This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft File: fPRMBtXqffDL1PaFCPFOhNoIt1I.mft (raw, json) Hash identifier: ermy060RbxcLYn3XBwGcQ92lgWvi9SNC2S1Mbavhzvk= Subject key identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF Authority key identifier: 7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 Certificate issuer: /CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Certificate serial: 1A77 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft Manifest number: 1A6B Signing time: Sun 21 Dec 2025 16:43:25 +0000 Manifest this update: Sun 21 Dec 2025 16:43:25 +0000 Manifest next update: Sun 21 Dec 2025 22:43:25 +0000 Files and hashes: 1: HIkT_nEnsLxGeI-3zJUHhtNyWj8.roa (hash: IhDC9QUQgRmJWF3Vdetq/G4pSKe6C+p+OntJsqXr45o=) 2: OYh5JEj0uWuUFwdKjB10pF76_pI.roa (hash: An6u7oH3sagNhBru0T5ojCoKJVfFfrmJ66mlx7PcbhI=) 3: USiwWmP7_uZv84RfFsFEk-_9H8Q.roa (hash: b7crNyxxWRj94oFuRTJxzkl+UkzfJZ2V5euQ8agMh3o=) 4: cIWlcgIlWrr7dPhvnLjAEmryGDc.roa (hash: qYlW/Je7TxRMGGbrH6KCQs+TJv0I6bBgau3xwOaOT6g=) 5: fPRMBtXqffDL1PaFCPFOhNoIt1I.crl (hash: Ocu6zprgg3KnaEvn0J/JdVhRWU9+YnWDlK0OOuLgP1Y=) 6: gALoy-WEClG9nOagRiQccU0WnpE.roa (hash: Gmv5mtUHklFp3j+m8mMU5eiB9lpckT1KXPsOboMEr50=) 7: nlfKk31w0-JMOBpbuydpYlmgaK4.roa (hash: Pd6xFisxhVIf9N5p5BSqwtwrTZp9+Wnd5CgCa9g0/nM=) 8: r78L_jfDaGDjaH3rsP83eK4kcG4.roa (hash: u1or2If1pLNDG9eB56Xw8Z+2kHObmlhnvE4GqSl5VaQ=) 9: xB_JUhaUTOLRuggWEFRDEbGKbdA.roa (hash: MUeQ6SBwA1FY7z2svn5ifPBc7LhDADwZ7QfDARqfH+4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6775 (0x1a77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752 Validity Not Before: Dec 21 16:43:25 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=7C23A77681714EFB35C901DA630F2C525EFE19BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2a:bb:7b:59:64:df:24:f6:6c:eb:bb:11:8a: b8:10:c4:dc:0b:39:e9:39:6c:d6:f4:fe:8e:d2:6e: e7:2d:e0:8d:d1:3e:30:0e:e9:e9:40:0f:13:58:9a: 69:08:05:09:2f:da:e8:f6:ad:0c:58:f4:89:f1:ca: 1d:29:f9:c3:d9:7f:c6:67:52:8e:67:28:ac:e3:d8: 38:37:9d:d0:40:be:39:4c:d1:d0:16:c4:e8:ef:c9: be:0c:de:94:15:2f:53:6a:a7:3a:00:77:42:a3:19: af:82:30:ff:13:d5:ad:8d:1e:56:28:9f:59:a7:74: 5d:f8:3c:7e:c9:cf:96:8d:f7:12:24:92:e7:5d:da: 7a:86:6c:c4:44:4e:34:4c:12:22:b8:ae:6b:4f:21: 78:f5:ca:31:5f:72:7c:2d:16:ae:01:e0:b5:f1:52: ae:78:6d:ac:46:c0:99:f9:ea:79:13:92:fa:7f:3e: 3b:d6:b1:98:50:b4:d0:4d:24:f2:1d:87:61:f9:75: 25:cc:b7:5f:cc:c7:a8:38:03:d3:32:d6:7a:73:37: e7:d2:db:ab:8a:b2:86:aa:9f:8d:c0:b6:f4:6e:cf: 8d:8f:3c:69:99:b6:07:1d:af:c5:23:e0:a2:01:63: