This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/wq4P5eDZls0aR2KmwndP8pw88Us.cer File: wq4P5eDZls0aR2KmwndP8pw88Us.cer (raw, json) Hash identifier: Zou7fkBxgE2puE2CcsVd0JGKPr3rj2w/bpkQuEEqx0M= Subject key identifier: C2:AE:0F:E5:E0:D9:96:CD:1A:47:62:A6:C2:77:4F:F2:9C:3C:F1:4B Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/wq4P5eDZls0aR2KmwndP8pw88Us.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:26:47 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 146784 IP: 36.50.254.0/23 IP: 2401:5fa0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59000 (0xe678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:26:47 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=C2AE0FE5E0D996CD1A4762A6C2774FF29C3CF14B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f3:17:93:91:73:25:3d:fd:e3:2c:8f:04:ae: da:bb:a9:38:18:10:50:b0:3d:b7:6b:d7:1e:66:9b: 55:00:40:53:27:43:69:6f:1f:dd:4d:e2:1f:88:51: a0:79:71:0b:1f:45:c5:f7:ac:a8:fa:b9:92:34:b6: f7:b8:20:9a:33:9c:db:b5:9b:c9:02:52:70:be:1f: 3a:92:27:1c:bc:0b:50:08:75:89:84:1e:c0:39:27: 25:26:91:c3:57:53:86:64:c7:42:ae:90:80:ff:9a: d8:ac:50:7f:49:77:c2:0d:05:e3:f7:40:46:b0:bd: 20:8e:b8:d9:fc:7f:cf:9b:56:27:e4:50:d4:12:2f: 57:85:01:ae:c4:95:a0:6c:e6:c6:b9:8a:eb:89:a5: 0a:7f:75:d1:66:48:c7:7a:06:a6:89:a8:9c:42:3a: 5c:cf:75:fa:bb:12:a8:2d:e0:c6:2c:cb:2c:6b:67: 0c:1c:bc:bd:79:78:81:e9:f0:eb:45:66:0d:c4:50: ce:2f:4c:bb:4f:4d:e6:50:06:7a:fd:80:ce:24:ac: 11:f1:91:15:aa:91:5f:4f:05:41:f7:c1:f5:4e:70: 23:a5:1b:97:33:a9:73:5b:c1:28:7d:c4:b2:50:36: 37:f0:fb:24:21:46:69:97:cc:eb:d8:18:dd:65:b4: 7f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AE:0F:E5:E0:D9:96:CD:1A:47:62:A6:C2:77:4F:F2:9C:3C:F1:4B X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3251/wq4P5eDZls0aR2KmwndP8pw88Us.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146784 sbgp-ipAddrBlock: critical IPv4: 36.50.254.0/23 IPv6: 2401:5fa0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:7d:89:8b:c0:f4:65:af:bc:35:d7:35:8c:2a:3f:84:46:3b: 12:e1:c7:00:8d:8c:0e:9a:2c:b3:88:93:2d:92:27:d4:85:01: ce:07:d7:3d:e1:a9:b0:0e:5d:a5:ae:3c:1e:b7:a5:38:71:30: eb:d2:70:14:82:b4:71:53:8c:93:2f:21:ff:67:3c:53:f9:6e: 02:34:af:62:71:67:d3:a4:41:d9:2a:91:e6:d1:97:c5:f8:5f: 04:1f:c3:67:ec:33:37:88:56:e7:dc:f0:05:47:74:a8:c2:76: 72:ca:cd:86:fc:03:2b:92:e1:2d:d2:ed:2d:6d:43:7e:19:51: ff:c2:9a:4e:6a:b6:04:a8:5e:e7:99:f4:4d:a1:83:40:90:9c: 91:06:98:8f:81:af:b2:e9:30:86:49:c0:fe:44:b0:33:1e:f5: c1:d4:4f:97:82:da:f0:b5:a4:3f:39:be:02:99:14:ee:9b:98: cb:ff:75:bf:e2:df:4e:db:b4:7c:12:b3:c7:54:1c:d7:29:82: 19:8a:d3:4d:95:c1:93:4e:8c:e2:a9:b4:c1:af:37:0a:8e:2a: cb:ff:ec:d4:4b:69:59:4a:b4:56:5f:9d:d7:64:54:12:aa:69: 5c:9a:cb:b4:57:5d:c6:41:45:4c:04:d1:2c:9c:23:81:ac:27: 19:0b:ce:c8 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIDAOZ4MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODI2NDdaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKEMyQUUwRkU1RTBEOTk2Q0QxQTQ3NjJBNkMyNzc0RkYyOUMzQ0Yx NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY8xeTkXMlPf3jLI8E rtq7qTgYEFCwPbdr1x5mm1UAQFMnQ2lvH91N4h+IUaB5cQsfRcX3rKj6uZI0tve4 IJoznNu1m8kCUnC+HzqSJxy8C1AIdYmEHsA5JyUmkcNXU4Zkx0KukID/mtisUH9J d8INBeP3QEawvSCOuNn8f8+bVifkUNQSL1eFAa7ElaBs5sa5iuuJpQp/ddFmSMd6 BqaJqJxCOlzPdfq7Eqgt4MYsyyxrZwwcvL15eIHp8OtFZg3EUM4vTLtPTeZQBnr9 gM4krBHxkRWqkV9PBUH3wfVOcCOlG5czqXNbwSh9xLJQNjfw+yQhRmmXzOvYGN1l tH9VAgMBAAGjggKAMIICfDAdBgNVHQ4EFgQUwq4P5eDZls0aR2KmwndP8pw88Usw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy NTEvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzI1MS93cTRQNWVEWmxzMGFSMkttd25kUDhwdzg4VXMubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9YDAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEASQy/jANBAIAAjAHAwUAJAFfoDANBgkqhkiG9w0BAQsFAAOCAQEA bn2Ji8D0Za+8Ndc1jCo/hEY7EuHHAI2MDposs4iTLZIn1IUBzgfXPeGpsA5dpa48 HrelOHEw69JwFIK0cVOMky8h/2c8U/luAjSvYnFn06RB2SqR5tGXxfhfBB/DZ+wz N4hW59zwBUd0qMJ2csrNhvwDK5LhLdLtLW1DfhlR/8KaTmq2BKhe55n0TaGDQJCc kQaYj4GvsukwhknA/kSwMx71wdRPl4La8LWkPzm+ApkU7puYy/91v+LfTtu0fBKz x1Qc1ymCGYrTTZXBk06M4qm0wa83Co4qy//s1EtpWUq0Vl+d12RUEqppXJrLtFdd xkFFTATRLJwjgawnGQvOyA== -----END CERTIFICATE-----Generated at Mon Jan 19 12:19:03 2026 by rpki-client