Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft
File: Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft (raw, json)
Hash identifier: 86bcBy9vuTED6ZEvMnajfp4TUErTLnDfNBDMkndXy4A=
Subject key identifier: DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59
Authority key identifier: 45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7
Certificate issuer: /CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7
Certificate serial: 0572
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft
Manifest number: 0571
Signing time: Sat 26 Apr 2025 13:08:02 +0000
Manifest this update: Sat 26 Apr 2025 13:08:02 +0000
Manifest next update: Sat 26 Apr 2025 19:08:02 +0000
Files and hashes: 1: Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl (hash: 93qTmr5HXrj7aJUmOYahp4EN5SkPmkXuemXnnTii6AI=)
2: rGX-jlWmT5UXNDCJbyr29sYL8j0.roa (hash: SC8327IqDeIkUpm5PLMYz5uE5ihFgGUKeXxDbb+NB5c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1394 (0x572)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45CF5B262A56F85134C8FE95D64DF089F1B762E7
Validity
Not Before: Apr 26 13:08:02 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=DBD804ECB5B5B7C6D35D7864957AB30CB3756959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1e:90:4d:ec:7d:11:9a:79:e8:9d:22:fa:8b:
ee:d3:e5:be:21:46:76:b6:55:d3:66:c2:01:85:63:
97:ea:fc:c6:b8:d8:cf:30:9e:6a:c4:00:2d:e6:99:
a0:21:9f:ab:b6:ca:03:c6:56:32:70:12:32:1a:db:
8a:8e:7c:91:8f:9e:1f:c8:e7:9b:e4:c7:8c:a7:69:
3f:9a:9a:7f:bc:69:81:2f:ad:0c:4f:94:86:70:62:
d7:8b:2e:f5:88:46:f1:19:4f:0c:49:40:05:9d:47:
2e:d3:22:b6:f4:2c:b3:4c:8e:5e:d9:18:af:ad:81:
75:33:0a:9c:8a:df:16:8b:99:6c:7d:cb:19:07:80:
45:79:33:28:f5:b6:2f:10:2c:da:d9:8f:80:8e:05:
cb:79:40:88:fd:d5:3a:2b:62:68:eb:bc:87:88:e3:
fa:bf:a2:76:f1:38:63:2e:c0:3f:e7:b1:82:db:52:
cf:68:db:56:0c:92:7a:95:a3:9a:69:f9:90:45:f9:
8c:3f:8b:88:61:7e:40:fa:55:5b:57:b5:71:7c:d6:
4a:05:bd:c1:85:42:b3:69:74:6f:d8:e6:da:14:fb:
f8:41:67:3f:1d:1b:4c:b4:bc:66:2e:88:85:63:ba:
36:ae:bd:1f:a9:03:8b:8e:d2:08:cf:35:3d:80:3c:
55:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D8:04:EC:B5:B5:B7:C6:D3:5D:78:64:95:7A:B3:0C:B3:75:69:59
X509v3 Authority Key Identifier:
keyid:45:CF:5B:26:2A:56:F8:51:34:C8:FE:95:D6:4D:F0:89:F1:B7:62:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Rc9bJipW-FE0yP6V1k3wifG3Yuc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2187/Rc9bJipW-FE0yP6V1k3wifG3Yuc.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
58:0e:98:27:4e:c6:ce:6c:4b:57:5f:c7:c1:37:65:e7:01:f2:
d9:2e:a5:53:7f:43:20:bb:d5:82:2a:38:a1:d0:c2:b3:82:f7:
fc:50:f5:fc:cc:b3:6e:04:f7:ac:df:5d:73:23:32:c0:aa:8d:
a1:41:2e:a1:13:bb:ef:0b:c7:a6:d6:03:ed:26:b1:90:2a:8f:
45:dc:00:66:33:86:a9:55:f7:da:83:40:6f:ca:8a:62:ad:bd:
1d:0f:4d:a0:0b:13:97:ed:a8:4f:01:67:53:43:66:b3:00:0a:
b8:02:ee:0f:cb:00:03:63:44:1a:23:b3:c8:51:d5:f7:f2:f8:
e0:ea:14:0b:bc:9d:0c:71:07:2a:ab:22:a3:2d:a4:e1:1a:63:
c3:b4:18:ee:58:6c:4e:f1:ad:cc:0c:4a:de:70:6f:0f:ed:24:
df:d9:e7:e7:c4:22:dc:c4:53:e8:dd:56:34:b3:d8:96:8d:09:
eb:58:e0:57:a1:cb:70:35:df:37:76:5b:48:3c:9e:0d:24:24:
ba:44:3e:21:29:d7:27:4e:9a:68:af:23:0b:60:71:2e:52:b9:
ca:ec:4f:e6:f5:75:56:ba:b9:1a:96:ad:39:8a:88:6f:08:2c:
05:49:6d:64:b9:be:64:94:75:07:0d:ec:83:b2:1e:77:7d:43:
06:ed:73:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:13:07 2025 by rpki-client