This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft File: pDidtIvE6TSc2eEd0MttcHaa4xk.mft (raw, json) Hash identifier: 2rw/FMrbDMihMJDX7m0egS8jSq/bCsKXfVjCsShEohM= Subject key identifier: C0:52:39:ED:FF:B8:35:E3:EA:F1:43:96:11:63:60:E3:9C:CB:FE:1A Authority key identifier: A4:38:9D:B4:8B:C4:E9:34:9C:D9:E1:1D:D0:CB:6D:70:76:9A:E3:19 Certificate issuer: /CN=A4389DB48BC4E9349CD9E11DD0CB6D70769AE319 Certificate serial: 06C9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft Manifest number: 06C9 Signing time: Sun 07 Dec 2025 06:50:04 +0000 Manifest this update: Sun 07 Dec 2025 06:50:04 +0000 Manifest next update: Sun 07 Dec 2025 12:50:04 +0000 Files and hashes: 1: pDidtIvE6TSc2eEd0MttcHaa4xk.crl (hash: cq2MOmES93Lg6SbCEqKOV9JkcXRX4hjVLYc4SFdNHiI=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 12:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4389DB48BC4E9349CD9E11DD0CB6D70769AE319 Validity Not Before: Dec 7 06:50:04 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C05239EDFFB835E3EAF14396116360E39CCBFE1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fc:64:9d:88:bd:06:62:49:e7:89:cb:66:36: 3e:77:37:0e:8e:8d:35:9e:5b:97:5d:90:3d:f3:61: ce:7c:59:e9:0a:31:f1:dd:81:fa:24:99:71:dc:e4: 78:a6:9e:b6:12:74:61:08:47:72:8b:35:66:96:92: e2:06:10:af:f0:6a:c9:87:1f:de:cd:6e:d0:50:4a: 22:3c:22:4a:58:c6:86:8a:83:95:9a:17:2c:9e:3e: 3e:a3:ad:62:b6:f5:c8:1b:aa:04:e9:64:a7:23:2e: a2:bd:35:27:55:e2:23:2a:e2:7a:91:bb:f4:1f:c3: e4:fa:81:82:9f:ea:69:ec:1b:27:a2:b0:b6:8e:90: 3e:86:3d:63:52:bb:dd:75:30:f6:0d:93:a7:97:fc: 98:1b:62:eb:35:67:3c:f7:40:30:58:3a:f0:21:78: bb:00:d3:55:63:84:3c:8e:87:be:10:5c:6e:62:fa: 80:4a:a4:e8:5b:74:ec:5a:50:7f:1b:eb:64:b5:30: da:43:09:7a:c3:7a:2f:85:71:5a:4d:72:7b:9b:d2: ac:5a:b1:a6:50:f1:8a:47:ee:24:27:26:43:85:fa: 07:56:06:69:9a:ba:be:f9:c4:2f:12:c3:4d:d4:ed: 74:d5:1a:24:7b:7a:a7:ad:4f:e0:92:9b:30:95:3f: c2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:52:39:ED:FF:B8:35:E3:EA:F1:43:96:11:63:60:E3:9C:CB:FE:1A X509v3 Authority Key Identifier: keyid:A4:38:9D:B4:8B:C4:E9:34:9C:D9:E1:1D:D0:CB:6D:70:76:9A:E3:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:ab:1e:56:49:10:b4:d4:6e:c2:8c:37:ce:8c:9a:54:2d:67: e3:1a:61:9b:b0:05:42:13:b0:3b:79:85:72:f7:84:d7:74:ac: b1:94:2f:e4:e9:5a:72:87:f9:a8:79:4e:e5:4e:50:5e:45:a0: 6c:4c:ad:4f:cf:98:6e:1a:89:cb:1b:0a:ac:7a:d4:3b:5d:f0: ee:ae:fa:73:dc:c9:1a:1e:ad:ca:cb:74:7b:38:b0:18:27:b9: 76:c2:f8:61:37:e2:35:57:b5:d3:9d:8c:51:41:40:04:94:22: d9:9f:63:c0:1d:a9:60:0d:ee:49:47:32:3c:c5:be:d9:4b:f4: 15:0a:37:2e:a2:99:33:88:64:8e:ef:b9:b3:6f:94:50:7d:db: d7:21:a9:00:76:40:8b:ff:a2:06:3b:fe:c5:04:d8:80:9a:85: d6:d9:03:ef:ae:d7:82:96:13:37:a1:b5:8c:d4:74:c5:3c:a2: 83:df:fd:68:87:1b:9b:f2:7e:7a:2f:33:e3:2d:a7:43:a2:3b: 1b:30:ec:8d:10:81:dd:a0:e6:09:7b:83:f8:69:6f:b1:87:ed: 34:8c:ec:dc:c4:a9:d1:19:94:37:02:78:94:22:4f:92:f8:1c: a6:d2:86:5a:5f:a3:26:7e:3b:f1:d2:1f:ac:1c:35:70:88:aa: fe:41:f8:b5 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTQz ODlEQjQ4QkM0RTkzNDlDRDlFMTFERDBDQjZENzA3NjlBRTMxOTAeFw0yNTEyMDcw NjUwMDRaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEMwNTIzOUVERkZCODM1 RTNFQUYxNDM5NjExNjM2MEUzOUNDQkZFMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCV/GSdiL0GYknnictmNj53Nw6OjTWeW5ddkD3zYc58WekKMfHd gfokmXHc5HimnrYSdGEIR3KLNWaWkuIGEK/wasmHH97NbtBQSiI8IkpYxoaKg5Wa FyyePj6jrWK29cgbqgTpZKcjLqK9NSdV4iMq4nqRu/Qfw+T6gYKf6mnsGyeisLaO kD6GPWNSu911MPYNk6eX/JgbYus1Zzz3QDBYOvAheLsA01VjhDyOh74QXG5i+oBK pOhbdOxaUH8b62S1MNpDCXrDei+FcVpNcnub0qxasaZQ8YpH7iQnJkOF+gdWBmma ur75xC8Sw03U7XTVGiR7eqetT+CSmzCVP8I9AgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUwFI57f+4NePq8UOWEWNg45zL/howHwYDVR0jBBgwFoAUpDidtIvE6TSc2eEd 0MttcHaa4xkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 MC9wRGlkdEl2RTZUU2MyZUVkME10dGNIYWE0eGsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3BEaWR0SXZFNlRTYzJlRWQwTXR0Y0hhYTR4ay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDAvcERpZHRJdkU2VFNj MmVFZDBNdHRjSGFhNHhrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAI+rHlZJELTUbsKMN86MmlQtZ+MaYZuwBUITsDt5hXL3hNd0rLGUL+TpWnKH +ah5TuVOUF5FoGxMrU/PmG4aicsbCqx61Dtd8O6u+nPcyRoercrLdHs4sBgnuXbC +GE34jVXtdOdjFFBQASUItmfY8AdqWAN7klHMjzFvtlL9BUKNy6imTOIZI7vubNv lFB929chqQB2QIv/ogY7/sUE2ICahdbZA++u14KWEzehtYzUdMU8ooPf/WiHG5vy fnovM+Mtp0OiOxsw7I0Qgd2g5gl7g/hpb7GH7TSM7NzEqdEZlDcCeJQiT5L4HKbS hlpfoyZ+O/HSH6wcNXCIqv5B+LU= -----END CERTIFICATE-----Generated at Sun Dec 7 10:53:54 2025 by rpki-client