This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft File: OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft (raw, json) Hash identifier: IePkj3cSt07awzEPYYCSUcRzsetmf0nsw2Hlujju8Ao= Subject key identifier: A2:B1:0D:87:B2:0C:1D:01:60:A4:67:5C:11:BF:53:A0:49:28:C5:23 Authority key identifier: 39:D2:89:C2:10:E0:ED:08:BD:30:06:0E:C8:FD:CE:6D:68:EE:69:95 Certificate issuer: /CN=39D289C210E0ED08BD30060EC8FDCE6D68EE6995 Certificate serial: 18D4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft Manifest number: 18D4 Signing time: Sun 07 Dec 2025 01:48:38 +0000 Manifest this update: Sun 07 Dec 2025 01:48:38 +0000 Manifest next update: Sun 07 Dec 2025 07:48:38 +0000 Files and hashes: 1: OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl (hash: 5XSFm0zVvic6Al92TAkxT5oUgpXaizkkA4f3FYNGYto=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 07:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6356 (0x18d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39D289C210E0ED08BD30060EC8FDCE6D68EE6995 Validity Not Before: Dec 7 01:48:38 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=A2B10D87B20C1D0160A4675C11BF53A04928C523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f5:0f:57:bf:fd:7f:fc:57:01:e7:d8:db:f1: 33:81:b6:c1:f4:14:a7:56:4d:ca:ab:f7:58:59:e2: 9c:ad:d5:06:0a:9d:1d:7d:8e:79:3e:65:bd:2f:15: f0:d5:85:04:0b:c5:d0:fe:54:e4:6a:41:ee:79:d1: 1a:15:91:74:c2:9d:94:81:82:9d:ca:0a:3b:c2:b5: 6f:6b:50:ff:db:03:c5:02:e8:d1:4b:43:e9:84:ca: fd:cf:93:a1:d2:ba:14:1d:79:ca:4f:87:dd:56:a8: 2a:6e:be:46:0a:78:f4:86:5d:3f:a4:8c:b0:4b:3a: ef:1e:e6:c2:ca:e5:84:a3:1b:34:4f:8c:03:9f:09: 6a:b8:c2:ed:33:29:ee:7b:a0:ac:77:13:53:6b:4d: fa:db:c5:49:1c:6e:c0:47:cb:45:15:b9:8b:ae:b1: 9a:4e:93:c4:7e:d0:46:63:e0:3e:25:bd:f0:3e:3c: ad:30:ec:f0:a9:32:96:bb:ac:fa:64:6d:a6:0e:87: 22:20:90:96:a4:6d:c8:2f:ad:27:2a:ef:c4:9d:08: d7:38:a3:52:f2:10:44:5c:33:be:16:86:c9:d7:07: ac:82:5b:53:fb:9b:45:4c:91:80:fd:04:5f:2b:cc: 74:30:5c:7f:8c:cf:dd:71:2d:a0:2d:45:46:6b:48: 3c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B1:0D:87:B2:0C:1D:01:60:A4:67:5C:11:BF:53:A0:49:28:C5:23 X509v3 Authority Key Identifier: keyid:39:D2:89:C2:10:E0:ED:08:BD:30:06:0E:C8:FD:CE:6D:68:EE:69:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:93:8f:70:bc:fc:ae:cb:e3:1c:96:fe:1f:de:59:9f:59:b4: 9d:04:09:ef:2e:33:e2:cb:2d:3d:cc:d3:5c:de:1a:c5:71:d4: fa:c3:7a:7f:97:ed:17:8b:7d:68:20:82:b2:a7:0b:2b:3c:db: 71:92:b9:b5:db:f6:a0:c7:da:55:9d:ed:f0:e0:e9:6e:45:a6: 9c:f9:52:27:00:4a:70:a9:8d:c1:e4:54:9e:dc:b8:a1:d4:51: 56:65:8b:be:40:32:06:99:dc:55:fa:3d:b6:8c:b1:3a:bd:14: 57:fb:ae:7c:31:01:f3:38:41:f0:1f:7f:b9:50:55:4c:de:6c: d1:7c:23:62:85:5f:6e:91:a7:0e:52:d9:15:79:d0:cc:d1:62: ee:03:24:ac:21:5b:6d:6d:4d:d4:20:03:30:19:ff:ed:f1:e6: da:f8:68:4c:ab:1e:a2:6b:05:51:7c:dc:7d:82:99:a5:f4:73: 0a:dd:c2:0c:65:37:06:24:7f:23:76:6d:06:12:9e:df:a1:3d: 43:80:8c:99:42:82:57:f1:c3:21:48:e5:47:fb:07:20:ee:84: 4c:69:0d:d4:be:f5:81:bf:83:a0:c2:53:4c:1c:16:5a:93:a7: d4:71:50:31:e4:62:8e:d2:d5:66:0f:bd:7e:4e:cd:af:22:5a: 7c:46:cf:61 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICGNQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlE Mjg5QzIxMEUwRUQwOEJEMzAwNjBFQzhGRENFNkQ2OEVFNjk5NTAeFw0yNTEyMDcw MTQ4MzhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEEyQjEwRDg3QjIwQzFE MDE2MEE0Njc1QzExQkY1M0EwNDkyOEM1MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe9Q9Xv/1//FcB59jb8TOBtsH0FKdWTcqr91hZ4pyt1QYKnR19 jnk+Zb0vFfDVhQQLxdD+VORqQe550RoVkXTCnZSBgp3KCjvCtW9rUP/bA8UC6NFL Q+mEyv3Pk6HSuhQdecpPh91WqCpuvkYKePSGXT+kjLBLOu8e5sLK5YSjGzRPjAOf CWq4wu0zKe57oKx3E1NrTfrbxUkcbsBHy0UVuYuusZpOk8R+0EZj4D4lvfA+PK0w 7PCpMpa7rPpkbaYOhyIgkJakbcgvrScq78SdCNc4o1LyEERcM74WhsnXB6yCW1P7 m0VMkYD9BF8rzHQwXH+Mz91xLaAtRUZrSDx1AgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUorENh7IMHQFgpGdcEb9ToEkoxSMwHwYDVR0jBBgwFoAUOdKJwhDg7Qi9MAYO yP3ObWjuaZUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTAv T2RLSndoRGc3UWk5TUFZT3lQM09iV2p1YVpVLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9PZEtKd2hEZzdRaTlNQVlPeVAzT2JXanVhWlUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81MC9PZEtKd2hEZzdRaTlNQVlP eVAzT2JXanVhWlUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA U5OPcLz8rsvjHJb+H95Zn1m0nQQJ7y4z4sstPczTXN4axXHU+sN6f5ftF4t9aCCC sqcLKzzbcZK5tdv2oMfaVZ3t8ODpbkWmnPlSJwBKcKmNweRUnty4odRRVmWLvkAy BpncVfo9toyxOr0UV/uufDEB8zhB8B9/uVBVTN5s0XwjYoVfbpGnDlLZFXnQzNFi 7gMkrCFbbW1N1CADMBn/7fHm2vhoTKseomsFUXzcfYKZpfRzCt3CDGU3BiR/I3Zt BhKe36E9Q4CMmUKCV/HDIUjlR/sHIO6ETGkN1L71gb+DoMJTTBwWWpOn1HFQMeRi jtLVZg+9fk7NryJafEbPYQ== -----END CERTIFICATE-----Generated at Sun Dec 7 06:43:48 2025 by rpki-client