df:7a:72:b4:89:b0:38:aa:e4:f5:97:12:29:1d:f1: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF X509v3 Authority Key Identifier: keyid:7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:81:17:79:c4:7e:d9:12:2b:cb:57:bf:7d:5b:28:19:7c:2b: 09:42:52:11:3e:6a:44:8f:0c:b7:bb:27:c7:97:fc:d1:87:d1: 47:e5:84:15:88:0a:52:6f:fc:2b:17:06:9d:5c:0d:2f:6b:08: 42:b0:1d:34:5e:bf:27:a0:a5:ce:b1:f7:83:60:9e:f6:94:0c: a9:fb:04:79:89:fd:2f:a5:e2:6b:87:5f:2f:66:6b:bc:e4:2d: e9:f0:eb:23:ad:29:9d:1a:aa:36:54:ce:9a:65:14:81:0c:ff: 83:ee:cc:18:a9:98:05:f2:e0:f3:5e:16:ec:f5:30:b6:93:90: 38:2a:09:f8:a5:5b:09:33:83:ea:b1:be:4e:17:41:97:34:bd: cd:6a:2b:a1:d7:30:76:18:02:d7:10:13:d2:b1:6d:bc:2d:24: 93:6d:f0:14:f2:4d:46:a0:4b:ff:bd:8d:c0:64:2b:e5:ab:a2: f8:7e:50:9e:66:e6:26:fa:1d:4a:c3:09:48:87:43:f1:14:03: 27:a0:b8:2b:43:a8:b1:18:b8:d4:da:a7:b3:76:c6:c5:2a:a3: 96:73:8c:81:c7:e2:4d:88:a8:76:7d:0a:f8:31:a3:b3:77:e3: 94:4e:d5:98:9c:be:b7:e0:94:d7:c2:f1:c3:c6:ea:be:77:af: d0:af:c0:38 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICGncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0NG NDRDMDZENUVBN0RGMENCRDRGNjg1MDhGMTRFODREQTA4Qjc1MjAeFw0yNTEyMjEx NjQzMjVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDdDMjNBNzc2ODE3MTRF RkIzNUM5MDFEQTYzMEYyQzUyNUVGRTE5QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuKrt7WWTfJPZs67sRirgQxNwLOek5bNb0/o7Sbuct4I3RPjAO 6elADxNYmmkIBQkv2uj2rQxY9Inxyh0p+cPZf8ZnUo5nKKzj2Dg3ndBAvjlM0dAW xOjvyb4M3pQVL1NqpzoAd0KjGa+CMP8T1a2NHlYon1mndF34PH7Jz5aN9xIkkudd 2nqGbMRETjRMEiK4rmtPIXj1yjFfcnwtFq4B4LXxUq54baxGwJn56nkTkvp/PjvW sZhQtNBNJPIdh2H5dSXMt1/Mx6g4A9My1npzN+fS26uKsoaqn43AtvRuz42PPGmZ tgcdr8Uj4KIBY996crSJsDiq5PWXEikd8QdHAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfCOndoFxTvs1yQHaYw8sUl7+Gb8wHwYDVR0jBBgwFoAUfPRMBtXqffDL1PaF CPFOhNoIt1IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU3 OC9mUFJNQnRYcWZmREwxUGFGQ1BGT2hOb0l0MUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2ZQUk1CdFhxZmZETDFQYUZDUEZPaE5vSXQxSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1NzgvZlBSTUJ0WHFmZkRM MVBhRkNQRk9oTm9JdDFJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAGOBF3nEftkSK8tXv31bKBl8KwlCUhE+akSPDLe7J8eX/NGH0UflhBWIClJv /CsXBp1cDS9rCEKwHTRevyegpc6x94NgnvaUDKn7BHmJ/S+l4muHXy9ma7zkLenw 6yOtKZ0aqjZUzpplFIEM/4PuzBipmAXy4PNeFuz1MLaTkDgqCfilWwkzg+qxvk4X QZc0vc1qK6HXMHYYAtcQE9KxbbwtJJNt8BTyTUagS/+9jcBkK+Wrovh+UJ5m5ib6 HUrDCUiHQ/EUAyeguCtDqLEYuNTap7N2xsUqo5ZzjIHH4k2IqHZ9Cvgxo7N345RO 1ZicvrfglNfC8cPG6r53r9CvwDg= -----END CERTIFICATE-----Generated at Sun Dec 21 20:36:54 2025 by rpki-client