Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft
File: htsNiHRv_AgU5YmhOSQPL3QtDFY.mft (raw, json)
Hash identifier: WGDrt5lHH/imraVpc6JjBNXLOHPgmMXilhUNGGn9NsQ=
Subject key identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58
Authority key identifier: 86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56
Certificate issuer: /CN=86DB0D88746FFC0814E589A139240F2F742D0C56
Certificate serial: 1A8D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft
Manifest number: 1A7E
Signing time: Sun 01 Mar 2026 23:58:31 +0000
Manifest this update: Sun 01 Mar 2026 23:58:31 +0000
Manifest next update: Mon 02 Mar 2026 05:58:31 +0000
Files and hashes: 1: 60bHviOsET_Vf8_DbJjRc6w43N8.roa (hash: T5b8IcOXmQ/CmW/IN+qCnH8UHN6n56w3kxeNCdfLklg=)
2: MdRapk3WgYtPpDew7zRI01gV_U0.roa (hash: jgcVNykiiTdGm3gLvxeJ7XnhfVBnnblsgA09FtNRzA0=)
3: YE4mdPIQk-iboVxs-qaXSZWIHiI.roa (hash: ykL33NbMpu4kkRnT9X5W6Z6BNXk+SqiKJo3zDjd6Ekw=)
4: htsNiHRv_AgU5YmhOSQPL3QtDFY.crl (hash: nECeOeg/2dX/i66txOu0Y4EeYoI+QN28+fpxq6gdS5I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6797 (0x1a8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86DB0D88746FFC0814E589A139240F2F742D0C56
Validity
Not Before: Mar 1 23:58:31 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=06607C8B566F30CFA2440A448067B9D8804BAF58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3c:ee:3b:31:ea:ea:cb:92:3d:c3:54:aa:27:
da:d0:7d:54:8f:63:4f:19:44:7a:f7:bf:03:bf:60:
74:ac:5c:4f:6a:7b:fa:48:f7:30:46:57:97:17:f3:
3e:45:2a:b6:45:02:43:02:19:83:90:7f:dd:ef:84:
dd:5c:71:ad:9a:a2:c4:f6:2a:51:b2:2b:a1:12:9c:
1a:da:49:05:12:ff:35:75:5b:ff:d5:a5:06:8a:46:
40:b4:ce:ac:4d:bc:a5:41:f9:23:71:78:af:cb:df:
d5:59:c9:18:d7:93:c7:e0:e5:50:d9:67:0a:54:3c:
4c:cf:ff:97:df:0e:86:59:f6:96:39:64:f3:79:19:
97:ec:a3:3d:91:8f:05:5e:03:dc:2a:56:0d:b4:24:
f3:3c:c0:2c:39:1c:95:32:91:20:f9:fa:57:46:80:
7c:ed:a3:0b:e2:24:0f:f8:88:62:a8:0f:ee:b3:3e:
44:a2:3b:01:2c:f1:af:e0:06:a4:0b:59:b3:9b:ef:
82:aa:0e:02:83:86:36:06:e5:df:44:9a:68:b0:6e:
f5:57:a9:81:11:c4:05:c5:d7:10:a5:88:07:a2:97:
2b:32:4d:06:b1:2c:33:9d:2b:a9:57:4c:49:7f:df:
bb:44:6c:6c:80:7f:77:db:1a:b0:02:56:c6:5f:90:
59:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58
X509v3 Authority Key Identifier:
keyid:86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:10:4b:ea:bc:4c:e2:2d:76:11:41:f5:75:d6:a9:a9:cb:07:
