This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft File: qaFpos8CL7oK84PKmXtFZP7V-Js.mft (raw, json) Hash identifier: cFQcPw+52D3JxtRO7bTzK6xgwYcBK8Pv66nTWYlhvFk= Subject key identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE Authority key identifier: A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B Certificate issuer: /CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Certificate serial: EC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft Manifest number: EA Signing time: Sat 06 Dec 2025 20:17:19 +0000 Manifest this update: Sat 06 Dec 2025 20:17:19 +0000 Manifest next update: Sun 07 Dec 2025 02:17:19 +0000 Files and hashes: 1: bd9GrxZEfHWtOWHMuYJUpax949Y.roa (hash: Vy2eK3SQCyGw1GNGKXYuy4gqV0cZkl9Rql6LWidAWcA=) 2: qaFpos8CL7oK84PKmXtFZP7V-Js.crl (hash: mzfMjbMAtu5I8LxteQ+Cl3W9PZmZsFP1HSDMSXiS5oc=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 02:17:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9A169A2CF022FBA0AF383CA997B4564FED5F89B Validity Not Before: Dec 6 20:17:19 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=2B165718FFB471E6D983811B349FCF8F44B998BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bf:94:ff:7b:7c:37:5a:1f:e8:b6:66:c3:6f: 66:38:b7:ae:da:2e:b1:ad:5c:ff:df:d7:a7:ad:7e: 70:4b:4f:7a:44:61:e8:b8:4d:e6:c5:b6:2f:95:6b: 48:87:0a:24:3a:f8:b7:f7:6f:36:c0:5f:ac:96:66: 8c:fb:47:ea:8a:ae:1b:f7:3f:f2:eb:4e:20:90:c7: 47:99:75:23:d0:0b:fe:4c:ba:60:7c:45:db:e8:0a: 8e:97:2a:87:33:b0:0a:be:54:cd:69:a8:71:14:25: 20:ca:dd:e8:72:a5:11:4d:9e:41:8b:97:66:1b:bc: 45:16:61:05:54:25:aa:c6:24:05:5d:b0:36:3b:da: 80:35:25:bb:ec:85:6e:30:5c:a6:91:52:70:7f:f1: 74:72:0a:27:32:4a:70:b5:dd:e3:eb:4d:d3:c2:55: 2c:ab:e3:37:59:98:9c:63:51:eb:29:63:8d:6a:1b: dd:6c:f4:44:87:eb:1e:7d:f8:60:93:05:1b:5f:58: f0:fc:5b:f1:cf:68:78:d7:46:3f:d5:b9:73:06:10: af:9c:56:1f:0a:8b:b5:0e:80:ad:c3:92:90:07:f2: ec:b8:a4:e1:7b:b9:53:f7:db:1b:8a:a5:bd:ea:c1: 65:04:13:7a:d3:d4:b6:06:d0:a7:bf:83:5a:ef:1f: c5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:16:57:18:FF:B4:71:E6:D9:83:81:1B:34:9F:CF:8F:44:B9:98:BE X509v3 Authority Key Identifier: keyid:A9:A1:69:A2:CF:02:2F:BA:0A:F3:83:CA:99:7B:45:64:FE:D5:F8:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qaFpos8CL7oK84PKmXtFZP7V-Js.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3399/qaFpos8CL7oK84PKmXtFZP7V-Js.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:39:69:c9:1d:11:0d:ac:c1:41:fc:1c:b9:0b:fb:75:9c:07: cd:89:4d:f5:d7:50:00:01:4c:95:7c:d6:4d:d4:97:9a:37:04: a1:29:6a:79:db:3d:7b:8b:31:63:bc:92:3a:ed:fc:fe:55:8a: b5:80:6b:e0:7c:e7:da:d8:4b:58:aa:33:14:e8:cc:de:c3:2b: e2:52:f4:a6:ef:a9:ec:5a:2c:47:8f:02:16:b7:29:1a:f9:ad: 9a:50:14:86:dd:2e:6e:e8:c0:26:f7:fe:88:18:49:1a:c5:1c: db:d8:ce:47:bf:28:f6:dc:f1:c4:1d:92:aa:29:7f:70:b5:57: e7:ea:7e:79:39:65:27:d6:0d:4f:b0:4e:77:c9:45:8b:07:f8: 4e:77:4d:55:2c:bf:b2:31:04:fc:72:54:db:e5:f7:fb:06:13: 99:8a:ad:8c:17:d4:f5:ff:65:3c:0f:89:4b:d1:ff:8b:8d:0e: 13:5b:db:83:89:82:54:7c:c0:a6:73:9a:48:21:a3:83:d5:97: 3a:7e:9a:99:a3:09:ad:5d:d9:c9:e7:01:60:87:59:5e:e1:99: 0a:2a:a3:8e:b1:af:32:86:69:70:5d:84:96:60:4b:fb:e0:c5: 01:bd:ac:ef:42:4d:63:fd:f3:45:d5:bb:48:3b:28:30:71:46: 60:cb:bc:25 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTlB MTY5QTJDRjAyMkZCQTBBRjM4M0NBOTk3QjQ1NjRGRUQ1Rjg5QjAeFw0yNTEyMDYy MDE3MTlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDJCMTY1NzE4RkZCNDcx RTZEOTgzODExQjM0OUZDRjhGNDRCOTk4QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjv5T/e3w3Wh/otmbDb2Y4t67aLrGtXP/f16etfnBLT3pEYei4 TebFti+Va0iHCiQ6+Lf3bzbAX6yWZoz7R+qKrhv3P/LrTiCQx0eZdSPQC/5MumB8 RdvoCo6XKoczsAq+VM1pqHEUJSDK3ehypRFNnkGLl2YbvEUWYQVUJarGJAVdsDY7 2oA1JbvshW4wXKaRUnB/8XRyCicySnC13ePrTdPCVSyr4zdZmJxjUespY41qG91s 9ESH6x59+GCTBRtfWPD8W/HPaHjXRj/VuXMGEK+cVh8Ki7UOgK3DkpAH8uy4pOF7 uVP32xuKpb3qwWUEE3rT1LYG0Ke/g1rvH8UhAgMBAAGjggIMMIICCDAdBgNVHQ4E FgQUKxZXGP+0cebZg4EbNJ/Pj0S5mL4wHwYDVR0jBBgwFoAUqaFpos8CL7oK84PK mXtFZP7V+JswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 OS9xYUZwb3M4Q0w3b0s4NFBLbVh0RlpQN1YtSnMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3FhRnBvczhDTDdvSzg0UEttWHRGWlA3Vi1Kcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTkvcWFGcG9zOENMN29L ODRQS21YdEZaUDdWLUpzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAg5ackdEQ2swUH8HLkL+3WcB82JTfXXUAABTJV81k3Ul5o3BKEpannbPXuL MWO8kjrt/P5VirWAa+B859rYS1iqMxTozN7DK+JS9KbvqexaLEePAha3KRr5rZpQ FIbdLm7owCb3/ogYSRrFHNvYzke/KPbc8cQdkqopf3C1V+fqfnk5ZSfWDU+wTnfJ RYsH+E53TVUsv7IxBPxyVNvl9/sGE5mKrYwX1PX/ZTwPiUvR/4uNDhNb24OJglR8 wKZzmkgho4PVlzp+mpmjCa1d2cnnAWCHWV7hmQoqo46xrzKGaXBdhJZgS/vgxQG9 rO9CTWP980XVu0g7KDBxRmDLvCU= -----END CERTIFICATE-----Generated at Sun Dec 7 00:27:02 2025 by rpki-client