This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft File: th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft (raw, json) Hash identifier: Oj0AmqLkRwqTMHHCx1kNjoAJ+Mmulj+nXBWR8Thhizk= Subject key identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B Authority key identifier: B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC Certificate issuer: /CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC Certificate serial: 0695 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft Manifest number: 0695 Signing time: Wed 10 Dec 2025 01:50:14 +0000 Manifest this update: Wed 10 Dec 2025 01:50:14 +0000 Manifest next update: Wed 10 Dec 2025 07:50:14 +0000 Files and hashes: 1: th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl (hash: 7iAydB8v20bNuBgvllChptgHjxrPhmFuwQh6pFTvet8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1685 (0x695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC Validity Not Before: Dec 10 01:50:14 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=186E78B45B3C95AF28F99FC95D6D94940A37551B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:c6:9f:2c:76:70:3d:16:0a:60:0c:28:9d: 0b:6e:02:15:0e:70:04:d0:29:47:03:3c:0b:c3:d4: 2e:d2:75:0e:ae:c0:63:70:93:c2:34:17:5a:cc:ce: 15:f6:7a:c8:84:9a:ac:9e:6b:a3:69:2c:43:28:77: d9:af:a0:84:40:eb:b2:39:05:b9:b8:ba:c6:a3:9d: 02:aa:02:c0:33:24:9c:05:b7:eb:04:7a:98:0e:0a: f3:2d:a9:c4:59:52:36:21:d2:c0:39:47:e2:13:81: 57:60:4f:a8:7b:6c:4e:f8:26:f8:15:f8:aa:b1:21: 91:c7:63:e8:23:65:39:20:4e:1a:ff:13:66:69:bf: f6:22:44:57:bf:17:8c:bd:e4:d1:51:45:63:7a:e3: 5c:cd:2f:bc:fa:33:3f:9b:12:3e:2c:80:d9:3d:64: 81:00:bc:71:04:f9:4c:3d:00:8f:dd:ee:5a:83:0a: 84:34:cd:b6:39:52:8e:bf:af:6a:c4:4a:86:24:17: fd:b6:cf:8a:46:d6:c9:1e:12:b4:95:2e:54:a3:10: 33:fa:36:8e:c2:4a:a8:d5:ac:0e:ef:73:3f:d1:1c: ed:44:b6:f5:80:fa:02:da:cf:06:f8:a4:cd:0f:3b: b1:27:10:ec:52:61:b6:bc:94:7a:f8:00:32:6f:fd: 37:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B X509v3 Authority Key Identifier: keyid:B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:62:a9:b9:f7:38:36:75:68:91:03:fb:50:00:50:2b:cf:2f: 98:53:0b:9d:1a:77:e2:a8:ec:cf:57:23:c2:e1:c5:fd:b1:6d: 13:6c:18:ff:e3:85:06:2e:94:da:62:81:32:e9:9e:a2:0a:42: cb:53:93:99:c5:08:6c:e5:98:d2:2e:e3:6b:11:15:06:9d:f1: 9b:33:eb:27:fa:95:3f:eb:c9:1b:25:c3:df:da:cb:2b:09:98: fb:da:be:8c:05:8d:ee:ae:3c:35:71:02:c8:da:f9:af:0e:04: 6c:0b:be:3f:b1:eb:94:fc:e1:81:31:b5:4a:06:a2:14:35:1e: 62:b3:a2:ef:dd:ab:ba:9c:54:c1:fd:dc:13:ad:8c:10:a7:39: ae:cd:36:33:62:af:b0:f4:ea:a4:19:5e:22:ac:07:1e:f2:6e: 91:fc:92:c3:40:e4:b1:8c:1f:3b:77:8c:11:21:37:7d:13:5c: bb:3e:d1:80:df:2e:04:4b:4d:fb:8e:2b:f7:dc:ba:b6:07:45: eb:b7:75:a4:c4:be:2a:28:3c:1c:38:e1:9a:df:5b:56:b3:12: 1b:99:2c:92:52:c8:91:d8:c5:d8:bc:25:93:c9:2b:9c:e1:92: 05:75:2b:b2:95:e0:d1:b3:dc:08:a8:b5:8c:50:0c:a1:53:80: f9:7b:93:89 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjYx RTkxMzhDRkVCN0Q4OUFCOENGNTQyNzZFRDI5QjNEODA4RTBCQzAeFw0yNTEyMTAw MTUwMTRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDE4NkU3OEI0NUIzQzk1 QUYyOEY5OUZDOTVENkQ5NDk0MEEzNzU1MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1G8afLHZwPRYKYAwonQtuAhUOcATQKUcDPAvD1C7SdQ6uwGNw k8I0F1rMzhX2esiEmqyea6NpLEMod9mvoIRA67I5Bbm4usajnQKqAsAzJJwFt+sE epgOCvMtqcRZUjYh0sA5R+ITgVdgT6h7bE74JvgV+KqxIZHHY+gjZTkgThr/E2Zp v/YiRFe/F4y95NFRRWN641zNL7z6Mz+bEj4sgNk9ZIEAvHEE+Uw9AI/d7lqDCoQ0 zbY5Uo6/r2rESoYkF/22z4pG1skeErSVLlSjEDP6No7CSqjVrA7vcz/RHO1EtvWA +gLazwb4pM0PO7EnEOxSYba8lHr4ADJv/TchAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUGG54tFs8la8o+Z/JXW2UlAo3VRswHwYDVR0jBBgwFoAUth6ROM/rfYmrjPVC du0ps9gI4LwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 NS90aDZST01fcmZZbXJqUFZDZHUwcHM5Z0k0THcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3RoNlJPTV9yZlltcmpQVkNkdTBwczlnSTRMdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDUvdGg2Uk9NX3JmWW1y alBWQ2R1MHBzOWdJNEx3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBALtiqbn3ODZ1aJED+1AAUCvPL5hTC50ad+Ko7M9XI8Lhxf2xbRNsGP/jhQYu lNpigTLpnqIKQstTk5nFCGzlmNIu42sRFQad8Zsz6yf6lT/ryRslw9/ayysJmPva vowFje6uPDVxAsja+a8OBGwLvj+x65T84YExtUoGohQ1HmKzou/dq7qcVMH93BOt jBCnOa7NNjNir7D06qQZXiKsBx7ybpH8ksNA5LGMHzt3jBEhN30TXLs+0YDfLgRL TfuOK/fcurYHReu3daTEviooPBw44ZrfW1azEhuZLJJSyJHYxdi8JZPJK5zhkgV1 K7KV4NGz3AiotYxQDKFTgPl7k4k= -----END CERTIFICATE-----Generated at Wed Dec 10 07:18:10 2025 by rpki-client