This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft File: 5nly8uDEjmq9G__KM5YicDZJm28.mft (raw, json) Hash identifier: Dmxfnbwq4oPCGTBXQEOlzWHDTly4LXFrX9Akgd4RgD8= Subject key identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC Authority key identifier: E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F Certificate issuer: /CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Certificate serial: 126C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft Manifest number: 126C Signing time: Thu 04 Dec 2025 19:16:09 +0000 Manifest this update: Thu 04 Dec 2025 19:16:09 +0000 Manifest next update: Fri 05 Dec 2025 01:16:09 +0000 Files and hashes: 1: 5nly8uDEjmq9G__KM5YicDZJm28.crl (hash: 9TCnY8XExeqdIUoh+2lFUili1qPYcO9GS5jJ7iDYDS4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:16:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4716 (0x126c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F Validity Not Before: Dec 4 19:16:09 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E81B8D2CD9AABC3441DFC8A1756818541B6D89DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:11:47:e9:65:0b:f8:62:f2:4f:c0:1e:78:b5: 8a:c9:c5:07:a5:ab:c1:bd:2c:76:a6:79:a4:ac:7c: bb:50:37:04:83:e6:0d:dd:01:dc:fb:d5:3a:f6:c9: d3:1f:48:43:96:08:34:db:92:0f:54:3c:44:e1:05: 9f:95:d7:94:30:2f:be:81:7f:4b:84:83:93:9e:a9: ce:ae:8b:36:1c:63:fb:d9:49:7c:0e:89:f3:33:f1: e0:eb:56:ec:45:fb:f2:4f:fb:ae:f0:59:3b:7e:b8: 54:68:e7:44:a8:d2:bb:e5:1b:4d:42:e3:2d:ad:dd: 5c:53:b6:05:f2:3c:2d:a4:d7:a8:6c:aa:90:cf:3b: ff:71:b2:50:0f:61:65:b5:5d:bf:1a:33:61:a0:7c: 4e:f0:7b:89:61:c7:ba:1e:ff:6f:91:e6:40:2c:f6: fd:3f:25:3a:64:92:f7:78:8e:e6:b5:2b:58:48:aa: d7:da:26:71:5a:dd:f4:bb:4c:9f:b7:cb:77:2d:df: b3:cb:c8:6c:b9:1f:fe:03:7c:a7:a0:9c:65:ed:06: 97:b3:d6:a3:48:58:e0:ef:b8:7a:46:85:2a:ef:ce: a7:9a:7a:8a:70:10:b2:d1:80:d6:89:33:ba:e4:ba: d4:a5:ea:87:25:6c:0b:c4:8f:97:8f:1d:e8:96:e5: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC X509v3 Authority Key Identifier: keyid:E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2d:d5:70:74:1f:a9:49:9e:20:7c:24:b8:e7:58:df:c1:29: 68:5d:32:60:52:4e:08:72:33:ed:3c:1f:29:71:ff:f8:fa:75: 98:b6:3f:5a:a5:f2:a9:b8:65:a8:3c:25:b5:2a:ca:cb:36:b1: fd:01:52:29:e4:b6:26:3a:76:cd:eb:3b:23:29:66:b0:3b:be: 52:5f:2e:7d:b1:eb:11:f0:12:d2:db:fc:1f:67:e9:eb:89:80: 51:20:e7:a3:2b:63:94:0b:fb:a7:f4:9b:89:e3:9e:7e:d3:8c: 0d:58:9b:5f:bf:6b:99:60:db:27:c3:73:96:07:72:79:68:50: 44:bc:f4:ea:d6:ff:84:68:28:99:8e:16:60:c8:01:3a:10:27: 18:fc:74:24:51:be:48:7a:75:53:5e:21:ca:1a:2b:cf:03:3a: 27:05:84:42:ec:84:2f:e7:e7:d5:87:8c:7a:dc:f3:d2:bf:87: d3:6d:b9:16:17:db:25:f0:65:fe:c0:d5:d3:3f:89:c3:95:5e: 4b:08:9f:ef:63:c6:fc:94:7b:54:00:19:14:5b:1e:53:37:da: 1c:46:6a:22:49:47:ce:da:36:c4:7d:1a:ce:4a:48:e4:91:a7: ae:d0:56:b6:4f:f5:dd:84:4e:2e:de:ed:85:81:1a:24:24:e6: 0e:40:2d:52 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICEmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTY3 OTcyRjJFMEM0OEU2QUJEMUJGRkNBMzM5NjIyNzAzNjQ5OUI2RjAeFw0yNTEyMDQx OTE2MDlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU4MUI4RDJDRDlBQUJD MzQ0MURGQzhBMTc1NjgxODU0MUI2RDg5REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8EUfpZQv4YvJPwB54tYrJxQelq8G9LHameaSsfLtQNwSD5g3d Adz71Tr2ydMfSEOWCDTbkg9UPEThBZ+V15QwL76Bf0uEg5Oeqc6uizYcY/vZSXwO ifMz8eDrVuxF+/JP+67wWTt+uFRo50So0rvlG01C4y2t3VxTtgXyPC2k16hsqpDP O/9xslAPYWW1Xb8aM2GgfE7we4lhx7oe/2+R5kAs9v0/JTpkkvd4jua1K1hIqtfa JnFa3fS7TJ+3y3ct37PLyGy5H/4DfKegnGXtBpez1qNIWODvuHpGhSrvzqeaeopw ELLRgNaJM7rkutSl6oclbAvEj5ePHeiW5dA/AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQU6BuNLNmqvDRB38ihdWgYVBttidwwHwYDVR0jBBgwFoAU5nly8uDEjmq9G//K M5YicDZJm28wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIx NS81bmx5OHVERWptcTlHX19LTTVZaWNEWkptMjguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVubHk4dURFam1xOUdfX0tNNVlpY0RaSm0yOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMTUvNW5seTh1REVqbXE5 R19fS001WWljRFpKbTI4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAE4t1XB0H6lJniB8JLjnWN/BKWhdMmBSTghyM+08Hylx//j6dZi2P1ql8qm4 Zag8JbUqyss2sf0BUinktiY6ds3rOyMpZrA7vlJfLn2x6xHwEtLb/B9n6euJgFEg 56MrY5QL+6f0m4njnn7TjA1Ym1+/a5lg2yfDc5YHcnloUES89OrW/4RoKJmOFmDI AToQJxj8dCRRvkh6dVNeIcoaK88DOicFhELshC/n59WHjHrc89K/h9NtuRYX2yXw Zf7A1dM/icOVXksIn+9jxvyUe1QAGRRbHlM32hxGaiJJR87aNsR9Gs5KSOSRp67Q VrZP9d2ETi7e7YWBGiQk5g5ALVI= -----END CERTIFICATE-----Generated at Thu Dec 4 23:42:03 2025 by rpki-client