Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft
File: 4LWzbEhxQqoAYPpbVHULJsXPW9w.mft (raw, json)
Hash identifier: 7Loxvu1qRbXbVJ154DUf8Ky8LvIn3D0XeV8cj3f34l8=
Subject key identifier: E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A
Authority key identifier: E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC
Certificate issuer: /CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC
Certificate serial: 7D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft
Manifest number: 7C
Signing time: Sat 21 Jun 2025 15:41:13 +0000
Manifest this update: Sat 21 Jun 2025 15:41:13 +0000
Manifest next update: Sat 21 Jun 2025 21:41:13 +0000
Files and hashes: 1: 4LWzbEhxQqoAYPpbVHULJsXPW9w.crl (hash: 6EAnPv/J7A1P+RQKtbHIBAIxNEgcSJhMGSeLX1yYdI4=)
2: nQe8cqEREUIsJzuFPvvw2A1_6e4.roa (hash: M7HEBLqrcF9Cc43K//Uhar4sJlCkmK82tTZ8yw7MBD8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125 (0x7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0B5B36C487142AA0060FA5B54750B26C5CF5BDC
Validity
Not Before: Jun 21 15:41:13 2025 GMT
Not After : May 28 08:22:56 2026 GMT
Subject: CN=E60A2EE9386F8CB4CC5FD551C6B67FAEA7E4C31A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:59:56:da:d2:cb:7f:a2:3b:9e:7f:2b:fe:7e:
d2:68:1a:40:3f:d8:ee:3b:2e:46:d9:c9:8f:5a:e2:
63:fe:f3:1c:a1:6d:e2:eb:70:e6:93:e2:35:18:24:
72:e8:30:84:77:c9:53:90:39:26:13:0c:4a:5b:24:
2f:70:dd:15:22:2f:c0:92:eb:56:4c:25:bb:26:29:
67:82:6d:e2:86:ad:de:8a:79:8a:69:2c:ea:ec:50:
40:90:c8:f4:9f:33:af:d2:2a:e9:0b:40:2e:39:c9:
bb:3f:75:9d:ef:7d:b8:3c:98:23:8e:21:f1:e3:a3:
2c:a7:fa:2f:b8:95:6c:d9:bd:a5:dc:85:0a:f2:c8:
58:6e:76:c9:33:d1:a1:cc:22:49:1e:3c:fe:cf:a6:
82:1d:78:7b:29:78:07:19:98:40:e0:3e:7d:8c:c5:
0c:00:4f:f3:e9:b3:42:29:7e:2e:4b:30:f1:e2:bf:
1d:39:85:78:33:e5:4f:bf:f6:db:2f:1d:64:5f:f6:
de:1f:14:c7:d2:89:33:b5:d3:04:e6:74:f4:dd:03:
39:d7:8d:3d:cf:02:34:de:f0:18:66:7c:b0:a5:04:
03:58:6d:5a:88:c9:5b:09:a7:52:0d:c1:2f:e8:a0:
e4:c4:c8:9b:6c:f9:f3:2f:38:5c:e9:aa:21:8b:b4:
c6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:0A:2E:E9:38:6F:8C:B4:CC:5F:D5:51:C6:B6:7F:AE:A7:E4:C3:1A
X509v3 Authority Key Identifier:
keyid:E0:B5:B3:6C:48:71:42:AA:00:60:FA:5B:54:75:0B:26:C5:CF:5B:DC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/4LWzbEhxQqoAYPpbVHULJsXPW9w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/104/4LWzbEhxQqoAYPpbVHULJsXPW9w.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:8b:aa:f9:13:2e:17:fe:56:8c:f8:d9:3c:49:72:ba:94:04:
