This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft File: 0Thk00ASqL2IAiF99LmT9iQBB2w.mft (raw, json) Hash identifier: 9VJbu/B7IYzWR31VrXHExA3fEkPh8SNK5Bxt3c6NB/g= Subject key identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 Authority key identifier: D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C Certificate issuer: /CN=D13864D34012A8BD8802217DF4B993F62401076C Certificate serial: 06B3 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft Manifest number: 06B3 Signing time: Sun 07 Dec 2025 01:50:18 +0000 Manifest this update: Sun 07 Dec 2025 01:50:18 +0000 Manifest next update: Sun 07 Dec 2025 07:50:18 +0000 Files and hashes: 1: 0Thk00ASqL2IAiF99LmT9iQBB2w.crl (hash: XKU91JT+1uFlQ84d5UN5G8JQHroRghgkoCYFUjSliO4=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 07:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1715 (0x6b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D13864D34012A8BD8802217DF4B993F62401076C Validity Not Before: Dec 7 01:50:18 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=0091B73BA0641118D02A80455962198207B83AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2f:dd:4f:f5:72:89:66:0d:f6:f6:47:59:ec: ef:40:b2:1c:56:8e:08:72:8a:d3:68:9a:b4:0f:7c: ea:16:27:97:c8:f2:4c:ec:26:15:97:6c:e3:16:9a: 09:5c:90:34:44:85:54:23:41:4d:b4:41:a7:41:92: f2:33:4c:fe:3b:19:8c:40:d3:bc:8f:e3:31:d6:2e: c7:fe:4c:6c:3e:e4:ef:c8:74:0a:db:1d:3c:e2:07: 38:d5:0c:a0:16:fc:6f:22:f5:09:8f:2b:ad:b0:11: 2f:ec:3f:04:f1:82:ed:38:51:42:d2:46:ab:fb:e4: 24:f6:1a:60:04:66:6a:4b:5a:9d:78:14:c1:84:90: c1:4c:a3:6e:14:e2:3b:7c:dd:5d:e1:c1:d2:83:6f: 11:6d:40:89:48:47:e2:d6:c4:63:c5:e8:c7:15:d1: ed:eb:a7:fb:b5:09:fe:b5:d7:c3:a5:e4:6a:dc:61: dd:8f:73:dd:fe:ec:f4:da:7a:40:a0:61:62:f5:c5: 35:6a:28:36:e0:ef:db:a9:1b:f7:40:e1:fa:12:9f: 67:c5:4e:48:84:83:1d:93:c7:b3:3f:ba:c4:09:25: 8a:b4:b0:a9:b7:68:8c:a9:b3:88:a5:ba:d1:75:16: 2c:0c:36:fc:c2:72:a2:1b:56:c0:e1:c5:6c:d9:4a: 4d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:91:B7:3B:A0:64:11:18:D0:2A:80:45:59:62:19:82:07:B8:3A:C5 X509v3 Authority Key Identifier: keyid:D1:38:64:D3:40:12:A8:BD:88:02:21:7D:F4:B9:93:F6:24:01:07:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0Thk00ASqL2IAiF99LmT9iQBB2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3343/0Thk00ASqL2IAiF99LmT9iQBB2w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:0a:d7:20:27:bd:1a:4b:c1:48:06:b9:d5:d1:16:e1:0d:49: 11:e2:a2:04:a4:e9:2a:47:a3:4e:eb:9a:f5:a9:fe:57:e7:f9: e6:17:8e:61:1f:41:6b:3b:00:96:8b:c3:5e:a6:25:54:c4:a8: 97:bf:45:fb:a1:4e:17:e7:99:2d:65:a6:3f:15:d9:8a:dd:d6: 58:07:1a:27:3a:aa:f6:aa:de:03:17:e4:7f:86:8a:f3:86:71: 6f:24:69:32:b6:f8:9b:a7:9c:64:1e:cc:f3:f8:a6:41:56:97: dc:8c:7d:26:63:15:13:d7:16:53:67:bc:3e:40:8b:29:fe:5d: f3:ed:ac:53:1d:c7:bb:56:77:ff:b3:97:2a:ce:9a:dd:8b:bb: 8c:77:0a:c1:26:05:ed:65:92:de:fc:d6:7a:0e:e5:58:30:bf: c6:12:7d:6f:6a:2b:91:02:2f:9b:6c:59:6e:2c:dc:a5:17:82: e1:64:00:1b:89:bc:19:4d:ca:b1:3e:7f:82:d8:57:10:fc:23: 36:91:38:30:6e:77:49:31:2e:73:0e:d6:0e:ae:a9:1c:26:9b: 4d:34:7e:ac:8c:7a:13:fc:e0:09:4c:76:4a:ca:bf:21:f3:e1: a9:1e:64:ae:26:90:f9:4d:2c:96:c8:74:bf:3b:08:81:1b:44: f8:f7:8c:fe -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICBrMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEz ODY0RDM0MDEyQThCRDg4MDIyMTdERjRCOTkzRjYyNDAxMDc2QzAeFw0yNTEyMDcw MTUwMThaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDAwOTFCNzNCQTA2NDEx MThEMDJBODA0NTU5NjIxOTgyMDdCODNBQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSL91P9XKJZg329kdZ7O9AshxWjghyitNomrQPfOoWJ5fI8kzs JhWXbOMWmglckDREhVQjQU20QadBkvIzTP47GYxA07yP4zHWLsf+TGw+5O/IdArb HTziBzjVDKAW/G8i9QmPK62wES/sPwTxgu04UULSRqv75CT2GmAEZmpLWp14FMGE kMFMo24U4jt83V3hwdKDbxFtQIlIR+LWxGPF6McV0e3rp/u1Cf6118Ol5GrcYd2P c93+7PTaekCgYWL1xTVqKDbg79upG/dA4foSn2fFTkiEgx2Tx7M/usQJJYq0sKm3 aIyps4ilutF1FiwMNvzCcqIbVsDhxWzZSk0NAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUAJG3O6BkERjQKoBFWWIZgge4OsUwHwYDVR0jBBgwFoAU0Thk00ASqL2IAiF9 9LmT9iQBB2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM0 My8wVGhrMDBBU3FMMklBaUY5OUxtVDlpUUJCMncuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBUaGswMEFTcUwySUFpRjk5TG1UOWlRQkIydy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNDMvMFRoazAwQVNxTDJJ QWlGOTlMbVQ5aVFCQjJ3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAEcK1yAnvRpLwUgGudXRFuENSRHiogSk6SpHo07rmvWp/lfn+eYXjmEfQWs7 AJaLw16mJVTEqJe/RfuhThfnmS1lpj8V2Yrd1lgHGic6qvaq3gMX5H+GivOGcW8k aTK2+JunnGQezPP4pkFWl9yMfSZjFRPXFlNnvD5Aiyn+XfPtrFMdx7tWd/+zlyrO mt2Lu4x3CsEmBe1lkt781noO5Vgwv8YSfW9qK5ECL5tsWW4s3KUXguFkABuJvBlN yrE+f4LYVxD8IzaRODBud0kxLnMO1g6uqRwmm000fqyMehP84AlMdkrKvyHz4ake ZK4mkPlNLJbIdL87CIEbRPj3jP4= -----END CERTIFICATE-----Generated at Sun Dec 7 07:30:53 2025 by rpki-client