This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/xMVT2QII7y67l2ljJf_-xcD_FW8.cer File: xMVT2QII7y67l2ljJf_-xcD_FW8.cer (raw, json) Hash identifier: jgPu0/YQoDV9EL0kl+beNO6aNgQRKSYvWH3B+w5QDXc= Subject key identifier: C4:C5:53:D9:02:08:EF:2E:BB:97:69:63:25:FF:FE:C5:C0:FF:15:6F Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E23F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3223/xMVT2QII7y67l2ljJf_-xcD_FW8.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3223/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 23 Oct 2025 03:10:11 +0000 Certificate not after: Fri 23 Oct 2026 03:01:03 +0000 Subordinate resources: IP: 45.249.12.0/22 IP: 45.249.208.0/23 IP: 103.150.10.0/23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57919 (0xe23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Oct 23 03:10:11 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=C4C553D90208EF2EBB97696325FFFEC5C0FF156F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:38:d9:14:25:47:c0:2e:b8:93:72:0b:f5:36: 2f:34:ca:ee:2a:72:da:e2:3f:9a:3c:80:fa:e2:91: e2:34:5e:62:16:d7:b4:13:38:05:62:35:b6:9f:b0: 2c:7f:ff:40:44:61:36:b9:51:36:2d:c7:ab:b3:94: b1:d5:ea:04:09:4f:be:d6:40:8f:61:23:ad:da:99: 69:26:52:4d:5c:2a:04:50:0b:5c:40:3c:9d:0b:b7: f2:f1:d1:3b:d3:1c:ae:72:14:56:65:c2:09:ad:f5: c7:ec:8a:e1:d0:4b:c0:36:4c:3d:7d:40:3f:6a:e1: 52:94:75:69:3f:0b:bf:21:9f:d6:f8:77:e3:19:22: df:ca:f2:62:c9:fc:76:35:24:5a:a9:7b:21:ee:8a: b4:2a:2c:f9:23:ea:dd:64:2a:c4:96:ce:06:95:3d: db:ff:c8:ba:3d:65:4d:13:c6:53:54:2a:ca:23:15: 49:05:ef:05:fb:d7:6e:21:09:a1:a4:c4:b4:46:2b: d2:fe:cb:19:0e:58:0a:29:89:c5:06:14:13:44:db: d3:de:cf:1c:11:91:ba:0d:de:db:f8:a5:95:2b:03: 4a:24:b4:56:41:a5:f4:e0:e0:06:c7:21:d7:29:9a: a1:16:71:d1:9a:df:4d:ad:6e:15:c0:4e:9b:57:b5: d1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C5:53:D9:02:08:EF:2E:BB:97:69:63:25:FF:FE:C5:C0:FF:15:6F X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3223/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3223/xMVT2QII7y67l2ljJf_-xcD_FW8.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.249.12.0/22 45.249.208.0/23 103.150.10.0/23 Signature Algorithm: sha256WithRSAEncryption 69:81:d6:0d:db:cd:f2:28:1e:9b:f1:74:9c:dc:84:ca:ae:ce: 6f:2e:cc:b2:7b:a4:8d:5f:2d:a7:05:f3:2c:db:08:58:9a:0b: 07:d3:18:1c:a0:95:a4:c2:2c:52:1a:32:df:ed:2d:1d:fa:08: 55:8a:05:f9:e8:2a:c9:69:08:26:af:78:35:81:3a:df:75:a4: 8e:08:de:90:c2:c1:6b:e0:17:01:53:94:c4:b6:41:a9:fb:9f: ce:ac:d4:27:0d:24:b5:b6:a0:8c:b3:13:10:11:9a:5d:96:ee: b7:0d:7e:40:9c:83:79:1f:99:c2:a5:f4:28:a1:dd:bc:57:4a: 08:e5:86:f7:d5:f8:0f:88:a0:88:81:12:b2:39:60:87:11:01: ea:62:c4:05:fa:a9:3b:21:27:bd:4e:2c:54:94:53:66:c6:75: d4:d7:4c:f0:9f:f8:2a:b3:ef:3c:8f:7c:b6:85:10:a7:cd:55: f0:85:4f:f2:66:95:c7:0e:02:86:31:14:af:47:e7:0c:1a:9e: 71:86:aa:fe:b8:ec:c1:4d:b4:80:83:c0:f1:c1:45:f1:47:51: 6c:02:b7:e2:e1:91:36:98:97:60:f7:ac:4d:1a:2e:ba:7c:7e: 22:21:21:2e:9c:76:31:0f:4b:9a:22:22:18:01:58:16:97:6d: 8d:a3:50:1e -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIDAOI/MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTEwMjMwMzEwMTFaFw0yNjEwMjMwMzAxMDNaMDMx MTAvBgNVBAMTKEM0QzU1M0Q5MDIwOEVGMkVCQjk3Njk2MzI1RkZGRUM1QzBGRjE1 NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRONkUJUfALriTcgv1 Ni80yu4qctriP5o8gPrikeI0XmIW17QTOAViNbafsCx//0BEYTa5UTYtx6uzlLHV 6gQJT77WQI9hI63amWkmUk1cKgRQC1xAPJ0Lt/Lx0TvTHK5yFFZlwgmt9cfsiuHQ S8A2TD19QD9q4VKUdWk/C78hn9b4d+MZIt/K8mLJ/HY1JFqpeyHuirQqLPkj6t1k KsSWzgaVPdv/yLo9ZU0TxlNUKsojFUkF7wX7124hCaGkxLRGK9L+yxkOWAopicUG FBNE29PezxwRkboN3tv4pZUrA0oktFZBpfTg4AbHIdcpmqEWcdGa302tbhXATptX tdFtAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUxMVT2QII7y67l2ljJf/+xcD/FW8w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMy MjMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzIyMy94TVZUMlFJSTd5NjdsMmxqSmZfLXhjRF9GVzgubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCLfkMAwQBLfnQAwQBZ5YKMA0G CSqGSIb3DQEBCwUAA4IBAQBpgdYN283yKB6b8XSc3ITKrs5vLsyye6SNXy2nBfMs 2whYmgsH0xgcoJWkwixSGjLf7S0d+ghVigX56CrJaQgmr3g1gTrfdaSOCN6QwsFr 4BcBU5TEtkGp+5/OrNQnDSS1tqCMsxMQEZpdlu63DX5AnIN5H5nCpfQood28V0oI 5Yb31fgPiKCIgRKyOWCHEQHqYsQF+qk7ISe9TixUlFNmxnXU10zwn/gqs+88j3y2 hRCnzVXwhU/yZpXHDgKGMRSvR+cMGp5xhqr+uOzBTbSAg8DxwUXxR1FsArfi4ZE2 mJdg96xNGi66fH4iISEunHYxD0uaIiIYAVgWl22No1Ae -----END CERTIFICATE-----Generated at Thu Dec 4 22:55:43 2025 by rpki-client