This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft File: DPxgVxKdypoWDypZIndlqeZ0lLs.mft (raw, json) Hash identifier: Ux0SBVDfWnwSYNLoAph0nu4n+Vg9oYcCcM9Q3tucEf0= Subject key identifier: 0A:11:9F:57:AC:C0:37:70:F8:6C:2A:86:F0:21:7E:60:FD:C1:4A:96 Authority key identifier: 0C:FC:60:57:12:9D:CA:9A:16:0F:2A:59:22:77:65:A9:E6:74:94:BB Certificate issuer: /CN=0CFC6057129DCA9A160F2A59227765A9E67494BB Certificate serial: 09C8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DPxgVxKdypoWDypZIndlqeZ0lLs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft Manifest number: 09C8 Signing time: Thu 04 Dec 2025 20:48:50 +0000 Manifest this update: Thu 04 Dec 2025 20:48:50 +0000 Manifest next update: Fri 05 Dec 2025 02:48:50 +0000 Files and hashes: 1: DPxgVxKdypoWDypZIndlqeZ0lLs.crl (hash: CPnJ0PCYBXDm5NTUuns5fR04sg9+5QmNmrr2dExUNio=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DPxgVxKdypoWDypZIndlqeZ0lLs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2504 (0x9c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CFC6057129DCA9A160F2A59227765A9E67494BB Validity Not Before: Dec 4 20:48:50 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=0A119F57ACC03770F86C2A86F0217E60FDC14A96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:1e:6b:8d:42:0c:34:04:f0:b7:a9:65:fc: 8d:7b:cf:4a:42:07:b3:5e:79:c5:a2:e5:77:99:f0: 18:22:f5:e0:40:8e:0e:d0:4b:21:f5:5d:d4:be:8d: 35:69:f2:59:18:69:fb:16:2f:11:47:30:4b:12:8f: 6c:15:4c:8a:dd:9c:38:96:d2:f0:b9:5c:73:2f:63: e0:90:89:d0:72:bf:15:60:ea:9d:59:7e:b9:04:d8: c2:99:f1:ba:c1:1c:c4:b9:64:b6:d1:c5:8c:df:ad: 88:2c:3e:e2:b6:07:94:5d:f6:fa:30:21:82:60:4c: f0:5d:4e:8b:7f:99:77:77:d7:2a:fb:1b:5f:7d:a9: 27:ab:9b:67:b8:c5:ce:cc:f2:84:5f:9d:cc:63:7a: b4:20:b0:d2:03:2c:de:1b:b9:2e:1e:08:4e:ec:2e: 77:dd:2e:74:33:21:78:39:ef:54:1b:89:9b:e0:2e: 1a:eb:63:0d:b0:e2:c1:8b:4e:10:a8:70:a3:d6:cd: 02:5a:8b:f0:af:4d:ef:e9:1f:4f:f2:a0:34:23:6d: 60:d5:1d:fd:8e:a5:c0:e2:45:9f:df:58:dc:68:96: c4:b7:ed:cb:b4:7f:61:b7:ad:e4:3b:ee:9e:f5:08: fb:44:26:8f:28:8d:9d:d4:4b:0b:14:d1:24:cf:fc: b4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:11:9F:57:AC:C0:37:70:F8:6C:2A:86:F0:21:7E:60:FD:C1:4A:96 X509v3 Authority Key Identifier: keyid:0C:FC:60:57:12:9D:CA:9A:16:0F:2A:59:22:77:65:A9:E6:74:94:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DPxgVxKdypoWDypZIndlqeZ0lLs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:34:d0:0d:12:d2:ab:15:3a:d9:9b:86:5c:be:9e:a0:19:04: 