70:e9:d0:50:cb:7c:26:28:3f:d1:a6:97:7f:2a:54:0d:7d:fc:
75:4a:02:78:33:ae:cc:6f:53:ef:2e:31:8e:32:a4:84:4c:c6:
ac:90:0b:8c:cc:10:a1:ba:25:f2:a8:ae:93:4b:9f:8b:d3:1d:
97:b4:83:02:55:a0:24:0e:03:26:90:38:cb:29:d2:cf:eb:6f:
b2:c1:8d:62:2d:29:45:04:9e:0f:67:ce:ec:a7:15:e5:e4:15:
ae:76:fc:35:b5:07:8b:1c:1d:51:a3:97:e7:33:8f:87:8a:58:
ab:00:b5:48:e3:64:55:93:ed:1a:c2:ef:85:71:e0:16:40:14:
5e:84:48:98:c7:1f:c4:7d:81:53:0c:94:e7:33:8d:5d:20:6f:
0b:90:55:f8:2c:56:f4:8d:73:69:cc:9f:1a:fe:8a:0b:d6:e5:
3b:fe:b2:74:f1:40:89:cf:bd:df:d4:0e:b1:ac:d1:8b:d4:01:
27:81:70:37:43:45:b2:5c:7e:b7:29:74:2f:61:00:24:c3:93:
a6:d9:3c:b0:11:b6:6a:8a:9f:09:43:db:25:76:51:16:93:c5:
37:78:84:3b:04:8f:8d:73:48:91:df:e8:72:55:a9:02:85:67:
2b:b5:41:74
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgIBfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFMEI1
QjM2QzQ4NzE0MkFBMDA2MEZBNUI1NDc1MEIyNkM1Q0Y1QkRDMB4XDTI1MDYyMTE1
NDExM1oXDTI2MDUyODA4MjI1NlowMzExMC8GA1UEAxMoRTYwQTJFRTkzODZGOENC
NENDNUZENTUxQzZCNjdGQUVBN0U0QzMxQTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKZZVtrSy3+iO55/K/5+0mgaQD/Y7jsuRtnJj1riY/7zHKFt4utw
5pPiNRgkcugwhHfJU5A5JhMMSlskL3DdFSIvwJLrVkwluyYpZ4Jt4oat3op5imks
6uxQQJDI9J8zr9Iq6QtALjnJuz91ne99uDyYI44h8eOjLKf6L7iVbNm9pdyFCvLI
WG52yTPRocwiSR48/s+mgh14eyl4BxmYQOA+fYzFDABP8+mzQil+Lksw8eK/HTmF
eDPlT7/22y8dZF/23h8Ux9KJM7XTBOZ09N0DOdeNPc8CNN7wGGZ8sKUEA1htWojJ
WwmnUg3BL+ig5MTIm2z58y84XOmqIYu0xu8CAwEAAaOCAgowggIGMB0GA1UdDgQW
BBTmCi7pOG+MtMxf1VHGtn+up+TDGjAfBgNVHSMEGDAWgBTgtbNsSHFCqgBg+ltU
dQsmxc9b3DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMDQv
NExXemJFaHhRcW9BWVBwYlZIVUxKc1hQVzl3LmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC80TFd6YkVoeFFxb0FZUHBiVkhVTEpzWFBXOXcuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMDQvNExXemJFaHhRcW9BWVBw
YlZIVUxKc1hQVzl3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj
LmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG
AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB
AIaLqvkTLhf+Voz42TxJcrqUBHDp0FDLfCYoP9Gml38qVA19/HVKAngzrsxvU+8u
MY4ypIRMxqyQC4zMEKG6JfKorpNLn4vTHZe0gwJVoCQOAyaQOMsp0s/rb7LBjWIt
KUUEng9nzuynFeXkFa52/DW1B4scHVGjl+czj4eKWKsAtUjjZFWT7RrC74Vx4BZA
FF6ESJjHH8R9gVMMlOczjV0gbwuQVfgsVvSNc2nMnxr+igvW5Tv+snTxQInPvd/U
DrGs0YvUASeBcDdDRbJcfrcpdC9hACTDk6bZPLARtmqKnwlD2yV2URaTxTd4hDsE
j41zSJHf6HJVqQKFZyu1QXQ=
-----END CERTIFICATE-----
Generated at Sat Jun 21 19:23:38 2025 by rpki-client