$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/aNHWIOHqFxAY048aCIaBCXhdurE.cer File: aNHWIOHqFxAY048aCIaBCXhdurE.cer (raw, json) Hash identifier: XIioZBaLYgMvyPNHGvE88g+Zm176GdxxPh3wSE0FQxk= Subject key identifier: 68:D1:D6:20:E1:EA:17:10:18:D3:8F:1A:08:86:81:09:78:5D:BA:B1 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: DBF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/aNHWIOHqFxAY048aCIaBCXhdurE.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Thu 28 Aug 2025 02:45:42 +0000 Certificate not after: Fri 28 Aug 2026 02:43:41 +0000 Subordinate resources: AS: 63561 IP: 103.203.216.0/22 IP: 202.61.88.0/22 IP: 2403:c980::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 15:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56310 (0xdbf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Aug 28 02:45:42 2025 GMT Not After : Aug 28 02:43:41 2026 GMT Subject: CN=68D1D620E1EA171018D38F1A08868109785DBAB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:3e:64:7a:5a:81:ba:32:9d:80:b0:25:03: f3:4d:8f:a9:1e:2f:0d:12:8c:67:e0:68:21:a6:d8: 9d:8f:7e:ef:cd:37:72:9b:f0:79:49:84:76:3b:8b: 0b:51:85:85:98:d3:7b:b8:d3:09:68:f3:f4:cf:86: ce:fa:22:05:0a:da:a9:24:b5:6a:5c:8d:82:ed:0e: d5:c8:18:32:25:ad:eb:dc:0a:4b:ab:af:65:19:50: 03:5b:bd:07:ef:14:54:95:2e:1f:f7:e4:74:ec:ae: 37:2d:7e:d1:eb:6f:99:6a:76:56:a8:2e:ad:a0:70: 06:4c:c0:fa:3e:8f:c6:27:c6:71:df:76:9b:fa:82: 52:d3:9a:3b:c3:91:0c:bf:33:54:d2:fc:61:21:6b: 2a:28:66:d4:a7:88:1a:39:9b:31:12:e1:cc:1c:01: 12:e1:73:ae:e8:ce:4f:ff:b3:44:e6:c7:6d:6a:ac: b5:4b:1c:0b:36:20:43:57:8e:48:4e:90:0f:58:9a: f9:1a:3e:55:81:a6:00:21:15:06:40:af:ba:6d:ae: 7b:2a:1f:7e:58:4a:eb:4a:62:ea:dc:15:27:3d:68: 98:e9:d2:39:63:4e:cd:53:68:b3:89:79:9e:14:d5: dc:fb:7c:0f:b1:0c:98:ef:40:78:85:d6:70:42:49: a6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D1:D6:20:E1:EA:17:10:18:D3:8F:1A:08:86:81:09:78:5D:BA:B1 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1585/aNHWIOHqFxAY048aCIaBCXhdurE.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 63561 sbgp-ipAddrBlock: critical IPv4: 103.203.216.0/22 202.61.88.0/22 IPv6: 2403:c980::/32 Signature Algorithm: sha256WithRSAEncryption 9b:d6:9b:70:99:2e:4b:96:b1:5d:46:53:4d:ae:02:7f:72:d7: 32:34:a2:2b:63:11:71:11:fa:27:6e:e8:fd:2f:b7:36:70:51: 46:3c:bc:28:29:82:e7:58:58:07:ad:b9:7a:7d:33:53:19:13: 80:91:a9:92:72:87:a7:f7:76:e2:a2:df:bc:bb:b6:f7:bb:81: f2:41:0a:3b:fb:f8:0d:4b:e5:4c:a3:39:08:bc:ae:9b:4b:bc: 0b:48:3d:df:70:4a:ac:1b:6c:0a:64:27:c8:bd:04:b7:f3:29: ca:d7:52:22:5d:1d:bc:a8:c9:c9:c4:dd:8e:c8:67:1c:87:e2: 1c:74:28:75:b6:33:26:72:0a:ce:be:63:6a:e9:cd:46:d8:14: 24:a9:f2:db:a4:66:18:77:8e:08:13:9f:dd:6e:56:c8:9e:d0: 8f:05:42:8d:6f:53:54:67:46:bf:e9:32:25:52:17:4a:41:90: c2:50:c1:41:f8:6e:37:62:fa:74:7c:ce:42:b2:29:7e:ec:bc: 98:17:ee:38:4d:2f:24:55:88:8a:1b:27:e7:76:38:6d:ec:ee: c9:d8:87:b1:1e:b7:8e:b8:e8:2a:68:58:56:a7:e0:9a:6e:0d: d3:72:d1:b2:ba:5a:36:67:9a:4d:26:93:bf:c3:ac:08:93:5a: 55:e8:d1:94 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIDANv2MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNTA4MjgwMjQ1NDJaFw0yNjA4MjgwMjQzNDFaMDMx MTAvBgNVBAMTKDY4RDFENjIwRTFFQTE3MTAxOEQzOEYxQTA4ODY4MTA5Nzg1REJB QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ET5kelqBujKdgLAl A/NNj6keLw0SjGfgaCGm2J2Pfu/NN3Kb8HlJhHY7iwtRhYWY03u40wlo8/TPhs76 IgUK2qkktWpcjYLtDtXIGDIlrevcCkurr2UZUANbvQfvFFSVLh/35HTsrjctftHr b5lqdlaoLq2gcAZMwPo+j8YnxnHfdpv6glLTmjvDkQy/M1TS/GEhayooZtSniBo5 mzES4cwcARLhc67ozk//s0Tmx21qrLVLHAs2IENXjkhOkA9YmvkaPlWBpgAhFQZA r7ptrnsqH35YSutKYurcFSc9aJjp0jljTs1TaLOJeZ4U1dz7fA+xDJjvQHiF1nBC SaY7AgMBAAGjggKGMIICgjAdBgNVHQ4EFgQUaNHWIOHqFxAY048aCIaBCXhdurEw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1 ODUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMTU4NS9hTkhXSU9IcUZ4QVkwNDhhQ0lhQkNYaGR1ckUubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwD4STA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmfL2AMEAso9WDANBAIAAjAHAwUAJAPJgDANBgkqhkiG9w0BAQsF AAOCAQEAm9abcJkuS5axXUZTTa4Cf3LXMjSiK2MRcRH6J27o/S+3NnBRRjy8KCmC 51hYB625en0zUxkTgJGpknKHp/d24qLfvLu297uB8kEKO/v4DUvlTKM5CLyum0u8 C0g933BKrBtsCmQnyL0Et/MpytdSIl0dvKjJycTdjshnHIfiHHQodbYzJnIKzr5j aunNRtgUJKny26RmGHeOCBOf3W5WyJ7QjwVCjW9TVGdGv+kyJVIXSkGQwlDBQfhu N2L6dHzOQrIpfuy8mBfuOE0vJFWIihsn53Y4bezuydiHsR63jrjoKmhYVqfgmm4N 03LRsrpaNmeaTSaTv8OsCJNaVejRlA== -----END CERTIFICATE-----Generated at Sun Sep 7 11:00:15 2025 by rpki-client