This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft File: Um3mirHCXqVTIWuhLuNonNVrlkU.mft (raw, json) Hash identifier: WH1Vts5gM2BmzKcg4GiPYD5LOu9lDYiF1buhuGJhits= Subject key identifier: 7C:42:1E:2B:98:95:EB:7D:14:57:6D:3B:48:EC:0F:A2:E3:BA:01:C9 Authority key identifier: 52:6D:E6:8A:B1:C2:5E:A5:53:21:6B:A1:2E:E3:68:9C:D5:6B:96:45 Certificate issuer: /CN=526DE68AB1C25EA553216BA12EE3689CD56B9645 Certificate serial: 0B17 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Um3mirHCXqVTIWuhLuNonNVrlkU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft Manifest number: 0B17 Signing time: Wed 24 Dec 2025 09:10:36 +0000 Manifest this update: Wed 24 Dec 2025 09:10:36 +0000 Manifest next update: Wed 24 Dec 2025 15:10:36 +0000 Files and hashes: 1: Um3mirHCXqVTIWuhLuNonNVrlkU.crl (hash: h4h9lbG/y1byJ8xvUVcapa8+JUOE5ZNl0KYncqjmWgs=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Um3mirHCXqVTIWuhLuNonNVrlkU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 15:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2839 (0xb17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=526DE68AB1C25EA553216BA12EE3689CD56B9645 Validity Not Before: Dec 24 09:10:36 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=7C421E2B9895EB7D14576D3B48EC0FA2E3BA01C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:85:48:fa:6f:7f:9c:68:9e:ca:02:0a:ce:7e: 95:59:ba:0a:78:73:7e:a0:23:91:0e:2d:74:82:1b: 57:27:cc:a6:8a:8f:ac:fa:a0:f2:15:9c:5f:5b:8c: cf:cb:4e:ac:90:39:ad:b2:bd:41:9d:de:08:a6:34: bf:36:b4:1e:cc:9a:af:9e:81:a8:ae:29:e8:03:14: d8:e9:04:5b:50:a8:a7:db:b5:b2:63:80:d6:5f:f0: 95:90:2f:8b:e2:eb:ee:8b:32:1f:d0:9c:cd:d6:93: 12:04:6f:a5:82:bd:15:aa:a9:b0:a7:8f:fb:f9:50: 0b:0a:e6:74:93:a3:6e:d6:8a:a6:09:69:d1:74:5d: 79:40:a7:1b:1b:e9:32:c5:46:60:c2:29:ca:7a:8f: a2:f3:48:a9:41:78:af:91:80:ab:9e:f0:c5:e4:8f: 6d:d5:4f:55:03:27:11:d2:05:3b:78:be:31:3b:a7: 9a:ba:0b:38:f8:f9:e5:51:e8:1e:f4:1a:3d:90:17: 36:0e:2b:0c:42:e3:9e:39:d3:9c:c0:04:54:07:8e: 86:d3:d2:da:db:24:1c:6f:52:e2:34:89:3b:e7:1e: 4c:93:76:27:ed:f0:a4:20:fd:a9:24:7c:f4:71:ec: a0:31:c9:dc:af:5c:a5:fd:aa:f6:e8:0b:36:df:0d: 97:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:42:1E:2B:98:95:EB:7D:14:57:6D:3B:48:EC:0F:A2:E3:BA:01:C9 X509v3 Authority Key Identifier: keyid:52:6D:E6:8A:B1:C2:5E:A5:53:21:6B:A1:2E:E3:68:9C:D5:6B:96:45 