This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft File: zgJJuefVZubL61d9djs8y7Gwqy0.mft (raw, json) Hash identifier: KLf4X7z5qQy7qBLzoeCr6ODuCRTQ8ahFJjopoOYbnuA= Subject key identifier: D7:35:CF:06:4F:7B:A7:C5:2F:10:67:93:7F:4D:16:BA:F0:6C:5E:4A Authority key identifier: CE:02:49:B9:E7:D5:66:E6:CB:EB:57:7D:76:3B:3C:CB:B1:B0:AB:2D Certificate issuer: /CN=CE0249B9E7D566E6CBEB577D763B3CCBB1B0AB2D Certificate serial: 25F4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgJJuefVZubL61d9djs8y7Gwqy0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft Manifest number: 25E2 Signing time: Sat 06 Dec 2025 21:16:38 +0000 Manifest this update: Sat 06 Dec 2025 21:16:38 +0000 Manifest next update: Sun 07 Dec 2025 03:16:38 +0000 Files and hashes: 1: WyTkXHEhLqcsjNd_oPHvbf674aI.roa (hash: gt/t6rEu5sUWRrRf2e3Slg7FAm0I0chcu0jtaf/OGlg=) 2: cYoSIKX5rPaGhe1jQErFxMn1KlE.roa (hash: sGiqqVrNR6d7HV7W1A6wNpAMcqkm+3f/aPa23FGvVeA=) 3: zgJJuefVZubL61d9djs8y7Gwqy0.crl (hash: Ug1swEEyyJBul9bEhvyx7QrsCtXJkHbnmGiLvuFJmuE=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgJJuefVZubL61d9djs8y7Gwqy0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9716 (0x25f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE0249B9E7D566E6CBEB577D763B3CCBB1B0AB2D Validity Not Before: Dec 6 21:16:38 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D735CF064F7BA7C52F1067937F4D16BAF06C5E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:09:3b:af:00:60:89:fe:1c:da:67:e3:72:bb: e8:ad:94:64:0b:0e:e3:b8:81:9f:9f:09:c0:99:4c: 7e:5d:df:36:31:92:48:82:c2:8d:27:f8:66:60:b6: 1a:60:9c:9a:0a:da:a9:8c:fb:0e:a5:cf:6d:64:e4: 6c:b6:b3:c8:d0:15:a2:e6:03:55:bb:14:77:6e:d6: 2b:1a:2e:70:a9:a8:1f:c9:67:b7:de:a3:53:90:48: 88:12:bd:6f:1c:e2:38:aa:40:dd:5c:08:ab:18:8a: 75:5b:ac:1f:be:b1:dd:34:9d:b5:69:92:a8:6f:8d: c5:8f:d6:51:ae:37:72:d2:44:27:f8:4c:6c:8f:d5: 6f:73:87:21:6a:21:4c:77:fd:5d:b0:1c:01:55:e7: 7d:b4:5d:bd:d8:1b:b2:1d:46:05:28:47:f1:82:6f: 94:4a:50:83:56:0c:f8:20:cd:78:f4:0e:fa:a2:41: 6c:76:1b:67:66:a3:32:12:a4:af:45:a4:f6:25:35: 22:cd:f3:b5:bc:ea:8a:2c:f0:64:c9:ba:c4:98:13: 90:16:04:5e:17:23:6f:3c:c1:b6:36:15:2c:09:a0: 73:fb:e3:51:e6:1f:96:63:14:26:bc:48:48:67:eb: 44:67:16:86:ea:59:f5:33:79:b6:5d:49:c9:eb:d5: f1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:35:CF:06:4F:7B:A7:C5:2F:10:67:93:7F:4D:16:BA:F0:6C:5E:4A X509v3 Authority Key Identifier: