This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/VyVNn31j60IRhMWNAuBBlwWaag4.cer File: VyVNn31j60IRhMWNAuBBlwWaag4.cer (raw, json) Hash identifier: IJohJh3Uz0k018t/rafN1LmA3Fl6gzQMHkZskaZg0KI= Subject key identifier: 57:25:4D:9F:7D:63:EB:42:11:84:C5:8D:02:E0:41:97:05:9A:6A:0E Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E311 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/VyVNn31j60IRhMWNAuBBlwWaag4.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 23 Oct 2025 03:13:27 +0000 Certificate not after: Fri 23 Oct 2026 03:01:03 +0000 Subordinate resources: AS: 151292 IP: 2401:87e0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58129 (0xe311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Oct 23 03:13:27 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=57254D9F7D63EB421184C58D02E04197059A6A0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fd:37:8e:db:d6:95:dc:de:26:34:77:12:7e: b2:0a:df:25:df:ac:bd:6d:15:48:22:2e:5c:74:de: 14:4e:10:0f:3a:41:6e:2e:02:40:45:b5:d0:fc:ea: 76:b8:49:10:30:a3:48:90:2a:a2:3a:0f:e1:59:40: 77:25:a8:f6:ce:c9:31:71:00:98:c5:3a:f8:ba:0f: 73:18:0b:ca:4f:b9:7c:cb:18:bd:c1:da:2a:60:7d: 7e:04:b8:ea:3b:77:95:fa:5a:5c:38:80:cb:8d:6b: bf:38:d8:1c:d2:0c:8a:0a:fe:07:cf:63:48:50:48: b1:51:c6:9c:b3:08:22:0a:66:eb:c5:7e:b5:9b:04: 3c:af:dc:22:b3:d4:a7:d9:d9:c9:57:22:8d:b0:c5: ed:b2:d5:6c:da:15:c4:91:19:f9:7d:72:af:5c:ae: 11:bf:1c:64:38:7c:67:70:b1:04:57:19:b3:f0:2f: 3c:56:b7:3b:3d:d3:cf:fe:4a:e6:dd:cd:df:88:dc: d9:20:20:f5:51:a5:f2:04:b6:4e:86:d4:76:06:cb: ab:fc:d9:46:57:56:15:6a:60:8d:ff:84:4f:d9:a3: 51:9d:f3:ea:07:9f:78:99:ee:83:72:38:1c:4a:2a: 55:f9:c0:01:64:f2:95:1d:95:37:81:91:6c:26:c9: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:25:4D:9F:7D:63:EB:42:11:84:C5:8D:02:E0:41:97:05:9A:6A:0E X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3270/VyVNn31j60IRhMWNAuBBlwWaag4.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151292 sbgp-ipAddrBlock: critical IPv6: 2401:87e0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:ae:52:02:46:76:c4:b8:8a:f0:99:c1:f1:3c:2e:a7:b8:fa: 74:b8:67:5a:99:12:df:18:32:4d:63:0f:e7:79:7e:e1:17:d6: 45:c2:c2:9c:d2:cf:b4:09:32:a7:34:45:3e:f3:7f:14:45:7c: 43:6b:b8:bd:fc:12:f1:33:38:6f:64:58:fb:f1:3f:ed:7d:f7: 34:d9:2d:9d:25:a3:1a:f0:c9:7d:b7:71:90:2f:96:a7:b4:e6: de:d0:81:e8:38:31:3f:db:b7:ff:22:7c:da:b1:f2:0e:9b:9e: a2:c9:68:78:82:82:af:71:79:79:7e:d9:b4:4c:91:47:da:62: f5:e3:02:09:11:6f:d9:b6:46:19:26:03:de:8d:87:4f:a4:78: 4f:94:50:5f:a4:5b:57:0f:e9:7d:8f:86:8d:17:4b:22:df:bc: e6:0f:56:80:43:5b:6e:07:d3:ea:90:9d:4f:55:f9:91:b2:c4: 9a:8a:10:c5:25:40:3e:98:a3:f6:50:f5:cb:99:48:0c:11:84: ed:dd:de:fa:44:7b:bb:07:e7:f0:68:fa:08:94:dc:03:52:1c: e2:98:e9:71:2c:b7:64:fa:42:19:ac:cf:d9:b6:6b:c2:6c:e4: 4e:ec:7e:9d:15:aa:a8:ff:c9:a8:3f:f0:82:89:09:6b:12:03: 31:c7:68:f7 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDAOMRMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTEwMjMwMzEzMjdaFw0yNjEwMjMwMzAxMDNaMDMx MTAvBgNVBAMTKDU3MjU0RDlGN0Q2M0VCNDIxMTg0QzU4RDAyRTA0MTk3MDU5QTZB MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW/TeO29aV3N4mNHcS frIK3yXfrL1tFUgiLlx03hROEA86QW4uAkBFtdD86na4SRAwo0iQKqI6D+FZQHcl qPbOyTFxAJjFOvi6D3MYC8pPuXzLGL3B2ipgfX4EuOo7d5X6Wlw4gMuNa7842BzS DIoK/gfPY0hQSLFRxpyzCCIKZuvFfrWbBDyv3CKz1KfZ2clXIo2wxe2y1WzaFcSR Gfl9cq9crhG/HGQ4fGdwsQRXGbPwLzxWtzs908/+Subdzd+I3NkgIPVRpfIEtk6G 1HYGy6v82UZXVhVqYI3/hE/Zo1Gd8+oHn3iZ7oNyOBxKKlX5wAFk8pUdlTeBkWwm yUM1AgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUVyVNn31j60IRhMWNAuBBlwWaag4w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NzAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI3MC9WeVZObjMxajYwSVJoTVdOQXVCQmx3V2FhZzQubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO/DAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBh+AwDQYJKoZIhvcNAQELBQADggEBAGyuUgJGdsS4ivCZwfE8 Lqe4+nS4Z1qZEt8YMk1jD+d5fuEX1kXCwpzSz7QJMqc0RT7zfxRFfENruL38EvEz OG9kWPvxP+199zTZLZ0loxrwyX23cZAvlqe05t7Qgeg4MT/bt/8ifNqx8g6bnqLJ aHiCgq9xeXl+2bRMkUfaYvXjAgkRb9m2RhkmA96Nh0+keE+UUF+kW1cP6X2Pho0X SyLfvOYPVoBDW24H0+qQnU9V+ZGyxJqKEMUlQD6Yo/ZQ9cuZSAwRhO3d3vpEe7sH 5/Bo+giU3ANSHOKY6XEst2T6Qhmsz9m2a8Js5E7sfp0Vqqj/yag/8IKJCWsSAzHH aPc= -----END CERTIFICATE-----Generated at Thu Dec 4 22:55:43 2025 by rpki-client