$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer File: fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer (raw, json) Hash identifier: 2i9y5IdonSVU7f2KrkkvddhYc2nuz/Im+gHHEFwi2E8= Subject key identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: EB70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Tue 17 Feb 2026 19:59:00 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 56002 IP: 103.12.232.0/22 IP: 2405:ad00::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 00:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60272 (0xeb70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 17 19:59:00 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d6:50:ec:fb:a6:53:c1:a4:a0:f3:f4:57:83: 93:ce:52:bf:3f:e4:a6:c4:3b:42:a6:24:f1:93:d0: 6d:6e:8f:31:9c:a7:1a:39:da:07:24:86:13:fa:df: 72:74:0f:9f:2f:4f:97:26:e7:39:ba:16:b5:2c:97: 03:47:b0:81:b2:0c:57:23:1f:f8:bd:ba:63:64:79: af:d5:93:a7:65:a9:51:c3:a9:3b:c3:6e:fc:7c:39: 85:b1:8a:a3:a3:31:b1:93:0c:1c:b9:6e:e6:ae:aa: a3:42:9d:db:7b:49:07:fc:e7:38:c0:ad:e9:13:f8: ad:74:69:bd:9f:ee:fa:77:fb:9a:a1:60:b1:0e:6c: eb:3a:be:ca:cc:25:ed:73:f8:9b:f8:81:de:1c:02: 94:97:ff:bc:8c:d6:eb:18:2f:d3:71:03:d8:fc:04: 18:46:3a:02:28:d4:f2:99:b3:97:b3:6d:b9:31:63: 71:a2:b4:51:8e:38:1f:b5:26:9d:7f:fc:6b:aa:cc: 29:98:0a:00:44:06:aa:2d:81:0d:f8:1e:c7:fd:13: 66:ac:51:38:33:7d:6f:4f:6b:d8:58:95:5d:3e:73: 0a:78:89:f9:15:d5:eb:d3:b2:69:fd:85:cd:da:4c: b5:5a:a1:8e:f6:38:9e:47:58:70:02:0f:ad:6d:7c: 78:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 56002 sbgp-ipAddrBlock: critical IPv4: 103.12.232.0/22 IPv6: 2405:ad00::/32 Signature Algorithm: sha256WithRSAEncryption 29:a9:d7:ba:f6:77:7b:c2:0c:e5:e7:60:53:98:ce:48:04:d6: d3:f3:4e:4c:82:e0:47:a2:f5:33:67:c6:e1:d2:aa:04:c8:11: 8d:48:91:75:14:72:2e:68:7d:b3:7f:7d:83:08:30:39:68:37: 0b:7b:cf:cd:d5:ca:10:eb:5d:0b:ef:43:21:60:f0:f7:ac:c0: 6d:a4:cf:b9:9b:d4:eb:14:34:2e:75:ec:e5:76:b0:17:aa:52: 8b:e6:1e:30:0c:1b:72:b9:48:c7:41:71:75:4a:44:e7:ef:90: fa:d4:8a:cf:44:bd:2b:2f:91:a6:a7:58:04:ba:a4:38:e0:0e: 77:fb:4c:ea:a8:67:ba:be:dc:10:9d:60:cc:57:94:f3:69:c2: 21:01:72:31:e8:72:59:10:86:08:09:41:99:b2:8a:2f:84:bd: a3:44:4b:df:be:73:8a:89:51:de:8b:4f:ed:77:be:d3:8e:df: 42:5c:6d:70:29:f1:68:d5:df:3f:30:d7:c1:27:67:d1:05:2b: c3:58:ab:b3:80:58:ef:fa:9f:49:b8:82:0d:69:8b:33:68:ce: 38:7e:94:f8:2a:f0:8f:64:a9:6e:0a:e7:ed:b9:14:ff:dd:e8: d9:99:1f:5d:13:7e:6e:c0:c6:93:82:a0:da:e3:d1:6d:bc:9c: 80:a8:b9:a5 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIDAOtwMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAyMTcxOTU5MDBaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDdFNDBBRTkwMDEwMEUyQjk3QjMxQ0UwMDY5MDJGMzFFN0QxRDJB RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN1lDs+6ZTwaSg8/RX g5POUr8/5KbEO0KmJPGT0G1ujzGcpxo52gckhhP633J0D58vT5cm5zm6FrUslwNH sIGyDFcjH/i9umNkea/Vk6dlqVHDqTvDbvx8OYWxiqOjMbGTDBy5buauqqNCndt7 SQf85zjArekT+K10ab2f7vp3+5qhYLEObOs6vsrMJe1z+Jv4gd4cApSX/7yM1usY L9NxA9j8BBhGOgIo1PKZs5ezbbkxY3GitFGOOB+1Jp1//GuqzCmYCgBEBqotgQ34 Hsf9E2asUTgzfW9Pa9hYlV0+cwp4ifkV1evTsmn9hc3aTLVaoY72OJ5HWHACD61t fHhFAgMBAAGjggJ+MIICejAdBgNVHQ4EFgQUfkCukAEA4rl7Mc4AaQLzHn0dKvIw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzQ5 Ny8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC80OTcvZmtDdWtBRUE0cmw3TWM0QWFRTHpIbjBkS3ZJLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMA2sIwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAJnDOgwDQQCAAIwBwMFACQFrQAwDQYJKoZIhvcNAQELBQADggEBACmp 17r2d3vCDOXnYFOYzkgE1tPzTkyC4Eei9TNnxuHSqgTIEY1IkXUUci5ofbN/fYMI MDloNwt7z83VyhDrXQvvQyFg8PeswG2kz7mb1OsUNC517OV2sBeqUovmHjAMG3K5 SMdBcXVKROfvkPrUis9EvSsvkaanWAS6pDjgDnf7TOqoZ7q+3BCdYMxXlPNpwiEB cjHoclkQhggJQZmyii+EvaNES9++c4qJUd6LT+13vtOO30JcbXAp8WjV3z8w18En Z9EFK8NYq7OAWO/6n0m4gg1pizNozjh+lPgq8I9kqW4K5+25FP/d6NmZH10Tfm7A xpOCoNrj0W28nICouaU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:38 2026 by rpki-client