This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.mft File: iIhNTUp18X8I3UTLqVkv5w9TnZc.mft (raw, json) Hash identifier: FgSXkWOcyxLFzCKei2W6kHVSGnzXLwYwBp6kJKrL3uM= Subject key identifier: 74:F5:E0:C1:04:8A:58:81:D5:98:C5:7D:13:66:6F:F3:E9:76:96:FC Authority key identifier: 88:88:4D:4D:4A:75:F1:7F:08:DD:44:CB:A9:59:2F:E7:0F:53:9D:97 Certificate issuer: /CN=88884D4D4A75F17F08DD44CBA9592FE70F539D97 Certificate serial: 224E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.mft Manifest number: 2209 Signing time: Thu 04 Dec 2025 20:48:06 +0000 Manifest this update: Thu 04 Dec 2025 20:48:06 +0000 Manifest next update: Fri 05 Dec 2025 02:48:06 +0000 Files and hashes: 1: 3utxk1tgtYo6xDcnTDWIBqyNtow.roa (hash: Z6TXaegC/+4UdxNY6jIZkPqsj2iHG/OlQPrAafdFzcY=) 2: AV8N1GSSpFOInK-vkTiyj7vuY-Y.roa (hash: ZXm6JgfrjytbAA1sPRbLsbQRQgtNuxMK24C9YtSPWU8=) 3: B9wpTbA-_zQioAzF3OhotCIRADI.roa (hash: lMuei/nxd5nqJzzIDT85SCWEZvI0ijntN+PRQoRVMSI=) 4: Bjyw3g_GAKeU5e-RAW3jpW0yAvE.roa (hash: w/bVfvKpOise4P3CnXwb8ievAoA+Bf/DQeB+6d+le6M=) 5: Dwfo0-5nzAYJ6SwlhTAcaaz9Ij8.roa (hash: TGrgrYouVeq8HF4De+pXJxFQrXzE/HT43TDwLK4Fhnc=) 6: EWen10QMTuzZKfqQAEDh3mVAEEA.roa (hash: rSSyJ5p/uRi3M8aaCyO5xNuqvlrUSuiO7pWU9iALh4E=) 7: MqzIh0336AnO_QjJlhnz1vftDaQ.roa (hash: dNYWvlMTjkYkhFJMfAzZfUDLeoiUgKHhZgYOwITR49M=) 8: OJDPVrD0kTHjtouU3jg8J2nl0AM.roa (hash: QYDKk9uHN0XOV8GNtIkk3BDHxD9WpzbXFR9j9NCyc3M=) 9: W98XK345iXi_GQGlLeABKmQzilI.roa (hash: dyYkjnImtgdbOR4iunRxMTD0LY24wk4FCvjY4hLxfRA=) 10: YDbw95rK3pvrUaB1x36hsJsbZq0.roa (hash: QSECOGwFV6vnZXMom/Y2j4FSy4S5rL68ONpDtpdUoPE=) 11: bW5rMLXduH5OFdlVls1j6F0L0EY.roa (hash: cJLjUox3CWvg1tkVaA91G5br3K2WLeJmAK8y8DFXBn8=) 12: f2PyQIUt5zhPg4_8WbgZOHsPaqE.roa (hash: U5hkuIa2+k+jjEpyNr5st4B7srXN5TgKvIY2LtGqrhQ=) 13: iIhNTUp18X8I3UTLqVkv5w9TnZc.crl (hash: tCBZxyLWjPXh28/QgbWU1B4NZV/Tia6p0MQL6DDJbyI=) 14: kGqizEN9BiXKNNQ9yNJogseQMI4.roa (hash: Jj79TOIXBeTybk08mL3v4LtSKPltU7N+KVAbvAEyKJY=) 15: vGZSP83xbV2QuiiX5YaG898m5uc.roa (hash: QzyaM/v1ikXDskMlPAIyxGEjo9U+aM5qYq/fxSfiZPw=) 16: wzc_WUpsJHBOC5bXT23rsnwLlEA.roa (hash: oUk+TLMKhpxuLg7x60Ebk+2ZtJtK58RY+A4bPMMhRb8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8782 (0x224e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88884D4D4A75F17F08DD44CBA9592FE70F539D97 Validity Not Before: Dec 4 20:48:06 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=74F5E0C1048A5881D598C57D13666FF3E97696FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:eb:32:99:d6:89:fc:17:87:10:91:62:9d:93: 13:df:f3:4a:1a:d6:2a:11:5d:bc:89:f6:f1:76:45: 46:6f:ea:e7:36:37:dd:df:2f:d2:80:4b:b4:4a:e9: 08:55:03:97:db:d6:db:2b:11:8d:dd:f3:de:ef:44: 4e:7a:b7:b9:ad:30:ee:04:fa:44:5a:ae:43:f7:28: fa:7d:14:8f:de:e7:50:bc:24:31:fc:53:4a:21:00: ab:ed:61:8a:aa:12:9e:39:18:17:0e:a7:27:8a:a7: 3a:1a:87:d9:32:bf:02:11:06:fb:95:03:88:3c:04: 22:9e:58:89:e0:84:6c:56:9e:26:a2:28:0d:fd:64: 21:d1:5f:a4:d8:17:82:af:90:96:fd:64:09:13:7d: 