This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft File: TPCRRt5gTA5ELVbGj8hsxQQArSE.mft (raw, json) Hash identifier: FGqeaEVSPITy4WUDXCiW66vNzAhWg/V3gjBA372fJ34= Subject key identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A Authority key identifier: 4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 Certificate issuer: /CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Certificate serial: 0B31 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft Manifest number: 0B27 Signing time: Wed 10 Dec 2025 01:48:44 +0000 Manifest this update: Wed 10 Dec 2025 01:48:44 +0000 Manifest next update: Wed 10 Dec 2025 07:48:44 +0000 Files and hashes: 1: TPCRRt5gTA5ELVbGj8hsxQQArSE.crl (hash: 9m53YlfENWMHxvRiQ14SxYZJgiAg9xRV+m5UzCN2KBU=) 2: bGeGgRXJn_fKcQJGoNpT45uuMbM.roa (hash: 4rs03AqtGSIGgkcXeqLIzwXtuAsdWOh+07JYHmmqQtk=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2865 (0xb31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Validity Not Before: Dec 10 01:48:44 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=3DE44607C7258196BFB2E4514EF522AC033E120A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:57:8b:9f:48:fe:72:52:d5:33:80:7f:8a: c7:e8:8e:f7:d8:2a:b2:4f:bd:6d:ca:0f:94:85:2d: 55:99:15:1d:fc:b6:eb:26:3c:1c:fa:15:e5:3c:d2: c9:bf:b1:b2:dc:61:69:84:79:cc:d0:8b:43:f7:23: 20:f7:b8:92:c2:dc:a6:24:c4:70:f6:64:4d:a0:05: ef:64:1c:04:e5:60:85:72:53:ed:11:83:30:7b:c7: db:b9:83:a9:17:42:7a:c0:3b:5d:89:30:1c:1f:3d: 9a:c5:42:5c:8f:ec:1a:32:ca:a5:25:db:7d:43:8e: d3:6c:4e:66:4b:55:ac:c5:a9:09:bd:d9:0e:2a:1c: 9f:44:80:a8:b1:3c:30:48:46:da:79:b8:bb:12:c2: f4:b3:ff:5e:86:a7:32:db:11:b3:cc:d4:36:86:81: 85:73:50:fb:d2:4d:c8:f6:7f:08:52:89:3b:cb:87: 47:ab:f3:ac:7c:4d:73:bb:e0:16:b5:ae:92:36:5a: d6:8d:7e:7b:1c:b9:16:22:b9:50:89:c9:de:9d:bf: 37:0a:05:2b:2f:60:ec:fc:bc:d0:56:5d:7f:d5:d7: 84:60:66:31:df:0c:7c:41:05:b4:f3:9d:42:26:7d: e6:20:17:d2:d9:ac:43:6c:95:9c:a5:df:c4:5c:92: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A X509v3 Authority Key Identifier: keyid:4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:04:00:a8:fa:71:52:3e:7e:55:59:6d:88:54:2d:c5:20:dd: d8:0e:80:5b:b2:da:a1:59:93:15:f6:df:b3:4d:4e:66:bb:93: 07:c0:76:29:9f:71:6a:98:10:74:5b:e4:8e:d8:8c:6c:f2:b4: 6c:aa:5d:42:71:85:6f:5a:3d:3f:d8:70:1f:a2:82:00:d2:b8: f1:d7:b9:93:fa:a4:1d:a9:10:e1:f9:9b:8c:fb:d4:1e:36:e3: ba:23:2d:c2:24:bc:3b:63:cc:c9:f0:93:ae:fd:47:71:e0:a4: 1c:ae:6f:be:0c:d4:89:a2:3f:42:a0:63:72:54:68:2e:d4:85: d7:7d:46:b0:9c:42:44:35:2a:e3:af:29:57:d2:e5:33:61:5f: 41:eb:ff:7a:ae:ba:fa:01:b9:25:3a:ff:27:25:20:f3:47:43: df:8e:99:d3:2d:d9:8e:5c:50:85:ee:3b:97:15:0d:19:73:b4: df:d6:3c:4e:77:39:4f:79:b1:5e:e2:8d:52:07:c1:97:b8:ff: 64:bc:cf:02:41:d2:c4:19:da:92:d8:f2:d2:a6:91:61:2c:1c: 6c:8e:5a:4a:a0:d8:35:d8:ec:3f:05:3f:e5:9e:6f:28:a8:72: 30:97:18:d1:f8:87:54:4e:94:12:29:d9:d3:83:92:6b:72:f4: e3:45:2b:96 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNENG MDkxNDZERTYwNEMwRTQ0MkQ1NkM2OEZDODZDQzUwNDAwQUQyMTAeFw0yNTEyMTAw MTQ4NDRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDNERTQ0NjA3QzcyNTgx OTZCRkIyRTQ1MTRFRjUyMkFDMDMzRTEyMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKrVeLn0j+clLVM4B/isfojvfYKrJPvW3KD5SFLVWZFR38tusm PBz6FeU80sm/sbLcYWmEeczQi0P3IyD3uJLC3KYkxHD2ZE2gBe9kHATlYIVyU+0R gzB7x9u5g6kXQnrAO12JMBwfPZrFQlyP7BoyyqUl231DjtNsTmZLVazFqQm92Q4q HJ9EgKixPDBIRtp5uLsSwvSz/16GpzLbEbPM1DaGgYVzUPvSTcj2fwhSiTvLh0er 86x8TXO74Ba1rpI2WtaNfnscuRYiuVCJyd6dvzcKBSsvYOz8vNBWXX/V14RgZjHf DHxBBbTznUImfeYgF9LZrENslZyl38RckoZFAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUPeRGB8clgZa/suRRTvUirAM+EgowHwYDVR0jBBgwFoAUTPCRRt5gTA5ELVbG j8hsxQQArSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Mi9UUENSUnQ1Z1RBNUVMVmJHajhoc3hRUUFyU0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RQQ1JSdDVnVEE1RUxWYkdqOGhzeFFRQXJTRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODIvVFBDUlJ0NWdUQTVF TFZiR2o4aHN4UVFBclNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAC8EAKj6cVI+flVZbYhULcUg3dgOgFuy2qFZkxX237NNTma7kwfAdimfcWqY EHRb5I7YjGzytGyqXUJxhW9aPT/YcB+iggDSuPHXuZP6pB2pEOH5m4z71B4247oj LcIkvDtjzMnwk679R3HgpByub74M1ImiP0KgY3JUaC7Uhdd9RrCcQkQ1KuOvKVfS 5TNhX0Hr/3quuvoBuSU6/yclIPNHQ9+OmdMt2Y5cUIXuO5cVDRlztN/WPE53OU95 sV7ijVIHwZe4/2S8zwJB0sQZ2pLY8tKmkWEsHGyOWkqg2DXY7D8FP+WebyiocjCX GNH4h1ROlBIp2dODkmty9ONFK5Y= -----END CERTIFICATE-----Generated at Wed Dec 10 07:13:02 2025 by rpki-client