Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft
File: IGM8jmnuaH1MQSPQwJea0UTlXrc.mft (raw, json)
Hash identifier: 57c4hDq+HaqaWrS22jR+8iJWqM1dbUQFNKdbPf3c5aw=
Subject key identifier: 8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04
Authority key identifier: 20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7
Certificate issuer: /CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7
Certificate serial: 5259
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft
Manifest number: 5259
Signing time: Sat 26 Apr 2025 06:36:40 +0000
Manifest this update: Sat 26 Apr 2025 06:36:40 +0000
Manifest next update: Sat 26 Apr 2025 12:36:40 +0000
Files and hashes: 1: IGM8jmnuaH1MQSPQwJea0UTlXrc.crl (hash: 9CSMwD4XK5BPGmyT1bF3YFhtfwNSf2lCTm4EtxyJHAI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21081 (0x5259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20633C8E69EE687D4C4123D0C0979AD144E55EB7
Validity
Not Before: Apr 26 06:36:40 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=8A7324BA5830A55CDA6EBE7C2F410FBC890A4004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ab:60:9d:02:16:1f:62:3c:eb:5a:2b:b6:b8:
f7:29:bc:cd:7e:af:3c:eb:15:1c:b0:23:41:af:c5:
a1:d6:bd:a2:51:84:8e:75:24:28:c9:8b:dd:10:55:
35:51:72:b6:86:35:dc:47:8c:55:85:96:be:e2:fd:
92:d3:8f:b8:ed:f7:23:02:ec:f3:6c:d0:12:fa:26:
b0:59:a5:a4:43:33:f9:1a:39:42:0b:97:62:9a:27:
bf:42:79:32:2e:9e:8c:d8:09:45:03:93:4a:6e:93:
07:69:53:64:bc:61:96:2b:44:51:5b:39:ef:45:97:
ec:47:cd:4c:55:99:99:1c:c0:b7:00:9f:0b:a2:80:
d7:da:2d:b8:f6:05:6c:ac:40:f9:fb:13:31:27:65:
99:a6:29:19:4e:50:8e:e3:87:01:9e:ea:2f:5f:12:
58:39:0e:95:61:f3:27:52:7a:a6:27:0c:c9:16:46:
53:d9:de:02:b1:93:64:46:17:37:f6:06:10:e0:a7:
94:6a:75:78:62:a3:fa:5b:41:e7:35:8d:53:a9:5b:
14:0f:cc:44:2f:09:4b:fc:2c:ac:c5:77:33:78:10:
c3:06:ed:f9:ef:e9:c0:ef:b4:9e:4f:82:f9:66:e4:
2d:37:53:91:e5:d4:0b:2c:14:74:0b:84:15:03:94:
d8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:73:24:BA:58:30:A5:5C:DA:6E:BE:7C:2F:41:0F:BC:89:0A:40:04
X509v3 Authority Key Identifier:
keyid:20:63:3C:8E:69:EE:68:7D:4C:41:23:D0:C0:97:9A:D1:44:E5:5E:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/IGM8jmnuaH1MQSPQwJea0UTlXrc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1382/IGM8jmnuaH1MQSPQwJea0UTlXrc.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2c:af:28:bb:69:fd:e5:3a:4f:94:e9:db:1c:ff:8a:2d:69:49:
7d:94:bb:f3:8c:e1:d4:8a:aa:f8:df:74:77:3d:4b:63:eb:84:
bd:59:59:2e:39:6b:7a:ea:03:4d:b6:c5:75:98:c9:5f:74:02:
f5:fd:af:cd:a0:65:0a:2b:f4:a6:ae:8e:2b:47:1f:5f:cb:6e:
22:0e:b5:d4:f3:79:1b:47:4d:dd:99:26:d5:c4:fa:8f:31:a2:
79:c8:33:f9:eb:df:97:65:d0:bb:a9:69:0b:dd:99:55:38:75:
fa:a7:e7:af:23:f9:fb:ab:6e:64:41:f3:c7:b8:86:07:a7:53:
80:7c:36:84:47:6d:c1:74:a0:28:4d:1a:f1:d7:80:79:6c:b6:
f2:8e:ec:be:a2:90:01:f2:f0:04:97:19:2b:72:46:d6:4d:f9:
60:3c:86:81:e8:c3:77:76:af:9e:37:9a:06:da:a3:49:a9:f0:
de:bf:28:82:db:ae:ad:d5:c7:61:eb:73:6d:8c:71:08:0e:32:
6f:e5:d9:f0:26:10:38:c0:eb:77:73:35:c7:b8:01:16:79:2f:
e5:31:0f:82:c0:7c:54:e1:af:27:c2:ce:68:f3:6d:8c:db:95:
99:b8:2a:5e:08:ae:95:92:ee:be:ea:16:7f:28:4d:d2:24:db:
06:02:cf:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:40:34 2025 by rpki-client