This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft File: -3g5E2fIrZfRqcIaNTKFrV5ojRw.mft (raw, json) Hash identifier: frRYKlhqHMl+ldUwxTaYmCqqbrf/8fBzSDrdOYiyhb8= Subject key identifier: 42:02:F5:BE:89:7E:F9:F2:A7:97:A1:A6:D0:F6:61:A0:1D:08:D0:C9 Authority key identifier: FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C Certificate issuer: /CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C Certificate serial: 1A59 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft Manifest number: 1A57 Signing time: Thu 04 Dec 2025 20:48:28 +0000 Manifest this update: Thu 04 Dec 2025 20:48:28 +0000 Manifest next update: Fri 05 Dec 2025 02:48:28 +0000 Files and hashes: 1: -3g5E2fIrZfRqcIaNTKFrV5ojRw.crl (hash: 4ujxL/PgJn+7PjM2OE72BZliDxBF8aJkQ7IgmDJROWQ=) 2: TpMs6bPK4cf4uW7n5qAsxrDULkQ.roa (hash: a25ZsZM5E4CFJKKQWF0XfZcd9CLN7AqD+nYr1/0kCs8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6745 (0x1a59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C Validity Not Before: Dec 4 20:48:28 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4202F5BE897EF9F2A797A1A6D0F661A01D08D0C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5a:aa:3f:8d:88:71:a4:d3:cb:f5:44:bd:3d: ac:7a:37:61:44:ba:34:1e:3d:23:2b:f6:78:07:e7: 56:11:e3:cd:24:ad:03:22:cc:7a:f0:6b:5f:98:eb: 2c:d6:41:e7:5c:14:02:aa:3f:81:2a:08:06:28:38: f7:4e:79:f2:76:8f:fc:fd:c9:5c:d0:94:a0:28:2c: 27:c2:50:63:87:b6:2c:ba:5f:9f:cc:99:8e:a0:8a: 97:25:e2:12:03:11:95:dc:cb:c9:8a:51:d2:b2:70: a4:d5:5a:6b:32:be:e6:46:bc:0e:fd:4a:69:9a:4a: 65:29:81:73:ec:5d:b0:9a:87:0c:c9:48:c1:20:03: 4b:5d:ba:4e:f1:7c:f3:0a:11:8a:31:e8:58:7b:e0: 58:41:35:90:38:af:98:42:f2:e6:12:cb:13:35:75: 61:96:e4:23:ce:05:9a:8f:68:6e:a3:72:de:df:21: 68:db:7b:64:b7:27:79:96:f9:f1:e8:8f:ae:52:a3: d4:c8:8c:73:90:aa:ce:28:ec:c8:7b:9a:1b:08:31: 0c:c3:36:21:a2:a4:e5:38:5a:61:84:1a:2f:d0:60: 25:bb:6b:fd:81:46:ab:fd:f3:58:90:36:1d:ac:c8: 9e:06:9f:2c:17:44:bc:2f:de:c1:fe:fe:95:ea:77: 70:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:02:F5:BE:89:7E:F9:F2:A7:97:A1:A6:D0:F6:61:A0:1D:08:D0:C9 X509v3 Authority Key Identifier: keyid:FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:64:bb:d1:41:23:60:b3:76:67:ef:83:81:6e:bc:dc:93:59: 25:fb:90:47:65:a8:54:32:9d:c8:d9:f1:1d:f8:42:90:a1:33: 92:4e:ca:94:36:38:fb:fa:42:75:b7:cc:5c:73:2b:c6:2e:74: e7:58:b9:01:b4:0b:49:bd:7a:47:d9:10:e7:11:1d:6e:b3:65: a5:9e:34:ce:24:5c:56:5b:8c:51:7d:30:67:fb:90:b7:1d:51: a0:42:df:df:b9:7e:14:6d:6f:60:35:c4:9a:09:b5:1d:fd:66: 17:51:c9:4d:d1:7d:cb:f0:76:73:2c:f8:71:99:a8:6f:bf:80: 37:22:b7:1a:c2:94:40:13:6b:d2:72:95:76:24:4e:95:df:76: 3e:ae:50:24:7b:cb:a8:60:9e:93:b3:e3:a7:db:d3:89:a0:40: 19:23:47:b2:bb:15:b4:8d:22:84:8c:3d:88:d1:33:a4:9d:a4: d1:79:97:1a:f8:a7:67:11:92:b1:ee:bd:08:ec:22:1f:35:06: c7:96:6f:76:ee:c1:1c:a6:c3:a3:8e:0a:86:a4:be:b4:1d:6b: 92:94:d0:2b:bd:12:c1:19:35:49:e5:06:2b:01:70:5c:da:0f: e1:c9:94:47:13:bb:01:8e:ec:72:22:e5:47:a7:46:03:4e:df: f7:ec:a7:62 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkI3 ODM5MTM2N0M4QUQ5N0QxQTlDMjFBMzUzMjg1QUQ1RTY4OEQxQzAeFw0yNTEyMDQy MDQ4MjhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDQyMDJGNUJFODk3RUY5 RjJBNzk3QTFBNkQwRjY2MUEwMUQwOEQwQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNWqo/jYhxpNPL9US9Pax6N2FEujQePSMr9ngH51YR480krQMi zHrwa1+Y6yzWQedcFAKqP4EqCAYoOPdOefJ2j/z9yVzQlKAoLCfCUGOHtiy6X5/M mY6gipcl4hIDEZXcy8mKUdKycKTVWmsyvuZGvA79SmmaSmUpgXPsXbCahwzJSMEg A0tduk7xfPMKEYox6Fh74FhBNZA4r5hC8uYSyxM1dWGW5CPOBZqPaG6jct7fIWjb e2S3J3mW+fHoj65So9TIjHOQqs4o7Mh7mhsIMQzDNiGipOU4WmGEGi/QYCW7a/2B Rqv981iQNh2syJ4GnywXRLwv3sH+/pXqd3CtAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUQgL1vol++fKnl6Gm0PZhoB0I0MkwHwYDVR0jBBgwFoAU+3g5E2fIrZfRqcIa NTKFrV5ojRwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjUw OC8tM2c1RTJmSXJaZlJxY0lhTlRLRnJWNW9qUncuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy0zZzVFMmZJclpmUnFjSWFOVEtGclY1b2pSdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1MDgvLTNnNUUyZklyWmZS cWNJYU5US0ZyVjVvalJ3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKVku9FBI2Czdmfvg4FuvNyTWSX7kEdlqFQyncjZ8R34QpChM5JOypQ2OPv6 QnW3zFxzK8YudOdYuQG0C0m9ekfZEOcRHW6zZaWeNM4kXFZbjFF9MGf7kLcdUaBC 39+5fhRtb2A1xJoJtR39ZhdRyU3RfcvwdnMs+HGZqG+/gDcitxrClEATa9JylXYk TpXfdj6uUCR7y6hgnpOz46fb04mgQBkjR7K7FbSNIoSMPYjRM6SdpNF5lxr4p2cR krHuvQjsIh81BseWb3buwRymw6OOCoakvrQda5KU0Cu9EsEZNUnlBisBcFzaD+HJ lEcTuwGO7HIi5UenRgNO3/fsp2I= -----END CERTIFICATE-----Generated at Thu Dec 4 23:40:46 2025 by rpki-client