This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/zfv2KGSEFu4dmdMuX5yWhae-K7w.cer File: zfv2KGSEFu4dmdMuX5yWhae-K7w.cer (raw, json) Hash identifier: lzK/WrBfWFOKUBpMvuaWSsZoEuDP2g0WouNtaxhXzQc= Subject key identifier: CD:FB:F6:28:64:84:16:EE:1D:99:D3:2E:5F:9C:96:85:A7:BE:2B:BC Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E7F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/zfv2KGSEFu4dmdMuX5yWhae-K7w.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 16 Jan 2026 19:58:14 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: IP: 103.114.240.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59381 (0xe7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 16 19:58:14 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=CDFBF628648416EE1D99D32E5F9C9685A7BE2BBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b0:c7:b8:87:f0:c6:0a:c1:de:07:cc:6f:8e: 4f:8d:b3:58:d2:28:37:99:0d:06:ec:d4:f7:46:23: b6:f8:4f:20:ca:5d:c6:1f:f7:7f:76:29:65:4d:23: fd:6e:7d:14:4e:c3:ac:ee:35:39:8d:ee:6f:d7:b4: 2a:9c:0b:9d:f5:95:12:27:a1:c5:95:2d:13:9b:13: 5c:ea:5c:8f:62:ab:eb:ea:a8:ad:11:e4:06:47:8c: 59:90:3a:b0:e2:99:3e:65:eb:85:24:8e:cd:f7:f5: 10:ae:4e:d3:fb:ea:36:c6:d4:87:0f:97:7b:89:9a: 79:40:f7:b2:95:ec:d2:f9:af:88:6c:f4:00:a3:25: c9:05:56:89:7d:37:06:b2:aa:ba:52:3a:f1:42:70: a4:ab:4d:0f:4c:99:29:38:6d:b3:fd:3d:c0:53:6d: f8:1a:3f:98:d0:04:3e:ba:79:77:80:2f:00:57:90: 52:5f:15:19:23:66:97:e1:87:ca:56:d7:20:40:0e: 50:78:9c:cf:db:e2:9f:4a:d7:c2:f9:8e:39:da:3c: 55:97:01:d8:85:b5:00:4c:c6:2e:01:8e:e8:17:11: b9:31:1d:45:38:16:fc:b7:3a:5d:57:45:d7:b3:2c: 1b:da:a4:68:8f:8a:c8:f5:9a:c4:97:11:04:06:27: fd:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FB:F6:28:64:84:16:EE:1D:99:D3:2E:5F:9C:96:85:A7:BE:2B:BC X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2723/zfv2KGSEFu4dmdMuX5yWhae-K7w.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.114.240.0/22 Signature Algorithm: sha256WithRSAEncryption 53:3f:a2:a5:02:0f:50:88:d7:25:4b:93:37:30:60:ed:b0:3c: 77:a5:8c:ec:00:38:7b:20:f8:77:da:ba:54:c3:c3:e0:2b:92: 32:a5:94:39:df:2c:3e:01:01:26:50:95:e0:87:e0:76:bd:3b: 5b:c7:29:7b:93:41:45:19:d6:4a:02:59:88:ce:8f:a1:41:76: de:4d:c6:d4:19:ea:5e:aa:17:6f:2a:25:7c:0c:72:a1:70:56: db:5a:85:6f:af:93:65:44:49:c1:64:cc:44:a6:62:eb:42:5e: 18:f8:4d:eb:d0:23:a8:1f:55:b5:11:9a:24:2c:9e:be:d6:3b: 68:6d:88:5c:3e:54:ad:ce:ec:65:83:5f:11:33:18:1d:d6:ac: 8d:40:2b:3e:5f:31:d8:34:67:44:7a:99:70:a9:84:06:80:a6: c8:ad:7a:69:94:b6:47:1b:cb:51:44:44:db:9b:e0:59:4a:39: e7:6f:73:5f:bf:14:c6:1e:a4:0f:51:49:44:d3:d5:11:d0:69: 26:2e:28:a5:3f:5d:72:44:8c:ea:de:c9:45:80:32:43:a0:71: 04:e6:d0:a2:36:f0:72:94:e8:d9:a4:65:1e:a5:9f:0e:bf:fe: 99:42:47:c0:9d:f4:09:3e:ab:e0:2a:db:7d:da:e1:02:34:e3: 2c:62:e0:4d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIDAOf1MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMTYxOTU4MTRaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKENERkJGNjI4NjQ4NDE2RUUxRDk5RDMyRTVGOUM5Njg1QTdCRTJC QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCusMe4h/DGCsHeB8xv jk+Ns1jSKDeZDQbs1PdGI7b4TyDKXcYf9392KWVNI/1ufRROw6zuNTmN7m/XtCqc C531lRInocWVLRObE1zqXI9iq+vqqK0R5AZHjFmQOrDimT5l64Ukjs339RCuTtP7 6jbG1IcPl3uJmnlA97KV7NL5r4hs9ACjJckFVol9NwayqrpSOvFCcKSrTQ9MmSk4 bbP9PcBTbfgaP5jQBD66eXeALwBXkFJfFRkjZpfhh8pW1yBADlB4nM/b4p9K18L5 jjnaPFWXAdiFtQBMxi4BjugXEbkxHUU4Fvy3Ol1XRdezLBvapGiPisj1msSXEQQG J/1bAgMBAAGjggJVMIICUTAdBgNVHQ4EFgQUzfv2KGSEFu4dmdMuX5yWhae+K7ww HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3 MjMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjcyMy96ZnYyS0dTRUZ1NGRtZE11WDV5V2hhZS1LN3cubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3LwMA0GCSqGSIb3DQEBCwUA A4IBAQBTP6KlAg9QiNclS5M3MGDtsDx3pYzsADh7IPh32rpUw8PgK5IypZQ53yw+ AQEmUJXgh+B2vTtbxyl7k0FFGdZKAlmIzo+hQXbeTcbUGepeqhdvKiV8DHKhcFbb WoVvr5NlREnBZMxEpmLrQl4Y+E3r0COoH1W1EZokLJ6+1jtobYhcPlStzuxlg18R Mxgd1qyNQCs+XzHYNGdEeplwqYQGgKbIrXpplLZHG8tRRETbm+BZSjnnb3NfvxTG HqQPUUlE09UR0GkmLiilP11yRIzq3slFgDJDoHEE5tCiNvBylOjZpGUepZ8Ov/6Z QkfAnfQJPqvgKtt92uECNOMsYuBN -----END CERTIFICATE-----Generated at Mon Jan 19 12:17:32 2026 by rpki-client