This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft File: OLYZ9BoGgZD-7QQul78QRCJYnkE.mft (raw, json) Hash identifier: O6B1KTLgkh9IwGPTmzNurt6oQU8z8KhNQ1OgZIum9Ng= Subject key identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F Authority key identifier: 38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41 Certificate issuer: /CN=38B619F41A068190FEED042E97BF104422589E41 Certificate serial: 0B29 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft Manifest number: 0B29 Signing time: Thu 04 Dec 2025 20:46:02 +0000 Manifest this update: Thu 04 Dec 2025 20:46:02 +0000 Manifest next update: Fri 05 Dec 2025 02:46:02 +0000 Files and hashes: 1: OLYZ9BoGgZD-7QQul78QRCJYnkE.crl (hash: qGfEuAlJVorWymrkUYZJl7tmDWYguvx+uCOsoI1mlAQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2857 (0xb29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38B619F41A068190FEED042E97BF104422589E41 Validity Not Before: Dec 4 20:46:02 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=795B12F48C5A66122DA21CC6799E226BD99D7B6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:31:a1:70:f2:c2:e8:60:d9:f8:60:61:8c:fd: 09:ca:51:3a:d4:1d:00:9b:34:cc:42:ae:a0:59:dd: 40:63:ea:9f:e8:62:43:e8:68:88:5e:59:10:59:8c: a1:70:97:ef:1e:59:b7:0e:53:b6:61:f3:d2:c5:a2: 37:26:ec:43:c3:a2:c6:ce:10:50:49:f1:fd:a0:72: 1b:b7:3c:d8:12:97:fc:de:82:28:93:d7:1d:21:cb: f1:ad:44:d0:04:65:89:c1:84:17:28:76:fd:14:13: c9:aa:03:56:ad:8b:85:e8:19:5a:c4:e4:0c:3b:2c: 07:c5:20:78:0b:7d:58:fe:72:4a:37:56:80:37:63: c3:d1:9c:eb:9b:e9:49:84:bf:9a:65:fb:3c:6a:37: 93:f5:68:62:03:50:8b:f1:0d:83:6f:24:35:2e:4f: 0c:25:8b:a7:9d:4e:52:28:60:b1:d9:9d:f6:11:55: b5:97:69:15:cc:1c:4f:86:6e:06:c5:1f:43:59:95: 15:16:d3:f2:65:8b:9a:f0:ee:c9:25:84:61:43:34: e3:0b:6e:43:a0:82:0f:e2:92:5e:e5:fd:a9:28:4a: da:e0:af:4d:ff:70:5e:8c:39:53:6f:37:65:60:ad: 24:c3:04:74:55:1f:9e:34:1c:ad:3a:7f:96:6b:a3: 5f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F X509v3 Authority Key Identifier: keyid:38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:db:19:76:ae:3b:88:81:11:fe:ae:cc:62:0f:78:5d:6d:c3: 4a:83:45:05:28:46:73:79:fc:58:05:a1:9d:d0:c5:12:71:0d: 8e:d5:3a:87:6d:7e:c7:7b:5a:4e:be:bb:d3:1c:d7:60:ec:62: 80:cf:1f:c6:5c:d3:c3:a9:96:49:de:27:c0:9f:2c:5b:41:3a: f8:a4:5d:e8:db:2c:65:ac:9e:7e:50:68:46:b5:5b:b1:e3:3d: a4:bb:5f:90:90:08:40:31:bc:16:dd:88:91:e3:9d:fb:e3:08: 4c:d7:4a:72:b0:5d:79:67:58:e5:41:26:ef:56:8f:84:b8:50: 13:e6:8a:0b:a9:49:73:4d:11:f0:02:26:ca:6f:38:79:d5:19: 25:5f:22:ad:6a:62:07:1c:df:b6:05:6d:e0:d1:fe:19:ef:f1: 05:41:dc:22:1f:4d:14:9f:ef:35:a2:60:6e:47:dd:a2:e1:b7: 3d:03:eb:76:d4:74:c7:ff:65:7e:a5:62:13:5f:cc:07:9f:9a: 74:91:e0:33:88:7b:d0:a5:31:83:92:56:f0:04:91:d9:38:28: 66:60:f0:28:a1:0b:2e:b9:47:2b:5c:cd:68:b4:3e:8c:b2:ec: c0:0a:78:d2:90:7d:80:5b:dc:a9:22:3d:36:5a:1b:b1:15:95: bc:3b:b3:60 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzhC NjE5RjQxQTA2ODE5MEZFRUQwNDJFOTdCRjEwNDQyMjU4OUU0MTAeFw0yNTEyMDQy MDQ2MDJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDc5NUIxMkY0OEM1QTY2 MTIyREEyMUNDNjc5OUUyMjZCRDk5RDdCNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8MaFw8sLoYNn4YGGM/QnKUTrUHQCbNMxCrqBZ3UBj6p/oYkPo aIheWRBZjKFwl+8eWbcOU7Zh89LFojcm7EPDosbOEFBJ8f2gchu3PNgSl/zegiiT 1x0hy/GtRNAEZYnBhBcodv0UE8mqA1ati4XoGVrE5Aw7LAfFIHgLfVj+cko3VoA3 Y8PRnOub6UmEv5pl+zxqN5P1aGIDUIvxDYNvJDUuTwwli6edTlIoYLHZnfYRVbWX aRXMHE+GbgbFH0NZlRUW0/Jli5rw7sklhGFDNOMLbkOggg/ikl7l/akoStrgr03/ cF6MOVNvN2VgrSTDBHRVH540HK06f5Zro187AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUeVsS9IxaZhItohzGeZ4ia9mde28wHwYDVR0jBBgwFoAUOLYZ9BoGgZD+7QQu l78QRCJYnkEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 NS9PTFlaOUJvR2daRC03UVF1bDc4UVJDSllua0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09MWVo5Qm9HZ1pELTdRUXVsNzhRUkNKWW5rRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjUvT0xZWjlCb0dnWkQt N1FRdWw3OFFSQ0pZbmtFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAvbGXauO4iBEf6uzGIPeF1tw0qDRQUoRnN5/FgFoZ3QxRJxDY7VOodtfsd7 Wk6+u9Mc12DsYoDPH8Zc08OplkneJ8CfLFtBOvikXejbLGWsnn5QaEa1W7HjPaS7 X5CQCEAxvBbdiJHjnfvjCEzXSnKwXXlnWOVBJu9Wj4S4UBPmigupSXNNEfACJspv OHnVGSVfIq1qYgcc37YFbeDR/hnv8QVB3CIfTRSf7zWiYG5H3aLhtz0D63bUdMf/ ZX6lYhNfzAefmnSR4DOIe9ClMYOSVvAEkdk4KGZg8CihCy65RytczWi0Poyy7MAK eNKQfYBb3KkiPTZaG7EVlbw7s2A= -----END CERTIFICATE-----Generated at Thu Dec 4 23:44:18 2025 by rpki-client