Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
File: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft (raw, json)
Hash identifier: f1Z/O610tUURTS5FL09mHkWhDcvPnLlIDl23NDYqujQ=
Subject key identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B
Authority key identifier: F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A
Certificate issuer: /CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A
Certificate serial: 123D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
Manifest number: 1235
Signing time: Sat 21 Jun 2025 15:41:26 +0000
Manifest this update: Sat 21 Jun 2025 15:41:26 +0000
Manifest next update: Sat 21 Jun 2025 21:41:26 +0000
Files and hashes: 1: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl (hash: eY86HC3RK677Gfy5pSE0hZBHORwgVFnZ2CiE7J/dcdc=)
2: BhAPA23_9841Ad-T5RPGRWrr8lU.roa (hash: kYugWE0/6l95HXjqsbTP6qrpO8X0FDHGL1s3owYnbDM=)
3: SC_pkcDhJ5o4NG17MetL3m9J4FE.roa (hash: 3QuKzabkQZa5U+aV6n5UNJwnM3YYQc4z4PuXFHFnB14=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4669 (0x123d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A
Validity
Not Before: Jun 21 15:41:26 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=772D59F81B388CADC0607D6B8A284603EF6E296B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b3:a6:65:9c:e4:3f:1a:f8:4c:65:02:42:d8:
44:71:a7:a6:c2:64:48:59:ca:83:76:f1:7b:1f:f6:
e2:c1:10:9d:c4:35:8f:2c:44:94:72:e2:03:e4:6a:
d5:04:79:5a:59:d1:4b:3e:8e:96:65:7c:0a:2b:64:
95:41:b9:10:fd:30:c9:29:d7:48:a2:64:1c:9d:3c:
57:5b:69:17:43:d8:fc:a5:4b:1e:c6:18:7f:c5:d9:
ce:10:82:cb:d7:4e:ca:b7:de:14:c4:93:7d:ae:b4:
84:02:05:92:7d:9c:05:3d:14:ce:a0:ac:c4:e9:63:
ef:0f:67:ea:24:93:25:4a:9c:b0:d6:3b:5c:ea:4c:
3d:09:d0:4b:d7:83:cd:25:46:d6:a3:0a:19:30:9a:
7c:91:70:5b:78:41:3a:fc:65:bf:93:07:10:fe:9d:
95:db:39:84:d9:86:97:e2:e6:b0:0b:be:87:5a:95:
62:74:4f:ae:c9:ee:de:82:4a:26:81:5a:ca:b5:1f:
af:7f:fc:02:4e:8c:2e:5f:c7:10:4e:9b:70:15:f4:
10:d1:46:d9:1e:bd:ab:19:07:53:79:d6:11:d3:53:
0a:87:e6:03:94:43:c5:46:b3:22:5d:62:d2:6e:b0:
6b:c3:91:6b:96:5a:e8:ec:bc:c1:46:9b:b8:ab:13:
1c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B
X509v3 Authority Key Identifier:
keyid:F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:9d:ac:86:1b:ec:4c:f0:4a:cb:c7:ce:12:df:3a:77:9a:16:
86:e1:2a:a2:4e:a8:7e:e1:6a:7f:20:cf:8f:01:f1:81:94:2c:
80:b3:31:c8:a7:b9:72:58:64:c3:4b:53:ed:e3:8a:83:a9:12:
c8:ba:c5:b1:63:64:da:7d:06:2e:c5:94:eb:47:73:32:66:61:
b3:11:7c:23:84:a0:dd:f1:f3:ff:fe:56:b5:a9:b4:1b:71:12:
68:da:62:dd:5d:a9:0d:be:e9:f3:69:3a:db:a7:1d:d2:42:53:
76:c5:94:c2:4d:7a:32:65:12:29:30:a2:ee:84:e9:15:4b:6e:
b6:2e:2c:ce:6e:65:e8:e9:67:fe:22:81:d9:5d:da:fe:62:74:
c1:3c:4a:3f:0c:f9:be:ff:23:c4:3f:08:c3:b5:3e:98:95:2c:
9c:2e:a7:7a:5e:a0:3f:83:d0:7d:8b:31:02:59:71:1a:63:c4:
bd:b0:0a:1c:24:ab:65:7a:d5:b3:6f:8e:fb:83:a5:63:84:e7:
b8:8f:f6:ef:be:6f:0e:f4:f4:e5:90:d7:7b:1b:96:67:5b:2c:
0e:e2:7d:b2:e8:10:75:71:85:09:d8:97:ca:e9:ae:4f:19:72:
a9:4c:75:b0:74:90:fe:a9:e1:94:f4:cc:05:51:11:67:47:dc:
e7:2a:94:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 21 21:43:31 2025 by rpki-client