This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft File: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft (raw, json) Hash identifier: WOtKhuVUzekNgxxx3FCMwXhG7FvEa5KylgcEBr2UGqQ= Subject key identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: BCD1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft Manifest number: 44F5 Signing time: Sun 07 Dec 2025 05:47:47 +0000 Manifest this update: Sun 07 Dec 2025 05:47:46 +0000 Manifest next update: Sun 07 Dec 2025 11:47:46 +0000 Files and hashes: 1: 1pGP6piO9t8jbUERzDx-O4nhtLM.roa (hash: LgsHYyRchdYhJU6IjYfSwzPXfyeBNXFC/3oEFZaxr5E=) 2: 4wXgRujYTKfihSIvwuLg9rUOP1c.roa (hash: LPoTrqNW+wAwUy8l+OsMAuRG7zGEUq/hKav9nV2a/XY=) 3: 6wu7C6LJRgzw0YqBCypPrWvyqtk.roa (hash: Cj+QZPNg8QQ9fmyZfIpGADWCHBPEkN4OpbVPkdHjLNc=) 4: 9LZMbOJGzIWrwZIphlUZtLKBd_c.roa (hash: 2ZF77k5Fogyt6qSiuDajPcYoPcUD48QmqAkwhivvEH4=) 5: AvIoBSrNnMcpnZyXaLY_B_COOqM.roa (hash: tfuTWBj8mqfIFWkntrseawjOrEIi0ukcaV24gqQhJUE=) 6: GMWcWUxSW7KNiHJj9uwPAsBqP7Y.roa (hash: 10AaX2Pi2PlocZgFefDzLgmv48gY+mKqbJ6WT3j7Ido=) 7: JYCrBjgZV6MsWNHh9hZTx0OyX3E.roa (hash: Szxe3nPlim6EFyRqEaMQbemhwQA6BBk+FOVxyo/0K4M=) 8: Lzd2UazZEZK4D-Vi_LM5PwLTTJw.roa (hash: RYhKyfjdDrdFS+vtO7CbGxUt9WkZpShCr4z/pVEDnNo=) 9: No7gvAe0HiqMlWPX1eORii_qHNg.roa (hash: fsHInzrmBhxkqHfoeln8hYzxASuDDoDSJJ6xYdeYcAY=) 10: OUIPPHooV1ALckClul2pfWBmLqg.roa (hash: 6XOT8YZ8kF/EVX9D1InSsZ690VnQpd/DkePqc/YqrW4=) 11: OfvtK6UGD_bVKz8pj9fgFWb6zgM.roa (hash: 40esanXG/apJXlFMV+hzoWKw+5KjI8h/fUEMtsSTOfI=) 12: PZulO6TyppqWWuGzO34PYYz5Uo0.roa (hash: yxbl0kEI9vox9RiEQxUPGxMV7cLiY2SO7AtRn6kT6eA=) 13: QD7THVmiGOcCiQQPVumiDRR-d7I.roa (hash: BeWz4UxSBqt/CJdq0rqcX/Y2LZaQqSYTg9P3zaCSJy8=) 14: TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa (hash: BweYJDm2QhqDgPj1ChzAIBwgj2kCBYjRI7BD0uiJCsI=) 15: XsbnPodlNkVFgCzTwYVVRKP-GEQ.roa (hash: yacvbm4gKGYgc5wCZtcaOFLtzo1EC6TxZpfMKP9mzO4=) 16: Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa (hash: C1aXVx3626w3lC0qVGmhnn9Jj9Gy3ZQ5/AtReox93tU=) 17: dI40E7mkivpcN8WyoPDvjxlPtlE.roa (hash: Sh+mTAs1W3B0LzMmJpoelB9vGPHX1aSe2em9wv2FGIY=) 18: evHFKal_BLbftwTo5irhQaueD2U.roa (hash: 4JP/QyQZbAYdHqHseXBGNqOkAZdAPfM1lQ9PPjQdoAg=) 19: ffnzNkkLF4B5sEmRbbt-73LygMI.roa (hash: lfR0YWmJicUAI3V8hDlF+PVwpQclCZqiT/dKFEJOFIA=) 20: hR62UFmQ6Wn5GgsWZT2oXzcN1Dc.roa (hash: LWA0NiQ1gTwYbl31JeHmmbwS/FF4yC9D50l7DYXfoq0=) 21: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl (hash: yWZ6SJwmcKnDWbfssyP3SKvZC8WfTT0vkBx7Dja25v4=) 22: jgjN0IxKws8jDdNRAOYX1CdHt1k.roa (hash: T74oJ4uT1nguMzcsxBkKWMEPcQYXZBdgwGGLqKFQyh4=) 23: qe20gAZbuwVu_t2cnfTPZkvTqlA.roa (hash: rEzVYj2gFODsMAGdxG3xTH2suYUBY7xxuVYE2eGkAMI=) 24: vQGMLXKuPigq7LZo-Pr7Y9YiM-c.roa (hash: zTk7jcBriJqG2gtlVugmX1oERrjs/CQDeKUtk6NsPUk=) 25: ywCQM1l3K43_E-WiIpSnSbWqOvE.roa (hash: hgEPrLxxvDkD6XngS/o1Hzja3xdYFuhr99lC4QpzvhQ=) 26: zWbsOJJ1UwVI5pnA1_vMfQ9v7YA.roa (hash: BBz3fH6gauC81KGSU8veCkKr25fDnWrXmEydKqB3KzU=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 11:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48337 (0xbcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 