keyid:CE:02:49:B9:E7:D5:66:E6:CB:EB:57:7D:76:3B:3C:CB:B1:B0:AB:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgJJuefVZubL61d9djs8y7Gwqy0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a6:50:09:f9:00:2a:50:58:a6:2b:b6:93:b4:b0:e1:07:55: 25:81:bb:94:4f:dc:97:84:11:8a:82:79:38:66:ee:49:86:90: 52:4b:91:9e:10:2b:b4:65:1f:4c:6f:d8:89:05:cc:81:99:d4: a5:f9:a4:52:da:e8:e9:69:76:e6:58:ce:1d:1d:af:f1:a7:49: 8a:17:e0:2e:a8:39:d5:c1:69:f4:43:af:e9:78:21:39:ff:fd: 6d:d6:03:4c:31:50:e3:61:41:ea:14:e7:c0:b3:50:ff:3d:d6: 16:45:47:3b:43:98:b4:76:7e:f2:69:90:cb:24:5c:37:ee:40: f5:6e:71:ea:8a:91:28:b6:65:cc:a3:55:77:b4:b7:e5:3b:2b: 82:91:50:3d:59:03:5c:03:15:0e:bd:72:07:fc:7f:c8:63:76: 36:78:d4:41:2f:92:2c:ba:3a:9e:92:aa:fb:6e:2b:64:9e:d2: 56:20:69:6a:6d:63:3a:8b:39:98:ba:7c:8b:5e:81:ac:45:25: 1c:2d:03:f1:1e:aa:f2:13:3b:c6:43:98:e5:fa:d1:69:8f:43: bc:08:a3:6a:43:51:5f:ee:a7:44:5c:a3:25:a4:f5:b9:95:22: d9:4f:f1:1f:64:de:1c:ac:19:ed:63:23:e8:39:32:af:90:0b: 39:d6:b6:f4 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICJfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Uw MjQ5QjlFN0Q1NjZFNkNCRUI1NzdENzYzQjNDQ0JCMUIwQUIyRDAeFw0yNTEyMDYy MTE2MzhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQ3MzVDRjA2NEY3QkE3 QzUyRjEwNjc5MzdGNEQxNkJBRjA2QzVFNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcCTuvAGCJ/hzaZ+Nyu+itlGQLDuO4gZ+fCcCZTH5d3zYxkkiC wo0n+GZgthpgnJoK2qmM+w6lz21k5Gy2s8jQFaLmA1W7FHdu1isaLnCpqB/JZ7fe o1OQSIgSvW8c4jiqQN1cCKsYinVbrB++sd00nbVpkqhvjcWP1lGuN3LSRCf4TGyP 1W9zhyFqIUx3/V2wHAFV5320Xb3YG7IdRgUoR/GCb5RKUINWDPggzXj0DvqiQWx2 G2dmozISpK9FpPYlNSLN87W86oos8GTJusSYE5AWBF4XI288wbY2FSwJoHP741Hm H5ZjFCa8SEhn60RnFobqWfUzebZdScnr1fHJAgMBAAGjggIKMIICBjAdBgNVHQ4E FgQU1zXPBk97p8UvEGeTf00WuvBsXkowHwYDVR0jBBgwFoAUzgJJuefVZubL61d9 djs8y7Gwqy0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy L3pnSkp1ZWZWWnViTDYxZDlkanM4eTdHd3F5MC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvemdKSnVlZlZadWJMNjFkOWRqczh5N0d3cXkwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMyL3pnSkp1ZWZWWnViTDYx ZDlkanM4eTdHd3F5MC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBTplAJ+QAqUFimK7aTtLDhB1UlgbuUT9yXhBGKgnk4Zu5JhpBSS5GeECu0ZR9M b9iJBcyBmdSl+aRS2ujpaXbmWM4dHa/xp0mKF+AuqDnVwWn0Q6/peCE5//1t1gNM MVDjYUHqFOfAs1D/PdYWRUc7Q5i0dn7yaZDLJFw37kD1bnHqipEotmXMo1V3tLfl OyuCkVA9WQNcAxUOvXIH/H/IY3Y2eNRBL5Isujqekqr7bitkntJWIGlqbWM6izmY unyLXoGsRSUcLQPxHqryEzvGQ5jl+tFpj0O8CKNqQ1Ff7qdEXKMlpPW5lSLZT/Ef ZN4crBntYyPoOTKvkAs51rb0 -----END CERTIFICATE-----Generated at Sun Dec 7 02:38:06 2025 by rpki-client