This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft File: cROxlpJLKFBkXlV_4f_EwNArHRk.mft (raw, json) Hash identifier: C70V0U4EU+1SAyO38E3zS/wJwr7PTMO14XzBR3U/rbY= Subject key identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Certificate serial: 0981 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft Manifest number: 097E Signing time: Tue 23 Dec 2025 13:08:58 +0000 Manifest this update: Tue 23 Dec 2025 13:08:58 +0000 Manifest next update: Tue 23 Dec 2025 19:08:58 +0000 Files and hashes: 1: 4zYhwzKtPO24VmBKnBMbLcfUubQ.roa (hash: ASMG37KNKcRiT+NFG3aHqq5FWzRUS2/RQrcmkNlZmJY=) 2: HjRiR4jL6G7qQnLmQvdv6kP3WqQ.roa (hash: 05icq/DbDs/2I8drlSuRNyAgvX8y1QfbbGL8a5DXtxM=) 3: cROxlpJLKFBkXlV_4f_EwNArHRk.crl (hash: PLiHWAAucI4xjuQAYnnyKNqk6Hg5v+mutUeK97Fty+g=) 4: opPXc4txplr0wt_5kJDOZ84M9EY.roa (hash: GwP5I7j08elwBP9g/jlNI0QLid9QzN8J3x6Riv56pkU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 19:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2433 (0x981) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Validity Not Before: Dec 23 13:08:58 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C9E8CD681001D59A71F920C6960D52270BAF6506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:82:95:a5:8a:a7:2b:c0:59:48:1b:b1:9f:2c: a8:80:c6:ce:66:0a:59:59:b9:4f:8c:9a:cf:e6:14: 5e:56:cd:46:38:3c:a9:c7:b0:ec:fb:88:06:6e:ab: 6c:de:67:92:a5:87:c3:d5:b3:8d:90:40:06:e1:32: 62:0c:14:9b:5a:8a:e9:02:fe:b0:4f:f4:ec:7c:39: cb:22:39:16:46:c3:10:e1:70:84:db:a6:55:9f:bf: e7:18:73:83:bd:06:01:d0:b9:3a:83:d1:4c:a9:f7: e0:fb:ac:65:fd:09:e1:80:39:92:91:d5:80:5e:75: b3:e0:85:4d:b4:91:ad:bc:f3:e0:31:cc:8d:19:3e: 05:4a:77:9b:b6:a0:3e:cc:72:0a:72:1e:18:68:ce: cb:69:16:29:8a:88:c1:bb:27:e5:c7:45:ab:41:7d: 78:17:cc:ab:c7:58:7f:a9:aa:24:e4:62:df:b9:f6: 40:74:86:8f:22:0d:57:f6:c4:dd:62:2a:91:f3:a5: 61:35:38:52:90:dc:49:4c:26:0b:d8:2e:82:59:8b: 5f:2c:22:d2:c1:16:30:6e:f5:74:b4:39:1a:98:9d: cf:51:59:3f:0a:9f:35:7d:d2:f5:c4:f0:28:7f:0c: 37:fa:04:91:f7:42:52:34:ce:46:ac:3e:50:01:6a: 16:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 X509v3 Authority Key Identifier: keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:25:c0:7c:11:8d:05:dd:6a:e0:0a:85:03:e3:8b:db:75:de: 27:06:5c:a6:1d:f9:09:fa:a6:e0:8e:e1:ea:0f:e7:1d:77:55: fc:1d:75:5c:90:10:91:f6:77:65:a3:dd:3f:9d:0b:df:27:6f: 7a:1d:e7:4f:db:f4:47:05:ee:46:9c:07:05:d6:09:8a:ba:dd: 13:33:1e:7f:a3:be:91:2a:08:d8:80:4b:7b:0d:1d:fe:e5:f1: d9:33:4c:ab:da:66:69:b3:93:84:58:be:aa:2a:70:45:7f:d6: 98:eb:4b:2d:54:06:f2:ed:45:da:f6:77:c3:16:2a:9c:49:f9: 80:fe:cb:4b:a4:b7:ae:2f:46:d0:90:c4:38:29:ed:33:17:2c: 81:6e:8f:6a:4f:06:c0:84:9c:5c:c7:f9:81:d9:80:34:45:31: ec:53:1f:71:9f:5a:e6:4f:33:69:26:10:12:e9:4a:e6:f6:4b: c3:55:41:38:26:51:6c:92:ed:f7:9b:1d:dd:9a:69:11:eb:84: 7f:f4:06:be:0b:05:ba:d9:35:a8:be:e4:67:44:20:11:38:8e: b0:2e:e3:e1:c2:af:45:e6:de:2f:6b:4a:e8:34:fc:f5:33:31: ce:03:e3:4a:f6:1c:e8:f5:aa:fe:fb:b8:0a:98:ff:bc:3f:c8: de:a5:3e:59 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzEx M0IxOTY5MjRCMjg1MDY0NUU1NTdGRTFGRkM0QzBEMDJCMUQxOTAeFw0yNTEyMjMx MzA4NThaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEM5RThDRDY4MTAwMUQ1 OUE3MUY5MjBDNjk2MEQ1MjI3MEJBRjY1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDegpWliqcrwFlIG7GfLKiAxs5mCllZuU+Mms/mFF5WzUY4PKnH sOz7iAZuq2zeZ5Klh8PVs42QQAbhMmIMFJtaiukC/rBP9Ox8OcsiORZGwxDhcITb plWfv+cYc4O9BgHQuTqD0Uyp9+D7rGX9CeGAOZKR1YBedbPghU20ka288+AxzI0Z PgVKd5u2oD7McgpyHhhozstpFimKiMG7J+XHRatBfXgXzKvHWH+pqiTkYt+59kB0 ho8iDVf2xN1iKpHzpWE1OFKQ3ElMJgvYLoJZi18sItLBFjBu9XS0ORqYnc9RWT8K nzV90vXE8Ch/DDf6BJH3QlI0zkasPlABahb1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUyejNaBAB1Zpx+SDGlg1SJwuvZQYwHwYDVR0jBBgwFoAUcROxlpJLKFBkXlV/ 4f/EwNArHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw OS9jUk94bHBKTEtGQmtYbFZfNGZfRXdOQXJIUmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NST3hscEpMS0ZCa1hsVl80Zl9Fd05BckhSay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDkvY1JPeGxwSkxLRkJr WGxWXzRmX0V3TkFySFJrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJ4lwHwRjQXdauAKhQPji9t13icGXKYd+Qn6puCO4eoP5x13VfwddVyQEJH2 d2Wj3T+dC98nb3od50/b9EcF7kacBwXWCYq63RMzHn+jvpEqCNiAS3sNHf7l8dkz TKvaZmmzk4RYvqoqcEV/1pjrSy1UBvLtRdr2d8MWKpxJ+YD+y0ukt64vRtCQxDgp 7TMXLIFuj2pPBsCEnFzH+YHZgDRFMexTH3GfWuZPM2kmEBLpSub2S8NVQTgmUWyS 7febHd2aaRHrhH/0Br4LBbrZNai+5GdEIBE4jrAu4+HCr0Xm3i9rSug0/PUzMc4D 40r2HOj1qv77uAqY/7w/yN6lPlk= -----END CERTIFICATE-----Generated at Tue Dec 23 16:46:47 2025 by rpki-client