This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.mft File: zdnD6A790w6RIRaPwiqlCoVA3f8.mft (raw, json) Hash identifier: SieHiAdeVj4WxSpQp4NWeLmnxmde0+yxYWkgI10fHpk= Subject key identifier: 18:A8:D9:43:81:90:4A:50:7E:3C:78:24:58:45:20:3A:C2:07:87:05 Authority key identifier: CD:D9:C3:E8:0E:FD:D3:0E:91:21:16:8F:C2:2A:A5:0A:85:40:DD:FF Certificate issuer: /CN=CDD9C3E80EFDD30E9121168FC22AA50A8540DDFF Certificate serial: 2351 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zdnD6A790w6RIRaPwiqlCoVA3f8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.mft Manifest number: 2351 Signing time: Sun 21 Dec 2025 16:40:51 +0000 Manifest this update: Sun 21 Dec 2025 16:40:51 +0000 Manifest next update: Sun 21 Dec 2025 22:40:51 +0000 Files and hashes: 1: zdnD6A790w6RIRaPwiqlCoVA3f8.crl (hash: D+GLv/xhAjB7b3zAGr+TiEOzyYzICh4zHrueqp6fbCs=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zdnD6A790w6RIRaPwiqlCoVA3f8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9041 (0x2351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD9C3E80EFDD30E9121168FC22AA50A8540DDFF Validity Not Before: Dec 21 16:40:51 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=18A8D94381904A507E3C78245845203AC2078705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3b:f5:af:e8:66:b2:be:d7:f0:c6:14:cc:d7: fd:4e:b1:f2:54:14:a0:87:1b:2c:92:4c:b9:de:93: 50:7a:a8:f7:d1:44:7a:a7:a1:bb:b7:45:7d:21:d9: 3e:fd:26:27:28:49:20:35:54:95:0f:19:7f:d3:8a: 08:d8:45:31:f7:5f:9e:37:36:84:76:6a:5a:76:0a: 0e:d2:37:d8:2d:ad:57:7c:bc:33:78:48:a8:15:c5: c7:2e:9e:d9:e0:a0:1c:fc:44:2e:02:73:94:5d:0e: 0a:ae:96:33:2c:87:2b:fb:b0:ee:f3:b6:be:6e:3d: 96:55:00:64:ef:b8:e3:40:09:da:66:7f:c9:df:de: dc:10:42:9c:5e:73:dc:d0:93:0f:3f:e2:55:63:b9: 5b:35:40:62:31:38:1c:0d:b5:9a:c6:5a:b7:fe:ec: 18:99:c6:5b:1d:34:60:a6:b5:cc:33:a3:87:dd:d5: 6b:bf:b4:80:59:fa:7d:c5:00:1a:39:5c:f8:33:d5: 20:45:d4:c1:d8:6e:75:d9:43:5b:26:80:a9:81:be: 1d:e1:97:9e:fb:0e:9c:78:f7:6d:af:02:24:9f:26: 6a:3f:26:09:2b:90:2e:56:fd:5d:8a:69:37:30:6a: 33:ab:92:ee:2f:1b:23:a8:34:e3:b8:de:ff:ae:df: 0e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A8:D9:43:81:90:4A:50:7E:3C:78:24:58:45:20:3A:C2:07:87:05 X509v3 Authority Key Identifier: keyid:CD:D9:C3:E8:0E:FD:D3:0E:91:21:16:8F:C2:2A:A5:0A:85:40:DD:FF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zdnD6A790w6RIRaPwiqlCoVA3f8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:28:43:8d:ba:4f:ef:e6:06:1d:de:c7:ec:71:d4:c5:a5:51: 