This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft File: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft (raw, json) Hash identifier: YJ3DGRHv7YgeUhwtl6QFkzRC8rfY6Q4vMnBNFV//5TY= Subject key identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: BA37 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft Manifest number: 4486 Signing time: Thu 04 Dec 2025 22:17:24 +0000 Manifest this update: Thu 04 Dec 2025 22:17:24 +0000 Manifest next update: Fri 05 Dec 2025 04:17:24 +0000 Files and hashes: 1: 1pGP6piO9t8jbUERzDx-O4nhtLM.roa (hash: LgsHYyRchdYhJU6IjYfSwzPXfyeBNXFC/3oEFZaxr5E=) 2: 4wXgRujYTKfihSIvwuLg9rUOP1c.roa (hash: LPoTrqNW+wAwUy8l+OsMAuRG7zGEUq/hKav9nV2a/XY=) 3: 6wu7C6LJRgzw0YqBCypPrWvyqtk.roa (hash: Cj+QZPNg8QQ9fmyZfIpGADWCHBPEkN4OpbVPkdHjLNc=) 4: 9LZMbOJGzIWrwZIphlUZtLKBd_c.roa (hash: 2ZF77k5Fogyt6qSiuDajPcYoPcUD48QmqAkwhivvEH4=) 5: AvIoBSrNnMcpnZyXaLY_B_COOqM.roa (hash: tfuTWBj8mqfIFWkntrseawjOrEIi0ukcaV24gqQhJUE=) 6: CbpoG4qWvxPaIk4zwG0IFxGgiMQ.roa (hash: GK275Y4zZAt645X4pT5corRf86vmElvQF5iiqVQueJE=) 7: CqTScxUNPLxzOwnnl7ZuaQMP-nA.roa (hash: nDHo2G43aiICPxdwEOfoUqYAQrus72+fnIeVqaWOB7E=) 8: Lzd2UazZEZK4D-Vi_LM5PwLTTJw.roa (hash: RYhKyfjdDrdFS+vtO7CbGxUt9WkZpShCr4z/pVEDnNo=) 9: Nn77Zlxyx4i9_CkefD8UKCGVQc4.roa (hash: zLDZG3/3wYR4PoqRcChI0lwV0jZiI7/a58lTp/ceLUc=) 10: No7gvAe0HiqMlWPX1eORii_qHNg.roa (hash: fsHInzrmBhxkqHfoeln8hYzxASuDDoDSJJ6xYdeYcAY=) 11: OfvtK6UGD_bVKz8pj9fgFWb6zgM.roa (hash: 40esanXG/apJXlFMV+hzoWKw+5KjI8h/fUEMtsSTOfI=) 12: PZulO6TyppqWWuGzO34PYYz5Uo0.roa (hash: yxbl0kEI9vox9RiEQxUPGxMV7cLiY2SO7AtRn6kT6eA=) 13: QD7THVmiGOcCiQQPVumiDRR-d7I.roa (hash: BeWz4UxSBqt/CJdq0rqcX/Y2LZaQqSYTg9P3zaCSJy8=) 14: TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa (hash: BweYJDm2QhqDgPj1ChzAIBwgj2kCBYjRI7BD0uiJCsI=) 15: XsbnPodlNkVFgCzTwYVVRKP-GEQ.roa (hash: yacvbm4gKGYgc5wCZtcaOFLtzo1EC6TxZpfMKP9mzO4=) 16: Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa (hash: C1aXVx3626w3lC0qVGmhnn9Jj9Gy3ZQ5/AtReox93tU=) 17: aOPMPU9cWkfoHZDBlcovO6AHErk.roa (hash: Gj4ZMF+vITJd18z5vXRouav1Lj+HFlKmOA2ePXSMoEQ=) 18: ehQc69I9ilUfZymXTNaNPpLc2oU.roa (hash: OLuCLa5EpPk8nlv6AorGCrJkcDm/oyHdoi1AhGYhY5g=) 19: evHFKal_BLbftwTo5irhQaueD2U.roa (hash: 4JP/QyQZbAYdHqHseXBGNqOkAZdAPfM1lQ9PPjQdoAg=) 20: ffnzNkkLF4B5sEmRbbt-73LygMI.roa (hash: lfR0YWmJicUAI3V8hDlF+PVwpQclCZqiT/dKFEJOFIA=) 21: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl (hash: CE5K838PKeK7yTHs49wFpO1stxi1lPlKxFk319NmFuo=) 22: jgjN0IxKws8jDdNRAOYX1CdHt1k.roa (hash: T74oJ4uT1nguMzcsxBkKWMEPcQYXZBdgwGGLqKFQyh4=) 23: qe20gAZbuwVu_t2cnfTPZkvTqlA.roa (hash: rEzVYj2gFODsMAGdxG3xTH2suYUBY7xxuVYE2eGkAMI=) 24: vQGMLXKuPigq7LZo-Pr7Y9YiM-c.roa (hash: zTk7jcBriJqG2gtlVugmX1oERrjs/CQDeKUtk6NsPUk=) 25: ywCQM1l3K43_E-WiIpSnSbWqOvE.roa (hash: hgEPrLxxvDkD6XngS/o1Hzja3xdYFuhr99lC4QpzvhQ=) 26: zWbsOJJ1UwVI5pnA1_vMfQ9v7YA.roa (hash: BBz3fH6gauC81KGSU8veCkKr25fDnWrXmEydKqB3KzU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47671 (0xba37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 4 22:17:24 