Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
File: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft (raw, json)
Hash identifier: +un6dBuXk/OeZjTCkf72daBHsrqYey5PiDYMV40bcXM=
Subject key identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B
Authority key identifier: F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A
Certificate issuer: /CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A
Certificate serial: 1723
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
Manifest number: 1715
Signing time: Sun 01 Mar 2026 21:29:42 +0000
Manifest this update: Sun 01 Mar 2026 21:29:42 +0000
Manifest next update: Mon 02 Mar 2026 03:29:42 +0000
Files and hashes: 1: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl (hash: oNhp4Jy8+2MKHwH0Ij/3/RfZ96ilwkxkNr2Xhyeax8M=)
2: DXjFrf_OgBlIsDSW_d80nxJDYy0.roa (hash: I/0Nk3G2UjpS1Dd3jjRv9K9JPA1+5O1V1YsAJ6efLV0=)
3: Ytt-sZWFeEl7Ag-etQDx2u34_Ek.roa (hash: Am7wWX/+t2PT/KQGXWKB1Li0f65LRNZE2QFYyl/AQmw=)
4: lI9ajDytEBoqP3nY6k07TCbYYw4.roa (hash: LWyUgAWzaJTkzHAy91TtZ1KUB8GaXK9r6LOFEw6+TPE=)
5: uG9LWLpK67qpxjgXRPMAAm6hR9Y.roa (hash: URTxuyS38BOkzq2ChrFnplSe6g+QKSVcXtGhOX6pla8=)
6: v6Faz7VKoqwNwglDNFtgd3H0Nhc.roa (hash: Aq7JCfWo6hLi8NMkcsfakV2tH3kB+NE4WHgBDNgDz3U=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5923 (0x1723)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A
Validity
Not Before: Mar 1 21:29:42 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=772D59F81B388CADC0607D6B8A284603EF6E296B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b3:a6:65:9c:e4:3f:1a:f8:4c:65:02:42:d8:
44:71:a7:a6:c2:64:48:59:ca:83:76:f1:7b:1f:f6:
e2:c1:10:9d:c4:35:8f:2c:44:94:72:e2:03:e4:6a:
d5:04:79:5a:59:d1:4b:3e:8e:96:65:7c:0a:2b:64:
95:41:b9:10:fd:30:c9:29:d7:48:a2:64:1c:9d:3c:
57:5b:69:17:43:d8:fc:a5:4b:1e:c6:18:7f:c5:d9:
ce:10:82:cb:d7:4e:ca:b7:de:14:c4:93:7d:ae:b4:
84:02:05:92:7d:9c:05:3d:14:ce:a0:ac:c4:e9:63:
ef:0f:67:ea:24:93:25:4a:9c:b0:d6:3b:5c:ea:4c:
3d:09:d0:4b:d7:83:cd:25:46:d6:a3:0a:19:30:9a:
7c:91:70:5b:78:41:3a:fc:65:bf:93:07:10:fe:9d:
95:db:39:84:d9:86:97:e2:e6:b0:0b:be:87:5a:95:
62:74:4f:ae:c9:ee:de:82:4a:26:81:5a:ca:b5:1f:
af:7f:fc:02:4e:8c:2e:5f:c7:10:4e:9b:70:15:f4:
10:d1:46:d9:1e:bd:ab:19:07:53:79:d6:11:d3:53:
0a:87:e6:03:94:43:c5:46:b3:22:5d:62:d2:6e:b0:
6b:c3:91:6b:96:5a:e8:ec:bc:c1:46:9b:b8:ab:13:
1c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B
X509v3 Authority Key Identifier:
keyid:F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
24:47:a5:5f:73:95:3e:e9:f5:98:53:f7:8a:0d:b7:1e:9b:fb:
00:2d:11:eb:39:58:aa:52:c9:d2:80:d5:b8:5a:b0:01:17:13:
7e:d0:34:e7:8f:0b:7e:4f:a1:b5:75:ad:19:92:c1:09:1e:89:
ef:65:f5:3e:53:28:b5:3c:c4:eb:e3:7f:d9:d4:7a:5a:86:ce:
51:b7:65:be:01:1a:13:d8:4b:a8:3d:be:b3:c7:17:59:d5:9a:
6f:af:5c:90:71:b3:74:ad:1f:ec:c5:fe:36:cd:c5:e1:7d:65:
fa:81:28:61:e7:22:e3:7a:d3:6b:85:02:08:ff:2c:b3:38:0c:
eb:dd:de:a9:53:38:9c:2c:47:66:2a:56:a4:7e:8a:5c:02:7c:
16:40:cf:e7:f9:f8:d8:62:f5:91:83:d4:4f:5d:46:1e:21:88:
eb:c9:c0:bb:3d:6f:d2:f4:0a:03:9d:3b:92:09:12:66:26:b2:
93:9e:dd:9a:8c:9c:58:4a:fe:22:44:bf:2e:89:4c:60:e4:90:
86:eb:03:07:1e:38:8d:09:78:e8:6c:11:86:bb:a4:0b:1b:18:
c6:d1:41:46:a4:f5:0d:e7:f8:29:c1:db:37:fb:c9:04:c8:90:
c1:cb:ea:8b:f2:b6:c3:2d:b4:6f:2b:f8:83:c5:84:8f:49:e4:
f3:a1:1f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:16:38 2026 by rpki-client