This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.mft File: _63I3WE2bNhNmVIbY4OA6LUC5uQ.mft (raw, json) Hash identifier: lZPsoPnpob6NNG54DwOabAJLHp7+BghJqEYmxYKbON8= Subject key identifier: 79:1B:A4:E7:22:4B:38:41:76:4D:7F:2F:8D:34:FD:37:E9:D5:88:9A Authority key identifier: FF:AD:C8:DD:61:36:6C:D8:4D:99:52:1B:63:83:80:E8:B5:02:E6:E4 Certificate issuer: /CN=FFADC8DD61366CD84D99521B638380E8B502E6E4 Certificate serial: 18D0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_63I3WE2bNhNmVIbY4OA6LUC5uQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.mft Manifest number: 18CC Signing time: Sat 06 Dec 2025 21:18:29 +0000 Manifest this update: Sat 06 Dec 2025 21:18:29 +0000 Manifest next update: Sun 07 Dec 2025 03:18:29 +0000 Files and hashes: 1: X07282e9PCQuZlli4VdAPVxV6wY.roa (hash: vVHKJZzyr+a3M5+snbxSBau9LwwkAYdYK0VD/veHhg8=) 2: _63I3WE2bNhNmVIbY4OA6LUC5uQ.crl (hash: JNulPZAu7/j0NKqMoMavdDq/V0dWJAerFzbUKrBUpXk=) 3: fueDrUdkJjq3Fh2yqH4qYN_mGBU.roa (hash: UryzZxE3raAFvefOehQQfkP8Bg/CybqwnETa9kULVnM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_63I3WE2bNhNmVIbY4OA6LUC5uQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6352 (0x18d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFADC8DD61366CD84D99521B638380E8B502E6E4 Validity Not Before: Dec 6 21:18:29 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=791BA4E7224B3841764D7F2F8D34FD37E9D5889A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a3:b3:15:50:67:14:3b:f5:2e:7e:52:55:3a: 42:cb:f0:98:7f:8d:1d:51:7e:20:a2:ad:22:87:6c: 0b:1d:44:5d:1b:82:1a:83:d6:80:11:bb:a8:13:f3: 9e:8f:fb:11:98:09:ef:a6:33:9c:ad:fc:17:87:7e: 2f:08:3b:7f:b2:79:8d:8d:8f:88:e9:f0:6a:0b:c4: 8c:8d:8f:5c:f9:01:75:14:40:97:0c:a1:57:d2:2d: 38:06:c5:22:4d:26:03:77:0f:8f:0a:cb:d1:25:33: a7:2a:51:84:07:3f:0a:a6:f0:98:27:0e:0e:b1:ed: 40:53:d3:74:4a:42:39:35:ce:64:1b:ef:c6:bf:bd: 22:db:32:d7:92:e1:1d:f2:bc:b6:6f:67:7a:04:c8: 63:ba:f0:94:a8:2b:36:b4:d9:69:ef:b9:90:fd:3f: 0a:5c:ac:a3:c9:44:90:87:80:03:9a:aa:ee:4c:90: cf:4e:05:4d:87:03:46:47:96:b9:cf:cc:4a:a2:b0: e1:99:f9:1f:69:84:45:7c:24:67:56:38:08:4d:e4: 96:fa:37:3f:fd:55:a7:d3:a2:78:29:b3:c4:68:e2: 65:ef:38:a5:4a:18:a7:84:b0:64:3a:9d:04:fc:38: 2e:6a:0a:86:69:91:cc:fb:35:37:4b:2f:70:51:8c: 20:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:1B:A4:E7:22:4B:38:41:76:4D:7F:2F:8D:34:FD:37:E9:D5:88:9A X509v3 Authority Key Identifier: keyid:FF:AD:C8:DD:61:36:6C:D8:4D:99:52:1B:63:83:80:E8:B5:02:E6:E4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_63I3WE2bNhNmVIbY4OA6LUC5uQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f4:9a:c0:a2:35:99:b6:0e:a0:e9:4e:73:83:cd:c1:89:e8: 0c:1c:6e:1f:ae:77:6b:1f:02:39:e5:41:7c:5d:4d:99:8f:86: cd:bc:f1:97:5b:1a:57:33:c5:ed:9e:82:61:1f:81:20:15:f9: 27:df:65:bd:d7:9a:80:8a:d6:44:fa:92:a3:6e:23:82:73:98: 5d:b0:64:72:dd:24:7a:3b:f8:d7:4f:c3:f6:58:5a:78:61:32: d0:21:f3:99:f8:ee:78:eb:a3:67:25:06:b6:6b:87:10:6a:cc: 59:df:c1:e6:4d:ee:79:af:81:f8:8a:82:3c:d4:f3:2b:95:a2: f2:fb:a2:d7:ce:e9:d6:8e:d1:1b:99:a2:ca:3e:04:29:d5:d7: 0c:14:2b:14:7f:20:d7:51:00:3d:52:fa:ac:be:33:91:95:b6: de:61:b8:c1:c9:1c:7c:3d:43:c9:29:73:70:08:ea:0d:e9:8f: 70:c6:b2:d8:27:19:c3:13:c5:f9:10:e6:37:83:da:99:d0:7f: 49:84:ba:72:56:f5:17:95:65:97:22:cd:3e:f1:41:27:be:55: 2f:a1:16:47:d3:4c:8d:08:b2:a2:9d:42:2b:33:f9:6f:d5:a0: 25:bb:4d:b1:ce:f5:57:24:14:3b:05:ed:49:30:28:1d:28:93: 40:4f:7f:6a -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgICGNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkZB REM4REQ2MTM2NkNEODREOTk1MjFCNjM4MzgwRThCNTAyRTZFNDAeFw0yNTEyMDYy MTE4MjlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDc5MUJBNEU3MjI0QjM4 NDE3NjREN0YyRjhEMzRGRDM3RTlENTg4OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCho7MVUGcUO/UuflJVOkLL8Jh/jR1RfiCirSKHbAsdRF0bghqD 1oARu6gT856P+xGYCe+mM5yt/BeHfi8IO3+yeY2Nj4jp8GoLxIyNj1z5AXUUQJcM oVfSLTgGxSJNJgN3D48Ky9ElM6cqUYQHPwqm8JgnDg6x7UBT03RKQjk1zmQb78a/ vSLbMteS4R3yvLZvZ3oEyGO68JSoKza02WnvuZD9PwpcrKPJRJCHgAOaqu5MkM9O BU2HA0ZHlrnPzEqisOGZ+R9phEV8JGdWOAhN5Jb6Nz/9VafTongps8Ro4mXvOKVK GKeEsGQ6nQT8OC5qCoZpkcz7NTdLL3BRjCB/AgMBAAGjggIKMIICBjAdBgNVHQ4E FgQUeRuk5yJLOEF2TX8vjTT9N+nViJowHwYDVR0jBBgwFoAU/63I3WE2bNhNmVIb Y4OA6LUC5uQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0 L182M0kzV0UyYk5oTm1WSWJZNE9BNkxVQzV1US5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvXzYzSTNXRTJiTmhObVZJYlk0T0E2TFVDNXVRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0L182M0kzV0UyYk5oTm1W SWJZNE9BNkxVQzV1US5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAR9JrAojWZtg6g6U5zg83BiegMHG4frndrHwI55UF8XU2Zj4bNvPGXWxpXM8Xt noJhH4EgFfkn32W915qAitZE+pKjbiOCc5hdsGRy3SR6O/jXT8P2WFp4YTLQIfOZ +O5466NnJQa2a4cQasxZ38HmTe55r4H4ioI81PMrlaLy+6LXzunWjtEbmaLKPgQp 1dcMFCsUfyDXUQA9UvqsvjORlbbeYbjByRx8PUPJKXNwCOoN6Y9wxrLYJxnDE8X5 EOY3g9qZ0H9JhLpyVvUXlWWXIs0+8UEnvlUvoRZH00yNCLKinUIrM/lv1aAlu02x zvVXJBQ7Be1JMCgdKJNAT39q -----END CERTIFICATE-----Generated at Sat Dec 6 23:23:59 2025 by rpki-client