04:5b:f3:72:f8:c8:b8:13:33:21:7c:7d:74:85:82: 47:21:79:a0:dc:d4:7a:5d:66:a8:51:b7:cf:fd:2a: b4:59:17:9b:59:bf:88:ce:64:5b:44:5b:57:36:71: f9:cd:89:d9:2b:e3:1a:00:80:47:fb:ae:cf:e2:94: 1c:e3:35:45:45:ac:c1:ff:61:8c:b5:fd:ae:ca:bd: be:01:1c:1e:1f:30:76:2b:41:35:42:a6:52:7b:b8: fb:54:64:72:ee:3f:c2:a8:e4:bc:dc:33:73:d5:c3: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F5:E0:C1:04:8A:58:81:D5:98:C5:7D:13:66:6F:F3:E9:76:96:FC X509v3 Authority Key Identifier: keyid:88:88:4D:4D:4A:75:F1:7F:08:DD:44:CB:A9:59:2F:E7:0F:53:9D:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:e3:3c:6a:d4:3c:fd:68:ae:dd:04:44:f7:d1:c2:96:d0:c5: bd:e6:80:93:03:4e:41:fb:be:a9:9c:c5:08:b3:7e:bd:79:50: 4c:cc:9c:88:72:21:4a:57:8c:b7:b3:53:d6:be:b5:b3:d6:b5: a6:d3:82:59:2d:a7:45:dd:50:bd:6b:56:65:3e:63:e6:a4:fc: 95:dc:96:73:75:94:23:68:71:67:4d:d8:f8:d9:7a:69:73:2d: 2e:a6:a9:d1:00:39:ef:57:87:13:31:98:de:6d:65:25:eb:c5: 5a:ff:42:fe:19:fb:c7:19:c6:77:e1:24:e9:9d:00:8a:9c:68: 5b:60:c0:24:de:1c:0b:ff:a9:57:95:80:f2:22:81:c6:e8:b7: 90:33:b1:4c:a2:50:76:48:b7:25:3e:98:bf:ee:78:1b:61:4a: fd:5b:c7:2f:8d:b1:5e:60:b9:bb:1f:20:32:07:da:1a:79:83: bf:e0:4b:d2:6c:c2:2d:89:7a:f9:47:01:ab:3b:61:66:8a:30: f8:84:fd:75:67:3b:dd:56:57:b9:c3:77:38:1e:7d:53:25:49: 7a:c1:64:68:cc:0b:29:16:f9:58:c2:ec:24:8d:b8:0e:99:eb: 5c:91:0a:68:7b:87:c7:86:73:79:d6:ec:d3:38:7f:e3:92:71: 42:76:46:18 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIk4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODg4 ODRENEQ0QTc1RjE3RjA4REQ0NENCQTk1OTJGRTcwRjUzOUQ5NzAeFw0yNTEyMDQy MDQ4MDZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDc0RjVFMEMxMDQ4QTU4 ODFENTk4QzU3RDEzNjY2RkYzRTk3Njk2RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx6zKZ1on8F4cQkWKdkxPf80oa1ioRXbyJ9vF2RUZv6uc2N93f L9KAS7RK6QhVA5fb1tsrEY3d897vRE56t7mtMO4E+kRarkP3KPp9FI/e51C8JDH8 U0ohAKvtYYqqEp45GBcOpyeKpzoah9kyvwIRBvuVA4g8BCKeWInghGxWniaiKA39 ZCHRX6TYF4KvkJb9ZAkTfQRb83L4yLgTMyF8fXSFgkcheaDc1HpdZqhRt8/9KrRZ F5tZv4jOZFtEW1c2cfnNidkr4xoAgEf7rs/ilBzjNUVFrMH/YYy1/a7Kvb4BHB4f MHYrQTVCplJ7uPtUZHLuP8Ko5LzcM3PVw9q1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUdPXgwQSKWIHVmMV9E2Zv8+l2lvwwHwYDVR0jBBgwFoAUiIhNTUp18X8I3UTL qVkv5w9TnZcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjEy Mi9pSWhOVFVwMThYOEkzVVRMcVZrdjV3OVRuWmMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2lJaE5UVXAxOFg4STNVVExxVmt2NXc5VG5aYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxMjIvaUloTlRVcDE4WDhJ M1VUTHFWa3Y1dzlUblpjLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKTjPGrUPP1ort0ERPfRwpbQxb3mgJMDTkH7vqmcxQizfr15UEzMnIhyIUpX jLezU9a+tbPWtabTglktp0XdUL1rVmU+Y+ak/JXclnN1lCNocWdN2PjZemlzLS6m qdEAOe9XhxMxmN5tZSXrxVr/Qv4Z+8cZxnfhJOmdAIqcaFtgwCTeHAv/qVeVgPIi gcbot5AzsUyiUHZItyU+mL/ueBthSv1bxy+NsV5gubsfIDIH2hp5g7/gS9Jswi2J evlHAas7YWaKMPiE/XVnO91WV7nDdzgefVMlSXrBZGjMCykW+VjC7CSNuA6Z61yR Cmh7h8eGc3nW7NM4f+OScUJ2Rhg= -----END CERTIFICATE-----Generated at Thu Dec 4 23:40:32 2025 by rpki-client