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=5ACA5AE6103E8498345BCBABD47A443AC093C25A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f0:f9:68:52:99:6a:aa:0f:1d:28:ef:d6:32: 00:4b:4b:5b:e0:b8:b8:b9:11:b3:01:db:61:3e:66: 5e:29:0d:9d:15:62:48:a5:9a:8d:56:e4:ae:2c:e8: d7:c7:ad:fb:37:56:a2:f7:b7:17:64:bc:75:c9:84: df:61:26:6d:a0:94:db:60:2d:da:09:36:45:28:f1: d9:ff:98:4e:b8:6d:f9:7d:32:b4:c8:d5:ca:98:92: 04:70:f3:f0:98:8f:66:02:98:6f:8d:f9:48:98:68: 17:4b:99:d3:16:04:49:11:32:f7:db:5b:8e:bd:6c: 8f:e9:20:b7:11:b0:c5:47:f9:69:82:e9:84:ed:8d: 46:2e:a3:90:74:d5:31:bc:f7:36:b9:26:77:39:bb: 0f:c7:e2:59:11:83:9b:c8:41:1d:4c:cc:1f:5a:13: 99:ba:9a:1b:70:9d:f1:5e:88:99:c5:73:23:eb:c3: 8f:0b:61:f0:8d:d7:54:84:5a:9f:93:5a:c3:22:fa: c0:7a:0c:ee:bb:c9:34:3d:82:18:5f:52:96:8f:e1: e9:1f:4e:be:5b:ad:e5:88:61:79:9c:22:91:1f:64: 62:5b:6f:0e:0b:c8:6a:9d:34:03:13:56:2b:5f:36: b6:75:4f:d2:79:06:ae:67:e0:7f:59:46:9c:66:2e: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:81:20:dc:2a:46:d8:20:cc:8d:b3:93:17:34:40:51:12:3c: ad:58:e6:42:31:29:da:93:ae:df:69:ff:1a:42:84:5c:16:4b: fb:6b:7f:58:c0:a1:ef:54:9b:94:1e:ab:74:66:af:42:7e:1a: a8:d9:35:1b:3b:92:3c:40:01:43:40:ac:8c:a0:78:50:f4:23: 0a:76:ea:2e:a2:4f:c6:a6:b3:86:88:1c:e3:28:31:1d:d5:b2: c1:d9:36:a5:5e:b6:5c:f3:0f:a6:da:f7:e8:89:3a:43:92:3b: 68:da:c1:56:a3:ee:9e:f0:a2:c6:9d:7d:a1:eb:5d:00:b9:3b: 1e:dc:10:5a:50:8c:41:47:db:d0:91:96:bf:36:c4:cf:08:d5: f0:51:bb:4b:9f:ca:85:67:92:3a:e6:0b:16:7a:cb:3b:be:cc: 85:b6:46:20:4f:7d:67:37:0d:b3:8a:6e:b4:82:6d:18:7b:43: d6:fc:97:28:bd:ae:6c:14:c7:fc:4f:0e:90:27:9f:e2:93:e6: c0:e8:f3:22:2a:f0:69:9e:1f:ac:68:c3:e3:68:df:ab:42:99: 43:b0:50:32:8a:3d:f4:20:9c:08:31:4e:2d:75:5c:66:97:60: a7:5b:3e:06:05:6b:68:33:6b:21:00:39:9e:22:5d:c8:b5:70: cd:91:1d:8e -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIDALo3MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjA0 MjIxNzI0WhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyg1QUNBNUFFNjEwM0U4 NDk4MzQ1QkNCQUJENDdBNDQzQUMwOTNDMjVBMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA2/D5aFKZaqoPHSjv1jIAS0tb4Li4uRGzAdthPmZeKQ2dFWJI pZqNVuSuLOjXx637N1ai97cXZLx1yYTfYSZtoJTbYC3aCTZFKPHZ/5hOuG35fTK0 yNXKmJIEcPPwmI9mAphvjflImGgXS5nTFgRJETL321uOvWyP6SC3EbDFR/lpgumE 7Y1GLqOQdNUxvPc2uSZ3ObsPx+JZEYObyEEdTMwfWhOZupobcJ3xXoiZxXMj68OP C2HwjddUhFqfk1rDIvrAegzuu8k0PYIYX1KWj+HpH06+W63liGF5nCKRH2RiW28O C8hqnTQDE1YrXza2dU/SeQauZ+B/WUacZi4iuwIDAQABo4ICDDCCAggwHQYDVR0O BBYEFFrKWuYQPoSYNFvLq9R6RDrAk8JaMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL2l1VFBlTFNkOExM QjBwMHk1SXFVT3VUMEdzdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQA2gSDcKkbYIMyNs5MXNEBREjytWOZCMSnak67faf8aQoRcFkv7a39YwKHv VJuUHqt0Zq9Cfhqo2TUbO5I8QAFDQKyMoHhQ9CMKduouok/GprOGiBzjKDEd1bLB 2TalXrZc8w+m2vfoiTpDkjto2sFWo+6e8KLGnX2h610AuTse3BBaUIxBR9vQkZa/ NsTPCNXwUbtLn8qFZ5I65gsWess7vsyFtkYgT31nNw2zim60gm0Ye0PW/Jcova5s FMf8Tw6QJ5/ik+bA6PMiKvBpnh+saMPjaN+rQplDsFAyij30IJwIMU4tdVxml2Cn Wz4GBWtoM2shADmeIl3ItXDNkR2O -----END CERTIFICATE-----Generated at Thu Dec 4 23:42:04 2025 by rpki-client