$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer File: fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer (raw, json) Hash identifier: FiWF+iqFxknu53iN5RhISXUZZs+l0vKkkII5ijFrkLo= Subject key identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: DA3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Sun 03 Aug 2025 09:18:41 +0000 Certificate not after: Mon 03 Aug 2026 08:44:40 +0000 Subordinate resources: AS: 56002 IP: 103.12.232.0/22 IP: 2405:ad00::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 07:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55866 (0xda3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Aug 3 09:18:41 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d6:50:ec:fb:a6:53:c1:a4:a0:f3:f4:57:83: 93:ce:52:bf:3f:e4:a6:c4:3b:42:a6:24:f1:93:d0: 6d:6e:8f:31:9c:a7:1a:39:da:07:24:86:13:fa:df: 72:74:0f:9f:2f:4f:97:26:e7:39:ba:16:b5:2c:97: 03:47:b0:81:b2:0c:57:23:1f:f8:bd:ba:63:64:79: af:d5:93:a7:65:a9:51:c3:a9:3b:c3:6e:fc:7c:39: 85:b1:8a:a3:a3:31:b1:93:0c:1c:b9:6e:e6:ae:aa: a3:42:9d:db:7b:49:07:fc:e7:38:c0:ad:e9:13:f8: ad:74:69:bd:9f:ee:fa:77:fb:9a:a1:60:b1:0e:6c: eb:3a:be:ca:cc:25:ed:73:f8:9b:f8:81:de:1c:02: 94:97:ff:bc:8c:d6:eb:18:2f:d3:71:03:d8:fc:04: 18:46:3a:02:28:d4:f2:99:b3:97:b3:6d:b9:31:63: 71:a2:b4:51:8e:38:1f:b5:26:9d:7f:fc:6b:aa:cc: 29:98:0a:00:44:06:aa:2d:81:0d:f8:1e:c7:fd:13: 66:ac:51:38:33:7d:6f:4f:6b:d8:58:95:5d:3e:73: 0a:78:89:f9:15:d5:eb:d3:b2:69:fd:85:cd:da:4c: b5:5a:a1:8e:f6:38:9e:47:58:70:02:0f:ad:6d:7c: 78:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 56002 sbgp-ipAddrBlock: critical IPv4: 103.12.232.0/22 IPv6: 2405:ad00::/32 Signature Algorithm: sha256WithRSAEncryption 32:0d:53:e8:8c:41:e0:fb:e1:30:d0:be:bb:3a:b1:a3:d2:57: 4c:56:b8:e4:19:e1:eb:bc:70:c8:5c:1d:2d:f0:41:4a:c6:e3: 32:b5:fc:f3:9a:f7:7e:9b:6f:64:e4:05:9f:5f:98:6f:1d:86: 73:db:cb:17:d2:9a:fa:73:83:b7:f4:29:08:7b:a1:3c:61:3f: 60:a1:66:89:6b:56:3f:07:d7:ac:d9:66:33:b8:47:d7:64:dc: 7e:38:09:f7:fb:30:88:fe:78:e7:89:06:e0:c6:d6:18:43:a3: 53:b9:a4:ca:32:7c:b9:04:a1:bc:9e:12:2a:6a:5d:09:a1:8e: a8:b4:7c:a1:11:38:5a:6c:11:ab:3b:85:ed:6b:e5:36:27:57: d9:43:6a:9c:7b:41:05:7b:bf:b6:53:bd:6a:cb:ec:80:f6:6d: b7:b5:31:05:cd:f8:ee:1f:4d:03:4d:46:38:d8:52:8d:06:df: ed:9e:47:ca:16:78:8c:d1:e2:fa:11:4f:7d:fd:fe:ab:6e:a6: 81:54:f8:b3:7b:ce:e3:60:ae:f1:82:3c:81:3f:e3:2d:d7:97: 04:87:1f:b1:74:43:c1:4d:f6:0a:6b:4c:b8:e6:ed:90:e0:bc: fb:97:49:bf:8d:de:57:c9:fe:23:05:d7:98:64:f8:3b:e0:c2: 07:23:ee:41 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIDANo6MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA4MDMwOTE4NDFaFw0yNjA4MDMwODQ0NDBaMDMx MTAvBgNVBAMTKDdFNDBBRTkwMDEwMEUyQjk3QjMxQ0UwMDY5MDJGMzFFN0QxRDJB RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN1lDs+6ZTwaSg8/RX g5POUr8/5KbEO0KmJPGT0G1ujzGcpxo52gckhhP633J0D58vT5cm5zm6FrUslwNH sIGyDFcjH/i9umNkea/Vk6dlqVHDqTvDbvx8OYWxiqOjMbGTDBy5buauqqNCndt7 SQf85zjArekT+K10ab2f7vp3+5qhYLEObOs6vsrMJe1z+Jv4gd4cApSX/7yM1usY L9NxA9j8BBhGOgIo1PKZs5ezbbkxY3GitFGOOB+1Jp1//GuqzCmYCgBEBqotgQ34 Hsf9E2asUTgzfW9Pa9hYlV0+cwp4ifkV1evTsmn9hc3aTLVaoY72OJ5HWHACD61t fHhFAgMBAAGjggJ+MIICejAdBgNVHQ4EFgQUfkCukAEA4rl7Mc4AaQLzHn0dKvIw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzQ5 Ny8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC80OTcvZmtDdWtBRUE0cmw3TWM0QWFRTHpIbjBkS3ZJLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA2sIwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAJnDOgwDQQCAAIwBwMFACQFrQAwDQYJKoZIhvcNAQELBQADggEBADIN U+iMQeD74TDQvrs6saPSV0xWuOQZ4eu8cMhcHS3wQUrG4zK1/POa936bb2TkBZ9f mG8dhnPbyxfSmvpzg7f0KQh7oTxhP2ChZolrVj8H16zZZjO4R9dk3H44Cff7MIj+ eOeJBuDG1hhDo1O5pMoyfLkEobyeEipqXQmhjqi0fKEROFpsEas7he1r5TYnV9lD apx7QQV7v7ZTvWrL7ID2bbe1MQXN+O4fTQNNRjjYUo0G3+2eR8oWeIzR4voRT339 /qtupoFU+LN7zuNgrvGCPIE/4y3XlwSHH7F0Q8FN9gprTLjm7ZDgvPuXSb+N3lfJ /iMF15hk+Dvgwgcj7kE= -----END CERTIFICATE-----Generated at Wed Aug 13 04:31:02 2025 by rpki-client