This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/aNHWIOHqFxAY048aCIaBCXhdurE.cer File: aNHWIOHqFxAY048aCIaBCXhdurE.cer (raw, json) Hash identifier: puhebiTg2Py13KwPIOC4qUfEQT5PoWV3paYRZgS8bVc= Subject key identifier: 68:D1:D6:20:E1:EA:17:10:18:D3:8F:1A:08:86:81:09:78:5D:BA:B1 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/aNHWIOHqFxAY048aCIaBCXhdurE.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:31:04 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 63561 IP: 103.203.216.0/22 IP: 202.61.88.0/22 IP: 2403:c980::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59234 (0xe762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:31:04 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=68D1D620E1EA171018D38F1A08868109785DBAB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:3e:64:7a:5a:81:ba:32:9d:80:b0:25:03: f3:4d:8f:a9:1e:2f:0d:12:8c:67:e0:68:21:a6:d8: 9d:8f:7e:ef:cd:37:72:9b:f0:79:49:84:76:3b:8b: 0b:51:85:85:98:d3:7b:b8:d3:09:68:f3:f4:cf:86: ce:fa:22:05:0a:da:a9:24:b5:6a:5c:8d:82:ed:0e: d5:c8:18:32:25:ad:eb:dc:0a:4b:ab:af:65:19:50: 03:5b:bd:07:ef:14:54:95:2e:1f:f7:e4:74:ec:ae: 37:2d:7e:d1:eb:6f:99:6a:76:56:a8:2e:ad:a0:70: 06:4c:c0:fa:3e:8f:c6:27:c6:71:df:76:9b:fa:82: 52:d3:9a:3b:c3:91:0c:bf:33:54:d2:fc:61:21:6b: 2a:28:66:d4:a7:88:1a:39:9b:31:12:e1:cc:1c:01: 12:e1:73:ae:e8:ce:4f:ff:b3:44:e6:c7:6d:6a:ac: b5:4b:1c:0b:36:20:43:57:8e:48:4e:90:0f:58:9a: f9:1a:3e:55:81:a6:00:21:15:06:40:af:ba:6d:ae: 7b:2a:1f:7e:58:4a:eb:4a:62:ea:dc:15:27:3d:68: 98:e9:d2:39:63:4e:cd:53:68:b3:89:79:9e:14:d5: dc:fb:7c:0f:b1:0c:98:ef:40:78:85:d6:70:42:49: a6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D1:D6:20:E1:EA:17:10:18:D3:8F:1A:08:86:81:09:78:5D:BA:B1 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/aNHWIOHqFxAY048aCIaBCXhdurE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 63561 sbgp-ipAddrBlock: critical IPv4: 103.203.216.0/22 202.61.88.0/22 IPv6: 2403:c980::/32 Signature Algorithm: sha256WithRSAEncryption 3f:e1:65:52:0f:41:f2:44:df:8d:2d:43:f9:a6:66:0f:5d:67: b3:f7:07:89:70:3f:52:a6:a6:ed:20:5f:54:dc:96:2a:28:6f: 57:a1:06:66:c9:72:11:43:c3:7c:40:34:ca:ad:78:50:2a:42: d8:73:33:da:9c:a0:c1:75:39:e2:11:e6:67:55:a0:da:07:c4: 4b:dc:cc:4d:85:ea:de:73:64:5e:19:b5:f4:e2:b7:90:a6:51: d5:9a:12:be:d8:e2:18:a2:46:65:c6:06:c5:ef:df:21:78:61: 85:92:e7:eb:42:ce:a1:f4:88:56:10:cd:ea:dd:17:eb:aa:aa: ee:b8:bd:33:69:d9:4e:b1:70:d1:27:3b:77:10:27:21:65:46: c2:61:51:95:34:6a:ce:e5:a0:60:80:00:4a:85:e9:54:9e:c9: c0:17:97:48:d2:f1:96:17:15:7d:dc:62:e9:00:fc:42:c5:d1: 24:b5:4b:c1:6e:ab:ae:85:db:24:8f:10:4b:b3:d0:15:6c:09: 50:ff:32:43:52:d4:f0:97:b1:6c:eb:3c:fe:31:70:a1:c3:52: de:a1:75:3a:28:e4:86:b1:f7:a2:5a:0f:e1:1a:e8:dd:c5:8c: 2c:a4:9e:f6:0f:cd:8e:0a:13:86:cd:ae:f8:07:93:87:3c:38: f9:d1:0d:1e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIDAOdiMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODMxMDRaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDY4RDFENjIwRTFFQTE3MTAxOEQzOEYxQTA4ODY4MTA5Nzg1REJB QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ET5kelqBujKdgLAl A/NNj6keLw0SjGfgaCGm2J2Pfu/NN3Kb8HlJhHY7iwtRhYWY03u40wlo8/TPhs76 IgUK2qkktWpcjYLtDtXIGDIlrevcCkurr2UZUANbvQfvFFSVLh/35HTsrjctftHr b5lqdlaoLq2gcAZMwPo+j8YnxnHfdpv6glLTmjvDkQy/M1TS/GEhayooZtSniBo5 mzES4cwcARLhc67ozk//s0Tmx21qrLVLHAs2IENXjkhOkA9YmvkaPlWBpgAhFQZA r7ptrnsqH35YSutKYurcFSc9aJjp0jljTs1TaLOJeZ4U1dz7fA+xDJjvQHiF1nBC SaY7AgMBAAGjggKGMIICgjAdBgNVHQ4EFgQUaNHWIOHqFxAY048aCIaBCXhdurEw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1 ODUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMTU4NS9hTkhXSU9IcUZ4QVkwNDhhQ0lhQkNYaGR1ckUubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwD4STA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmfL2AMEAso9WDANBAIAAjAHAwUAJAPJgDANBgkqhkiG9w0BAQsF AAOCAQEAP+FlUg9B8kTfjS1D+aZmD11ns/cHiXA/Uqam7SBfVNyWKihvV6EGZsly EUPDfEA0yq14UCpC2HMz2pygwXU54hHmZ1Wg2gfES9zMTYXq3nNkXhm19OK3kKZR 1ZoSvtjiGKJGZcYGxe/fIXhhhZLn60LOofSIVhDN6t0X66qq7ri9M2nZTrFw0Sc7 dxAnIWVGwmFRlTRqzuWgYIAASoXpVJ7JwBeXSNLxlhcVfdxi6QD8QsXRJLVLwW6r roXbJI8QS7PQFWwJUP8yQ1LU8JexbOs8/jFwocNS3qF1OijkhrH3oloP4Rro3cWM LKSe9g/NjgoThs2u+AeThzw4+dENHg== -----END CERTIFICATE-----Generated at Mon Jan 19 12:17:31 2026 by rpki-client