Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft
File: fPRMBtXqffDL1PaFCPFOhNoIt1I.mft (raw, json)
Hash identifier: CCLWSmLYYkwvsVBUhWOv+hDFPs6T2bHKcpz9EIoXF2g=
Subject key identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF
Authority key identifier: 7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52
Certificate issuer: /CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752
Certificate serial: 15D6
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft
Manifest number: 15D1
Signing time: Sat 26 Apr 2025 10:39:18 +0000
Manifest this update: Sat 26 Apr 2025 10:39:18 +0000
Manifest next update: Sat 26 Apr 2025 16:39:18 +0000
Files and hashes: 1: OYh5JEj0uWuUFwdKjB10pF76_pI.roa (hash: An6u7oH3sagNhBru0T5ojCoKJVfFfrmJ66mlx7PcbhI=)
2: fPRMBtXqffDL1PaFCPFOhNoIt1I.crl (hash: ArU2BrygmhwCC3iuxo1Wv8kFYM700HiQtJfj6vDiwkI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5590 (0x15d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752
Validity
Not Before: Apr 26 10:39:18 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=7C23A77681714EFB35C901DA630F2C525EFE19BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2a:bb:7b:59:64:df:24:f6:6c:eb:bb:11:8a:
b8:10:c4:dc:0b:39:e9:39:6c:d6:f4:fe:8e:d2:6e:
e7:2d:e0:8d:d1:3e:30:0e:e9:e9:40:0f:13:58:9a:
69:08:05:09:2f:da:e8:f6:ad:0c:58:f4:89:f1:ca:
1d:29:f9:c3:d9:7f:c6:67:52:8e:67:28:ac:e3:d8:
38:37:9d:d0:40:be:39:4c:d1:d0:16:c4:e8:ef:c9:
be:0c:de:94:15:2f:53:6a:a7:3a:00:77:42:a3:19:
af:82:30:ff:13:d5:ad:8d:1e:56:28:9f:59:a7:74:
5d:f8:3c:7e:c9:cf:96:8d:f7:12:24:92:e7:5d:da:
7a:86:6c:c4:44:4e:34:4c:12:22:b8:ae:6b:4f:21:
78:f5:ca:31:5f:72:7c:2d:16:ae:01:e0:b5:f1:52:
ae:78:6d:ac:46:c0:99:f9:ea:79:13:92:fa:7f:3e:
3b:d6:b1:98:50:b4:d0:4d:24:f2:1d:87:61:f9:75:
25:cc:b7:5f:cc:c7:a8:38:03:d3:32:d6:7a:73:37:
e7:d2:db:ab:8a:b2:86:aa:9f:8d:c0:b6:f4:6e:cf:
8d:8f:3c:69:99:b6:07:1d:af:c5:23:e0:a2:01:63:
df:7a:72:b4:89:b0:38:aa:e4:f5:97:12:29:1d:f1:
07:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF
X509v3 Authority Key Identifier:
keyid:7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5b:a3:4c:b8:7d:93:4e:92:7a:89:b9:97:de:ff:46:18:c7:42:
9f:77:8d:16:95:d4:a8:37:d4:24:89:23:73:1b:c7:5a:83:6d:
89:9f:ac:53:3b:f1:bb:f8:11:23:e9:f2:fb:2f:56:be:0c:60:
2b:aa:d8:59:d9:e9:d4:27:37:b6:55:78:aa:b1:c4:11:eb:6f:
93:cd:ba:c2:b5:f2:db:cc:a6:d1:c2:99:d7:44:6d:66:fd:2a:
d8:0e:4c:05:37:1d:5b:45:4e:12:b6:7d:b3:3e:00:78:04:0c:
5e:c8:8d:ea:64:e8:dd:30:b4:b9:8b:95:0b:72:ac:aa:23:93:
4a:70:e2:b8:ad:bc:87:69:49:1a:a4:27:12:2f:91:ba:8d:cf:
59:e7:3e:56:4b:6e:4b:86:a8:51:c9:28:05:63:6c:60:3a:bf:
9b:63:75:93:65:22:2c:36:f9:ac:18:8c:49:e3:2d:28:7a:7b:
67:cd:14:33:e4:69:ff:76:2a:84:2b:3e:9a:bc:52:0a:e7:3b:
3e:76:ee:85:8a:ca:79:3a:58:4a:ff:84:d8:a5:3c:8a:e3:9b:
7c:4b:8e:45:e2:d7:77:b0:59:f0:5f:ce:85:0d:b6:b0:66:89:
a3:2b:f4:7e:d2:78:a8:d5:fb:3a:11:54:29:a1:72:e8:f3:5e:
fb:5a:70:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:15:29 2025 by rpki-client