2d:6f:b9:36:88:0d:92:d0:4d:aa:ec:61:76:94:f6:7f:35:5b: 47:bd:6c:4f:b1:d8:bd:5a:11:e8:e1:03:ca:65:27:e0:bf:74: f5:e9:24:5c:fa:ba:eb:46:8c:93:de:09:63:ec:d4:a8:a8:3c: e6:66:48:03:49:c0:a9:28:bc:d0:f4:6b:db:e6:80:95:d9:39: 2f:12:da:2f:7b:53:b0:51:ed:7a:c3:06:31:97:de:5c:61:a8: d9:c7:54:0c:5c:e9:3f:14:e9:df:27:27:05:49:2c:43:bb:08: 2c:e6:e7:f2:f0:c1:26:0b:1a:81:84:56:15:ed:a3:9d:dd:22: 06:aa:8f:cc:2b:0c:66:62:3c:87:85:9a:bd:84:6c:01:23:35: 98:b8:85:4c:bb:a4:66:19:db:06:5f:6f:6e:07:33:f8:71:c6: 56:e5:11:02:23:66:70:2d:b5:b8:e3:d1:c1:f5:0a:83:75:b2: 77:cc:2b:7c:ee:cb:a9:49:40:e8:62:fb:3d:01:4c:f2:13:9c: f1:42:0e:87:e6:d4:cf:08:bf:46:f9:f0:be:4c:d3:b9:52:45: f9:64:d3:51:73:2a:55:45:a4:35:cb:25:d1:3e:7d:07:49:2d: 2d:01:25:50 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENG QzYwNTcxMjlEQ0E5QTE2MEYyQTU5MjI3NzY1QTlFNjc0OTRCQjAeFw0yNTEyMDQy MDQ4NTBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDBBMTE5RjU3QUNDMDM3 NzBGODZDMkE4NkYwMjE3RTYwRkRDMTRBOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8IB5rjUIMNATwt6ll/I17z0pCB7NeecWi5XeZ8Bgi9eBAjg7Q SyH1XdS+jTVp8lkYafsWLxFHMEsSj2wVTIrdnDiW0vC5XHMvY+CQidByvxVg6p1Z frkE2MKZ8brBHMS5ZLbRxYzfrYgsPuK2B5Rd9vowIYJgTPBdTot/mXd31yr7G199 qSerm2e4xc7M8oRfncxjerQgsNIDLN4buS4eCE7sLnfdLnQzIXg571QbiZvgLhrr Yw2w4sGLThCocKPWzQJai/CvTe/pH0/yoDQjbWDVHf2OpcDiRZ/fWNxolsS37cu0 f2G3reQ77p71CPtEJo8ojZ3USwsU0STP/LTnAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUChGfV6zAN3D4bCqG8CF+YP3BSpYwHwYDVR0jBBgwFoAUDPxgVxKdypoWDypZ IndlqeZ0lLswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw NS9EUHhnVnhLZHlwb1dEeXBaSW5kbHFlWjBsTHMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RQeGdWeEtkeXBvV0R5cFpJbmRscWVaMGxMcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDUvRFB4Z1Z4S2R5cG9X RHlwWkluZGxxZVowbExzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAHI00A0S0qsVOtmbhly+nqAZBC1vuTaIDZLQTarsYXaU9n81W0e9bE+x2L1a EejhA8plJ+C/dPXpJFz6uutGjJPeCWPs1KioPOZmSANJwKkovND0a9vmgJXZOS8S 2i97U7BR7XrDBjGX3lxhqNnHVAxc6T8U6d8nJwVJLEO7CCzm5/LwwSYLGoGEVhXt o53dIgaqj8wrDGZiPIeFmr2EbAEjNZi4hUy7pGYZ2wZfb24HM/hxxlblEQIjZnAt tbjj0cH1CoN1snfMK3zuy6lJQOhi+z0BTPITnPFCDofm1M8Iv0b58L5M07lSRflk 01FzKlVFpDXLJdE+fQdJLS0BJVA= -----END CERTIFICATE-----Generated at Thu Dec 4 23:41:58 2025 by rpki-client