This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/f5GM8mUD0fm8-nfcCqWSpX3fgkU.cer File: f5GM8mUD0fm8-nfcCqWSpX3fgkU.cer (raw, json) Hash identifier: CjNJJcsQwcNIP0LJovumGi17a/70u0YYLTRl9CtabYk= Subject key identifier: 7F:91:8C:F2:65:03:D1:F9:BC:FA:77:DC:0A:A5:92:A5:7D:DF:82:45 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E799 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/f5GM8mUD0fm8-nfcCqWSpX3fgkU.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Mon 12 Jan 2026 19:57:15 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 151295 IP: 103.74.80.0/22 IP: 103.216.136.0/22 IP: 2401:7660::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59289 (0xe799) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 12 19:57:15 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=7F918CF26503D1F9BCFA77DC0AA592A57DDF8245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:72:d7:fe:ae:be:9d:ab:e5:92:15:af:51: a9:e4:d2:63:e1:a8:47:9f:ba:3c:ff:64:6c:29:19: a6:82:df:8a:74:bf:d7:b1:aa:05:93:6e:ef:6f:a9: 90:59:e2:db:71:e1:74:4d:ff:2d:9b:f2:dc:de:2e: 7c:6e:8e:67:a7:2f:15:d0:c2:db:96:f3:69:7b:3a: fa:93:43:51:73:d5:c7:a8:6d:35:79:40:75:15:e1: 77:3f:3a:0f:10:e7:66:43:a3:82:e2:3a:cc:ed:40: b6:19:a8:da:33:0c:ed:3b:e4:70:76:be:85:66:db: 2d:20:51:a3:fc:45:58:46:f2:e0:f0:59:32:ff:2c: 2e:dc:3d:9f:86:e4:73:5e:e8:21:55:a0:ac:e0:64: ab:e5:99:17:6d:bc:aa:f4:7c:31:c0:44:96:b4:4e: 11:63:dd:da:47:dc:dd:cc:31:8b:5c:16:2f:5b:74: 3e:a6:88:34:09:fc:be:7a:1a:51:ce:48:d8:af:72: 00:2a:6f:7d:79:3d:13:99:5f:4f:9e:c4:62:82:f3: 26:16:23:0a:74:40:7d:0d:77:94:dd:cb:a4:11:94: 2a:43:53:9f:ff:25:00:52:10:cf:4b:8f:83:fe:5b: d0:c5:35:49:b0:9a:69:d3:ab:05:ad:58:1c:8d:b4: a3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:91:8C:F2:65:03:D1:F9:BC:FA:77:DC:0A:A5:92:A5:7D:DF:82:45 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/f5GM8mUD0fm8-nfcCqWSpX3fgkU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151295 sbgp-ipAddrBlock: critical IPv4: 103.74.80.0/22 103.216.136.0/22 IPv6: 2401:7660::/32 Signature Algorithm: sha256WithRSAEncryption 93:e1:64:3d:62:34:ff:fc:27:be:5c:79:26:8f:b6:31:f6:ba: 38:21:4a:92:29:4b:c8:83:88:ab:5d:8c:9e:a5:cc:3e:d1:02: 5e:6d:02:52:8e:fc:56:7b:a1:61:3c:75:94:46:f2:8a:34:fa: 11:a7:5c:32:2b:c5:45:4b:b5:ec:f8:7f:6f:46:5e:2a:dc:51: f4:17:1a:14:1c:2f:0c:8f:1c:c8:d9:64:af:21:57:34:54:42: ff:a1:6e:5c:33:91:ee:d5:30:f7:a4:6b:a6:30:23:03:59:e3: a5:cb:f3:99:5a:ba:b0:fd:c3:03:a1:17:34:29:2b:05:14:31: b4:e8:bf:fd:e2:16:ae:79:1e:f8:81:53:73:c4:57:cc:5f:90: 8a:0f:51:10:36:59:ef:46:d9:74:b9:e3:55:d0:cd:2c:e3:0b: b1:85:7e:af:18:8d:16:a9:6b:27:8c:bc:9f:d1:65:24:da:b3: b6:46:57:ff:0f:e2:46:f1:89:2c:19:7f:1c:d9:2a:d4:01:1c: bc:39:2e:2d:26:a5:e1:8b:a0:a6:0c:97:26:e9:e1:73:74:b2: 2e:d1:d4:95:5d:68:f2:1e:37:dd:ed:13:2f:30:df:6c:6f:b2: 96:72:48:af:34:f1:1c:4f:1f:51:9f:8b:d8:7d:39:a5:cf:1d: 23:f4:bf:18 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIDAOeZMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMTIxOTU3MTVaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDdGOTE4Q0YyNjUwM0QxRjlCQ0ZBNzdEQzBBQTU5MkE1N0RERjgy NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDETHLX/q6+navlkhWv Uank0mPhqEefujz/ZGwpGaaC34p0v9exqgWTbu9vqZBZ4ttx4XRN/y2b8tzeLnxu jmenLxXQwtuW82l7OvqTQ1Fz1ceobTV5QHUV4Xc/Og8Q52ZDo4LiOsztQLYZqNoz DO075HB2voVm2y0gUaP8RVhG8uDwWTL/LC7cPZ+G5HNe6CFVoKzgZKvlmRdtvKr0 fDHARJa0ThFj3dpH3N3MMYtcFi9bdD6miDQJ/L56GlHOSNivcgAqb315PROZX0+e xGKC8yYWIwp0QH0Nd5Tdy6QRlCpDU5//JQBSEM9Lj4P+W9DFNUmwmmnTqwWtWByN tKPRAgMBAAGjggKGMIICgjAdBgNVHQ4EFgQUf5GM8mUD0fm8+nfcCqWSpX3fgkUw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NTUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI1NS9mNUdNOG1VRDBmbTgtbmZjQ3FXU3BYM2Zna1UubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO/zA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmdKUAMEAmfYiDANBAIAAjAHAwUAJAF2YDANBgkqhkiG9w0BAQsF AAOCAQEAk+FkPWI0//wnvlx5Jo+2Mfa6OCFKkilLyIOIq12MnqXMPtECXm0CUo78 VnuhYTx1lEbyijT6EadcMivFRUu17Ph/b0ZeKtxR9BcaFBwvDI8cyNlkryFXNFRC /6FuXDOR7tUw96RrpjAjA1njpcvzmVq6sP3DA6EXNCkrBRQxtOi//eIWrnke+IFT c8RXzF+Qig9REDZZ70bZdLnjVdDNLOMLsYV+rxiNFqlrJ4y8n9FlJNqztkZX/w/i RvGJLBl/HNkq1AEcvDkuLSal4YugpgyXJunhc3SyLtHUlV1o8h433e0TLzDfbG+y lnJIrzTxHE8fUZ+L2H05pc8dI/S/GA== -----END CERTIFICATE-----Generated at Mon Jan 19 12:20:26 2026 by rpki-client