This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft File: YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft (raw, json) Hash identifier: /NqHOaTASGOze2WMOCPYsLnfVCEAsMNdsjH/3TBvA70= Subject key identifier: ED:23:7B:79:59:A2:7F:5B:DF:B8:CE:97:8E:E2:B5:50:34:03:80:39 Authority key identifier: 61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E Certificate issuer: /CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E Certificate serial: 1A15 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft Manifest number: 1A0C Signing time: Sun 21 Dec 2025 16:40:20 +0000 Manifest this update: Sun 21 Dec 2025 16:40:20 +0000 Manifest next update: Sun 21 Dec 2025 22:40:20 +0000 Files and hashes: 1: 8m5LDoIYVboQQ8Zo-R24y8EYK8g.roa (hash: VgfZuTc3GuRnUwpo+hKlUhJm/VEVDvf6NNlQk1gpH+c=) 2: YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl (hash: wMibiveVlI9MXIeKuy3kjybbcry+XLq2VQRz+cuLqbg=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6677 (0x1a15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E Validity Not Before: Dec 21 16:40:20 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=ED237B7959A27F5BDFB8CE978EE2B55034038039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6e:a0:22:5a:c4:f8:55:eb:26:40:78:97:1a: 25:53:eb:52:1f:70:45:64:cd:44:4d:14:15:83:e3: 8b:d3:48:e9:a9:e1:dd:2c:7b:d5:ae:6e:2f:9d:09: 4c:45:f1:7f:45:fd:89:62:a4:11:52:c5:cc:87:28: f6:50:9a:a8:67:87:90:c5:11:d7:05:b2:49:4f:cd: 70:52:63:4b:d3:88:b6:71:56:18:0d:eb:2b:ad:62: 49:00:2e:95:8d:99:37:16:bd:fb:71:ad:db:f4:0b: ca:80:ae:7e:15:0e:82:b5:0d:f9:ce:e2:3d:81:aa: a1:f4:10:f1:b9:2b:1c:cd:bc:a0:22:6a:65:2a:66: 82:86:09:85:2c:83:3d:a4:ce:57:49:c4:26:5e:25: dc:13:c9:08:6d:af:c8:6a:e5:41:55:57:1e:32:c2: 47:db:5b:1d:36:f4:8a:90:5f:86:b6:63:44:60:cd: 4f:5e:3a:00:6b:c3:8c:8d:98:5a:ae:5b:ad:82:6d: b2:99:32:3e:04:28:4a:d9:0c:3f:97:c2:0d:43:9e: 61:dc:c6:c0:71:82:5a:d7:b1:bc:6f:a1:46:08:b5: b1:c8:06:f9:1f:6c:48:32:d2:0b:d7:1b:96:39:62: 91:70:8b:00:10:2d:0e:e9:de:de:b1:e7:a0:b9:8b: 31:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:23:7B:79:59:A2:7F:5B:DF:B8:CE:97:8E:E2:B5:50:34:03:80:39 X509v3 Authority Key Identifier: keyid:61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:f4:80:86:54:9f:65:c4:f0:cc:b2:aa:88:07:bb:51:a1:b1: 1b:5b:a4:df:3f:26:f8:25:44:81:bf:1c:67:c7:a3:a7:d1:05: 8a:f4:a2:99:1b:ba:c0:fc:78:da:6d:e7:b9:f9:e4:a0:81:46: 67:d9:98:12:c1:73:95:d6:d3:a1:a2:64:84:1c:a6:2c:7c:8b: 2e:1c:2f:76:a6:40:be:c9:01:fa:6c:f0:86:35:5a:02:71:22: 77:2a:ca:81:03:b0:8b:7a:dc:31:24:6a:25:34:a8:e9:46:b5: d8:e8:9e:ba:8d:86:6a:9d:61:e7:81:b3:8f:4b:7a:08:25:3e: 77:4e:fe:04:ec:71:51:9d:47:2d:1f:15:b6:94:41:59:1d:77: 87:72:4b:68:83:69:6d:9f:d0:f7:a9:38:0f:53:7e:5f:31:89: e8:2d:fc:3d:81:c1:31:83:9a:45:67:6b:56:d2:cd:b2:b1:0e: 68:66:95:a8:37:c8:2d:4a:ef:25:66:ac:0d:7c:9a:ef:ae:9f: 1f:e2:8c:53:cb:d7:74:c2:ac:f0:c5:08:f4:cf:07:3e:ef:96: fa:34:a9:22:d5:2c:b4:46:ef:3a:21:c8:cc:af:d8:11:e3:9f: a7:40:15:1b:5f:bd:1f:11:ae:b5:6d:2f:33:92:9d:bc:7d:e0: 68:fa:d0:51 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 QkNFOEY3RjhBODNEQjkzOUFFMEY0MkZBMDU0MTNCMjg1MTgxRTAeFw0yNTEyMjEx NjQwMjBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEVEMjM3Qjc5NTlBMjdG NUJERkI4Q0U5NzhFRTJCNTUwMzQwMzgwMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSbqAiWsT4VesmQHiXGiVT61IfcEVkzURNFBWD44vTSOmp4d0s e9Wubi+dCUxF8X9F/YlipBFSxcyHKPZQmqhnh5DFEdcFsklPzXBSY0vTiLZxVhgN 6yutYkkALpWNmTcWvftxrdv0C8qArn4VDoK1DfnO4j2BqqH0EPG5KxzNvKAiamUq ZoKGCYUsgz2kzldJxCZeJdwTyQhtr8hq5UFVVx4ywkfbWx029IqQX4a2Y0RgzU9e OgBrw4yNmFquW62CbbKZMj4EKErZDD+Xwg1DnmHcxsBxglrXsbxvoUYItbHIBvkf bEgy0gvXG5Y5YpFwiwAQLQ7p3t6x56C5izFbAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU7SN7eVmif1vfuM6XjuK1UDQDgDkwHwYDVR0jBBgwFoAUYVvOj3+Kg9uTmuD0 L6BUE7KFGB4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODYx L1lWdk9qMy1LZzl1VG11RDBMNkJVRTdLRkdCNC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvWVZ2T2ozLUtnOXVUbXVEMEw2QlVFN0tGR0I0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODYxL1lWdk9qMy1LZzl1VG11 RDBMNkJVRTdLRkdCNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBS9ICGVJ9lxPDMsqqIB7tRobEbW6TfPyb4JUSBvxxnx6On0QWK9KKZG7rA/Hja bee5+eSggUZn2ZgSwXOV1tOhomSEHKYsfIsuHC92pkC+yQH6bPCGNVoCcSJ3KsqB A7CLetwxJGolNKjpRrXY6J66jYZqnWHngbOPS3oIJT53Tv4E7HFRnUctHxW2lEFZ HXeHcktog2ltn9D3qTgPU35fMYnoLfw9gcExg5pFZ2tW0s2ysQ5oZpWoN8gtSu8l ZqwNfJrvrp8f4oxTy9d0wqzwxQj0zwc+75b6NKki1Sy0Ru86IcjMr9gR45+nQBUb X70fEa61bS8zkp28feBo+tBR -----END CERTIFICATE-----Generated at Sun Dec 21 18:20:38 2025 by rpki-client