This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft File: Lowd4ZR0A1y-pngFS22U9a-lM2E.mft (raw, json) Hash identifier: yIy9cT9DmAwLeKh8C0YtoeFeseAw02jdIENnrzcTXT4= Subject key identifier: FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C Authority key identifier: 2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61 Certificate issuer: /CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361 Certificate serial: 1EA1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft Manifest number: 1E8F Signing time: Sat 06 Dec 2025 21:16:50 +0000 Manifest this update: Sat 06 Dec 2025 21:16:50 +0000 Manifest next update: Sun 07 Dec 2025 03:16:50 +0000 Files and hashes: 1: -Mm11tejrqk61wSAldRhB69HTQA.roa (hash: lRVxJ7t0/AkOywuPuigCifvcZhUs87v2Uh4KWM90fFc=) 2: 450N7fwLv8pQflKVuwsapP8RTas.roa (hash: v1E9iG1FEaxd+t/wnGLaGAbJ4H6g39idwuIVRcR48QM=) 3: 6lgNokrHquzfMY4o0Ue-xILR_FM.roa (hash: bnnFnI4gkAVdY9+fYPbtHDBHofbyD67V5npIc05vTNI=) 4: Af3TYKyAmWG3f3wRT4FwONVWh0E.roa (hash: WIpuVfkuPz+LipchXzs38odxTKr63ACk4GOPFnDDDQY=) 5: CdYSPaqTjHDQqoFZJ5vmPkQNpY8.roa (hash: 2hSUzzrrHhoV+leHgGGXhH0H0eP//nQX8tn6HCyCUeA=) 6: Lowd4ZR0A1y-pngFS22U9a-lM2E.crl (hash: hF32kMhNBjJgsglYiHIB/zAAAye67MfvKnIQIhhqz+A=) 7: M8L4ONjaKBoFJOwyFIfN_QL2Tn4.roa (hash: 6JL10RiuFvg5F0bZseuVtZv3iY+6VEd+5IItQvVfiV8=) 8: S4wFMhuxShBISoepIMT7J0pKx3k.roa (hash: U7UiWrQkJelvyopRtRqGDW0g4Pu1C0z06V7voETr1Pc=) 9: lwkVdD9XADeiD0DPl7lvqM4ItpQ.roa (hash: YYmUXAYWXwrCBJM5y0kPQOh2qDNOuJxksVsvgzTPY7s=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7841 (0x1ea1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361 Validity Not Before: Dec 6 21:16:50 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=FF932E425E060B53CC63EEF8B42B916DB3C01C6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ce:ca:10:5a:c9:8f:d2:27:85:80:bb:25:3e: 26:96:85:3f:5b:51:fb:24:48:0d:d4:0d:5e:91:18: 04:52:77:b0:2d:d3:78:33:73:59:ab:3d:50:93:aa: 29:dd:c9:6d:31:6a:60:fb:17:57:f1:b6:f3:a5:bf: ce:7d:00:da:c1:8f:9c:11:a4:28:73:44:98:bd:2f: 63:2c:f2:d6:d5:1f:e7:f0:e8:6f:42:ec:2c:4a:d4: 53:f8:f3:4e:f4:bb:5c:01:19:43:9f:2b:b4:3c:cd: 8e:20:5d:b4:f1:30:b7:0d:be:35:06:12:30:a0:cb: 80:f1:c0:44:2c:b2:20:c8:53:66:f2:2c:36:d1:53: f6:aa:45:78:6d:b6:9c:13:2d:81:42:14:e2:e9:3d: 76:92:3a:5d:98:cc:7b:db:66:b1:88:a1:47:2b:1d: 41:d5:b1:0c:78:bb:83:ca:f7:02:ff:e7:5f:d5:53: f0:0b:95:fc:83:77:e4:a3:ff:19:71:e2:0a:73:a5: 18:c1:12:1c:c9:77:90:c4:05:91:12:72:b2:af:fa: f4:c1:eb:93:09:a5:4b:fb:0a:49:d4:2d:00:f4:ac: 02:11:35:44:af:04:83:7d:28:49:09:f4:8a:c5:84: