This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft File: kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft (raw, json) Hash identifier: YPLV5fu8+MAHzRYxiU6Ghq3aFd00KrgG/TyOEFB/ZXE= Subject key identifier: E9:FC:E1:1C:80:A9:EC:0A:48:C7:6A:8E:AA:5D:DC:AC:B7:47:36:1D Authority key identifier: 91:5A:80:02:D6:77:FC:16:3B:74:75:9C:1C:BF:3E:6F:C2:1F:34:5D Certificate issuer: /CN=915A8002D677FC163B74759C1CBF3E6FC21F345D Certificate serial: 49C7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft Manifest number: 49C7 Signing time: Thu 04 Dec 2025 20:49:04 +0000 Manifest this update: Thu 04 Dec 2025 20:49:04 +0000 Manifest next update: Fri 05 Dec 2025 02:49:04 +0000 Files and hashes: 1: kVqAAtZ3_BY7dHWcHL8-b8IfNF0.crl (hash: cwT6BKOb7fcU7BoGwAFCWCEK4loonTIC9Hxw7j4oDz4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18887 (0x49c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=915A8002D677FC163B74759C1CBF3E6FC21F345D Validity Not Before: Dec 4 20:49:04 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E9FCE11C80A9EC0A48C76A8EAA5DDCACB747361D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:98:e4:46:b4:dd:13:5d:c9:8c:9c:ee:e1:b5: 23:9e:c3:76:6b:82:86:e3:91:63:cb:a9:25:99:d2: ef:0c:df:59:09:a1:4f:6f:97:d9:b7:f2:dd:d0:58: a4:f6:5b:31:e0:40:d5:8b:f7:e1:82:dd:ad:bc:81: 93:21:69:eb:80:a7:b1:42:87:0b:0f:83:e6:c7:19: e2:f9:ca:c4:dd:fc:90:9e:b3:71:27:04:5b:f6:06: e4:1b:54:5a:b3:a3:c0:95:33:a0:1a:24:11:0d:68: 27:ba:db:a8:23:95:96:e9:1d:8c:74:76:03:97:86: b2:b4:b6:70:31:6b:15:ad:6f:72:21:51:7c:b6:6d: 60:a2:e0:6d:21:25:5c:e7:4d:15:94:c1:0b:20:f8: ac:9a:78:09:c5:99:8b:66:a6:7e:58:f0:44:bb:ac: 71:29:3d:09:22:ec:56:3b:52:ec:29:7e:6c:e3:3c: 81:42:40:6e:21:8d:76:4c:2c:8e:da:b2:0b:1d:fb: 58:f8:a5:d4:88:57:3d:f6:11:88:b1:60:5e:f7:f8: e1:53:83:64:6d:a3:c9:35:bb:9b:d5:f2:8a:10:76: 4f:45:77:e3:e3:c9:6f:3b:7f:79:f7:71:b5:1e:0c: 7e:74:52:12:c7:b2:5f:a7:b3:19:1a:29:fb:6a:fc: da:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FC:E1:1C:80:A9:EC:0A:48:C7:6A:8E:AA:5D:DC:AC:B7:47:36:1D X509v3 Authority Key Identifier: keyid:91:5A:80:02:D6:77:FC:16:3B:74:75:9C:1C:BF:3E:6F:C2:1F:34:5D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:04:34:b2:5e:93:4a:49:80:25:8e:25:ca:78:e0:38:de:80: 9e:b6:fe:60:74:77:63:2f:9d:8d:42:61:9d:41:c0:b4:7b:34: ad:5e:20:94:f0:9a:dc:01:71:ed:ea:fc:ef:26:a6:03:9a:24: 1e:9c:03:78:ce:63:67:66:65:ed:82:40:6e:07:5c:3b:09:34: 5d:7e:1a:07:e6:f5:82:70:d4:d0:e9:52:ea:11:42:aa:51:fa: 0c:77:cd:97:c5:41:f2:42:e7:7c:3c:bf:25:fe:36:f8:bc:b5: 5c:f1:e5:4b:a7:3e:30:52:33:b4:c8:d1:96:b1:b4:01:df:62: 14:47:0f:72:b8:4c:c3:a7:fb:cd:0d:8c:e5:a7:3c:03:34:da: 0b:b3:12:65:fc:d7:de:8e:42:0a:d1:a6:2f:09:4c:74:05:45: 5e:7f:cf:94:2d:ef:05:d9:76:bc:08:46:9a:34:34:59:8a:cf: e4:94:84:12:04:2d:5c:74:93:a6:c6:f9:dc:0d:32:9e:3d:3a: 80:bd:e4:a9:cc:b3:db:0f:7c:15:61:39:cd:4f:f5:c6:a3:5f: f7:85:92:2d:01:0a:1b:e4:26:c1:0f:15:c5:ed:eb:07:1b:bc: c0:bd:78:07:14:ab:83:ed:a5:78:8b:48:ef:8c:89:84:b1:91: 17:47:50:0c -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICSccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE1 QTgwMDJENjc3RkMxNjNCNzQ3NTlDMUNCRjNFNkZDMjFGMzQ1RDAeFw0yNTEyMDQy MDQ5MDRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU5RkNFMTFDODBBOUVD MEE0OEM3NkE4RUFBNUREQ0FDQjc0NzM2MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvmORGtN0TXcmMnO7htSOew3ZrgobjkWPLqSWZ0u8M31kJoU9v l9m38t3QWKT2WzHgQNWL9+GC3a28gZMhaeuAp7FChwsPg+bHGeL5ysTd/JCes3En BFv2BuQbVFqzo8CVM6AaJBENaCe626gjlZbpHYx0dgOXhrK0tnAxaxWtb3IhUXy2 bWCi4G0hJVznTRWUwQsg+KyaeAnFmYtmpn5Y8ES7rHEpPQki7FY7UuwpfmzjPIFC QG4hjXZMLI7asgsd+1j4pdSIVz32EYixYF73+OFTg2Rto8k1u5vV8ooQdk9Fd+Pj yW87f3n3cbUeDH50UhLHsl+nsxkaKftq/NplAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU6fzhHICp7ApIx2qOql3crLdHNh0wHwYDVR0jBBgwFoAUkVqAAtZ3/BY7dHWc HL8+b8IfNF0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTMx L2tWcUFBdFozX0JZN2RIV2NITDgtYjhJZk5GMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAva1ZxQUF0WjNfQlk3ZEhXY0hMOC1iOElmTkYwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTMxL2tWcUFBdFozX0JZN2RI V2NITDgtYjhJZk5GMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCLBDSyXpNKSYAljiXKeOA43oCetv5gdHdjL52NQmGdQcC0ezStXiCU8JrcAXHt 6vzvJqYDmiQenAN4zmNnZmXtgkBuB1w7CTRdfhoH5vWCcNTQ6VLqEUKqUfoMd82X xUHyQud8PL8l/jb4vLVc8eVLpz4wUjO0yNGWsbQB32IURw9yuEzDp/vNDYzlpzwD NNoLsxJl/NfejkIK0aYvCUx0BUVef8+ULe8F2Xa8CEaaNDRZis/klIQSBC1cdJOm xvncDTKePTqAveSpzLPbD3wVYTnNT/XGo1/3hZItAQob5CbBDxXF7esHG7zAvXgH FKuD7aV4i0jvjImEsZEXR1AM -----END CERTIFICATE-----Generated at Thu Dec 4 23:39:02 2025 by rpki-client