This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json) Hash identifier: us6PXIneP8/udO9JJalMmGfSiF3fCmvmJstNefv7XGg= Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Certificate serial: 39C7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft Manifest number: 39C7 Signing time: Thu 04 Dec 2025 20:50:24 +0000 Manifest this update: Thu 04 Dec 2025 20:50:24 +0000 Manifest next update: Fri 05 Dec 2025 02:50:24 +0000 Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: 0H+qa6ciaLApJ+gBkp4RE72D3io/lofRPaEBUCYxp1A=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14791 (0x39c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431 Validity Not Before: Dec 4 20:50:24 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93: 5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1: 21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08: 1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89: a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43: fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee: 37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f: 4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd: 50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1: ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09: 26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0: 63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc: e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4: 04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3: 0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc: 31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27: bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08: b1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12 X509v3 Authority Key Identifier: keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:9a:cd:c8:5b:02:44:82:19:05:2f:b5:f9:17:54:0e:79:10: 7e:dc:d6:09:59:60:24:14:9a:09:bd:f0:d8:b1:25:eb:c5:98: 86:b4:2b:b1:e3:55:1d:56:bd:24:7d:7c:95:90:1e:bc:bc:64: 40:2e:01:17:7a:75:32:55:2a:cd:ad:f1:8d:82:e4:9a:25:99: 98:e3:9e:d0:ba:b1:26:8b:93:7e:91:b0:10:c1:37:f1:fa:c9: c4:d2:a2:a7:8c:58:38:6b:9a:25:54:8c:b5:86:12:42:3a:e5: 10:16:85:68:dc:44:e7:c5:9d:79:b4:8b:c8:d3:3b:77:62:ec: bb:24:d8:24:9e:c2:36:d0:16:6a:a5:90:fb:33:d3:c8:65:99: 8a:8b:f2:7a:03:48:a3:f3:02:a0:3b:15:01:c1:9a:94:cf:05: 47:0d:93:49:58:88:50:0a:5f:c9:28:55:0e:41:c3:ae:80:7d: 0d:c0:87:c5:91:d8:74:99:f2:02:e4:b6:78:30:8f:52:5a:0c: b3:b3:83:b8:9f:fe:ca:94:50:7f:1a:1c:ad:69:1a:5f:aa:25: d0:95:8e:f8:2b:34:ba:0b:27:b7:5a:ec:47:de:ce:b6:a5:df: ba:e6:a1:83:84:06:28:31:87:9c:56:0a:fd:db:ce:52:ee:d7: 52:d9:c0:61 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICOccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUw NUEzN0U4OTBBQjVERUZEMzg3NUZDRDAzNTY2QTFDQUFDRTQzMTAeFw0yNTEyMDQy MDUwMjRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEFEOEYyOEZBREM5MDQx QTk0MzU5QkQ5Q0YxQkRCMjkwMjE5Q0VEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsjYgpenQj50xVBG9Dk1/XajMl9FqCVQITpo/Y0SGaRvlPUe7s S91ZO4lkCBvtNgqRqiiou/Bj/G0UiaI5b4vdc7GHHHrDgRHyQ/xMi1vIAkThBFcM bYYe7jeDPETqOcaGW1xeaymFj0xrYH3yfhXLuHKK6USJzVA9ioGMFBPyNPMQ+oHL 8e4ativyIdLmt6dFZ2LpCSbwcxQqhaL3DXkxxMea4GMB62G3nFlhgEMwb1FS3OkR yuC3Qjjp+7ZTeRVR5ARQ8Ra1ytX2gdvUQcEtww/kCF46TJOZ6Eo6s+/fvDHNVtgV zJcctB4tq3DoJ7uMGyH6hVOysMQ+NfcACLGzAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUrY8o+tyQQalDWb2c8b2ykCGc7RIwHwYDVR0jBBgwFoAUngWjfokKtd79OHX8 0DVmocqs5DEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjAz OC9uZ1dqZm9rS3RkNzlPSFg4MERWbW9jcXM1REUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL25nV2pmb2tLdGQ3OU9IWDgwRFZtb2NxczVERS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwMzgvbmdXamZva0t0ZDc5 T0hYODBEVm1vY3FzNURFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALaazchbAkSCGQUvtfkXVA55EH7c1glZYCQUmgm98NixJevFmIa0K7HjVR1W vSR9fJWQHry8ZEAuARd6dTJVKs2t8Y2C5JolmZjjntC6sSaLk36RsBDBN/H6ycTS oqeMWDhrmiVUjLWGEkI65RAWhWjcROfFnXm0i8jTO3di7Lsk2CSewjbQFmqlkPsz 08hlmYqL8noDSKPzAqA7FQHBmpTPBUcNk0lYiFAKX8koVQ5Bw66AfQ3Ah8WR2HSZ 8gLktngwj1JaDLOzg7if/sqUUH8aHK1pGl+qJdCVjvgrNLoLJ7da7Efezral37rm oYOEBigxh5xWCv3bzlLu11LZwGE= -----END CERTIFICATE-----Generated at Thu Dec 4 23:44:18 2025 by rpki-client