This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft File: MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft (raw, json) Hash identifier: 2xYw/5DTL0X3IRzribiflRt3IY+G/JzsA6sYVsD+mPQ= Subject key identifier: 61:9D:7A:78:02:41:74:56:E9:3C:0E:3E:02:1B:96:4B:CD:13:C6:91 Authority key identifier: 31:24:30:90:5B:96:28:14:29:D4:E1:14:10:DA:0A:35:75:08:3C:04 Certificate issuer: /CN=312430905B96281429D4E11410DA0A3575083C04 Certificate serial: 082B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft Manifest number: 082B Signing time: Wed 10 Dec 2025 01:50:27 +0000 Manifest this update: Wed 10 Dec 2025 01:50:27 +0000 Manifest next update: Wed 10 Dec 2025 07:50:27 +0000 Files and hashes: 1: MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl (hash: o+txfeVE9iZT7nBI3zRslYB1JwouHI426LOKWwPaXgo=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=312430905B96281429D4E11410DA0A3575083C04 Validity Not Before: Dec 10 01:50:27 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=619D7A7802417456E93C0E3E021B964BCD13C691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f0:cd:da:1f:39:c0:51:b3:c7:fb:ac:61:a1: e1:92:96:4b:ac:88:5b:ab:11:3b:34:a1:b5:85:aa: bb:1f:38:d6:db:15:a2:f8:8c:67:9f:ce:ad:0a:35: 32:eb:39:59:f3:c9:39:0b:11:bb:66:23:0b:6c:eb: 95:11:2b:a0:d3:8f:36:a8:dd:c8:c0:bf:fd:c4:11: fe:5f:dd:34:ba:cc:ed:26:e6:74:75:9d:63:fc:56: 54:a0:72:79:b2:d0:75:07:d3:b6:fb:28:61:bd:ac: e3:3e:2c:cc:92:d6:e1:5e:14:6f:1b:0c:47:93:66: 9d:1e:2d:11:21:b7:08:af:49:02:a4:21:7d:5e:8a: 65:36:24:bb:50:74:6f:60:59:19:52:aa:8b:01:03: 13:d6:48:d3:c4:ab:81:fe:1f:55:af:ec:05:2f:30: 71:85:72:95:71:6e:5b:74:ef:87:59:cc:9b:e1:d1: 38:49:08:71:bf:30:b7:fc:f6:8b:8b:94:78:82:a1: 73:67:09:87:51:c4:6c:ed:c5:e2:51:24:88:dd:39: 0d:d4:0d:cc:bd:b2:cd:c0:3f:b5:88:48:e8:83:3b: 0d:81:3e:67:15:0e:cc:19:65:2e:f1:b0:cf:1d:f5: 2a:12:ab:31:8c:bb:93:c0:db:77:bf:b5:72:c5:0d: 4f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9D:7A:78:02:41:74:56:E9:3C:0E:3E:02:1B:96:4B:CD:13:C6:91 X509v3 Authority Key Identifier: keyid:31:24:30:90:5B:96:28:14:29:D4:E1:14:10:DA:0A:35:75:08:3C:04 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:16:5e:70:e6:5c:3d:65:5e:74:cf:36:7c:d1:f5:a5:0e:b1: ed:61:72:32:41:ee:3b:15:65:7f:7f:2f:ea:5a:a8:09:8b:f1: 19:e1:00:e3:31:8f:a0:15:0a:3f:a2:24:8a:eb:be:b6:57:a2: 72:af:71:0a:64:01:e1:63:08:19:95:c4:87:46:24:bb:7f:9f: 0d:0c:06:0d:ec:46:a7:fe:5f:28:b0:4f:79:8d:02:f5:ff:19: 26:6c:80:25:d6:5f:84:38:ee:e0:28:6e:90:79:b1:c8:a0:03: 41:ff:f4:d0:0e:6e:a7:6b:54:e7:f6:5b:68:b4:1c:e8:78:17: 68:71:02:d9:1a:17:46:e8:09:4c:92:c7:cf:31:6c:36:12:42: f6:98:f0:fb:8c:9a:26:02:20:89:4a:e1:9b:b7:ff:17:af:47: 90:9a:9d:a9:e7:34:a1:02:ca:13:af:d1:85:83:af:ba:0d:60: db:a8:76:8e:a7:3c:f9:d3:c3:c4:c1:ab:9d:bb:39:c3:4f:1c: 4d:68:99:aa:e9:db:d8:08:a5:e5:e6:b1:75:a2:b9:81:49:24: e5:ed:1c:e6:f1:33:9a:dd:4d:58:49:c0:cc:6e:ea:b0:7a:7b: 38:cc:3d:5d:77:ae:ef:ec:88:ee:f1:5c:b3:2d:0f:01:81:17: 84:2d:19:31 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICCCswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEy NDMwOTA1Qjk2MjgxNDI5RDRFMTE0MTBEQTBBMzU3NTA4M0MwNDAeFw0yNTEyMTAw MTUwMjdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDYxOUQ3QTc4MDI0MTc0 NTZFOTNDMEUzRTAyMUI5NjRCQ0QxM0M2OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC78M3aHznAUbPH+6xhoeGSlkusiFurETs0obWFqrsfONbbFaL4 jGefzq0KNTLrOVnzyTkLEbtmIwts65URK6DTjzao3cjAv/3EEf5f3TS6zO0m5nR1 nWP8VlSgcnmy0HUH07b7KGG9rOM+LMyS1uFeFG8bDEeTZp0eLREhtwivSQKkIX1e imU2JLtQdG9gWRlSqosBAxPWSNPEq4H+H1Wv7AUvMHGFcpVxblt074dZzJvh0ThJ CHG/MLf89ouLlHiCoXNnCYdRxGztxeJRJIjdOQ3UDcy9ss3AP7WISOiDOw2BPmcV DswZZS7xsM8d9SoSqzGMu5PA23e/tXLFDU/TAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUYZ16eAJBdFbpPA4+AhuWS80TxpEwHwYDVR0jBBgwFoAUMSQwkFuWKBQp1OEU ENoKNXUIPAQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy Mi9NU1F3a0Z1V0tCUXAxT0VVRU5vS05YVUlQQVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL01TUXdrRnVXS0JRcDFPRVVFTm9LTlhVSVBBUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjIvTVNRd2tGdVdLQlFw MU9FVUVOb0tOWFVJUEFRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKwWXnDmXD1lXnTPNnzR9aUOse1hcjJB7jsVZX9/L+paqAmL8RnhAOMxj6AV Cj+iJIrrvrZXonKvcQpkAeFjCBmVxIdGJLt/nw0MBg3sRqf+XyiwT3mNAvX/GSZs gCXWX4Q47uAobpB5scigA0H/9NAObqdrVOf2W2i0HOh4F2hxAtkaF0boCUySx88x bDYSQvaY8PuMmiYCIIlK4Zu3/xevR5CanannNKECyhOv0YWDr7oNYNuodo6nPPnT w8TBq527OcNPHE1omarp29gIpeXmsXWiuYFJJOXtHObxM5rdTVhJwMxu6rB6ezjM PV13ru/siO7xXLMtDwGBF4QtGTE= -----END CERTIFICATE-----Generated at Wed Dec 10 07:10:15 2025 by rpki-client