This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft File: H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft (raw, json) Hash identifier: EVw0bQlUWoZ4+FRIvJjxkT4UUcuTTwjZq/6IA9k2YAM= Subject key identifier: 0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4 Authority key identifier: 1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05 Certificate issuer: /CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205 Certificate serial: 2206 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft Manifest number: 2206 Signing time: Sun 07 Dec 2025 01:50:21 +0000 Manifest this update: Sun 07 Dec 2025 01:50:21 +0000 Manifest next update: Sun 07 Dec 2025 07:50:21 +0000 Files and hashes: 1: H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl (hash: LKibI/Oq3GUlVh/nRwNlX6/zXNFDYb/OVuNGfF3ZHq8=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 07:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8710 (0x2206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205 Validity Not Before: Dec 7 01:50:21 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=0A196EACD1B84454479C1DBFE9BBD3BF3613FCC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:de:67:c6:ca:3c:d6:01:4b:26:20:ce:02: 0b:8d:cc:b9:e3:f2:49:51:b3:81:fa:99:bc:76:18: 3d:a1:d4:5f:9d:34:29:57:e6:f3:eb:67:8f:fb:b0: 44:3e:82:d7:60:31:f3:19:59:30:15:0c:8f:99:22: 71:4d:70:47:51:fd:55:52:3f:f0:3b:b9:26:58:0c: 69:be:1b:8c:7a:79:32:a4:58:d1:56:c5:68:e3:4c: 46:a2:61:31:45:63:36:a5:c2:bb:cc:b0:52:aa:5e: f8:be:5d:b5:dd:52:00:ba:d6:36:c0:23:4e:41:f2: ad:0b:b2:14:52:b5:7b:e9:46:ae:59:53:c1:6c:8f: 46:ae:9b:9a:12:20:6e:df:5a:19:88:1b:b6:f1:0f: 87:bf:62:9a:02:d2:b6:67:bd:41:e8:ce:0f:02:33: 05:e3:00:7e:51:34:2b:27:d7:a0:72:a8:cb:f8:ee: ec:cc:ed:cf:e5:34:aa:6c:46:11:be:1b:21:4a:35: c8:88:8a:7f:dc:08:6a:a6:6e:4e:f0:2a:7c:d3:50: 5b:d5:50:cb:75:ea:af:82:5e:aa:73:72:d3:ca:24: 25:82:5a:f0:ec:b8:71:cf:5c:ce:8f:3f:62:e9:a6: 87:65:1f:4b:35:c6:0e:0b:ab:e4:ef:cc:ad:5f:30: 10:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4 X509v3 Authority Key Identifier: keyid:1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d5:4e:71:a2:af:4e:71:3a:15:79:ce:0d:53:47:aa:3a:41: 73:82:31:30:df:83:aa:2c:b3:8a:c1:a4:07:e4:2e:fd:47:e2: b7:4a:29:d2:eb:8c:e5:f8:27:ca:9e:cd:66:59:74:4d:b2:d9: 13:2c:83:2e:11:ce:44:f4:f2:ad:43:ea:64:cb:97:65:b2:61: b9:25:ec:9e:9f:1e:6c:6d:b3:2d:29:bc:72:a8:07:4a:97:40: 81:66:2c:ad:90:25:82:de:6e:14:e2:e4:54:01:35:f3:a5:e8: cf:11:98:39:12:05:f2:2f:1a:72:b5:7f:9b:f5:e0:6a:e0:00: 25:0b:72:0f:1f:6b:cd:90:16:c9:91:5f:c4:9f:9a:41:f0:28: bb:47:30:3f:06:77:8c:5d:b5:7a:ce:a5:d5:3a:40:81:66:bc: b7:87:8f:3a:14:94:2e:31:08:58:79:cf:a9:70:a9:65:00:10: 2a:79:16:5e:18:61:14:36:ca:e6:fd:a9:84:d6:5a:79:19:3d: 36:c7:71:14:69:9c:5c:9f:3b:2f:8d:ba:46:38:5f:42:4b:df: 76:bd:60:e1:b7:08:37:e0:61:46:f2:26:03:53:6d:08:4d:46: 6d:1f:78:0b:ef:dd:71:92:fb:3a:bd:91:84:82:2b:7e:10:55: 61:aa:83:67 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICIgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY0 Mjk5QjREREIxRTY4REE5MEY3QkM3RjQzQTA2MkVEMTYxMDIwNTAeFw0yNTEyMDcw MTUwMjFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDBBMTk2RUFDRDFCODQ0 NTQ0NzlDMURCRkU5QkJEM0JGMzYxM0ZDQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMqt5nxso81gFLJiDOAguNzLnj8klRs4H6mbx2GD2h1F+dNClX 5vPrZ4/7sEQ+gtdgMfMZWTAVDI+ZInFNcEdR/VVSP/A7uSZYDGm+G4x6eTKkWNFW xWjjTEaiYTFFYzalwrvMsFKqXvi+XbXdUgC61jbAI05B8q0LshRStXvpRq5ZU8Fs j0aum5oSIG7fWhmIG7bxD4e/YpoC0rZnvUHozg8CMwXjAH5RNCsn16ByqMv47uzM 7c/lNKpsRhG+GyFKNciIin/cCGqmbk7wKnzTUFvVUMt16q+CXqpzctPKJCWCWvDs uHHPXM6PP2LppodlH0s1xg4Lq+TvzK1fMBDvAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUChlurNG4RFRHnB2/6bvTvzYT/MQwHwYDVR0jBBgwFoAUH0KZtN2x5o2pD3vH 9DoGLtFhAgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjE5 NC9IMEtadE4yeDVvMnBEM3ZIOURvR0x0RmhBZ1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0gwS1p0TjJ4NW8ycEQzdkg5RG9HTHRGaEFnVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxOTQvSDBLWnROMng1bzJw RDN2SDlEb0dMdEZoQWdVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAG3VTnGir05xOhV5zg1TR6o6QXOCMTDfg6oss4rBpAfkLv1H4rdKKdLrjOX4 J8qezWZZdE2y2RMsgy4RzkT08q1D6mTLl2WyYbkl7J6fHmxtsy0pvHKoB0qXQIFm LK2QJYLebhTi5FQBNfOl6M8RmDkSBfIvGnK1f5v14GrgACULcg8fa82QFsmRX8Sf mkHwKLtHMD8Gd4xdtXrOpdU6QIFmvLeHjzoUlC4xCFh5z6lwqWUAECp5Fl4YYRQ2 yub9qYTWWnkZPTbHcRRpnFyfOy+NukY4X0JL33a9YOG3CDfgYUbyJgNTbQhNRm0f eAvv3XGS+zq9kYSCK34QVWGqg2c= -----END CERTIFICATE-----Generated at Sun Dec 7 07:12:33 2025 by rpki-client