This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6JidwRLzyLohZdtMK1ngQztUAgA.cer File: 6JidwRLzyLohZdtMK1ngQztUAgA.cer (raw, json) Hash identifier: lzhc4OnKbEdsXiDy8SLyD1HXkG8HYuHso3MnB2YgP/w= Subject key identifier: E8:98:9D:C1:12:F3:C8:BA:21:65:DB:4C:2B:59:E0:43:3B:54:02:00 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/6JidwRLzyLohZdtMK1ngQztUAgA.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:25:47 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 151250 IP: 2402:3ba0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58930 (0xe632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:25:47 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=E8989DC112F3C8BA2165DB4C2B59E0433B540200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:61:cd:76:1f:60:02:7e:be:4c:2c:f3:e5:40: 73:91:0c:fc:0a:b0:ad:b0:b9:2c:64:a8:e5:1f:aa: ab:95:22:72:9c:96:7e:fa:3f:bc:85:e7:e6:c2:fc: 16:b0:f1:ba:df:3c:b6:43:eb:66:98:73:ca:31:75: aa:3e:a7:09:ca:b0:ad:36:93:48:9a:74:7c:63:40: a4:7e:4e:44:82:9e:95:b5:36:18:1e:f9:07:3c:85: ff:16:2b:28:43:25:fc:dc:cb:80:83:90:cc:4f:45: 15:24:d1:e2:5e:5c:94:f8:7d:32:54:63:42:d3:e0: ae:c4:27:40:05:c6:41:4f:15:63:a7:1b:b8:ca:be: 80:09:fb:ef:f9:7f:e7:3b:89:49:01:0f:28:b7:2a: f4:0b:2f:49:2c:9b:56:b5:15:8f:20:61:73:73:84: 06:9f:45:27:14:cd:c0:53:77:fa:3c:c7:ee:5a:23: 1b:59:ad:df:ee:85:c7:0d:de:b9:d6:bb:8a:a2:93: 07:34:18:4e:ec:3e:b4:e4:8e:a3:1f:9d:a1:fd:71: 8c:1b:06:83:6e:b7:09:0f:0a:57:a3:39:08:26:c7: fe:ba:18:b4:e8:8a:6b:1c:1e:72:6b:1b:2c:fc:03: 44:27:f4:62:7f:ae:ae:87:1f:7e:67:d8:0c:cf:6c: e6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:98:9D:C1:12:F3:C8:BA:21:65:DB:4C:2B:59:E0:43:3B:54:02:00 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3414/6JidwRLzyLohZdtMK1ngQztUAgA.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151250 sbgp-ipAddrBlock: critical IPv6: 2402:3ba0::/32 Signature Algorithm: sha256WithRSAEncryption 0a:20:b3:62:56:67:a4:65:f5:7e:21:e4:fe:4c:a0:95:1b:47: 5a:89:33:af:0d:97:39:59:f2:8d:19:2b:eb:8e:69:58:6f:55: 91:55:c7:a9:38:e0:bd:6f:2f:60:53:cc:c6:3e:c3:e3:4d:72: 8f:a8:39:a2:be:03:be:0c:41:27:92:8e:31:c0:86:9e:8d:aa: 6c:26:93:ec:2a:43:8d:e5:0a:96:8f:2f:89:be:0b:5d:68:1b: 61:f1:90:5f:6b:d5:18:36:fc:1e:73:b4:c7:95:40:10:5e:a0: be:59:ab:8f:09:f5:25:38:d8:1e:eb:19:53:ee:c9:25:87:41: 45:15:aa:71:11:9f:73:09:cf:fb:2b:6f:4a:10:8d:f9:42:2c: 31:3f:d3:13:44:43:6c:b8:3a:a1:51:41:16:ab:0f:60:0a:41: df:81:a6:03:6c:e9:5d:fe:a5:e5:61:50:de:30:db:a7:ac:49: 0f:bd:4a:f5:94:f0:4d:b6:7e:1f:05:0f:52:19:f2:53:68:f2: 73:b4:ac:23:db:97:ca:c9:9d:7a:6c:a6:04:37:7d:70:5f:d3: 9e:57:ca:86:e3:bf:20:72:c7:26:a8:f8:70:0d:05:94:6b:54: bb:85:d2:26:23:8f:89:e3:6b:a7:5d:dc:06:6b:f0:83:b7:7e: b7:ba:5b:27 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDAOYyMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODI1NDdaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKEU4OTg5REMxMTJGM0M4QkEyMTY1REI0QzJCNTlFMDQzM0I1NDAy MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYYc12H2ACfr5MLPPl QHORDPwKsK2wuSxkqOUfqquVInKcln76P7yF5+bC/Baw8brfPLZD62aYc8oxdao+ pwnKsK02k0iadHxjQKR+TkSCnpW1Nhge+Qc8hf8WKyhDJfzcy4CDkMxPRRUk0eJe XJT4fTJUY0LT4K7EJ0AFxkFPFWOnG7jKvoAJ++/5f+c7iUkBDyi3KvQLL0ksm1a1 FY8gYXNzhAafRScUzcBTd/o8x+5aIxtZrd/uhccN3rnWu4qikwc0GE7sPrTkjqMf naH9cYwbBoNutwkPClejOQgmx/66GLToimscHnJrGyz8A0Qn9GJ/rq6HH35n2AzP bOZVAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQU6JidwRLzyLohZdtMK1ngQztUAgAw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzM0 MTQvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzQxNC82Smlkd1JMenlMb2haZHRNSzFuZ1F6dFVBZ0EubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO0jAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQCO6AwDQYJKoZIhvcNAQELBQADggEBAAogs2JWZ6Rl9X4h5P5M oJUbR1qJM68NlzlZ8o0ZK+uOaVhvVZFVx6k44L1vL2BTzMY+w+NNco+oOaK+A74M QSeSjjHAhp6Nqmwmk+wqQ43lCpaPL4m+C11oG2HxkF9r1Rg2/B5ztMeVQBBeoL5Z q48J9SU42B7rGVPuySWHQUUVqnERn3MJz/srb0oQjflCLDE/0xNEQ2y4OqFRQRar D2AKQd+BpgNs6V3+peVhUN4w26esSQ+9SvWU8E22fh8FD1IZ8lNo8nO0rCPbl8rJ nXpspgQ3fXBf055XyobjvyByxyao+HANBZRrVLuF0iYjj4nja6dd3AZr8IO3fre6 Wyc= -----END CERTIFICATE-----Generated at Mon Jan 19 12:21:49 2026 by rpki-client