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Um3mirHCXqVTIWuhLuNonNVrlkU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3286/Um3mirHCXqVTIWuhLuNonNVrlkU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:45:6a:8b:96:ea:6d:36:66:f3:b1:f3:ec:31:7c:68:1c:9d: 0e:b8:8b:7c:9b:e3:b6:75:4c:1b:d3:c1:2f:44:88:6f:51:8d: a5:34:26:d2:13:7c:24:46:77:9c:d4:75:54:5d:cd:4e:5b:d1: 28:61:f7:04:15:50:4c:1f:f6:4a:db:aa:c8:ef:3e:c9:46:78: 1f:63:68:2f:a3:8b:35:ad:df:54:3b:63:cc:33:4d:64:9d:81: c7:73:15:5b:1e:4b:1b:d7:98:b4:3b:23:39:02:66:86:ab:d8: 48:d2:a0:a4:ad:47:6c:f0:5f:93:ba:a7:6e:8a:b3:4f:ac:36: f4:01:83:1a:9f:fa:2a:0c:28:35:44:21:f1:d0:2c:81:45:a5: 23:c4:4e:6f:73:c2:09:e0:01:51:9b:21:20:09:46:bd:36:ed: 4a:fd:35:8c:66:0f:ce:4a:69:15:cf:ee:e2:68:e3:6b:51:e4: e9:21:98:eb:3c:ff:ee:c7:ce:03:c0:b8:49:35:c8:6d:d8:cf: 76:be:28:61:e2:15:d7:cb:91:72:6c:0f:7b:a1:f9:20:94:80: ca:3a:9c:6c:4e:d7:a2:78:5f:1d:fb:dd:bd:23:65:ca:78:86: 20:39:34:d6:f6:d5:3d:22:c9:10:4d:f0:87:a9:68:2e:27:ab: 6a:94:c9:f7 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCxcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI2 REU2OEFCMUMyNUVBNTUzMjE2QkExMkVFMzY4OUNENTZCOTY0NTAeFw0yNTEyMjQw OTEwMzZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDdDNDIxRTJCOTg5NUVC N0QxNDU3NkQzQjQ4RUMwRkEyRTNCQTAxQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHhUj6b3+caJ7KAgrOfpVZugp4c36gI5EOLXSCG1cnzKaKj6z6 oPIVnF9bjM/LTqyQOa2yvUGd3gimNL82tB7Mmq+egaiuKegDFNjpBFtQqKfbtbJj gNZf8JWQL4vi6+6LMh/QnM3WkxIEb6WCvRWqqbCnj/v5UAsK5nSTo27WiqYJadF0 XXlApxsb6TLFRmDCKcp6j6LzSKlBeK+RgKue8MXkj23VT1UDJxHSBTt4vjE7p5q6 Czj4+eVR6B70Gj2QFzYOKwxC454505zABFQHjobT0trbJBxvUuI0iTvnHkyTdift 8KQg/akkfPRx7KAxydyvXKX9qvboCzbfDZejAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUfEIeK5iV630UV207SOwPouO6AckwHwYDVR0jBBgwFoAUUm3mirHCXqVTIWuh LuNonNVrlkUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Ni9VbTNtaXJIQ1hxVlRJV3VoTHVOb25OVnJsa1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VtM21pckhDWHFWVElXdWhMdU5vbk5WcmxrVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODYvVW0zbWlySENYcVZU SVd1aEx1Tm9uTlZybGtVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJpFaouW6m02ZvOx8+wxfGgcnQ64i3yb47Z1TBvTwS9EiG9RjaU0JtITfCRG d5zUdVRdzU5b0Shh9wQVUEwf9krbqsjvPslGeB9jaC+jizWt31Q7Y8wzTWSdgcdz FVseSxvXmLQ7IzkCZoar2EjSoKStR2zwX5O6p26Ks0+sNvQBgxqf+ioMKDVEIfHQ LIFFpSPETm9zwgngAVGbISAJRr027Ur9NYxmD85KaRXP7uJo42tR5OkhmOs8/+7H zgPAuEk1yG3Yz3a+KGHiFdfLkXJsD3uh+SCUgMo6nGxO16J4Xx373b0jZcp4hiA5 NNb21T0iyRBN8IepaC4nq2qUyfc= -----END CERTIFICATE-----Generated at Wed Dec 24 14:54:07 2025 by rpki-client