Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1817/h2aIiphaWvBfbvEvvU9k8h9SYYg.mft
File: h2aIiphaWvBfbvEvvU9k8h9SYYg.mft (raw, json)
Hash identifier: 183TQvmnSIoBSuzckeBH+l17d7+kKO7CL37FUvBLU0I=
Subject key identifier: D8:67:8A:A9:53:70:86:1C:41:93:AE:13:A0:81:E7:5C:D1:C4:1B:D7
Authority key identifier: 87:66:88:8A:98:5A:5A:F0:5F:6E:F1:2F:BD:4F:64:F2:1F:52:61:88
Certificate issuer: /CN=8766888A985A5AF05F6EF12FBD4F64F21F526188
Certificate serial: 0A85
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/h2aIiphaWvBfbvEvvU9k8h9SYYg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1817/h2aIiphaWvBfbvEvvU9k8h9SYYg.mft
Manifest number: 0A85
Signing time: Sun 15 Jun 2025 07:19:53 +0000
Manifest this update: Sun 15 Jun 2025 07:19:53 +0000
Manifest next update: Sun 15 Jun 2025 13:19:53 +0000
Files and hashes: 1: h2aIiphaWvBfbvEvvU9k8h9SYYg.crl (hash: X6X3QbRxDLvKjJuwBUGGPKE7WvyuHH/O+JLdG1BBydE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2693 (0xa85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8766888A985A5AF05F6EF12FBD4F64F21F526188
Validity
Not Before: Jun 15 07:19:53 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=D8678AA95370861C4193AE13A081E75CD1C41BD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c0:ff:85:04:90:e9:70:da:7d:d0:ea:7d:8b:
f6:99:03:3a:0b:5c:4f:4b:1d:e7:7c:aa:93:12:9b:
33:7a:64:7a:38:d4:29:2c:60:d6:c5:0d:77:99:c0:
e4:16:48:ab:00:f5:64:65:d8:0a:ec:21:39:34:6b:
b5:43:4d:93:7c:a3:75:4d:a4:6c:bb:0a:28:9f:f1:
78:f1:e1:5f:91:17:0b:da:4f:2f:1d:56:e4:24:b0:
7e:af:5e:6b:11:88:36:ec:f0:b6:9a:83:90:cb:da:
27:0b:e9:17:93:48:fe:4e:e1:ce:2a:50:b6:91:8c:
3a:00:a3:d5:53:9d:5f:52:f5:d2:4e:d2:6e:67:31:
ef:4c:91:28:a1:30:5b:37:15:cd:90:4f:f1:ba:64:
f0:24:57:f3:d8:5e:d7:c8:26:d4:b9:15:7d:07:1c:
45:c4:03:72:96:41:c5:f4:fe:d9:00:51:8f:1e:4f:
c7:e3:d8:15:9e:1d:0f:86:07:5e:f1:e1:70:cb:65:
14:6e:8a:c9:eb:fc:b0:2b:e7:ba:ca:53:c2:c8:00:
f3:bd:b9:96:55:5a:52:26:d8:aa:3d:40:75:57:15:
a0:69:dc:7e:c8:81:d1:0e:e0:1c:c6:78:3a:f5:09:
9a:8f:3f:21:84:bc:b4:6b:ef:da:46:f4:ea:38:f8:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:67:8A:A9:53:70:86:1C:41:93:AE:13:A0:81:E7:5C:D1:C4:1B:D7
X509v3 Authority Key Identifier:
keyid:87:66:88:8A:98:5A:5A:F0:5F:6E:F1:2F:BD:4F:64:F2:1F:52:61:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1817/h2aIiphaWvBfbvEvvU9k8h9SYYg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/h2aIiphaWvBfbvEvvU9k8h9SYYg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1817/h2aIiphaWvBfbvEvvU9k8h9SYYg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:f2:41:d0:85:ae:d3:ac:b3:a8:de:d1:1e:e4:27:98:52:3d:
5e:29:e8:fc:05:00:90:25:59:a7:56:43:26:a1:bb:4d:c9:bd:
12:66:40:06:47:97:5c:1a:dd:21:c2:20:d9:6c:4f:a6:66:50:
b1:bb:6f:00:35:b1:d8:4d:2e:dd:14:be:84:49:80:27:35:e6:
87:e5:15:d9:4f:fd:50:56:a1:69:ca:15:0a:1c:a0:20:2c:c4:
11:a5:85:49:78:4f:19:b1:34:ac:37:eb:40:81:75:f7:f2:b5:
e5:54:21:93:a0:73:f7:2c:d2:bb:93:73:26:d7:95:b8:75:08:
4b:1d:66:1c:68:58:cc:8c:df:b5:a4:c6:6c:db:6a:61:cd:98:
6b:68:50:ec:97:f9:cf:1a:e2:37:29:8a:62:74:9c:be:ea:92:
6e:2a:18:75:0f:dd:98:e1:c3:47:11:89:dc:bb:a9:fc:53:45:
90:81:9b:70:8f:31:a4:e7:c2:ad:11:cf:87:c9:81:94:7e:2e:
06:8f:f0:2a:46:68:cc:17:e2:d8:9d:cc:0b:c3:69:85:1b:6c:
d6:b0:c4:b5:72:c5:f3:e9:2b:14:c9:d8:68:4a:fa:29:a6:3e:
76:0c:b9:dc:4e:df:70:3f:67:77:0b:86:6a:66:1b:c6:8c:bf:
53:ec:88:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 10:11:01 2025 by rpki-client