$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer File: 0qtsm24WUzTAMtBR1fx9FUfk41M.cer (raw, json) Hash identifier: +3/SOP6/QxUgbRcwDE5WGIunEHED4wSvL2QR8cUgFHk= Subject key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 23 Oct 2025 03:11:00 +0000 Certificate not after: Fri 23 Oct 2026 03:01:03 +0000 Subordinate resources: AS: 146845 IP: 103.169.50.0/23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 16:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57987 (0xe283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Oct 23 03:11:00 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8a:cb:66:2d:d1:32:c0:4e:17:c6:2d:73:a0: bb:32:13:d5:70:69:b2:69:8a:f0:bd:f8:e0:f7:4b: 7c:eb:a8:ea:8d:46:10:29:7a:50:ff:ac:43:88:08: ef:33:cc:7d:81:e9:d4:a8:b8:f6:5d:79:d9:eb:a6: 33:51:dc:c0:cb:df:f7:24:89:f6:84:8d:3f:00:0f: c8:07:8c:e5:2a:67:dd:92:3e:23:7c:5f:8a:5f:8d: f5:47:3c:2a:cf:a9:ed:b6:48:76:e1:08:31:f8:dd: 81:ca:d4:09:9c:3d:01:7e:04:6f:97:ba:1e:a5:eb: 15:f4:1a:a3:d9:9d:14:28:ff:9b:22:b6:a0:44:90: 9f:e3:d1:1d:1f:5d:84:56:6d:30:65:31:46:3e:5d: d9:69:be:2b:7c:ad:dc:f5:36:80:83:6e:f5:d1:c5: 87:23:27:b7:74:da:0b:67:e1:63:4f:c9:a6:20:4d: 7c:fd:9e:23:cc:b6:07:2d:ef:d0:3f:3c:10:e3:69: 47:57:b5:bf:9a:f9:86:9c:e1:09:25:79:50:42:eb: 8d:c9:bf:d7:95:3b:6a:c1:14:b8:96:82:00:6a:1c: b2:e9:90:f8:8d:77:0b:0e:df:e1:00:66:a1:b1:41: a0:2f:34:be:43:6f:6c:1b:58:95:21:1a:ff:ff:57: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 146845 sbgp-ipAddrBlock: critical IPv4: 103.169.50.0/23 Signature Algorithm: sha256WithRSAEncryption 71:b5:f0:21:b0:73:c3:a5:df:12:87:8d:0e:a7:80:3f:89:fb: 29:41:3d:a8:50:88:20:46:94:d3:e4:c8:c9:ea:8c:76:d8:28: 2b:66:d4:22:cb:65:99:0c:f6:1f:fb:d8:e1:16:a2:7d:60:43: 84:8b:da:a6:3b:bb:86:a0:7c:2a:50:4e:8e:f9:a7:6b:f2:c0: 07:1d:21:93:c1:90:15:45:a6:ff:02:0c:72:4b:22:8a:8b:f3: 5b:f7:28:55:30:d0:1d:c0:43:41:13:7f:a2:df:9f:53:25:17: f3:b5:cf:f5:d1:fc:f2:22:1b:ed:15:ae:a5:0e:90:14:08:8c: 85:10:20:7f:44:20:5b:bd:cf:9d:80:6b:5e:1f:be:74:71:cf: 7e:f1:d8:53:4d:7b:2b:f8:73:48:41:b2:3e:b1:18:c8:f6:27: cd:1f:dd:ff:c7:89:a0:14:3f:38:6f:c8:e2:3d:81:81:c0:5a: 46:13:6f:59:bf:63:79:f3:47:a6:e4:b2:cb:32:62:21:06:23: e8:e3:a5:22:68:c1:a7:b4:20:43:6f:5d:65:09:92:f3:58:41: ca:a7:bd:41:be:8a:d7:eb:8a:51:25:12:1f:9d:ba:1d:a1:29: b9:ba:f1:e5:fb:95:cf:44:d0:c5:26:e3:eb:2d:5a:75:48:37: 1c:ba:91:2a -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIDAOKDMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTEwMjMwMzExMDBaFw0yNjEwMjMwMzAxMDNaMDMx MTAvBgNVBAMTKEQyQUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUz NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEistmLdEywE4Xxi1z oLsyE9VwabJpivC9+OD3S3zrqOqNRhApelD/rEOICO8zzH2B6dSouPZdednrpjNR 3MDL3/ckifaEjT8AD8gHjOUqZ92SPiN8X4pfjfVHPCrPqe22SHbhCDH43YHK1Amc PQF+BG+Xuh6l6xX0GqPZnRQo/5sitqBEkJ/j0R0fXYRWbTBlMUY+Xdlpvit8rdz1 NoCDbvXRxYcjJ7d02gtn4WNPyaYgTXz9niPMtgct79A/PBDjaUdXtb+a+Yac4Qkl eVBC643Jv9eVO2rBFLiWggBqHLLpkPiNdwsO3+EAZqGxQaAvNL5Db2wbWJUhGv// Vz0nAgMBAAGjggJxMIICbTAdBgNVHQ4EFgQU0qtsm24WUzTAMtBR1fx9FUfk41Mw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzA5OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0ubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwI9nTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWepMjANBgkqhkiG9w0BAQsFAAOCAQEAcbXwIbBzw6XfEoeNDqeA P4n7KUE9qFCIIEaU0+TIyeqMdtgoK2bUIstlmQz2H/vY4RaifWBDhIvapju7hqB8 KlBOjvmna/LABx0hk8GQFUWm/wIMcksiiovzW/coVTDQHcBDQRN/ot+fUyUX87XP 9dH88iIb7RWupQ6QFAiMhRAgf0QgW73PnYBrXh++dHHPfvHYU017K/hzSEGyPrEY yPYnzR/d/8eJoBQ/OG/I4j2BgcBaRhNvWb9jefNHpuSyyzJiIQYj6OOlImjBp7Qg Q29dZQmS81hByqe9Qb6K1+uKUSUSH526HaEpubrx5fuVz0TQxSbj6y1adUg3HLqR Kg== -----END CERTIFICATE-----Generated at Thu Oct 23 13:03:25 2025 by rpki-client