7 05:47:46 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=5ACA5AE6103E8498345BCBABD47A443AC093C25A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f0:f9:68:52:99:6a:aa:0f:1d:28:ef:d6:32: 00:4b:4b:5b:e0:b8:b8:b9:11:b3:01:db:61:3e:66: 5e:29:0d:9d:15:62:48:a5:9a:8d:56:e4:ae:2c:e8: d7:c7:ad:fb:37:56:a2:f7:b7:17:64:bc:75:c9:84: df:61:26:6d:a0:94:db:60:2d:da:09:36:45:28:f1: d9:ff:98:4e:b8:6d:f9:7d:32:b4:c8:d5:ca:98:92: 04:70:f3:f0:98:8f:66:02:98:6f:8d:f9:48:98:68: 17:4b:99:d3:16:04:49:11:32:f7:db:5b:8e:bd:6c: 8f:e9:20:b7:11:b0:c5:47:f9:69:82:e9:84:ed:8d: 46:2e:a3:90:74:d5:31:bc:f7:36:b9:26:77:39:bb: 0f:c7:e2:59:11:83:9b:c8:41:1d:4c:cc:1f:5a:13: 99:ba:9a:1b:70:9d:f1:5e:88:99:c5:73:23:eb:c3: 8f:0b:61:f0:8d:d7:54:84:5a:9f:93:5a:c3:22:fa: c0:7a:0c:ee:bb:c9:34:3d:82:18:5f:52:96:8f:e1: e9:1f:4e:be:5b:ad:e5:88:61:79:9c:22:91:1f:64: 62:5b:6f:0e:0b:c8:6a:9d:34:03:13:56:2b:5f:36: b6:75:4f:d2:79:06:ae:67:e0:7f:59:46:9c:66:2e: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ef:50:2d:ec:4f:77:3c:f7:bd:60:60:a4:53:d1:91:32:62: 7c:83:6a:ef:b5:02:98:7e:bd:4d:db:24:1a:d3:bf:8b:6a:f5: 9e:0e:9c:6a:41:b1:0e:d0:7a:70:97:65:a0:f1:3d:78:b9:e1: c0:58:75:b3:96:81:cd:f9:24:31:7a:59:ad:f5:9e:f6:3e:ea: dc:d6:3c:36:2b:4c:d2:c5:e1:23:33:5b:ee:c7:e7:e7:69:2b: 37:a7:14:b8:8e:21:97:c3:e2:11:80:35:90:4b:76:b2:3d:83: e4:b7:1e:85:9b:6a:82:40:fe:0d:ef:78:fc:25:7a:a1:b8:e5: 30:ab:9b:be:15:2c:e1:1b:d5:f5:f8:b4:66:65:e7:36:7b:0e: 95:30:59:35:29:9e:6e:e5:6a:e2:38:fd:de:1b:86:ad:e2:aa: 9a:84:50:5f:4b:c3:e9:3a:62:61:3a:72:a2:03:4c:a1:1e:15: 13:1d:6c:26:77:a4:29:9a:72:48:a6:97:7a:88:ff:91:f5:2c: 80:20:29:d8:f8:1b:20:78:b0:d6:af:65:35:db:33:8a:91:9c: 92:3e:e5:53:60:12:c3:01:0d:07:61:c4:3f:44:63:b1:f5:a8: 22:34:6d:cf:f3:9f:76:e6:86:e5:38:7c:fd:d8:52:fa:93:a5: 30:97:e2:36 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIDALzRMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjA3 MDU0NzQ2WhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyg1QUNBNUFFNjEwM0U4 NDk4MzQ1QkNCQUJENDdBNDQzQUMwOTNDMjVBMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA2/D5aFKZaqoPHSjv1jIAS0tb4Li4uRGzAdthPmZeKQ2dFWJI pZqNVuSuLOjXx637N1ai97cXZLx1yYTfYSZtoJTbYC3aCTZFKPHZ/5hOuG35fTK0 yNXKmJIEcPPwmI9mAphvjflImGgXS5nTFgRJETL321uOvWyP6SC3EbDFR/lpgumE 7Y1GLqOQdNUxvPc2uSZ3ObsPx+JZEYObyEEdTMwfWhOZupobcJ3xXoiZxXMj68OP C2HwjddUhFqfk1rDIvrAegzuu8k0PYIYX1KWj+HpH06+W63liGF5nCKRH2RiW28O C8hqnTQDE1YrXza2dU/SeQauZ+B/WUacZi4iuwIDAQABo4ICDDCCAggwHQYDVR0O BBYEFFrKWuYQPoSYNFvLq9R6RDrAk8JaMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL2l1VFBlTFNkOExM QjBwMHk1SXFVT3VUMEdzdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCs71At7E93PPe9YGCkU9GRMmJ8g2rvtQKYfr1N2yQa07+LavWeDpxqQbEO 0Hpwl2Wg8T14ueHAWHWzloHN+SQxelmt9Z72Purc1jw2K0zSxeEjM1vux+fnaSs3 pxS4jiGXw+IRgDWQS3ayPYPktx6Fm2qCQP4N73j8JXqhuOUwq5u+FSzhG9X1+LRm Zec2ew6VMFk1KZ5u5WriOP3eG4at4qqahFBfS8PpOmJhOnKiA0yhHhUTHWwmd6Qp mnJIppd6iP+R9SyAICnY+BsgeLDWr2U12zOKkZySPuVTYBLDAQ0HYcQ/RGOx9agi NG3P85925oblOHz92FL6k6Uwl+I2 -----END CERTIFICATE-----Generated at Sun Dec 7 07:28:47 2025 by rpki-client