This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft File: DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft (raw, json) Hash identifier: 79lzD97Y+ffMBgskffdYtfTGj4YBNtbQYHDscXYvVNY= Subject key identifier: 5C:64:82:33:F6:74:8F:CB:AC:F1:42:D4:6B:E9:6E:4F:03:96:2A:68 Authority key identifier: 0D:4A:3B:62:14:07:8C:A4:8E:66:F3:B8:C5:4F:1C:5F:DB:C9:DE:74 Certificate issuer: /CN=0D4A3B6214078CA48E66F3B8C54F1C5FDBC9DE74 Certificate serial: 1FF2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft Manifest number: 1FF2 Signing time: Thu 04 Dec 2025 20:48:40 +0000 Manifest this update: Thu 04 Dec 2025 20:48:40 +0000 Manifest next update: Fri 05 Dec 2025 02:48:40 +0000 Files and hashes: 1: DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.crl (hash: z/pkfrS7n5fg+Rot2HscWhZvMiykZ4o24KLhcomC1Og=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8178 (0x1ff2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D4A3B6214078CA48E66F3B8C54F1C5FDBC9DE74 Validity Not Before: Dec 4 20:48:40 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=5C648233F6748FCBACF142D46BE96E4F03962A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fe:be:28:bc:e8:92:51:ab:b2:1b:df:f9:86: 30:13:3c:b6:06:e1:aa:a8:65:99:2d:88:d4:d5:a3: 2c:7b:4d:1d:c6:03:6e:7b:0a:f9:be:24:d6:f4:e1: 6e:b9:73:f2:b9:37:30:dd:bc:a8:a5:ab:65:f0:72: ce:42:40:b2:e4:57:09:70:ba:f6:02:ea:c4:5b:d3: 78:b0:f9:45:c2:43:eb:e5:6f:6f:ac:b9:71:a8:5f: 86:fb:bc:5a:40:fc:e7:34:21:96:7f:e9:53:a3:49: 69:21:42:4d:0e:f2:ec:b0:48:6c:4f:93:67:97:fc: 45:86:cd:e4:3b:13:a9:a7:46:9a:32:8c:44:3f:84: 21:18:21:86:30:e6:71:31:cc:47:0d:d7:8b:7c:a8: 9e:7d:70:74:56:4b:6c:92:9d:51:24:b9:7f:61:7f: 28:b6:69:8b:fe:29:be:33:2f:2a:87:b1:e5:76:a7: 8f:a3:72:7f:6d:e1:bf:8d:71:1b:dd:91:73:92:16: 3b:17:a6:7c:eb:47:39:aa:2b:65:0f:d0:94:82:33: 90:37:f4:32:d0:8c:72:86:17:12:4b:74:82:9b:32: 07:93:12:3b:c7:c5:84:c2:2f:71:47:aa:af:cc:4d: 17:7d:17:2f:12:e8:cb:84:ed:de:fd:d4:e1:03:45: 7b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:64:82:33:F6:74:8F:CB:AC:F1:42:D4:6B:E9:6E:4F:03:96:2A:68 X509v3 Authority Key Identifier: keyid:0D:4A:3B:62:14:07:8C:A4:8E:66:F3:B8:C5:4F:1C:5F:DB:C9:DE:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:60:02:22:22:16:31:5c:b3:64:a4:9d:11:3d:e3:43:95:5f: 50:58:7f:03:37:c1:d5:06:36:b8:72:e3:9a:63:e1:99:a2:b6: 31:c4:cf:a6:7d:7c:94:e8:80:1b:67:27:b4:8d:eb:c0:75:5a: 46:0f:e1:bc:f2:d3:ef:65:9b:5e:bd:d5:b8:59:b9:29:ea:70: bc:0c:b7:da:bf:27:5b:40:98:97:0a:d5:73:62:a6:03:ec:91: e1:51:b6:33:5f:d2:53:4c:68:e5:dd:04:12:9e:c5:a9:c7:18: 76:b8:3b:50:00:7d:d9:db:f1:74:84:87:96:c2:80:67:01:9c: d7:b2:17:66:d6:82:e1:b7:d3:e2:bc:07:14:46:a4:3a:54:fa: 3a:b3:d1:7b:07:84:30:bd:d2:a3:e9:86:f4:8d:00:26:d8:3e: 96:8a:c6:b4:0f:a0:f4:7d:5d:c8:75:1b:05:5d:9f:4a:8d:d4: 85:81:bc:23:74:bc:9d:f7:4a:f9:ef:73:fe:28:a5:76:6e:77: fa:8d:92:58:47:09:40:1f:70:bc:de:f6:61:91:c4:9d:62:8c: f4:b6:a9:12:ba:ef:96:4e:db:85:2a:72:2a:57:76:38:e7:e1: 8e:19:8f:03:15:43:05:d0:30:76:9a:dd:36:d0:86:55:0d:25: 07:4e:6a:ce -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICH/IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ0 QTNCNjIxNDA3OENBNDhFNjZGM0I4QzU0RjFDNUZEQkM5REU3NDAeFw0yNTEyMDQy MDQ4NDBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDVDNjQ4MjMzRjY3NDhG Q0JBQ0YxNDJENDZCRTk2RTRGMDM5NjJBNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe/r4ovOiSUauyG9/5hjATPLYG4aqoZZktiNTVoyx7TR3GA257 Cvm+JNb04W65c/K5NzDdvKilq2Xwcs5CQLLkVwlwuvYC6sRb03iw+UXCQ+vlb2+s uXGoX4b7vFpA/Oc0IZZ/6VOjSWkhQk0O8uywSGxPk2eX/EWGzeQ7E6mnRpoyjEQ/ hCEYIYYw5nExzEcN14t8qJ59cHRWS2ySnVEkuX9hfyi2aYv+Kb4zLyqHseV2p4+j cn9t4b+NcRvdkXOSFjsXpnzrRzmqK2UP0JSCM5A39DLQjHKGFxJLdIKbMgeTEjvH xYTCL3FHqq/MTRd9Fy8S6MuE7d791OEDRXvdAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUXGSCM/Z0j8us8ULUa+luTwOWKmgwHwYDVR0jBBgwFoAUDUo7YhQHjKSOZvO4 xU8cX9vJ3nQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTk1 L0RVbzdZaFFIaktTT1p2TzR4VThjWDl2SjNuUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvRFVvN1loUUhqS1NPWnZPNHhVOGNYOXZKM25RLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTk1L0RVbzdZaFFIaktTT1p2 TzR4VThjWDl2SjNuUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB8YAIiIhYxXLNkpJ0RPeNDlV9QWH8DN8HVBja4cuOaY+GZorYxxM+mfXyU6IAb Zye0jevAdVpGD+G88tPvZZtevdW4Wbkp6nC8DLfavydbQJiXCtVzYqYD7JHhUbYz X9JTTGjl3QQSnsWpxxh2uDtQAH3Z2/F0hIeWwoBnAZzXshdm1oLht9PivAcURqQ6 VPo6s9F7B4QwvdKj6Yb0jQAm2D6Wisa0D6D0fV3IdRsFXZ9KjdSFgbwjdLyd90r5 73P+KKV2bnf6jZJYRwlAH3C83vZhkcSdYoz0tqkSuu+WTtuFKnIqV3Y45+GOGY8D FUMF0DB2mt020IZVDSUHTmrO -----END CERTIFICATE-----Generated at Thu Dec 4 23:40:33 2025 by rpki-client