7a:16:88:e4:c4:93:09:32:da:a1:59:6f:2b:27:e6:69:b0:be: 9a:ed:19:eb:49:90:41:7b:e8:e5:6b:f1:f8:19:80:9c:41:1f: 6a:f4:47:23:c5:4a:d7:98:77:cf:5f:59:cf:68:d6:53:1f:a6: 98:b4:2b:f8:6a:e4:4d:4c:74:61:67:73:ca:6f:ad:95:6b:0e: d5:76:ec:6f:a8:23:23:10:28:83:d0:a7:d6:3f:62:17:aa:c2: 70:5f:6c:2c:39:76:85:b5:85:67:ee:06:8c:16:c7:7a:18:bf: eb:ab:8d:4c:18:fa:88:a3:96:63:38:94:1b:af:63:b4:b6:65: f9:a0:09:82:39:ff:75:0c:99:b7:5f:9b:d7:24:66:e3:84:f9: 96:d3:9c:2c:0c:5d:b8:bb:e8:37:c9:84:d9:02:a1:ba:cd:17: a6:f1:b9:43:a7:ce:94:52:1e:53:a7:e6:63:76:60:f3:80:a3: 5a:ea:24:50:f6:60:3a:c4:a4:0f:fc:1c:0f:2d:43:c0:a2:a3: bb:e4:7a:df:6b:ee:63:78:89:b7:39:29:1d:bb:f0:39:bd:c0: c5:f5:3e:2c:12:55:e7:1f:fe:4b:9f:a0:80:4a:94:4e:82:25: b4:33:64:2d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgICI1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0RE OUMzRTgwRUZERDMwRTkxMjExNjhGQzIyQUE1MEE4NTQwRERGRjAeFw0yNTEyMjEx NjQwNTFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDE4QThEOTQzODE5MDRB NTA3RTNDNzgyNDU4NDUyMDNBQzIwNzg3MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmO/Wv6GayvtfwxhTM1/1OsfJUFKCHGyySTLnek1B6qPfRRHqn obu3RX0h2T79JicoSSA1VJUPGX/TigjYRTH3X543NoR2alp2Cg7SN9gtrVd8vDN4 SKgVxccuntngoBz8RC4Cc5RdDgquljMshyv7sO7ztr5uPZZVAGTvuONACdpmf8nf 3twQQpxec9zQkw8/4lVjuVs1QGIxOBwNtZrGWrf+7BiZxlsdNGCmtcwzo4fd1Wu/ tIBZ+n3FABo5XPgz1SBF1MHYbnXZQ1smgKmBvh3hl577Dpx4922vAiSfJmo/Jgkr kC5W/V2KaTcwajOrku4vGyOoNOO43v+u3w61AgMBAAGjggIGMIICAjAdBgNVHQ4E FgQUGKjZQ4GQSlB+PHgkWEUgOsIHhwUwHwYDVR0jBBgwFoAUzdnD6A790w6RIRaP wiqlCoVA3f8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvOC96 ZG5ENkE3OTB3NlJJUmFQd2lxbENvVkEzZjguY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL3pkbkQ2QTc5MHc2UklSYVB3aXFsQ29WQTNmOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzgvemRuRDZBNzkwdzZSSVJhUHdp cWxDb1ZBM2Y4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAHco Q426T+/mBh3ex+xx1MWlUXoWiOTEkwky2qFZbysn5mmwvprtGetJkEF76OVr8fgZ gJxBH2r0RyPFSteYd89fWc9o1lMfppi0K/hq5E1MdGFnc8pvrZVrDtV27G+oIyMQ KIPQp9Y/YheqwnBfbCw5doW1hWfuBowWx3oYv+urjUwY+oijlmM4lBuvY7S2Zfmg CYI5/3UMmbdfm9ckZuOE+ZbTnCwMXbi76DfJhNkCobrNF6bxuUOnzpRSHlOn5mN2 YPOAo1rqJFD2YDrEpA/8HA8tQ8Cio7vket9r7mN4ibc5KR278Dm9wMX1PiwSVecf /kufoIBKlE6CJbQzZC0= -----END CERTIFICATE-----Generated at Sun Dec 21 18:20:59 2025 by rpki-client