This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft File: -ta0PAnQSQoN9_iR359jtSDPIQ8.mft (raw, json) Hash identifier: EzJxZT5YMAj0JWxy75ItphWkjpCajhxqwJIL9jQqRVI= Subject key identifier: 4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC Authority key identifier: FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F Certificate issuer: /CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Certificate serial: 1316 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft Manifest number: 1302 Signing time: Sun 21 Dec 2025 16:41:30 +0000 Manifest this update: Sun 21 Dec 2025 16:41:30 +0000 Manifest next update: Sun 21 Dec 2025 22:41:30 +0000 Files and hashes: 1: -ta0PAnQSQoN9_iR359jtSDPIQ8.crl (hash: D4iG9h6xRFJu1GvDWhBgMlppBMalSPeepVW0TIIK8gE=) 2: 1_xVmznRbjgrARcOnrUzK3zkMkM.roa (hash: GCP9qK5uGloZHD8Mka7pysVMWzi2GGVFtT7E7LtKHac=) 3: CHHbDf38ok5HgG-AYJgAhy91wqY.roa (hash: KxJWeGq5HBzWbxvVwSmjxZ9pOeTHY0fE5UXqtx6WfOk=) 4: Cni4ivS0aTSHai9yUx7gJbz5jK8.roa (hash: 84n7AGw6yl+gQsNwUYQ53IvU2VCFXFgTwWVhGMKyhIk=) 5: LiLhG4umWIFvssfr-YRo7VPi9PQ.roa (hash: 8VzvX+6L2up29XAoS07TOWxozlHhFYSU/9tMLFarKws=) 6: MRmJHXHbniE2rjTMj7-XBPn2PFE.roa (hash: AZznRSYPnsoxRC7iuvzdOmezQdGSxGrbcrS0Svin9+Q=) 7: PZpMpUI55eB2vbRtNWyVquWC7y0.roa (hash: XGAKJedxzNaXjaRNceMDOB16UaE9Le2pcMQeq9bqLtI=) 8: Pie-aA_SMXi1KlttjIhePqYurTU.roa (hash: 4oxtWmiOezYONOy5kp6vAgerw2OZ94LDmtSh2UUa1A4=) 9: llh71OO6sGwAfZdC60WJs1U2NU0.roa (hash: 5pHK2BD7cThMf2Gdvo1WL3olc9aZ3jLaBSG3cDaQoIc=) 10: miGjVDXbOzQQTZP9E5umEPnWCAw.roa (hash: bFWWTZfSgak8dwI4OZSJZy4GLdjg6INc4Sl9XfE3d4k=) 11: rovnomnuVFMNJzTNeyy5W6WRMe0.roa (hash: aVXERw9JByy2HpoXIifbCTO+OLw9MnI6ZPVD8/WtLto=) 12: sZKnapg00fgKKe4LkAFvTWPY7bc.roa (hash: QsFYItD1U7Qqi5MRKBnZXLcVx+4eR2sBukx9xvp60fM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4886 (0x1316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Validity Not Before: Dec 21 16:41:30 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4BCC447184497A8FAEB3769AD767F2E2871D2EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:48:ee:2b:68:e0:56:e6:b1:31:28:fd:47:ec: 4f:11:cb:57:24:26:ab:d1:62:af:be:7f:2a:fc:e0: a6:ca:09:fa:df:39:bf:1a:4d:ee:e7:d2:04:13:4c: ac:e2:0e:1e:ad:f4:e7:66:10:72:a4:dc:dc:58:0b: 2b:30:18:84:09:a9:c2:92:f5:48:0c:e0:c7:e2:e8: 76:37:fe:e1:0b:b8:b7:cc:b4:a7:1c:f6:f0:00:a2: 4c:88:c2:0d:1c:77:ee:ed:5e:1b:ab:6c:63:b1:fc: b8:42:c7:dc:5d:96:72:b1:a2:f2:ab:6d:8b:6e:f6: 28:87:66:1f:a9:05:09:e7:13:7d:9d:7e:49:b9:35: 62:13:98:cc:ad:e2:3f:3e:50:3a:6d:ad:48:06:a3: 4d:d0:25:33:71:7f:f4:45:31:2e:da:ea:70:d2:f2: bb:86:d1:7d:04:a2:98:b1:ca:26:25:9b:b7:84:56: af:f6:ae:d6:85:b8:1a:b5:78:24:84:58:57:60:b1: ed:e2:3f:f0:d1:fa:4c:57:30:15:22:fa:37:8b:f8: 