fd:3c:9a:04:0b:e6:34:60:9f:20:19:e6:a5:85:96: 45:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C X509v3 Authority Key Identifier: keyid:2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:1e:5d:0b:cf:d8:c5:30:d6:ee:78:1b:f9:6b:04:f1:d0:08: 41:77:4f:f5:13:cd:9a:a3:ca:b9:99:8e:31:98:37:e4:7b:f0: 54:47:7a:ba:0d:64:c0:94:aa:30:43:18:19:ad:24:86:31:19: 24:33:7a:00:2d:6a:d7:a3:60:00:2f:e0:d0:1b:9a:4b:d7:dd: 53:ec:a6:f7:d1:e9:c0:0e:92:c0:3b:4c:3a:41:08:80:c0:69: 70:f8:e0:8b:37:04:3f:70:e1:97:1c:cf:75:18:e7:48:28:76: 1d:13:fa:cb:17:9e:ae:a8:da:71:93:8b:9c:7e:c6:ea:54:20: e0:3c:9f:84:ec:86:49:a7:f1:76:ca:2e:ee:45:6f:07:ee:16: 31:5f:72:dd:89:c4:34:45:0d:83:0f:4d:c7:f9:7c:0f:69:16: 0e:f9:31:63:2f:17:80:da:1d:1d:89:00:11:68:92:34:f4:bf: 51:68:14:35:64:df:c5:c6:ca:be:06:86:d2:88:47:75:cf:91: 37:6e:f3:1d:df:44:b3:58:01:9e:95:80:61:5e:41:bd:75:9c: 62:3d:ac:52:c8:4c:7b:52:3f:c1:bb:2f:98:e0:91:24:ba:4b: bf:83:eb:4d:7d:81:f1:4b:00:93:c4:1d:55:6f:20:a2:d6:dc: 4e:cc:cb:e7 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICHqEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkU4 QzFERTE5NDc0MDM1Q0JFQTY3ODA1NEI2RDk0RjVBRkE1MzM2MTAeFw0yNTEyMDYy MTE2NTBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEZGOTMyRTQyNUUwNjBC NTNDQzYzRUVGOEI0MkI5MTZEQjNDMDFDNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1zsoQWsmP0ieFgLslPiaWhT9bUfskSA3UDV6RGARSd7At03gz c1mrPVCTqindyW0xamD7F1fxtvOlv859ANrBj5wRpChzRJi9L2Ms8tbVH+fw6G9C 7CxK1FP48070u1wBGUOfK7Q8zY4gXbTxMLcNvjUGEjCgy4DxwEQssiDIU2byLDbR U/aqRXhttpwTLYFCFOLpPXaSOl2YzHvbZrGIoUcrHUHVsQx4u4PK9wL/51/VU/AL lfyDd+Sj/xlx4gpzpRjBEhzJd5DEBZEScrKv+vTB65MJpUv7CknULQD0rAIRNUSv BIN9KEkJ9IrFhP08mgQL5jRgnyAZ5qWFlkUvAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU/5MuQl4GC1PMY+74tCuRbbPAHGwwHwYDVR0jBBgwFoAULowd4ZR0A1y+pngF S22U9a+lM2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTg3 L0xvd2Q0WlIwQTF5LXBuZ0ZTMjJVOWEtbE0yRS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvTG93ZDRaUjBBMXktcG5nRlMyMlU5YS1sTTJFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTg3L0xvd2Q0WlIwQTF5LXBu Z0ZTMjJVOWEtbE0yRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAYHl0Lz9jFMNbueBv5awTx0AhBd0/1E82ao8q5mY4xmDfke/BUR3q6DWTAlKow QxgZrSSGMRkkM3oALWrXo2AAL+DQG5pL191T7Kb30enADpLAO0w6QQiAwGlw+OCL NwQ/cOGXHM91GOdIKHYdE/rLF56uqNpxk4ucfsbqVCDgPJ+E7IZJp/F2yi7uRW8H 7hYxX3LdicQ0RQ2DD03H+XwPaRYO+TFjLxeA2h0diQARaJI09L9RaBQ1ZN/Fxsq+ BobSiEd1z5E3bvMd30SzWAGelYBhXkG9dZxiPaxSyEx7Uj/Buy+Y4JEkuku/g+tN fYHxSwCTxB1VbyCi1txOzMvn -----END CERTIFICATE-----Generated at Sun Dec 7 02:56:45 2025 by rpki-client