This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft File: zWXd_8pJD2leEvOlPuuv8O2ncFA.mft (raw, json) Hash identifier: Js2Uf5PRbZHf7wPKRnEd+5y8MzVxCpJQ49EzLay+ldA= Subject key identifier: EE:56:9C:73:AF:2A:B0:5C:81:BC:B9:16:40:D0:38:BC:FC:5A:B3:2B Authority key identifier: CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50 Certificate issuer: /CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050 Certificate serial: 0FE6 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft Manifest number: 0FDE Signing time: Thu 04 Dec 2025 20:47:58 +0000 Manifest this update: Thu 04 Dec 2025 20:47:58 +0000 Manifest next update: Fri 05 Dec 2025 02:47:58 +0000 Files and hashes: 1: aVEwty2RaQ7ZMQsM6gPJIDhHx0s.roa (hash: iOBwcScs0YJqCUy+IANX3ajyrol1E6jNhR8CiDpsub8=) 2: gDLooqo61cW4ELEjMHUqf6lNUOo.roa (hash: GKHBn3alZIpjJZe3i8slVi6XBHRZTK/7qbql7Fxl1gQ=) 3: zWXd_8pJD2leEvOlPuuv8O2ncFA.crl (hash: FbM/rIhs45Z/zPq3BygXwYiSwNC+mqWqsNmDD0yjjXU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4070 (0xfe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050 Validity Not Before: Dec 4 20:47:58 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=EE569C73AF2AB05C81BCB91640D038BCFC5AB32B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:88:b7:f2:85:fd:c1:0e:05:bb:70:87:d6:c8: 8f:03:11:7a:8f:31:93:06:9f:9f:0c:a7:b9:2c:3b: b3:80:4b:19:42:7b:96:56:32:0b:0e:b0:b8:83:70: 65:b1:f1:a9:24:33:e2:dc:e0:86:e2:0f:b9:29:ab: 6e:30:98:5f:7a:1a:43:17:16:f1:02:9f:b2:dc:bf: 42:18:af:fd:c3:05:f7:90:bc:ce:f2:98:02:13:b2: 6a:6f:d1:ad:e4:e4:fe:1a:84:75:61:b6:14:f9:28: d4:6d:31:71:89:24:a9:40:f1:5d:f2:aa:8d:a0:43: 03:db:64:93:1a:38:b1:d4:b7:20:bf:a1:d3:b0:64: d1:21:c6:0a:4b:81:18:62:2e:41:43:6d:f4:e1:12: 58:f2:6a:e3:9b:95:80:70:58:a0:df:71:35:7a:05: 11:dc:d1:6f:41:08:18:da:bb:5b:d9:51:d0:f7:fd: a8:c1:79:a4:42:2d:c9:fb:fb:64:a3:be:ac:0e:f3: a3:67:d5:0b:41:88:ec:91:3d:aa:b5:18:b0:17:4d: 76:a3:e1:7e:51:0f:f7:7b:c9:b6:03:4a:cf:1d:b9: 4e:1b:19:5f:91:f7:99:af:b2:a3:04:9a:2e:51:eb: da:af:0e:f8:52:ba:ae:45:50:9b:34:94:e1:f2:23: b2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:56:9C:73:AF:2A:B0:5C:81:BC:B9:16:40:D0:38:BC:FC:5A:B3:2B X509v3 Authority Key Identifier: keyid:CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:94:7f:92:0d:c7:f3:08:c8:90:a4:2a:99:c0:af:f6:ee:79: bf:50:2e:3a:88:18:db:e6:6f:ce:6a:8c:9a:3d:8b:5a:a7:87: 89:63:12:65:f3:5c:d6:60:e7:39:45:e9:4b:0e:35:28:0c:d5: fd:79:53:3e:20:b8:97:bc:1c:cb:9d:69:f5:fa:48:36:40:61: f3:d9:d0:ec:4a:19:48:44:b9:9e:ba:ce:53:d8:c8:fc:ed:ef: 6b:a4:8a:a2:8b:3f:51:e0:e6:82:38:fb:ea:5d:d5:b7:2b:0f: aa:35:f8:f4:ab:da:12:e4:dd:6c:59:7b:e0:f8:0a:92:86:86: 3e:83:f1:8a:c1:76:15:03:a4:af:52:e7:7d:47:11:51:8d:10: ff:5e:a7:82:9d:29:ad:ce:24:89:2c:56:8c:08:7a:92:9d:22: 68:aa:5a:91:1c:a4:62:0e:97:eb:b1:12:12:0a:b4:cc:2d:40: 1a:14:c2:f0:f5:50:e0:83:5f:93:99:5b:97:d0:a5:83:7d:b1: b4:92:b1:a9:33:e4:37:99:95:7c:a6:59:57:2b:45:52:77:27: 48:03:e5:d5:3e:0c:3d:80:40:8d:99:3f:a8:56:82:6e:9b:a2: 72:fc:e7:a4:53:13:fd:4d:ea:bc:1a:7d:e4:de:fa:f7:a5:cb: 88:d0:ba:4f -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICD+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Q2 NURERkZDQTQ5MEY2OTVFMTJGM0E1M0VFQkFGRjBFREE3NzA1MDAeFw0yNTEyMDQy MDQ3NThaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEVFNTY5QzczQUYyQUIw NUM4MUJDQjkxNjQwRDAzOEJDRkM1QUIzMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDiLfyhf3BDgW7cIfWyI8DEXqPMZMGn58Mp7ksO7OASxlCe5ZW MgsOsLiDcGWx8akkM+Lc4IbiD7kpq24wmF96GkMXFvECn7Lcv0IYr/3DBfeQvM7y mAITsmpv0a3k5P4ahHVhthT5KNRtMXGJJKlA8V3yqo2gQwPbZJMaOLHUtyC/odOw ZNEhxgpLgRhiLkFDbfThEljyauOblYBwWKDfcTV6BRHc0W9BCBjau1vZUdD3/ajB eaRCLcn7+2SjvqwO86Nn1QtBiOyRPaq1GLAXTXaj4X5RD/d7ybYDSs8duU4bGV+R 95mvsqMEmi5R69qvDvhSuq5FUJs0lOHyI7JBAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU7lacc68qsFyBvLkWQNA4vPxasyswHwYDVR0jBBgwFoAUzWXd/8pJD2leEvOl Puuv8O2ncFAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzc1 L3pXWGRfOHBKRDJsZUV2T2xQdXV2OE8ybmNGQS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveldYZF84cEpEMmxlRXZPbFB1dXY4TzJuY0ZBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzc1L3pXWGRfOHBKRDJsZUV2 T2xQdXV2OE8ybmNGQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAPlH+SDcfzCMiQpCqZwK/27nm/UC46iBjb5m/OaoyaPYtap4eJYxJl81zWYOc5 RelLDjUoDNX9eVM+ILiXvBzLnWn1+kg2QGHz2dDsShlIRLmeus5T2Mj87e9rpIqi iz9R4OaCOPvqXdW3Kw+qNfj0q9oS5N1sWXvg+AqShoY+g/GKwXYVA6SvUud9RxFR jRD/XqeCnSmtziSJLFaMCHqSnSJoqlqRHKRiDpfrsRISCrTMLUAaFMLw9VDgg1+T mVuX0KWDfbG0krGpM+Q3mZV8pllXK0VSdydIA+XVPgw9gECNmT+oVoJum6Jy/Oek UxP9Teq8Gn3k3vr3pcuI0LpP -----END CERTIFICATE-----Generated at Thu Dec 4 23:39:59 2025 by rpki-client