10:fd:c8:f7:0a:50:d3:19:f8:15:cd:0d:b4:c8:b6: 35:e0:c2:1d:71:28:31:3d:05:53:bd:9f:f7:f2:c8: 51:e0:c9:cb:a8:e3:82:d0:1e:9e:d2:83:a2:44:6e: 5c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC X509v3 Authority Key Identifier: keyid:FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:bc:5c:7c:2d:f7:d7:3d:46:12:8a:04:5d:d0:30:c3:61:6a: 3f:51:96:56:cf:24:f8:56:38:41:a1:09:3f:4d:b0:89:de:dc: 35:31:28:11:f7:5e:1b:3e:27:a2:d8:c0:f8:35:98:ec:23:51: 89:e9:c0:9c:c2:18:e1:42:e7:54:2e:bc:dc:0b:13:29:22:99: 25:14:2c:f6:4e:47:de:63:ca:ad:f4:8a:0e:3a:5b:6c:99:b2: a9:0a:c9:93:63:52:3c:6b:c1:bc:09:64:84:a0:20:ad:5e:05: 1a:4a:93:9e:1b:e5:22:5b:29:14:1f:39:fb:7a:55:22:d0:6a: 36:e1:75:5f:23:30:4d:17:a9:1b:58:ae:45:2b:6d:8d:dd:72: c8:4d:3b:69:be:c7:81:37:3d:e8:40:0a:b0:48:f3:45:85:6c: 55:2d:94:d1:1c:5f:0b:fc:dd:fb:cf:47:06:4a:e9:55:3e:33: 03:4b:b8:11:5a:c5:74:ec:fe:06:bb:b3:66:de:5f:69:5b:c5: 61:3c:98:48:f0:83:30:60:dc:7d:3f:05:d0:89:10:63:f7:78: fc:ae:03:ce:e7:ed:0c:54:bb:55:d0:b3:6c:44:73:0d:29:7a: 3e:5f:1b:0a:04:f0:db:2d:30:07:f3:9c:48:ed:39:eb:c1:2e: 75:62:40:6c -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICExYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkFE NkI0M0MwOUQwNDkwQTBERjdGODkxREY5RjYzQjUyMENGMjEwRjAeFw0yNTEyMjEx NjQxMzBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDRCQ0M0NDcxODQ0OTdB OEZBRUIzNzY5QUQ3NjdGMkUyODcxRDJFQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhSO4raOBW5rExKP1H7E8Ry1ckJqvRYq++fyr84KbKCfrfOb8a Te7n0gQTTKziDh6t9OdmEHKk3NxYCyswGIQJqcKS9UgM4Mfi6HY3/uELuLfMtKcc 9vAAokyIwg0cd+7tXhurbGOx/LhCx9xdlnKxovKrbYtu9iiHZh+pBQnnE32dfkm5 NWITmMyt4j8+UDptrUgGo03QJTNxf/RFMS7a6nDS8ruG0X0EopixyiYlm7eEVq/2 rtaFuBq1eCSEWFdgse3iP/DR+kxXMBUi+jeL+BD9yPcKUNMZ+BXNDbTItjXgwh1x KDE9BVO9n/fyyFHgycuo44LQHp7Sg6JEblyVAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUS8xEcYRJeo+us3aa12fy4ocdLqwwHwYDVR0jBBgwFoAU+ta0PAnQSQoN9/iR 359jtSDPIQ8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 MS8tdGEwUEFuUVNRb045X2lSMzU5anRTRFBJUTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy10YTBQQW5RU1FvTjlfaVIzNTlqdFNEUElROC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDEvLXRhMFBBblFTUW9O OV9pUjM1OWp0U0RQSVE4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBADC8XHwt99c9RhKKBF3QMMNhaj9RllbPJPhWOEGhCT9NsIne3DUxKBH3Xhs+ J6LYwPg1mOwjUYnpwJzCGOFC51QuvNwLEykimSUULPZOR95jyq30ig46W2yZsqkK yZNjUjxrwbwJZISgIK1eBRpKk54b5SJbKRQfOft6VSLQajbhdV8jME0XqRtYrkUr bY3dcshNO2m+x4E3PehACrBI80WFbFUtlNEcXwv83fvPRwZK6VU+MwNLuBFaxXTs /ga7s2beX2lbxWE8mEjwgzBg3H0/BdCJEGP3ePyuA87n7QxUu1XQs2xEcw0pej5f GwoE8NstMAfznEjtOevBLnViQGw= -----END CERTIFICATE-----Generated at Sun Dec 21 22:24:52 2025 by rpki-client