This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6JidwRLzyLohZdtMK1ngQztUAgA.cer File: 6JidwRLzyLohZdtMK1ngQztUAgA.cer (raw, json) Hash identifier: bPob/iYvpnXQujwxIA/mUkctNA8pls54CDvSs80aXtY= Subject key identifier: E8:98:9D:C1:12:F3:C8:BA:21:65:DB:4C:2B:59:E0:43:3B:54:02:00 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E50C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/6JidwRLzyLohZdtMK1ngQztUAgA.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Mon 01 Dec 2025 02:28:39 +0000 Certificate not after: Tue 01 Dec 2026 02:07:00 +0000 Subordinate resources: AS: 151250 IP: 2402:3ba0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58636 (0xe50c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Dec 1 02:28:39 2025 GMT Not After : Dec 1 02:07:00 2026 GMT Subject: CN=E8989DC112F3C8BA2165DB4C2B59E0433B540200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:61:cd:76:1f:60:02:7e:be:4c:2c:f3:e5:40: 73:91:0c:fc:0a:b0:ad:b0:b9:2c:64:a8:e5:1f:aa: ab:95:22:72:9c:96:7e:fa:3f:bc:85:e7:e6:c2:fc: 16:b0:f1:ba:df:3c:b6:43:eb:66:98:73:ca:31:75: aa:3e:a7:09:ca:b0:ad:36:93:48:9a:74:7c:63:40: a4:7e:4e:44:82:9e:95:b5:36:18:1e:f9:07:3c:85: ff:16:2b:28:43:25:fc:dc:cb:80:83:90:cc:4f:45: 15:24:d1:e2:5e:5c:94:f8:7d:32:54:63:42:d3:e0: ae:c4:27:40:05:c6:41:4f:15:63:a7:1b:b8:ca:be: 80:09:fb:ef:f9:7f:e7:3b:89:49:01:0f:28:b7:2a: f4:0b:2f:49:2c:9b:56:b5:15:8f:20:61:73:73:84: 06:9f:45:27:14:cd:c0:53:77:fa:3c:c7:ee:5a:23: 1b:59:ad:df:ee:85:c7:0d:de:b9:d6:bb:8a:a2:93: 07:34:18:4e:ec:3e:b4:e4:8e:a3:1f:9d:a1:fd:71: 8c:1b:06:83:6e:b7:09:0f:0a:57:a3:39:08:26:c7: fe:ba:18:b4:e8:8a:6b:1c:1e:72:6b:1b:2c:fc:03: 44:27:f4:62:7f:ae:ae:87:1f:7e:67:d8:0c:cf:6c: e6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:98:9D:C1:12:F3:C8:BA:21:65:DB:4C:2B:59:E0:43:3B:54:02:00 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/6JidwRLzyLohZdtMK1ngQztUAgA.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151250 sbgp-ipAddrBlock: critical IPv6: 2402:3ba0::/32 Signature Algorithm: sha256WithRSAEncryption 39:f4:97:18:7c:7a:f3:94:39:9e:ca:14:b5:f3:e5:58:3c:c3: ca:d4:6e:64:f7:4c:18:1e:dd:17:5b:2a:00:5e:bf:87:48:d2: d0:c7:7e:b6:7e:cd:8d:93:5e:c1:30:1e:fc:3d:77:ff:a7:98: ca:6c:41:e3:5f:f9:3f:e7:4e:8e:1c:99:32:92:72:14:cd:6a: b5:bd:93:3d:7a:7f:b5:12:42:1b:ba:93:85:5f:d7:79:55:9a: c1:6e:d1:ca:fe:c2:aa:15:ee:13:28:c5:b8:6e:fa:72:bb:78: a0:c4:50:d2:f1:74:e1:a0:59:38:e0:16:14:80:fa:f5:f0:66: ca:89:d9:7b:c4:1a:fa:82:62:c9:d3:e2:ce:33:38:d8:14:2a: 2c:de:b7:31:9e:21:28:e2:d7:37:5f:bf:84:dc:b3:fd:98:26: 08:e0:78:90:1c:24:98:be:ca:1f:7d:c2:e5:18:b6:b2:69:42: b9:6b:a1:86:4f:25:e2:99:88:c8:b0:6d:5f:34:06:3e:10:f8: 16:53:e6:65:9e:e1:7a:b1:f2:82:81:36:4c:9d:0d:71:b1:a7: c6:56:e9:6c:e7:08:01:30:51:88:21:b0:05:95:d8:29:8f:9c: f3:e5:4f:7c:27:ab:e7:64:eb:80:b4:e4:1e:d9:2e:f1:8b:7f: f7:ab:12:d4 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDAOUMMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTEyMDEwMjI4MzlaFw0yNjEyMDEwMjA3MDBaMDMx MTAvBgNVBAMTKEU4OTg5REMxMTJGM0M4QkEyMTY1REI0QzJCNTlFMDQzM0I1NDAy MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYYc12H2ACfr5MLPPl QHORDPwKsK2wuSxkqOUfqquVInKcln76P7yF5+bC/Baw8brfPLZD62aYc8oxdao+ pwnKsK02k0iadHxjQKR+TkSCnpW1Nhge+Qc8hf8WKyhDJfzcy4CDkMxPRRUk0eJe XJT4fTJUY0LT4K7EJ0AFxkFPFWOnG7jKvoAJ++/5f+c7iUkBDyi3KvQLL0ksm1a1 FY8gYXNzhAafRScUzcBTd/o8x+5aIxtZrd/uhccN3rnWu4qikwc0GE7sPrTkjqMf naH9cYwbBoNutwkPClejOQgmx/66GLToimscHnJrGyz8A0Qn9GJ/rq6HH35n2AzP bOZVAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQU6JidwRLzyLohZdtMK1ngQztUAgAw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzM0 MTQvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzQxNC82Smlkd1JMenlMb2haZHRNSzFuZ1F6dFVBZ0EubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO0jAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQCO6AwDQYJKoZIhvcNAQELBQADggEBADn0lxh8evOUOZ7KFLXz 5Vg8w8rUbmT3TBge3RdbKgBev4dI0tDHfrZ+zY2TXsEwHvw9d/+nmMpsQeNf+T/n To4cmTKSchTNarW9kz16f7USQhu6k4Vf13lVmsFu0cr+wqoV7hMoxbhu+nK7eKDE UNLxdOGgWTjgFhSA+vXwZsqJ2XvEGvqCYsnT4s4zONgUKizetzGeISji1zdfv4Tc s/2YJgjgeJAcJJi+yh99wuUYtrJpQrlroYZPJeKZiMiwbV80Bj4Q+BZT5mWe4Xqx 8oKBNkydDXGxp8ZW6WznCAEwUYghsAWV2CmPnPPlT3wnq+dk64C05B7ZLvGLf/er EtQ= -----END CERTIFICATE-----Generated at Thu Dec 4 22:52:49 2025 by rpki-client