$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/4D4PjKiQjhc6NwrDMIv3bA6iep0.cer File: 4D4PjKiQjhc6NwrDMIv3bA6iep0.cer (raw, json) Hash identifier: bwbWMjtOcRREHAN2VLUGyJI0Uy/Y20W1jWWc9zguGMI= Subject key identifier: E0:3E:0F:8C:A8:90:8E:17:3A:37:0A:C3:30:8B:F7:6C:0E:A2:7A:9D Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: D924 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/4D4PjKiQjhc6NwrDMIv3bA6iep0.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Sun 03 Aug 2025 09:14:54 +0000 Certificate not after: Mon 03 Aug 2026 08:44:40 +0000 Subordinate resources: AS: 151223 IP: 2401:b6e0::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 07:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55588 (0xd924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Aug 3 09:14:54 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E03E0F8CA8908E173A370AC3308BF76C0EA27A9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e0:6c:e4:60:11:f0:85:90:0f:41:0a:d8:e4: 21:5a:e9:4f:72:6b:6f:39:7f:8c:e9:1a:03:73:08: 79:fc:db:da:23:47:06:72:a4:28:41:a5:da:cb:e4: 96:91:4d:12:bc:c9:c2:1f:d5:5d:e5:2b:c5:84:5e: 7b:12:0a:60:c3:d4:7a:a7:8d:a2:74:aa:45:42:a1: 1a:f1:81:e9:6b:52:d7:c8:51:2b:24:7a:73:3a:d4: 1b:36:15:0d:16:ee:48:fb:4b:20:22:22:c6:46:92: 64:0a:65:9e:41:68:14:fd:93:9c:c0:bc:a9:00:6e: 8a:b0:06:7a:91:18:4d:b5:2c:2d:ff:d0:f9:99:42: bc:a1:91:0d:e0:1b:f7:5f:72:26:f4:69:ee:e5:92: f0:a7:5d:ae:18:29:0c:82:95:c9:9b:33:26:5b:6c: 37:d0:48:12:61:62:10:19:9f:e0:29:19:10:46:27: f9:25:38:9d:8b:c3:fb:b2:bb:f1:49:4c:e1:49:ef: 95:2d:06:bb:a3:70:a4:2a:f5:74:54:f8:ee:5e:59: 5c:28:aa:7f:c9:8e:ba:99:f7:39:99:a7:41:88:29: ba:ba:e8:01:cb:e2:ca:76:f4:e6:f5:f6:4d:58:23: 88:b9:2f:98:b3:41:5e:44:d0:74:21:00:f1:d2:b1: be:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:3E:0F:8C:A8:90:8E:17:3A:37:0A:C3:30:8B:F7:6C:0E:A2:7A:9D X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/4D4PjKiQjhc6NwrDMIv3bA6iep0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151223 sbgp-ipAddrBlock: critical IPv6: 2401:b6e0::/32 Signature Algorithm: sha256WithRSAEncryption 73:95:98:b9:cd:6a:d6:9e:6e:f0:cf:94:f4:5e:5e:8e:af:64: fd:80:84:46:d2:65:83:31:f5:f1:89:d7:15:2c:44:b3:ec:85: 3a:f8:4f:05:30:5a:bb:bf:87:8c:24:41:71:b6:41:3c:5e:5d: 77:36:41:37:d3:74:c2:51:f6:31:02:a7:04:28:82:6b:a9:a0: 79:90:ce:01:7b:d0:51:fc:12:5c:cc:53:8e:18:19:86:61:17: 1c:c5:56:22:a8:bc:d9:44:1c:44:31:f2:93:82:91:60:1d:f4: 77:66:d6:3c:e7:6f:ed:fc:70:29:e4:f6:6f:a4:75:f2:75:54: 4b:91:c1:d3:c1:99:6f:28:08:5e:72:59:fb:a7:c0:e9:e2:1b: 26:ea:5a:7c:4e:e8:86:bc:14:93:2e:1a:05:d9:e6:0a:d0:21: 18:34:91:33:bd:b4:fe:db:71:ef:2d:b3:f6:7a:ce:4f:15:88: d0:75:38:b1:cf:41:b3:d0:0b:1f:1c:f4:ad:d2:e8:a1:48:e8: f5:f8:9b:76:f3:98:15:5c:33:ed:98:61:15:48:de:66:63:59: 02:ca:31:e1:db:24:f8:e7:b4:7f:17:c4:28:3e:02:88:f3:2f: a3:09:07:a5:c6:81:98:a3:6a:fb:a2:3e:92:f0:a0:d2:af:e7: 2f:74:e9:14 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDANkkMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA4MDMwOTE0NTRaFw0yNjA4MDMwODQ0NDBaMDMx MTAvBgNVBAMTKEUwM0UwRjhDQTg5MDhFMTczQTM3MEFDMzMwOEJGNzZDMEVBMjdB OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ4GzkYBHwhZAPQQrY 5CFa6U9ya285f4zpGgNzCHn829ojRwZypChBpdrL5JaRTRK8ycIf1V3lK8WEXnsS CmDD1HqnjaJ0qkVCoRrxgelrUtfIUSskenM61Bs2FQ0W7kj7SyAiIsZGkmQKZZ5B aBT9k5zAvKkAboqwBnqRGE21LC3/0PmZQryhkQ3gG/dfcib0ae7lkvCnXa4YKQyC lcmbMyZbbDfQSBJhYhAZn+ApGRBGJ/klOJ2Lw/uyu/FJTOFJ75UtBrujcKQq9XRU +O5eWVwoqn/JjrqZ9zmZp0GIKbq66AHL4sp29Ob19k1YI4i5L5izQV5E0HQhAPHS sb6rAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQU4D4PjKiQjhc6NwrDMIv3bA6iep0w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMz MDcvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzMwNy80RDRQaktpUWpoYzZOd3JETUl2M2JBNmllcDAubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJOtzAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBtuAwDQYJKoZIhvcNAQELBQADggEBAHOVmLnNataebvDPlPRe Xo6vZP2AhEbSZYMx9fGJ1xUsRLPshTr4TwUwWru/h4wkQXG2QTxeXXc2QTfTdMJR 9jECpwQogmupoHmQzgF70FH8ElzMU44YGYZhFxzFViKovNlEHEQx8pOCkWAd9Hdm 1jznb+38cCnk9m+kdfJ1VEuRwdPBmW8oCF5yWfunwOniGybqWnxO6Ia8FJMuGgXZ 5grQIRg0kTO9tP7bce8ts/Z6zk8ViNB1OLHPQbPQCx8c9K3S6KFI6PX4m3bzmBVc M+2YYRVI3mZjWQLKMeHbJPjntH8XxCg+AojzL6MJB6XGgZijavuiPpLwoNKv5y90 6RQ= -----END CERTIFICATE-----Generated at Wed Aug 13 04:28:19 2025 by rpki-client