This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.mft File: 3Vi43ud7iv5uKRpbggWxMTFpeE8.mft (raw, json) Hash identifier: YbGsRbLeUztC/Xs4Xwj2kDaPYn+C0P9K3nbRKAGRW9E= Subject key identifier: BF:2E:AB:E6:21:26:06:38:CA:17:18:30:91:2C:92:15:02:05:C9:86 Authority key identifier: DD:58:B8:DE:E7:7B:8A:FE:6E:29:1A:5B:82:05:B1:31:31:69:78:4F Certificate issuer: /CN=DD58B8DEE77B8AFE6E291A5B8205B1313169784F Certificate serial: 236F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3Vi43ud7iv5uKRpbggWxMTFpeE8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.mft Manifest number: 2366 Signing time: Sun 07 Dec 2025 01:49:24 +0000 Manifest this update: Sun 07 Dec 2025 01:49:24 +0000 Manifest next update: Sun 07 Dec 2025 07:49:24 +0000 Files and hashes: 1: 3Vi43ud7iv5uKRpbggWxMTFpeE8.crl (hash: 5ITeUL5vOnvokouVb/zMWhzG+BYeGc1eAgbIdVr/NyM=) 2: cqFqWP_u8PMUgu7Wa-ZJA_XHnQQ.roa (hash: LrTEljujW0Atd0a1+D8Fc6IgbT9Dits51r67dMvR4wQ=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3Vi43ud7iv5uKRpbggWxMTFpeE8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 06:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9071 (0x236f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD58B8DEE77B8AFE6E291A5B8205B1313169784F Validity Not Before: Dec 7 01:49:24 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=BF2EABE621260638CA171830912C92150205C986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9c:fd:ca:f5:18:1f:d8:26:53:80:57:67:c9: ee:a7:69:5e:ed:e4:a2:eb:de:d2:73:73:11:d5:6d: 6c:4d:91:5a:d8:68:84:64:29:08:a4:2a:24:a3:26: 3b:7c:30:e8:e3:b9:47:80:73:b8:2f:7c:b0:55:fc: 56:f1:d9:81:ac:8b:e1:eb:b2:81:3d:6f:f9:94:25: ba:2e:06:0b:86:ae:1d:35:ed:15:45:f7:15:06:bc: 84:71:36:01:e5:61:96:d6:78:c5:05:f1:cb:2a:7d: 70:99:1b:16:9c:42:42:e9:04:a9:b4:8d:a4:e0:12: f0:9a:3a:b7:cc:e7:63:8f:c6:b5:b1:e9:27:38:db: b9:fe:11:70:47:69:b8:8d:7f:b1:f1:26:58:fc:98: 16:6c:a5:2c:67:24:63:08:2d:63:47:c3:04:58:e3: 41:13:12:ec:d1:aa:a2:c2:51:4e:d6:ae:b7:ba:d7: f9:ce:6a:b7:08:4e:f4:e9:47:f9:54:f6:5c:a7:13: 6c:cf:e8:0b:bb:ce:3f:11:89:e2:8e:08:08:49:41: 18:90:ce:be:50:9c:0a:aa:16:6d:92:ed:fb:4e:74: 0e:c1:1c:61:38:d0:fa:be:fa:16:62:9e:1f:c8:ff: 67:05:57:f7:e3:1a:d9:85:bc:d6:7d:da:54:ec:7d: 0c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2E:AB:E6:21:26:06:38:CA:17:18:30:91:2C:92:15:02:05:C9:86 X509v3 Authority Key Identifier: