This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/A_XQOpMuSOf5T61oEuoovsj1LQI.cer File: A_XQOpMuSOf5T61oEuoovsj1LQI.cer (raw, json) Hash identifier: 5bgeh10iO5BmdyPd3TRrFhkN4rICjeGJQzdIBzFhe1I= Subject key identifier: 03:F5:D0:3A:93:2E:48:E7:F9:4F:AD:68:12:EA:28:BE:C8:F5:2D:02 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E770 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/A_XQOpMuSOf5T61oEuoovsj1LQI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:31:18 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 131547 IP: 43.227.252.0/22 IP: 43.228.36.0/22 IP: 43.241.240.0/22 IP: 43.243.136.0/22 IP: 59.153.64.0/22 IP: 103.37.172.0/22 IP: 103.38.224.0/22 IP: 103.43.184.0/22 IP: 103.47.48.0/22 IP: 103.93.204.0/22 IP: 103.198.60.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59248 (0xe770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:31:18 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=03F5D03A932E48E7F94FAD6812EA28BEC8F52D02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8d:7a:df:07:03:62:05:47:a5:b8:1c:30:23: 0a:6a:2f:16:2f:72:e7:6b:7d:33:d5:63:c0:7e:fc: f3:9b:95:c1:8f:40:80:f9:a5:19:c5:f4:3f:35:0d: 3d:6c:85:f2:7c:a2:75:73:f9:6d:97:d7:70:d1:2b: 0e:84:35:63:7f:e5:cb:32:68:fa:79:e5:40:29:d1: 70:53:b2:8a:2b:dc:ae:6f:61:1f:ad:1d:9d:ca:d8: 13:5f:bc:f3:45:24:4f:08:3f:25:2f:b5:8a:8d:bb: a5:4f:77:76:31:81:83:16:a4:2d:cf:5c:f9:11:23: 3f:1f:8b:c7:71:af:45:e1:c3:59:4f:3c:51:1b:06: d6:a9:00:b3:dc:4c:a8:01:44:f4:61:8c:a6:c8:4a: 90:e8:4a:f2:8a:d8:83:a9:f3:37:78:f5:8a:33:f2: ac:6e:a8:ea:aa:a5:2c:d6:d8:9a:01:00:4d:72:59: 3c:52:15:ef:c1:1a:4f:1e:58:20:43:5f:cc:9e:76: bb:1e:f3:53:19:ab:40:d1:86:8b:af:a4:6c:71:db: 7d:31:2a:24:8f:ff:58:36:29:dd:f4:54:5b:f3:e3: 95:9c:ac:c2:b6:db:ab:19:40:55:88:33:2e:ec:e7: e3:8e:88:ee:1d:68:69:d1:ae:0c:04:b1:57:82:44: 84:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F5:D0:3A:93:2E:48:E7:F9:4F:AD:68:12:EA:28:BE:C8:F5:2D:02 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1029/A_XQOpMuSOf5T61oEuoovsj1LQI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 131547 sbgp-ipAddrBlock: critical IPv4: 43.227.252.0/22 43.228.36.0/22 43.241.240.0/22 43.243.136.0/22 59.153.64.0/22 103.37.172.0/22 103.38.224.0/22 103.43.184.0/22 103.47.48.0/22 103.93.204.0/22 103.198.60.0/22 Signature Algorithm: sha256WithRSAEncryption 22:e3:f6:ed:d2:45:e5:a7:65:81:91:ba:91:5f:f5:0d:c0:fe: e0:c7:ae:59:98:c1:b6:ab:d7:ee:b0:fb:fb:a6:bd:59:9d:81: ab:ab:ec:dc:7a:b7:e3:80:f0:7e:4f:c7:95:70:40:0b:24:f0: 13:57:6a:b9:68:53:d0:ee:ea:c8:96:9d:57:17:51:60:bf:f8: 33:15:ce:d4:5d:67:b1:15:92:6d:6f:17:a0:95:77:e8:a6:86: a3:aa:76:c5:68:06:10:6b:a3:1b:f5:cf:02:ee:14:b1:b9:fb: a0:fb:1d:a6:27:fe:b0:ef:40:37:1f:d2:73:bb:de:fc:e9:87: cc:6d:61:0e:a4:54:cd:68:6c:3f:27:c3:d8:a6:39:fc:92:b8: b5:1a:08:04:ee:57:ff:74:ce:9e:72:1e:48:b8:ec:0a:88:cd: c5:3d:85:05:d6:ac:7a:7a:8a:12:0a:7f:b5:1b:7b:f0:25:6d: 0b:97:76:32:89:a0:62:54:48:6a:2e:cc:19:72:39:c5:f6:99: 00:38:5f:9e:69:60:e3:74:94:f4:b6:61:6f:d4:3c:75:66:a3: f4:24:c4:14:31:f9:a9:e2:27:05:75:dc:60:10:4e:83:0b:a3: e7:4c:88:a4:1c:99:c5:51:3a:75:8a:9a:d9:3c:f9:26:f0:af: 97:42:44:3f -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgIDAOdwMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODMxMThaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDAzRjVEMDNBOTMyRTQ4RTdGOTRGQUQ2ODEyRUEyOEJFQzhGNTJE MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCijXrfBwNiBUeluBww IwpqLxYvcudrfTPVY8B+/POblcGPQID5pRnF9D81DT1shfJ8onVz+W2X13DRKw6E NWN/5csyaPp55UAp0XBTsoor3K5vYR+tHZ3K2BNfvPNFJE8IPyUvtYqNu6VPd3Yx gYMWpC3PXPkRIz8fi8dxr0Xhw1lPPFEbBtapALPcTKgBRPRhjKbISpDoSvKK2IOp 8zd49Yoz8qxuqOqqpSzW2JoBAE1yWTxSFe/BGk8eWCBDX8yedrse81MZq0DRhouv pGxx230xKiSP/1g2Kd30VFvz45WcrMK226sZQFWIMy7s5+OOiO4daGnRrgwEsVeC RITPAgMBAAGjggKtMIICqTAdBgNVHQ4EFgQUA/XQOpMuSOf5T61oEuoovsj1LQIw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEw MjkvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMTAyOS9BX1hRT3BNdVNPZjVUNjFvRXVvb3ZzajFMUUkubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwIB2zBbBggrBgEFBQcBBwEB/wRMMEow SAQCAAEwQgMEAivj/AMEAivkJAMEAivx8AMEAivziAMEAjuZQAMEAmclrAMEAmcm 4AMEAmcruAMEAmcvMAMEAmddzAMEAmfGPDANBgkqhkiG9w0BAQsFAAOCAQEAIuP2 7dJF5adlgZG6kV/1DcD+4MeuWZjBtqvX7rD7+6a9WZ2Bq6vs3Hq344Dwfk/HlXBA CyTwE1dquWhT0O7qyJadVxdRYL/4MxXO1F1nsRWSbW8XoJV36KaGo6p2xWgGEGuj G/XPAu4Usbn7oPsdpif+sO9ANx/Sc7ve/OmHzG1hDqRUzWhsPyfD2KY5/JK4tRoI BO5X/3TOnnIeSLjsCojNxT2FBdasenqKEgp/tRt78CVtC5d2MomgYlRIai7MGXI5 xfaZADhfnmlg43SU9LZhb9Q8dWaj9CTEFDH5qeInBXXcYBBOgwuj50yIpByZxVE6 dYqa2Tz5JvCvl0JEPw== -----END CERTIFICATE-----Generated at Mon Jan 19 12:20:41 2026 by rpki-client