$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/-2U7JndQQWh9Ni1M73aOWPmewHU.cer File: -2U7JndQQWh9Ni1M73aOWPmewHU.cer (raw, json) Hash identifier: STKj1DkSDSEWjwDV7e0OKxgwFXHGkQvy1j6HQ79nZOo= Subject key identifier: FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: EB03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Sat 07 Feb 2026 19:58:13 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: IP: 103.97.56.0/22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Feb 2026 05:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60163 (0xeb03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Feb 7 19:58:13 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=FB653B26775041687D362D4CEF768E58F99EC075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:84:d0:11:91:92:f6:93:69:a4:34:c3:63:2b: 5c:44:35:ed:3a:cf:0d:e7:fb:c9:05:eb:b2:64:d8: ec:17:4f:4a:72:85:9f:b2:0b:14:d7:f0:85:ec:54: fd:f6:19:91:31:08:f1:59:a9:9f:19:c8:bf:ca:a8: 60:4a:e4:f0:0c:68:23:e9:0a:79:59:22:b8:e9:b8: dd:13:e7:c0:b2:32:da:32:6d:95:0d:e1:59:d9:fe: c3:44:ca:17:fb:30:0f:db:41:2e:98:da:eb:1d:91: 05:32:c0:25:0b:68:87:bc:9e:c4:77:8e:ae:70:2e: f5:1d:64:5c:c6:68:d3:94:83:d8:31:88:1f:59:30: c6:94:6b:e0:7e:01:da:ab:85:fc:ea:49:eb:aa:cf: 49:40:b8:d7:93:a2:dd:2f:44:03:35:fb:ef:09:17: 4c:2d:d4:29:f5:65:8f:2f:16:73:06:bd:1f:1e:4a: b0:d3:cf:21:de:5a:55:d2:37:5d:da:f5:33:e0:4e: 02:aa:da:9d:d2:82:c9:e2:95:97:41:d7:ab:30:11: ee:40:86:97:57:4d:6a:ec:14:c2:27:59:90:cc:5a: 34:b8:29:4f:f0:c8:17:18:47:46:f4:d8:34:6b:0a: b5:68:a0:b2:9f:e5:07:97:93:fe:6f:ae:fd:89:a0: f9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:65:3B:26:77:50:41:68:7D:36:2D:4C:EF:76:8E:58:F9:9E:C0:75 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2537/-2U7JndQQWh9Ni1M73aOWPmewHU.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.97.56.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:ed:cf:d3:88:f6:ba:c9:68:c0:a1:51:39:f7:b6:f1:e4:df: f7:6a:69:a6:07:04:ce:c7:88:7d:49:f3:f7:a6:7d:dc:05:2d: 65:d9:8c:9b:ad:7a:2e:91:09:3d:96:8f:d0:32:84:dc:e3:75: b6:0a:2e:35:fc:84:17:86:0a:1b:8b:9f:bd:df:89:ee:f3:3c: 1e:13:48:3a:7a:18:b9:90:8c:74:59:09:dc:2f:55:3c:85:67: 7f:37:ea:57:98:aa:7e:a2:d4:1e:9b:90:42:98:47:32:8f:d0: 86:76:69:ef:19:4d:9d:16:26:f7:26:84:23:f9:14:d1:9e:cd: e0:5c:73:7a:b3:e6:7b:b2:d7:9f:fb:a4:a9:46:58:40:9c:42: 5b:94:dc:9c:79:b5:5b:e0:40:71:68:76:89:0d:98:93:1b:b5: 81:15:f3:18:c9:52:6c:8b:c3:d8:6b:b5:51:b3:83:d0:7a:68: 48:ed:22:a7:37:4a:02:e5:a8:75:84:1b:0c:df:09:9a:a6:05: 1c:e2:25:0b:0f:16:e9:21:e6:ba:00:02:6c:6a:56:2e:10:83: 6a:56:51:e8:ae:69:61:9f:11:19:35:c8:e7:ee:48:b6:5e:bb: 19:51:3b:50:b6:2d:2b:2a:0b:e9:ae:a0:86:26:7d:4a:89:5f: fa:fa:2c:85 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIDAOsDMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAyMDcxOTU4MTNaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKEZCNjUzQjI2Nzc1MDQxNjg3RDM2MkQ0Q0VGNzY4RTU4Rjk5RUMw NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDphNARkZL2k2mkNMNj K1xENe06zw3n+8kF67Jk2OwXT0pyhZ+yCxTX8IXsVP32GZExCPFZqZ8ZyL/KqGBK 5PAMaCPpCnlZIrjpuN0T58CyMtoybZUN4VnZ/sNEyhf7MA/bQS6Y2usdkQUywCUL aIe8nsR3jq5wLvUdZFzGaNOUg9gxiB9ZMMaUa+B+AdqrhfzqSeuqz0lAuNeTot0v RAM1++8JF0wt1Cn1ZY8vFnMGvR8eSrDTzyHeWlXSN13a9TPgTgKq2p3SgsnilZdB 16swEe5AhpdXTWrsFMInWZDMWjS4KU/wyBcYR0b02DRrCrVooLKf5QeXk/5vrv2J oPkvAgMBAAGjggJVMIICUTAdBgNVHQ4EFgQU+2U7JndQQWh9Ni1M73aOWPmewHUw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1 MzcvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjUzNy8tMlU3Sm5kUVFXaDlOaTFNNzNhT1dQbWV3SFUubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2E4MA0GCSqGSIb3DQEBCwUA A4IBAQBv7c/TiPa6yWjAoVE597bx5N/3ammmBwTOx4h9SfP3pn3cBS1l2YybrXou kQk9lo/QMoTc43W2Ci41/IQXhgobi5+934nu8zweE0g6ehi5kIx0WQncL1U8hWd/ N+pXmKp+otQem5BCmEcyj9CGdmnvGU2dFib3JoQj+RTRns3gXHN6s+Z7stef+6Sp RlhAnEJblNycebVb4EBxaHaJDZiTG7WBFfMYyVJsi8PYa7VRs4PQemhI7SKnN0oC 5ah1hBsM3wmapgUc4iULDxbpIea6AAJsalYuEINqVlHormlhnxEZNcjn7ki2XrsZ UTtQti0rKgvprqCGJn1KiV/6+iyF -----END CERTIFICATE-----Generated at Fri Feb 20 05:00:38 2026 by rpki-client