This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft File: yiG6irdU_NZK2pljjW_l5HJTtME.mft (raw, json) Hash identifier: y0kuhwDrjj/ELC9hHJksLGdXBANjrbIf6ht90rH8Aes= Subject key identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 Authority key identifier: CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 Certificate issuer: /CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Certificate serial: 2D7D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft Manifest number: 2D7D Signing time: Sun 07 Dec 2025 06:48:08 +0000 Manifest this update: Sun 07 Dec 2025 06:48:08 +0000 Manifest next update: Sun 07 Dec 2025 12:48:08 +0000 Files and hashes: 1: yiG6irdU_NZK2pljjW_l5HJTtME.crl (hash: AaioYcxI39uf+xl3HIL4dcsqSEz5Lp2DmdxT13/seGM=) Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 11:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11645 (0x2d7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1 Validity Not Before: Dec 7 06:48:08 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=68C24A1388FC9D03DDD1064E2D286614B99B9434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:45:84:0d:f7:9c:a7:65:94:83:6d:ed:a4: ef:0e:58:34:52:71:ae:b9:fc:eb:af:f2:19:7c:fa: 68:fd:76:de:aa:43:e7:01:5f:f2:a7:a7:18:11:ec: 70:de:c2:50:21:52:73:aa:4d:79:8a:20:5b:b8:6d: 8a:6b:59:68:28:7c:ee:84:19:8d:5e:88:82:df:2e: 3e:6f:e9:bf:95:65:32:57:49:c1:74:64:c8:64:44: 38:5e:32:9c:a4:34:b0:55:6b:e3:60:9c:a4:b2:a0: e4:74:71:87:d2:f4:73:d7:31:61:cc:55:e1:06:eb: 2d:06:5d:b5:d0:7d:a7:b4:95:2b:db:63:f6:24:35: 82:6f:1a:4d:96:b3:95:c3:f5:88:8b:81:44:bf:08: 8d:b2:b9:73:8e:47:26:16:fa:e9:be:36:09:a2:fc: 2b:ad:76:9e:20:5f:89:4e:7e:06:3c:b9:70:38:55: 44:ad:5b:b1:8c:75:45:f2:ae:35:12:62:1f:98:16: 4c:96:a6:83:1d:48:2e:e2:3f:3c:df:7e:dd:44:17: 7f:eb:30:b1:a8:ae:e8:a5:40:ef:a9:ae:af:00:80: 84:a1:68:96:2f:48:08:fd:e2:fc:bc:ec:74:3c:bb: 16:27:13:a3:8b:fc:38:0e:ac:af:fe:16:67:3a:36: 2d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34 X509v3 Authority Key Identifier: keyid:CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:34:50:d7:84:c3:e0:ff:9c:64:c9:4a:dd:b6:ec:e2:87:73: 4c:5d:4e:ed:76:85:0f:13:15:69:08:25:14:b8:0d:a0:2a:5f: c0:24:fd:49:e1:5f:93:74:95:f6:ea:1d:28:41:e2:8d:e5:ec: 4b:c9:60:db:55:38:b6:3a:ef:dc:93:48:18:6e:6a:f3:7d:62: 6e:68:17:e1:61:5d:2a:25:9b:8a:f6:33:23:ad:49:e4:c4:12: 3b:3c:93:e7:da:15:38:1b:23:b4:fa:2c:12:86:0e:37:92:57: e4:86:93:ba:65:ac:36:30:85:00:c8:db:0a:41:92:ee:26:0a: f8:af:10:93:13:b5:c3:59:22:c6:2f:df:22:01:95:3c:97:59: 3b:e0:b4:c2:30:e5:05:e4:81:66:f9:71:ce:40:f8:9d:1e:e0: 68:62:44:ce:a2:b9:34:fa:85:d9:a5:cc:87:99:2c:97:08:18: 3f:54:e5:7c:b5:9d:0e:07:14:66:d3:59:2c:ae:e5:0e:b8:d0: c2:a1:fe:ec:ed:89:d9:45:b5:60:b0:8e:ea:62:f9:13:76:d6: d2:79:fb:c4:06:3d:b3:8f:dd:3b:b9:32:97:07:19:2e:db:15: 03:19:55:08:03:4a:1a:fe:43:ee:a4:21:2f:7e:3e:30:f9:20: 62:da:1a:b6 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgICLX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ey MUJBOEFCNzU0RkNENjRBREE5OTYzOEQ2RkU1RTQ3MjUzQjRDMTAeFw0yNTEyMDcw NjQ4MDhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDY4QzI0QTEzODhGQzlE MDNEREQxMDY0RTJEMjg2NjE0Qjk5Qjk0MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpNUWEDfecp2WUg23tpO8OWDRSca65/Ouv8hl8+mj9dt6qQ+cB X/KnpxgR7HDewlAhUnOqTXmKIFu4bYprWWgofO6EGY1eiILfLj5v6b+VZTJXScF0 ZMhkRDheMpykNLBVa+NgnKSyoOR0cYfS9HPXMWHMVeEG6y0GXbXQfae0lSvbY/Yk NYJvGk2Ws5XD9YiLgUS/CI2yuXOORyYW+um+Ngmi/Cutdp4gX4lOfgY8uXA4VUSt W7GMdUXyrjUSYh+YFkyWpoMdSC7iPzzfft1EF3/rMLGoruilQO+prq8AgIShaJYv SAj94vy87HQ8uxYnE6OL/DgOrK/+Fmc6Ni3hAgMBAAGjggIIMIICBDAdBgNVHQ4E FgQUaMJKE4j8nQPd0QZOLShmFLmblDQwHwYDVR0jBBgwFoAUyiG6irdU/NZK2plj jW/l5HJTtMEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvOTgv eWlHNmlyZFVfTlpLMnBsampXX2w1SEpUdE1FLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC95aUc2aXJkVV9OWksycGxqaldfbDVISlR0TUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC85OC95aUc2aXJkVV9OWksycGxq aldfbDVISlR0TUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA nDRQ14TD4P+cZMlK3bbs4odzTF1O7XaFDxMVaQglFLgNoCpfwCT9SeFfk3SV9uod KEHijeXsS8lg21U4tjrv3JNIGG5q831ibmgX4WFdKiWbivYzI61J5MQSOzyT59oV OBsjtPosEoYON5JX5IaTumWsNjCFAMjbCkGS7iYK+K8QkxO1w1kixi/fIgGVPJdZ O+C0wjDlBeSBZvlxzkD4nR7gaGJEzqK5NPqF2aXMh5kslwgYP1TlfLWdDgcUZtNZ LK7lDrjQwqH+7O2J2UW1YLCO6mL5E3bW0nn7xAY9s4/dO7kylwcZLtsVAxlVCANK Gv5D7qQhL34+MPkgYtoatg== -----END CERTIFICATE-----Generated at Sun Dec 7 10:31:32 2025 by rpki-client