:f7:e0:2f: c8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:54:C7:33:A6:46:C8:4D:43:40:0E:F5:B3:B5:FE:12:DF:33:E3:CE X509v3 Authority Key Identifier: keyid:69:74:47:C3:97:D1:8C:9E:11:0B:24:E5:05:C1:14:6C:F1:3E:A8:71 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:df:1b:c8:71:1a:7b:ea:6e:ce:f1:4f:af:fb:a2:af:eb:30: 6d:80:2a:2d:6d:d5:79:af:a4:6b:79:cf:84:5b:9e:73:23:8f: 0a:3c:cf:f2:62:e9:43:d1:11:d9:13:70:10:0e:2e:f4:8f:77: 22:f9:7c:fa:0c:36:df:21:be:bf:a4:4c:a5:33:3c:40:de:ed: 0c:da:dd:ed:6f:2c:d0:17:ca:a3:a4:56:cf:c1:8b:80:68:93: 54:63:4e:cd:19:4b:f1:b3:27:89:f2:96:af:4e:18:be:3d:8e: 63:31:e1:3e:0c:86:25:4c:d4:8d:07:91:21:da:f7:2d:bc:71: 9c:e6:86:a6:ef:e2:85:17:8e:fa:8d:7a:df:01:27:f7:8b:7f: c8:4f:b3:74:8f:ea:56:5f:b4:88:1b:d3:ac:e4:cc:2a:36:0b: 64:7c:ea:75:c3:8c:d8:9e:1f:ca:67:b4:0f:46:a8:6f:80:59: 20:64:e7:07:b1:35:5d:34:fa:d5:32:d9:22:28:c4:f4:65:54: e3:99:d2:38:51:cc:16:2b:84:83:f3:4f:ca:c2:b3:3b:7b:06: ef:3e:85:4f:dd:b0:65:56:ae:c9:5d:cb:65:5e:da:37:c0:98: 28:93:dd:0b:7d:9b:75:16:c9:c6:e0:39:28:bd:7c:fe:2d:a9: cf:57:37:4a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk3 NDQ3QzM5N0QxOEM5RTExMEIyNEU1MDVDMTE0NkNGMTNFQTg3MTAeFw0yNTEyMjEx NDM4MjNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEFBNTRDNzMzQTY0NkM4 NEQ0MzQwMEVGNUIzQjVGRTEyREYzM0UzQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIGfRFyOGZ3Kz4sKsy8ew1YAXBgoUqaILUzlJGcd//42ZU7UnE wKjit9VJovaqqsokeck/fIhZ5rM3uZX7mGM0C9KgjLAZc3E6v6W4MXfTFhQ8Sibi q0sA1O+uB+5JNHzTKExER5d6JODc6FG/GxB0wQVFCRFznUDPw4IJlxESn4mv8Z8W 8QtvYBdwB3+vm2dYIuQTJn1CoOtIVZ9VvA5AXqqggGRl98B+iFWYjb0TkFlUEDRQ A0Vzs01AFZwoqvyIp8XmNYKP/JBId9cWFHAWndc4Q4kP10sX1SVTmwpssr0I9Ekv FtQkYy2c2x1WGIu/kvvl2jjBrFyhZ/fgL8h9AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUqlTHM6ZGyE1DQA71s7X+Et8z484wHwYDVR0jBBgwFoAUaXRHw5fRjJ4RCyTl BcEUbPE+qHEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjMx L2FYUkh3NWZSako0UkN5VGxCY0VVYlBFLXFIRS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvYVhSSHc1ZlJqSjRSQ3lUbEJjRVViUEUtcUhFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjMxL2FYUkh3NWZSako0UkN5 VGxCY0VVYlBFLXFIRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCN3xvIcRp76m7O8U+v+6Kv6zBtgCotbdV5r6Rrec+EW55zI48KPM/yYulD0RHZ E3AQDi70j3ci+Xz6DDbfIb6/pEylMzxA3u0M2t3tbyzQF8qjpFbPwYuAaJNUY07N GUvxsyeJ8pavThi+PY5jMeE+DIYlTNSNB5Eh2vctvHGc5oam7+KFF476jXrfASf3 i3/IT7N0j+pWX7SIG9Os5MwqNgtkfOp1w4zYnh/KZ7QPRqhvgFkgZOcHsTVdNPrV MtkiKMT0ZVTjmdI4UcwWK4SD80/KwrM7ewbvPoVP3bBlVq7JXctlXto3wJgok90L fZt1FsnG4DkovXz+LanPVzdK -----END CERTIFICATE-----Generated at Sun Dec 21 18:21:43 2025 by rpki-client