Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer
File: TdNpVbTnoAyh-m7c2oSqBzD9Jq4.cer (raw, json)
Hash identifier: X+a5NxEl9gymt6BTXV4tgAz70ZerSHgqPWXQ63KUCoo=
Subject key identifier: 4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: E0E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Thu 23 Oct 2025 03:05:50 +0000
Certificate not after: Fri 23 Oct 2026 03:01:03 +0000
Subordinate resources: AS: 59039
IP: 61.8.160.0/20
IP: 103.13.196.0/22
IP: 124.108.8.0/21
IP: 2405:7d40::/32
Validation: OK
Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 05 Nov 2025 09:13:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57569 (0xe0e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Validity
Not Before: Oct 23 03:05:50 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=4DD36955B4E7A00CA1FA6EDCDA84AA0730FD26AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:ed:ac:d8:09:8a:57:eb:28:b8:87:12:20:
50:60:ac:1e:a6:8b:75:27:9f:be:88:18:90:22:38:
e1:0f:e6:8d:ff:81:d3:b2:da:87:85:45:52:73:7e:
ad:bc:6e:22:d0:eb:cb:04:60:38:df:24:38:d2:be:
40:34:6f:81:67:e1:34:a9:4a:5b:60:72:b6:d9:20:
12:f6:28:c6:6b:e2:3c:18:5e:c4:4c:ab:9b:af:5a:
a3:a6:3c:59:df:11:00:3f:84:f2:1a:8d:af:b8:39:
95:22:34:99:db:a3:82:00:21:63:4f:92:36:ae:35:
1c:1b:1b:09:55:40:80:a7:bc:c5:4e:a8:08:8a:44:
34:88:32:92:3c:26:a1:a7:d4:9f:75:81:e4:2a:96:
cc:0b:e7:90:d2:fb:d3:4e:50:82:55:6c:8d:6d:20:
41:41:a3:8d:87:b2:21:f7:1e:9d:be:63:01:83:f4:
77:7d:fc:ce:7a:db:b3:24:c2:ef:f3:01:e8:0b:ee:
69:ea:ba:3b:a8:e5:3e:e1:dc:f9:4e:92:e7:d7:57:
6a:89:1a:7c:fb:84:98:20:3f:3f:79:2c:80:4e:31:
02:8b:d1:43:34:d8:b5:fc:cc:c0:ac:ef:28:2a:fc:
e2:44:b0:0b:88:6e:3b:da:84:eb:9c:c7:0e:7b:c0:
0c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D3:69:55:B4:E7:A0:0C:A1:FA:6E:DC:DA:84:AA:07:30:FD:26:AE
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2203/TdNpVbTnoAyh-m7c2oSqBzD9Jq4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59039
sbgp-ipAddrBlock: critical
IPv4:
61.8.160.0/20
103.13.196.0/22
124.108.8.0/21
IPv6:
2405:7d40::/32
Signature Algorithm: sha256WithRSAEncryption
88:e5:17:73:b0:0a:92:c5:ac:2d:8b:6f:b5:fc:25:3c:65:a4:
a3:cf:07:d1:c6:eb:b0:da:db:d2:7c:94:b5:3a:af:88:ab:8b:
ed:05:85:3e:4d:8e:07:9b:2f:d4:96:ea:e2:f8:e1:54:c1:e2:
38:a7:76:cc:22:bf:a6:d6:d0:29:89:b1:6b:02:6b:2c:d1:2b:
4c:d5:fd:7a:a0:97:55:d6:a7:aa:f7:3f:35:23:a8:43:fd:ee:
06:a7:4c:f6:3f:e8:86:46:b9:0c:e8:93:a2:b5:c5:a7:07:1c:
64:73:26:f0:d8:6f:4c:12:58:5e:cb:69:4d:6c:5b:ff:0e:43:
b1:de:5e:2e:f3:cf:26:b0:69:b6:cd:3c:64:d1:c3:c4:aa:e8:
a1:6f:5e:fd:7c:10:e7:95:8e:62:05:df:4c:63:f7:94:1b:a8:
38:17:7d:51:ac:7f:e0:c8:cb:c8:2e:a5:0b:8a:c8:b8:40:3e:
23:46:09:6b:a2:1f:cb:5c:bd:87:bd:de:00:57:cc:b7:66:59:
a1:ad:2f:eb:fd:61:aa:a1:a8:06:44:7e:ae:6a:8a:7b:2f:eb:
26:c3:45:1e:0d:58:60:72:7d:cd:de:bf:94:a1:39:ad:a7:b7:
f5:9c:e4:46:ae:1f:da:99:f1:98:f2:95:75:4f:76:09:8a:79:
b8:ea:99:4e
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgIDAODhMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5
MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG
MDM3OTZGODg5QjU0MDAeFw0yNTEwMjMwMzA1NTBaFw0yNjEwMjMwMzAxMDNaMDMx
MTAvBgNVBAMTKDRERDM2OTU1QjRFN0EwMENBMUZBNkVEQ0RBODRBQTA3MzBGRDI2
QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEuu2s2AmKV+souIcS
IFBgrB6mi3Unn76IGJAiOOEP5o3/gdOy2oeFRVJzfq28biLQ68sEYDjfJDjSvkA0
b4Fn4TSpSltgcrbZIBL2KMZr4jwYXsRMq5uvWqOmPFnfEQA/hPIaja+4OZUiNJnb
o4IAIWNPkjauNRwbGwlVQICnvMVOqAiKRDSIMpI8JqGn1J91geQqlswL55DS+9NO
UIJVbI1tIEFBo42HsiH3Hp2+YwGD9Hd9/M5627Mkwu/zAegL7mnqujuo5T7h3PlO
kufXV2qJGnz7hJggPz95LIBOMQKL0UM02LX8zMCs7ygq/OJEsAuIbjvahOucxw57
wAyRAgMBAAGjggKMMIICiDAdBgNVHQ4EFgQUTdNpVbTnoAyh+m7c2oSqBzD9Jq4w
HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu
Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE
MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF
MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF
BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIy
MDMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2
MkUzRDAwMDAvMjIwMy9UZE5wVmJUbm9BeWgtbTdjMm9TcUJ6RDlKcTQubWZ0MDEG
CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s
MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDmnzA6BggrBgEFBQcBBwEB/wQrMCkw
GAQCAAEwEgMEBD0IoAMEAmcNxAMEA3xsCDANBAIAAjAHAwUAJAV9QDANBgkqhkiG
9w0BAQsFAAOCAQEAiOUXc7AKksWsLYtvtfwlPGWko88H0cbrsNrb0nyUtTqviKuL
7QWFPk2OB5sv1Jbq4vjhVMHiOKd2zCK/ptbQKYmxawJrLNErTNX9eqCXVdanqvc/
NSOoQ/3uBqdM9j/ohka5DOiTorXFpwccZHMm8NhvTBJYXstpTWxb/w5Dsd5eLvPP
JrBpts08ZNHDxKrooW9e/XwQ55WOYgXfTGP3lBuoOBd9Uax/4MjLyC6lC4rIuEA+
I0YJa6Ify1y9h73eAFfMt2ZZoa0v6/1hqqGoBkR+rmqKey/rJsNFHg1YYHJ9zd6/
lKE5rae39ZzkRq4f2pnxmPKVdU92CYp5uOqZTg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 08:29:34 2025 by rpki-client