Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft
File: cWgV4hPhAadE_JLy-1sSReSx0m8.mft (raw, json)
Hash identifier: 4eMUNgqysPcMQxwu9R9YdPvx0f4ahKNsVtk6s+7fz0k=
Subject key identifier: 6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14
Authority key identifier: 71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F
Certificate issuer: /CN=716815E213E101A744FC92F2FB5B1245E4B1D26F
Certificate serial: 1590
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft
Manifest number: 1590
Signing time: Fri 20 Jun 2025 15:46:37 +0000
Manifest this update: Fri 20 Jun 2025 15:46:37 +0000
Manifest next update: Fri 20 Jun 2025 21:46:37 +0000
Files and hashes: 1: cWgV4hPhAadE_JLy-1sSReSx0m8.crl (hash: F9hAOm6V6k3KTnBiJ1oLN1u8Bp3NFeCb/O7ZXlUr57Q=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5520 (0x1590)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716815E213E101A744FC92F2FB5B1245E4B1D26F
Validity
Not Before: Jun 20 15:46:37 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=6A9033A4801751A3A582D79DA3E3DB9FBA68C214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:c6:ff:5d:0c:7e:5f:74:a7:23:4e:af:3e:
50:55:5d:39:60:5c:ce:68:a9:c7:15:33:25:20:e3:
96:b8:ff:9c:6b:57:45:6d:f5:51:ce:d8:d5:1c:9e:
19:e1:c8:bc:5d:ba:1d:81:e3:7a:8b:13:a7:c1:79:
20:06:89:58:29:bf:a5:74:b2:a0:b7:20:0f:95:b7:
4c:51:2b:b4:7a:a9:7e:6a:46:27:57:84:b3:e2:14:
9c:e2:b4:d7:03:f3:4d:0b:56:fd:c3:0d:3a:ae:c3:
07:34:d9:12:9e:5d:b3:3b:75:c7:1f:e3:b6:c2:62:
fd:29:8c:b1:dd:44:8c:e1:86:c0:41:d7:38:87:d3:
82:d7:fc:9b:77:6f:b8:ea:64:79:25:f4:08:e1:ee:
82:07:d0:23:8b:27:63:df:10:60:71:4a:8b:df:48:
bb:08:5a:35:b8:02:d8:f0:d0:cd:da:c9:78:2d:92:
ea:cc:c8:93:21:1c:83:5f:53:3b:79:7e:41:2a:54:
d1:6b:b0:87:1b:5b:73:d3:2c:de:00:da:00:fe:46:
04:be:87:e5:14:2d:04:ba:d9:50:6d:56:1e:d7:47:
d5:b7:60:de:f4:c6:03:d7:be:2e:f7:19:cf:1a:82:
c3:fe:02:a1:19:01:fe:3e:c1:25:14:33:c9:2b:90:
28:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:90:33:A4:80:17:51:A3:A5:82:D7:9D:A3:E3:DB:9F:BA:68:C2:14
X509v3 Authority Key Identifier:
keyid:71:68:15:E2:13:E1:01:A7:44:FC:92:F2:FB:5B:12:45:E4:B1:D2:6F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cWgV4hPhAadE_JLy-1sSReSx0m8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2590/cWgV4hPhAadE_JLy-1sSReSx0m8.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3e:5b:ec:47:8c:ab:d7:df:ab:a6:70:3f:3c:c6:40:e2:89:e8:
d7:13:e1:f9:66:1e:34:46:df:6c:62:1b:0a:cc:09:88:a9:b9:
6b:48:8a:3c:f4:a2:e6:47:0a:08:b4:6a:aa:6e:ce:bb:33:52:
b0:a1:fc:a6:aa:fa:d1:5a:69:bb:72:7b:7b:9c:25:83:29:a2:
c0:cd:ca:56:41:33:92:e3:ea:77:a0:01:36:ec:79:4e:be:72:
97:d4:9f:04:7f:23:29:ae:2d:a1:ea:87:1b:6b:51:4b:6b:0a:
8b:05:a8:2b:7a:a8:b0:aa:42:b6:b1:bd:4d:25:6c:ac:6f:23:
16:15:00:19:21:d4:7e:a6:26:86:96:cf:a5:2b:b1:d0:42:b8:
c8:46:3e:a3:ca:74:91:67:e7:22:65:f1:d7:db:50:9b:63:da:
1b:34:2e:34:5c:ce:59:27:53:6a:36:b6:58:f6:1f:22:1f:dd:
5c:cb:cc:32:8a:a5:07:1b:a8:8e:5c:0d:87:27:8c:90:da:07:
7e:a3:3f:98:4c:b3:24:0c:a7:2f:3f:b7:bc:a9:08:7b:c6:ef:
e6:4a:7e:26:5a:e7:08:0a:4e:75:a0:52:8f:5d:51:52:5e:9d:
e0:6a:12:f3:28:67:83:86:76:d7:7e:6e:00:7d:92:23:26:25:
44:ab:ed:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 23:04:02 2025 by rpki-client