This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft File: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft (raw, json) Hash identifier: RvxuIg1Fi0qauY5Sd4D+hQOCheQNo7LiT3vugaQHJBE= Subject key identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B Authority key identifier: F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A Certificate issuer: /CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Certificate serial: 156F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft Manifest number: 1565 Signing time: Thu 04 Dec 2025 20:48:26 +0000 Manifest this update: Thu 04 Dec 2025 20:48:26 +0000 Manifest next update: Fri 05 Dec 2025 02:48:26 +0000 Files and hashes: 1: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl (hash: pAXXPDS62uGa0fp8emVb8zbNuCNlaF9Gw+Al8yB7eEQ=) 2: _K85EDzCVCt1pVVYSb2NSlH5sJs.roa (hash: eSDB40TI669OfppSy2WcGhDz0KocFI5RU5LpLB+t1Ng=) 3: uG9LWLpK67qpxjgXRPMAAm6hR9Y.roa (hash: URTxuyS38BOkzq2ChrFnplSe6g+QKSVcXtGhOX6pla8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5487 (0x156f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A Validity Not Before: Dec 4 20:48:26 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=772D59F81B388CADC0607D6B8A284603EF6E296B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:a6:65:9c:e4:3f:1a:f8:4c:65:02:42:d8: 44:71:a7:a6:c2:64:48:59:ca:83:76:f1:7b:1f:f6: e2:c1:10:9d:c4:35:8f:2c:44:94:72:e2:03:e4:6a: d5:04:79:5a:59:d1:4b:3e:8e:96:65:7c:0a:2b:64: 95:41:b9:10:fd:30:c9:29:d7:48:a2:64:1c:9d:3c: 57:5b:69:17:43:d8:fc:a5:4b:1e:c6:18:7f:c5:d9: ce:10:82:cb:d7:4e:ca:b7:de:14:c4:93:7d:ae:b4: 84:02:05:92:7d:9c:05:3d:14:ce:a0:ac:c4:e9:63: ef:0f:67:ea:24:93:25:4a:9c:b0:d6:3b:5c:ea:4c: 3d:09:d0:4b:d7:83:cd:25:46:d6:a3:0a:19:30:9a: 7c:91:70:5b:78:41:3a:fc:65:bf:93:07:10:fe:9d: 95:db:39:84:d9:86:97:e2:e6:b0:0b:be:87:5a:95: 62:74:4f:ae:c9:ee:de:82:4a:26:81:5a:ca:b5:1f: af:7f:fc:02:4e:8c:2e:5f:c7:10:4e:9b:70:15:f4: 10:d1:46:d9:1e:bd:ab:19:07:53:79:d6:11:d3:53: 0a:87:e6:03:94:43:c5:46:b3:22:5d:62:d2:6e:b0: 6b:c3:91:6b:96:5a:e8:ec:bc:c1:46:9b:b8:ab:13: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B X509v3 Authority Key Identifier: keyid:F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:40:0e:79:ea:4c:d6:aa:9e:2f:4b:0f:aa:c4:b7:c8:df:b9: 15:94:28:e9:2f:d5:86:9e:61:e6:80:c7:c2:b9:5a:f7:44:23: 90:74:73:b0:b7:fd:6b:74:de:02:73:a3:cf:41:66:55:9f:42: 62:ac:d9:8a:8e:51:74:3b:8f:a5:7b:66:04:11:a6:01:fd:e9: 9e:cb:ae:ab:f1:65:26:ea:30:f9:03:e8:53:1f:da:29:51:7a: 5b:a4:3e:ff:16:a8:ed:9d:02:99:05:fe:eb:15:40:56:92:c2: 75:1b:3d:d5:ed:87:28:43:87:dd:e5:6f:5f:7d:bc:f2:38:d2: 17:4a:4a:6a:3f:01:c4:1f:7a:c6:a7:9c:86:bc:53:79:7b:7c: 50:e1:c6:17:d2:7f:cd:9d:67:28:4a:8f:8b:65:2f:c3:23:d5: 44:50:8c:b7:e2:0c:d8:e4:a7:02:3a:86:9b:f8:af:57:8a:2e: 74:66:4c:fe:aa:2c:32:05:b9:a9:be:1b:54:64:d8:d2:41:49: 4b:a1:4b:5f:1a:19:2e:e4:27:51:d4:5b:d0:f7:c0:65:8f:d2: 16:60:b9:8a:ce:72:d2:03:d4:2c:71:f9:22:66:f3:64:41:d2: 08:9a:1f:eb:b4:8e:18:03:33:d5:cb:29:9b:38:fd:a8:6d:a2: a0:b5:8a:53 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICFW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjU1 NkMzQUFBMTAwMUY4OURDMEZDRUQ1NDM2QTIxQkI0RkYzNUQ3QTAeFw0yNTEyMDQy MDQ4MjZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDc3MkQ1OUY4MUIzODhD QURDMDYwN0Q2QjhBMjg0NjAzRUY2RTI5NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTs6ZlnOQ/GvhMZQJC2ERxp6bCZEhZyoN28Xsf9uLBEJ3ENY8s RJRy4gPkatUEeVpZ0Us+jpZlfAorZJVBuRD9MMkp10iiZBydPFdbaRdD2PylSx7G GH/F2c4QgsvXTsq33hTEk32utIQCBZJ9nAU9FM6grMTpY+8PZ+okkyVKnLDWO1zq TD0J0EvXg80lRtajChkwmnyRcFt4QTr8Zb+TBxD+nZXbOYTZhpfi5rALvodalWJ0 T67J7t6CSiaBWsq1H69//AJOjC5fxxBOm3AV9BDRRtkevasZB1N51hHTUwqH5gOU Q8VGsyJdYtJusGvDkWuWWujsvMFGm7irExy9AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUdy1Z+Bs4jK3AYH1riihGA+9uKWswHwYDVR0jBBgwFoAU9VbDqqEAH4ncD87V Q2ohu0/zXXowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5 LzlWYkRxcUVBSDRuY0Q4N1ZRMm9odTBfelhYby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOVZiRHFxRUFING5jRDg3VlEyb2h1MF96WFhvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTE5LzlWYkRxcUVBSDRuY0Q4 N1ZRMm9odTBfelhYby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCcQA556kzWqp4vSw+qxLfI37kVlCjpL9WGnmHmgMfCuVr3RCOQdHOwt/1rdN4C c6PPQWZVn0JirNmKjlF0O4+le2YEEaYB/emey66r8WUm6jD5A+hTH9opUXpbpD7/ FqjtnQKZBf7rFUBWksJ1Gz3V7YcoQ4fd5W9ffbzyONIXSkpqPwHEH3rGp5yGvFN5 e3xQ4cYX0n/NnWcoSo+LZS/DI9VEUIy34gzY5KcCOoab+K9Xii50Zkz+qiwyBbmp vhtUZNjSQUlLoUtfGhku5CdR1FvQ98Blj9IWYLmKznLSA9QscfkiZvNkQdIImh/r tI4YAzPVyymbOP2obaKgtYpT -----END CERTIFICATE-----Generated at Thu Dec 4 23:42:44 2025 by rpki-client