This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft File: XrjFfXL3lG3XskIFmSiOyhU8twk.mft (raw, json) Hash identifier: d4las+ZW8py3NlyaV62qB4QNoxdNpXASbNczGjmx9e8= Subject key identifier: 32:D6:DF:0C:06:98:BD:E8:50:B6:1E:3D:63:D4:5F:EA:1E:83:60:70 Authority key identifier: 5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 Certificate issuer: /CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Certificate serial: 0400 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft Manifest number: 03F1 Signing time: Sat 13 Dec 2025 01:08:01 +0000 Manifest this update: Sat 13 Dec 2025 01:08:01 +0000 Manifest next update: Sat 13 Dec 2025 07:08:01 +0000 Files and hashes: 1: -kvC1odFCKGfYwuP6kDSWCxa5cs.roa (hash: tnU1N852eOToaS3ilm0JWRHgYOaWT3bJAfStolGhwEI=) 2: 53WDhDUk0P7JcNoey2WXAIu3VAg.roa (hash: iOmb24loXZqCFP8DSE+C3NqDD3n3CuCWWhW3g3TUjRA=) 3: AasOdNmv0zHu4_c9-AzjNCkc0uI.roa (hash: N8YP934qLXcJhJar5NjswQEwIUS7svcuTKLe+uxGRAM=) 4: Fg1ErO9BHoKc_FII_rFTeLSw7po.roa (hash: bgExHcY9aLohokDPnLtJC0JNz4gv06ZKUqd8rHdr04s=) 5: HHip6xGy3KjEAMb_7wUxr4yVUQM.roa (hash: VpCNBNNgdvIc1ysg1ppt9KGLdfl82u7emNBYfkXFK/4=) 6: IYfAkO30FFNQ0NLxemsf-zs6iNA.roa (hash: zIOBveQUSlLmVJeKCea/oWuVgo0OjGpDfgdm4U8G8mE=) 7: NpRrsLdPP0YpI7jjQD34UQ5k4G8.roa (hash: 01WGFpA57IU1hSI2uRZXrj1/+8ZrG6EjbFFy2SBjfaM=) 8: PDflsZuvg8-6ap7hZ_S293XAEs8.roa (hash: g7HtnFG2KoFpC4ixAAbI9CS9N4IAR7RNGgtVlUBc1Ic=) 9: TRsllJSkEPmnLGRBl0ebrTHdqUE.roa (hash: T9rV/A+m2L9HkkPUmRQCNU45A/Mqdg6my4PcVgCno8E=) 10: XrjFfXL3lG3XskIFmSiOyhU8twk.crl (hash: KtAdUfmHa7eU+9Dj4XRWXDtpdBEvx/PhKjspLJdNBrc=) 11: cWImJWVYwJtT2DVZSvess2PB44g.roa (hash: pCWOv2JcjWI9GgoFfSf2ihbHQ73eRrecxsMYo6WEBk4=) 12: ghPaf9745tJbRM2YiaM4gRBGbIQ.roa (hash: c5pyLTuOnotoKT0S1QS5Zk7365IadK9YXzhpFYcEJ8U=) 13: pCIYmEUUf4wGyVIT-YYL3EWzhYE.roa (hash: VQI1jAs2W0S0lWYH2aeurU8HN6osLbzDnzztG7Iqt1U=) 14: wLBCQS1OcFKf5jwfCrO2RuLyKxg.roa (hash: zvKAVQ1/Ys9GSlKB3gUEGolh8vjjW8BwNg1SlqEWfKU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 05:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1024 (0x400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Validity Not Before: Dec 13 01:08:01 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=32D6DF0C0698BDE850B61E3D63D45FEA1E836070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2d:4c:89:ed:6d:7b:32:ef:bf:90:2a:17:2e: d7:20:4d:c0:72:d0:75:d8:84:d8:45:99:0e:cb:09: 83:2b:65:1f:6c:e8:aa:9e:61:50:70:0b:cc:3d:a5: 51:af:6c:f9:47:a8:49:4d:2c:43:49:67:4d:1b:8f: fb:aa:45:00:c6:15:a9:91:6a:70:2d:52:3e:7d:70: 94:31:c8:95:9f:8b:8e:cd:84:dc:85:55:bb:b5:47: 0a:f5:82:91:20:67:b7:b3:78:da:2b:39:b7:94:35: 92:7d:aa:b0:e8:72:b4:46:8e:40:de:69:38:4a:4b: d1:8b:3a:e0:dc:4e:40:19:fa:87:be:45:5b:6d:22: 70:4a:7d:de:eb:a6:dc:72:51:25:08:a8:92:40:20: 4e:a0:21:69:4d:93:4e:34:8a:96:6a:90:c0:b5:cd: c5:a6:71:50:0d:27:9b:d8:f4:e7:46:e5:61:c6:2e: c6:86:b1:09:90:b3:1d:66:d9:9a:4f:73:2b:8c:c8: f2:18:a3:f3:d2:58:96:50:91:5f:ec:bd:5f:6c:74: e7:01:24:e1:bf:03:d9:47:c7:b2:60:6c:94:d6:7c: 51:e4:b2:79:ee:c8:58:7c:8c:d1:51:37:a6:a8:ff: 4d:77:e5:41:93:b6:d7:79:03:ff:69:72:81:2d:fa: 3f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D6:DF:0C:06:98:BD:E8:50:B6:1E:3D:63:D4:5F:EA:1E:83:60:70 X509v3 Authority Key Identifier: keyid:5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:16:3f:32:1e:a8:2c:42:1a:50:b4:10:84:4a:5c:6a:75:ab: 46:92:70:97:da:55:68:0d:fc:0a:fb:c4:a2:02:f7:c3:83:89: f7:0c:3f:66:e9:6f:b9:67:f6:a1:0e:83:4f:55:f5:dd:23:c5: 8c:f2:5d:b4:60:5c:c6:a6:ba:d8:da:f6:8f:40:d5:c8:24:3a: 71:62:cc:47:d8:85:7d:8a:2a:67:e3:8d:6e:44:50:59:65:21: 3b:bd:4e:7e:86:85:f3:fe:2e:87:d1:8b:4c:8f:b3:5c:b4:b1: bb:0c:1e:d8:40:cc:bb:3e:86:c5:cb:0e:74:68:10:66:af:d9: 7b:dd:bc:27:28:d8:4e:11:26:cb:ab:ad:40:b5:89:22:ac:2b: 3a:2e:1c:e7:58:1f:12:39:31:00:b1:63:5e:b4:b9:92:bb:44: ba:fd:45:bc:6b:db:dd:28:0c:25:b8:9d:97:67:e2:8b:64:bf: 5e:f1:e5:f4:92:46:9b:72:af:76:2d:58:1b:55:21:bc:67:e1: c3:2c:f2:65:7e:a6:a4:1e:cf:8c:34:0d:70:3a:ac:36:47:1e: 87:e7:95:99:b8:97:62:7d:16:d8:7b:75:64:32:ab:8c:7f:40: d0:2a:9a:93:2e:4c:b9:13:1c:ce:ef:9b:7e:f9:0d:54:b1:aa: f2:b6:d9:9a -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICBAAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUVC OEM1N0Q3MkY3OTQ2REQ3QjI0MjA1OTkyODhFQ0ExNTNDQjcwOTAeFw0yNTEyMTMw MTA4MDFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDMyRDZERjBDMDY5OEJE RTg1MEI2MUUzRDYzRDQ1RkVBMUU4MzYwNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRLUyJ7W17Mu+/kCoXLtcgTcBy0HXYhNhFmQ7LCYMrZR9s6Kqe YVBwC8w9pVGvbPlHqElNLENJZ00bj/uqRQDGFamRanAtUj59cJQxyJWfi47NhNyF Vbu1Rwr1gpEgZ7ezeNorObeUNZJ9qrDocrRGjkDeaThKS9GLOuDcTkAZ+oe+RVtt InBKfd7rptxyUSUIqJJAIE6gIWlNk040ipZqkMC1zcWmcVANJ5vY9OdG5WHGLsaG sQmQsx1m2ZpPcyuMyPIYo/PSWJZQkV/svV9sdOcBJOG/A9lHx7JgbJTWfFHksnnu yFh8jNFRN6ao/0135UGTttd5A/9pcoEt+j/TAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUMtbfDAaYvehQth49Y9Rf6h6DYHAwHwYDVR0jBBgwFoAUXrjFfXL3lG3XskIF mSiOyhU8twkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjQv WHJqRmZYTDNsRzNYc2tJRm1TaU95aFU4dHdrLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9YcmpGZlhMM2xHM1hza0lGbVNpT3loVTh0d2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NC9YcmpGZlhMM2xHM1hza0lG bVNpT3loVTh0d2subWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA XBY/Mh6oLEIaULQQhEpcanWrRpJwl9pVaA38CvvEogL3w4OJ9ww/ZulvuWf2oQ6D T1X13SPFjPJdtGBcxqa62Nr2j0DVyCQ6cWLMR9iFfYoqZ+ONbkRQWWUhO71OfoaF 8/4uh9GLTI+zXLSxuwwe2EDMuz6GxcsOdGgQZq/Ze928JyjYThEmy6utQLWJIqwr Oi4c51gfEjkxALFjXrS5krtEuv1FvGvb3SgMJbidl2fii2S/XvHl9JJGm3Kvdi1Y G1UhvGfhwyzyZX6mpB7PjDQNcDqsNkceh+eVmbiXYn0W2Ht1ZDKrjH9A0Cqaky5M uRMczu+bfvkNVLGq8rbZmg== -----END CERTIFICATE-----Generated at Sat Dec 13 05:12:52 2025 by rpki-client