Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft
File: vCE9aodm-DafWThfda8AgjreZgQ.mft (raw, json)
Hash identifier: 6LzVm4knFwOPWhSqKmeRjd0LxcUA+UKuSC4KwLAb5BA=
Subject key identifier: E5:37:31:37:0F:30:FD:B2:60:24:BF:A4:9C:E6:31:57:A0:6E:E4:97
Authority key identifier: BC:21:3D:6A:87:66:F8:36:9F:59:38:5F:75:AF:00:82:3A:DE:66:04
Certificate issuer: /CN=BC213D6A8766F8369F59385F75AF00823ADE6604
Certificate serial: 177B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft
Manifest number: 177B
Signing time: Fri 20 Jun 2025 18:11:07 +0000
Manifest this update: Fri 20 Jun 2025 18:11:07 +0000
Manifest next update: Sat 21 Jun 2025 00:11:07 +0000
Files and hashes: 1: vCE9aodm-DafWThfda8AgjreZgQ.crl (hash: NQr2VkU8bVWn8ldgFqg384ezDkIiCopxo/cnRdwNMSk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6011 (0x177b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BC213D6A8766F8369F59385F75AF00823ADE6604
Validity
Not Before: Jun 20 18:11:07 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=E53731370F30FDB26024BFA49CE63157A06EE497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0b:fe:3b:37:bc:61:45:56:d7:30:80:48:3b:
74:d7:66:f5:fa:3d:5b:1f:ec:fd:85:de:58:b3:5a:
8b:ba:06:8b:d7:8d:c0:39:27:70:29:a3:8f:d5:a4:
a5:ae:2b:ea:27:e1:0b:11:75:8d:6e:0d:bb:38:b9:
5b:af:bf:3e:90:db:2c:9d:22:b9:c5:1a:fc:66:27:
9f:2c:6d:65:05:df:9a:98:38:88:b3:67:60:c4:0f:
0d:17:00:86:f8:fe:9d:9f:e0:c6:af:b6:b8:12:60:
4d:67:e3:a6:cf:b1:81:24:eb:4d:88:81:10:90:b2:
85:5b:6b:f3:f5:7d:da:bc:ed:bd:41:fb:88:34:7a:
4e:65:18:0d:e0:25:e2:b4:c0:77:b7:d7:4f:3a:0a:
af:1c:c1:2f:be:89:7d:59:5b:b2:91:5b:dc:9a:79:
78:be:27:1c:1c:e9:ea:cc:62:e0:2d:aa:0e:ab:e8:
c0:92:a2:cd:07:db:86:7e:59:51:60:05:6f:a1:59:
3e:20:05:a4:16:c4:85:11:68:a3:61:cf:e4:ba:5f:
c7:e0:f6:a1:0f:5c:76:30:d7:fa:56:b7:b8:6a:ab:
e7:17:11:51:75:86:27:1e:f7:a6:4a:c2:10:2d:a1:
fb:4d:71:da:9f:09:8e:b1:4b:3f:9b:a8:c6:c9:44:
22:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:37:31:37:0F:30:FD:B2:60:24:BF:A4:9C:E6:31:57:A0:6E:E4:97
X509v3 Authority Key Identifier:
keyid:BC:21:3D:6A:87:66:F8:36:9F:59:38:5F:75:AF:00:82:3A:DE:66:04
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vCE9aodm-DafWThfda8AgjreZgQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1377/vCE9aodm-DafWThfda8AgjreZgQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4d:c0:e8:2b:e1:24:1e:7f:52:20:6c:38:7b:4d:1a:9b:ce:e0:
d8:8e:17:9e:2e:7c:85:54:b8:0b:60:e4:12:70:09:6b:43:e6:
96:4c:f6:af:2b:fc:04:68:d3:19:45:77:3d:c3:97:fc:18:27:
ee:03:9e:b8:a3:ae:f7:df:82:2a:a4:64:24:c4:e4:1a:41:6f:
24:7c:fe:28:82:f2:59:c5:fe:56:0f:81:fe:07:4c:36:a0:ec:
9a:85:ac:9d:28:4a:02:97:4b:44:cd:f5:81:0a:bf:6d:7a:55:
97:50:0e:47:0a:37:6a:8d:cf:ec:67:a5:bb:85:65:20:fb:7d:
7b:0b:f2:11:13:03:75:fa:3c:73:92:bc:78:60:d4:83:14:db:
54:78:66:05:c4:3a:43:b0:df:f4:2e:86:c6:39:7a:62:5e:a8:
c1:9a:9e:7b:37:4e:b0:3b:d6:9a:94:c8:87:a5:05:70:ab:65:
f6:01:22:4b:70:23:4d:bb:e5:ca:11:30:b3:e0:89:6d:b3:76:
c6:92:9e:f0:2b:cc:c9:be:af:73:a7:60:ef:d5:2d:b4:8b:c2:
c2:3d:d0:21:0e:da:1b:cb:52:67:a1:9f:28:ba:80:20:a5:85:
0c:61:5b:b2:13:1f:8d:6d:c1:7d:58:36:16:54:a3:b1:9a:a3:
59:ba:9e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 21 00:12:18 2025 by rpki-client