Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft
File: htsNiHRv_AgU5YmhOSQPL3QtDFY.mft (raw, json)
Hash identifier: GDGzr8sDCsDfOVn1Xcm7A4dJFwwxmHBDHyFfTLaOQvk=
Subject key identifier: 06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58
Authority key identifier: 86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56
Certificate issuer: /CN=86DB0D88746FFC0814E589A139240F2F742D0C56
Certificate serial: 158E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft
Manifest number: 1582
Signing time: Sun 15 Jun 2025 07:24:25 +0000
Manifest this update: Sun 15 Jun 2025 07:24:25 +0000
Manifest next update: Sun 15 Jun 2025 13:24:25 +0000
Files and hashes: 1: 5dOXEPArMIwz1R8c6IVW4FRS000.roa (hash: V8OEePPh0EzbmmeRwGhFD4Ubnu8IpFSDrSbicBN0AWE=)
2: IJstGxYeXmD9TLf7m9peIJPOZ0M.roa (hash: EwzaajPcvPV1aJvbfovVMb0BoCuRVrdDj6XCyXd6Lx8=)
3: htsNiHRv_AgU5YmhOSQPL3QtDFY.crl (hash: oFtvlNt8dYJj0Q52Mby8LvBY3LLXKw+GwdNUogvkWyQ=)
4: lVatHXgJYHeEv1kpYqyFWkiQNvc.roa (hash: Ig2uqLibdpo5bXeKVMPoQj35Ki9XftJlKWfFY3dWSaM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5518 (0x158e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86DB0D88746FFC0814E589A139240F2F742D0C56
Validity
Not Before: Jun 15 07:24:25 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=06607C8B566F30CFA2440A448067B9D8804BAF58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3c:ee:3b:31:ea:ea:cb:92:3d:c3:54:aa:27:
da:d0:7d:54:8f:63:4f:19:44:7a:f7:bf:03:bf:60:
74:ac:5c:4f:6a:7b:fa:48:f7:30:46:57:97:17:f3:
3e:45:2a:b6:45:02:43:02:19:83:90:7f:dd:ef:84:
dd:5c:71:ad:9a:a2:c4:f6:2a:51:b2:2b:a1:12:9c:
1a:da:49:05:12:ff:35:75:5b:ff:d5:a5:06:8a:46:
40:b4:ce:ac:4d:bc:a5:41:f9:23:71:78:af:cb:df:
d5:59:c9:18:d7:93:c7:e0:e5:50:d9:67:0a:54:3c:
4c:cf:ff:97:df:0e:86:59:f6:96:39:64:f3:79:19:
97:ec:a3:3d:91:8f:05:5e:03:dc:2a:56:0d:b4:24:
f3:3c:c0:2c:39:1c:95:32:91:20:f9:fa:57:46:80:
7c:ed:a3:0b:e2:24:0f:f8:88:62:a8:0f:ee:b3:3e:
44:a2:3b:01:2c:f1:af:e0:06:a4:0b:59:b3:9b:ef:
82:aa:0e:02:83:86:36:06:e5:df:44:9a:68:b0:6e:
f5:57:a9:81:11:c4:05:c5:d7:10:a5:88:07:a2:97:
2b:32:4d:06:b1:2c:33:9d:2b:a9:57:4c:49:7f:df:
bb:44:6c:6c:80:7f:77:db:1a:b0:02:56:c6:5f:90:
59:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:60:7C:8B:56:6F:30:CF:A2:44:0A:44:80:67:B9:D8:80:4B:AF:58
X509v3 Authority Key Identifier:
keyid:86:DB:0D:88:74:6F:FC:08:14:E5:89:A1:39:24:0F:2F:74:2D:0C:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/htsNiHRv_AgU5YmhOSQPL3QtDFY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2776/htsNiHRv_AgU5YmhOSQPL3QtDFY.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b0:06:06:90:fe:88:00:f2:56:60:2c:df:cd:bf:2a:89:42:51:
c7:81:69:6d:63:9d:14:3e:4e:92:f9:f2:cb:bc:24:d6:e4:30:
c2:9b:43:f1:78:f9:b6:52:be:9e:05:b6:e6:ef:ae:cd:62:6f:
97:04:b3:05:e1:ae:4b:7d:a0:0f:1f:57:ae:43:bc:c6:c8:05:
1a:3f:89:ca:7d:81:0a:94:6c:b6:ca:1f:a6:23:f0:d6:ed:3a:
25:44:01:97:b7:23:9e:7b:fe:42:b4:46:db:b5:14:5c:59:5f:
7b:7a:dd:c9:f3:db:89:54:2c:69:2d:c1:ec:59:a0:21:66:a9:
e7:bf:7b:cd:20:7c:d7:47:c3:0f:71:58:95:7a:c6:9a:31:d0:
42:1c:fc:8b:c4:85:74:c1:47:01:05:9e:4a:bd:86:69:1d:9b:
55:98:4b:31:81:09:a6:76:44:93:a9:53:63:4f:13:6c:f1:1f:
a5:c6:57:ab:89:76:b6:92:30:d3:1c:d2:ad:88:25:cf:27:0c:
bb:5a:2a:19:8f:8d:8b:1d:ee:92:66:e0:f2:29:da:0e:2d:57:
72:01:bd:08:01:30:83:61:a2:06:bd:fb:64:cd:be:98:96:97:
f7:ab:a7:11:06:ab:ad:8c:a4:08:fb:27:e1:27:bc:ba:c0:95:
14:09:2a:f3
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICFY4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODZE
QjBEODg3NDZGRkMwODE0RTU4OUExMzkyNDBGMkY3NDJEMEM1NjAeFw0yNTA2MTUw
NzI0MjVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDA2NjA3QzhCNTY2RjMw
Q0ZBMjQ0MEE0NDgwNjdCOUQ4ODA0QkFGNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrPO47Merqy5I9w1SqJ9rQfVSPY08ZRHr3vwO/YHSsXE9qe/pI
9zBGV5cX8z5FKrZFAkMCGYOQf93vhN1cca2aosT2KlGyK6ESnBraSQUS/zV1W//V
pQaKRkC0zqxNvKVB+SNxeK/L39VZyRjXk8fg5VDZZwpUPEzP/5ffDoZZ9pY5ZPN5
GZfsoz2RjwVeA9wqVg20JPM8wCw5HJUykSD5+ldGgHztowviJA/4iGKoD+6zPkSi
OwEs8a/gBqQLWbOb74KqDgKDhjYG5d9EmmiwbvVXqYERxAXF1xCliAeilysyTQax
LDOdK6lXTEl/37tEbGyAf3fbGrACVsZfkFlrAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUBmB8i1ZvMM+iRApEgGe52IBLr1gwHwYDVR0jBBgwFoAUhtsNiHRv/AgU5Ymh
OSQPL3QtDFYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc3
Ni9odHNOaUhSdl9BZ1U1WW1oT1NRUEwzUXRERlkuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL2h0c05pSFJ2X0FnVTVZbWhPU1FQTDNRdERGWS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NzYvaHRzTmlIUnZfQWdV
NVltaE9TUVBMM1F0REZZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBALAGBpD+iADyVmAs382/KolCUceBaW1jnRQ+TpL58su8JNbkMMKbQ/F4+bZS
vp4Ftubvrs1ib5cEswXhrkt9oA8fV65DvMbIBRo/icp9gQqUbLbKH6Yj8NbtOiVE
AZe3I557/kK0Rtu1FFxZX3t63cnz24lULGktwexZoCFmqee/e80gfNdHww9xWJV6
xpox0EIc/IvEhXTBRwEFnkq9hmkdm1WYSzGBCaZ2RJOpU2NPE2zxH6XGV6uJdraS
MNMc0q2IJc8nDLtaKhmPjYsd7pJm4PIp2g4tV3IBvQgBMINhoga9+2TNvpiWl/er
pxEGq62MpAj7J+EnvLrAlRQJKvM=
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:35:45 2025 by rpki-client