This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft File: cROxlpJLKFBkXlV_4f_EwNArHRk.mft (raw, json) Hash identifier: BvSZK94k6Z6Tyx4df5DgoSSYLgDxOWoEmN0QoSYdmtM= Subject key identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Certificate serial: 093F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft Manifest number: 093C Signing time: Wed 10 Dec 2025 01:46:38 +0000 Manifest this update: Wed 10 Dec 2025 01:46:38 +0000 Manifest next update: Wed 10 Dec 2025 07:46:38 +0000 Files and hashes: 1: 4zYhwzKtPO24VmBKnBMbLcfUubQ.roa (hash: ASMG37KNKcRiT+NFG3aHqq5FWzRUS2/RQrcmkNlZmJY=) 2: HjRiR4jL6G7qQnLmQvdv6kP3WqQ.roa (hash: 05icq/DbDs/2I8drlSuRNyAgvX8y1QfbbGL8a5DXtxM=) 3: cROxlpJLKFBkXlV_4f_EwNArHRk.crl (hash: 5Y4mUxvVVZUzsJ7cPlKpwXHD8UeIntHRz5U996nhX3s=) 4: opPXc4txplr0wt_5kJDOZ84M9EY.roa (hash: GwP5I7j08elwBP9g/jlNI0QLid9QzN8J3x6Riv56pkU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Validity Not Before: Dec 10 01:46:38 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C9E8CD681001D59A71F920C6960D52270BAF6506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:82:95:a5:8a:a7:2b:c0:59:48:1b:b1:9f:2c: a8:80:c6:ce:66:0a:59:59:b9:4f:8c:9a:cf:e6:14: 5e:56:cd:46:38:3c:a9:c7:b0:ec:fb:88:06:6e:ab: 6c:de:67:92:a5:87:c3:d5:b3:8d:90:40:06:e1:32: 62:0c:14:9b:5a:8a:e9:02:fe:b0:4f:f4:ec:7c:39: cb:22:39:16:46:c3:10:e1:70:84:db:a6:55:9f:bf: e7:18:73:83:bd:06:01:d0:b9:3a:83:d1:4c:a9:f7: e0:fb:ac:65:fd:09:e1:80:39:92:91:d5:80:5e:75: b3:e0:85:4d:b4:91:ad:bc:f3:e0:31:cc:8d:19:3e: 05:4a:77:9b:b6:a0:3e:cc:72:0a:72:1e:18:68:ce: cb:69:16:29:8a:88:c1:bb:27:e5:c7:45:ab:41:7d: 78:17:cc:ab:c7:58:7f:a9:aa:24:e4:62:df:b9:f6: 40:74:86:8f:22:0d:57:f6:c4:dd:62:2a:91:f3:a5: 61:35:38:52:90:dc:49:4c:26:0b:d8:2e:82:59:8b: 5f:2c:22:d2:c1:16:30:6e:f5:74:b4:39:1a:98:9d: cf:51:59:3f:0a:9f:35:7d:d2:f5:c4:f0:28:7f:0c: 37:fa:04:91:f7:42:52:34:ce:46:ac:3e:50:01:6a: 16:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06 X509v3 Authority Key Identifier: keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:0e:82:98:10:99:a0:31:4f:b8:21:70:18:ef:15:1d:75:f0: 48:25:22:35:4d:d1:05:09:9a:cf:8c:92:ae:13:49:5d:5b:dc: 95:ee:3f:ee:f3:b6:de:b7:9a:26:d0:75:cf:35:c3:f6:b3:49: 17:5a:89:23:95:d3:c4:37:d3:89:c7:a7:e5:07:43:9b:e0:ba: 33:e2:1f:c7:17:d9:e6:03:30:34:33:8f:f7:82:fd:1c:f6:d3: f7:81:b3:1a:f9:ee:33:c5:90:ba:d2:6e:d7:b5:8b:f3:8f:a2: bd:ba:e3:44:54:14:b2:13:64:2a:05:93:1d:95:4f:be:9d:5d: 7d:4c:1d:a1:cb:6a:c0:77:0c:81:f8:a1:88:0f:24:73:23:0a: fa:bc:90:6f:07:c0:05:2c:ec:c8:b7:06:58:45:af:d2:26:ca: cf:29:d5:e9:15:ae:ce:7f:1a:53:3e:63:ca:17:b8:d4:0c:1b: 77:89:2d:ee:f6:68:e8:03:2c:11:b3:98:77:cb:31:6e:28:f3: 4c:73:29:d4:e1:11:c3:b4:31:6d:b6:23:7a:ab:88:41:47:08: 56:47:a8:37:da:a7:f1:79:52:fc:9a:6b:26:51:99:3b:75:e6: 72:ba:3a:f1:a7:77:3c:74:ca:b5:d0:47:7d:8a:d5:92:d2:f6: 36:32:31:05 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzEx M0IxOTY5MjRCMjg1MDY0NUU1NTdGRTFGRkM0QzBEMDJCMUQxOTAeFw0yNTEyMTAw MTQ2MzhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEM5RThDRDY4MTAwMUQ1 OUE3MUY5MjBDNjk2MEQ1MjI3MEJBRjY1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDegpWliqcrwFlIG7GfLKiAxs5mCllZuU+Mms/mFF5WzUY4PKnH sOz7iAZuq2zeZ5Klh8PVs42QQAbhMmIMFJtaiukC/rBP9Ox8OcsiORZGwxDhcITb plWfv+cYc4O9BgHQuTqD0Uyp9+D7rGX9CeGAOZKR1YBedbPghU20ka288+AxzI0Z PgVKd5u2oD7McgpyHhhozstpFimKiMG7J+XHRatBfXgXzKvHWH+pqiTkYt+59kB0 ho8iDVf2xN1iKpHzpWE1OFKQ3ElMJgvYLoJZi18sItLBFjBu9XS0ORqYnc9RWT8K nzV90vXE8Ch/DDf6BJH3QlI0zkasPlABahb1AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUyejNaBAB1Zpx+SDGlg1SJwuvZQYwHwYDVR0jBBgwFoAUcROxlpJLKFBkXlV/ 4f/EwNArHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw OS9jUk94bHBKTEtGQmtYbFZfNGZfRXdOQXJIUmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NST3hscEpMS0ZCa1hsVl80Zl9Fd05BckhSay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDkvY1JPeGxwSkxLRkJr WGxWXzRmX0V3TkFySFJrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAMsOgpgQmaAxT7ghcBjvFR118EglIjVN0QUJms+Mkq4TSV1b3JXuP+7ztt63 mibQdc81w/azSRdaiSOV08Q304nHp+UHQ5vgujPiH8cX2eYDMDQzj/eC/Rz20/eB sxr57jPFkLrSbte1i/OPor2640RUFLITZCoFkx2VT76dXX1MHaHLasB3DIH4oYgP JHMjCvq8kG8HwAUs7Mi3BlhFr9Imys8p1ekVrs5/GlM+Y8oXuNQMG3eJLe72aOgD LBGzmHfLMW4o80xzKdThEcO0MW22I3qriEFHCFZHqDfap/F5UvyaayZRmTt15nK6 OvGndzx0yrXQR32K1ZLS9jYyMQU= -----END CERTIFICATE-----Generated at Wed Dec 10 07:13:02 2025 by rpki-client