99:df:e4:3f:10:2c:09:12:03:25:4a:14:c8:84:6e:10:4f:1c:
20:c8:8e:aa:6e:5d:5f:e6:ff:a8:70:c8:21:22:a8:3a:b8:c6:
f6:7e:e1:f7:50:e4:08:56:2f:6f:88:3f:9c:7b:46:67:50:7f:
39:86:51:9f:c7:2d:6b:ba:8e:2f:ab:17:31:18:bf:3e:93:9b:
ed:68:4c:3f:d6:25:29:86:d8:c1:e2:d2:c0:6f:b8:1d:55:69:
28:e6:45:44:ff:ad:67:2f:02:41:e0:98:1f:9e:79:b9:7c:3f:
dc:1e:a8:db:44:a1:95:7d:9b:fb:8d:30:8a:20:7e:48:06:82:
46:23:81:57:63:02:fe:81:a0:84:cf:aa:dd:a3:4f:06:a6:32:
06:3e:c3:35:4c:2b:cc:c3:06:e7:98:a7:5c:e0:18:2f:19:f1:
42:a0:7c:ba:80:d2:d6:32:4a:e5:b9:f2:db:27:97:be:9b:fe:
97:cd:f2:52:33:16:7b:b4:21:6c:bc:16:43:bf:c0:bb:cd:d2:
74:bd:0c:d5:cf:50:f8:0c:81:e5:67:2c:d5:2c:27:9a:ea:8d:
6b:1f:46:75:20:d0:3c:38:5e:c8:9b:13:ae:e5:f0:4e:ef:c8:
f6:40:20:b3
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICGo0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZE
QjBEODg3NDZGRkMwODE0RTU4OUExMzkyNDBGMkY3NDJEMEM1NjAeFw0yNjAzMDEy
MzU4MzFaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDA2NjA3QzhCNTY2RjMw
Q0ZBMjQ0MEE0NDgwNjdCOUQ4ODA0QkFGNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrPO47Merqy5I9w1SqJ9rQfVSPY08ZRHr3vwO/YHSsXE9qe/pI
9zBGV5cX8z5FKrZFAkMCGYOQf93vhN1cca2aosT2KlGyK6ESnBraSQUS/zV1W//V
pQaKRkC0zqxNvKVB+SNxeK/L39VZyRjXk8fg5VDZZwpUPEzP/5ffDoZZ9pY5ZPN5
GZfsoz2RjwVeA9wqVg20JPM8wCw5HJUykSD5+ldGgHztowviJA/4iGKoD+6zPkSi
OwEs8a/gBqQLWbOb74KqDgKDhjYG5d9EmmiwbvVXqYERxAXF1xCliAeilysyTQax
LDOdK6lXTEl/37tEbGyAf3fbGrACVsZfkFlrAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUBmB8i1ZvMM+iRApEgGe52IBLr1gwHwYDVR0jBBgwFoAUhtsNiHRv/AgU5Ymh
OSQPL3QtDFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc3
Ni9odHNOaUhSdl9BZ1U1WW1oT1NRUEwzUXRERlkuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL2h0c05pSFJ2X0FnVTVZbWhPU1FQTDNRdERGWS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NzYvaHRzTmlIUnZfQWdV
NVltaE9TUVBMM1F0REZZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBACgQS+q8TOItdhFB9XXWqanLB5nf5D8QLAkSAyVKFMiEbhBPHCDIjqpuXV/m
/6hwyCEiqDq4xvZ+4fdQ5AhWL2+IP5x7RmdQfzmGUZ/HLWu6ji+rFzEYvz6Tm+1o
TD/WJSmG2MHi0sBvuB1VaSjmRUT/rWcvAkHgmB+eebl8P9weqNtEoZV9m/uNMIog
fkgGgkYjgVdjAv6BoITPqt2jTwamMgY+wzVMK8zDBueYp1zgGC8Z8UKgfLqA0tYy
SuW58tsnl76b/pfN8lIzFnu0IWy8FkO/wLvN0nS9DNXPUPgMgeVnLNUsJ5rqjWsf
RnUg0Dw4XsibE67l8E7vyPZAILM=
-----END CERTIFICATE-----
Generated at Mon Mar 2 07:10:07 2026 by rpki-client