keyid:DD:58:B8:DE:E7:7B:8A:FE:6E:29:1A:5B:82:05:B1:31:31:69:78:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3Vi43ud7iv5uKRpbggWxMTFpeE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:2a:ab:67:fd:68:41:f0:da:37:b6:7a:c2:9e:8b:bb:4d:43: 2f:6c:31:a4:44:56:61:ae:88:92:4b:d6:6e:bd:f8:54:1f:bd: d1:97:2a:9a:87:e3:47:00:bb:9b:10:11:26:a8:d6:80:d6:ec: 9f:70:f1:bf:d6:d8:4d:f7:bc:93:ec:72:72:2e:0c:fd:f1:b6: 71:ef:b0:48:d9:f1:9d:8c:f5:6c:05:e1:52:8f:c5:12:ea:e4: 7a:f3:44:9c:00:31:8d:9f:8a:99:89:ad:be:34:4d:b2:81:7e: 7b:a4:72:01:8b:6b:ff:92:b6:cc:12:ad:3d:f1:02:44:8b:7e: 48:d9:b2:cf:2d:48:1c:40:e3:2a:57:01:f5:d1:b7:4b:55:af: 0c:cd:4d:05:e7:9b:1b:a9:b2:18:b7:e5:31:8b:c0:b3:97:8b: 97:89:8a:e2:86:1b:d9:d3:6d:99:4c:07:10:0d:a9:5f:dd:8e: 7c:a0:ea:3e:8d:b9:4e:aa:d4:32:4c:fe:4c:6b:23:3a:96:20: fd:00:70:aa:cd:97:0a:13:7d:99:dc:61:9b:67:24:cf:46:1e: 3a:f7:dc:1f:9e:60:6a:09:8b:4c:17:f3:51:ef:9d:20:78:2b: 13:aa:54:e7:8a:e8:c8:4b:a6:7f:81:fb:9e:a1:e9:f8:6a:fe: 09:42:5b:cc -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICI28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREQ1 OEI4REVFNzdCOEFGRTZFMjkxQTVCODIwNUIxMzEzMTY5Nzg0RjAeFw0yNTEyMDcw MTQ5MjRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEJGMkVBQkU2MjEyNjA2 MzhDQTE3MTgzMDkxMkM5MjE1MDIwNUM5ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDynP3K9Rgf2CZTgFdnye6naV7t5KLr3tJzcxHVbWxNkVrYaIRk KQikKiSjJjt8MOjjuUeAc7gvfLBV/Fbx2YGsi+HrsoE9b/mUJbouBguGrh017RVF 9xUGvIRxNgHlYZbWeMUF8csqfXCZGxacQkLpBKm0jaTgEvCaOrfM52OPxrWx6Sc4 27n+EXBHabiNf7HxJlj8mBZspSxnJGMILWNHwwRY40ETEuzRqqLCUU7Wrre61/nO arcITvTpR/lU9lynE2zP6Au7zj8RieKOCAhJQRiQzr5QnAqqFm2S7ftOdA7BHGE4 0Pq++hZinh/I/2cFV/fjGtmFvNZ92lTsfQxtAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUvy6r5iEmBjjKFxgwkSySFQIFyYYwHwYDVR0jBBgwFoAU3Vi43ud7iv5uKRpb ggWxMTFpeE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 MS8zVmk0M3VkN2l2NXVLUnBiZ2dXeE1URnBlRTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzNWaTQzdWQ3aXY1dUtScGJnZ1d4TVRGcGVFOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzEvM1ZpNDN1ZDdpdjV1 S1JwYmdnV3hNVEZwZUU4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAK4qq2f9aEHw2je2esKei7tNQy9sMaREVmGuiJJL1m69+FQfvdGXKpqH40cA u5sQESao1oDW7J9w8b/W2E33vJPscnIuDP3xtnHvsEjZ8Z2M9WwF4VKPxRLq5Hrz RJwAMY2fipmJrb40TbKBfnukcgGLa/+StswSrT3xAkSLfkjZss8tSBxA4ypXAfXR t0tVrwzNTQXnmxupshi35TGLwLOXi5eJiuKGG9nTbZlMBxANqV/djnyg6j6NuU6q 1DJM/kxrIzqWIP0AcKrNlwoTfZncYZtnJM9GHjr33B+eYGoJi0wX81HvnSB4KxOq VOeK6MhLpn+B+56h6fhq/glCW8w= -----END CERTIFICATE-----Generated at Sun Dec 7 04:39:12 2025 by rpki-client