Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2894/g59Ve5-fL2zdda-0q6iip5bGEOg.mft
File: g59Ve5-fL2zdda-0q6iip5bGEOg.mft (raw, json)
Hash identifier: oGV7XnzHkY+8vYv4PB9P/rPwRAQK4IAhWjLLkwfoDFc=
Subject key identifier: 10:86:D9:C2:13:50:68:3F:A9:CF:52:1D:5A:CE:E4:B7:CA:96:5A:0C
Authority key identifier: 83:9F:55:7B:9F:9F:2F:6C:DD:75:AF:B4:AB:A8:A2:A7:96:C6:10:E8
Certificate issuer: /CN=839F557B9F9F2F6CDD75AFB4ABA8A2A796C610E8
Certificate serial: 1C5C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g59Ve5-fL2zdda-0q6iip5bGEOg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/g59Ve5-fL2zdda-0q6iip5bGEOg.mft
Manifest number: 1C4E
Signing time: Sun 01 Mar 2026 21:28:15 +0000
Manifest this update: Sun 01 Mar 2026 21:28:15 +0000
Manifest next update: Mon 02 Mar 2026 03:28:15 +0000
Files and hashes: 1: 8sM2BhPnO8PPejYybHxyhsAxBcc.roa (hash: /WMKJ8JzBl7rq5jagi2aE247eKQsHeZTEan6TkwFRGE=)
2: LoqKDma7rOkFTUEfBS5cEawzYHo.roa (hash: 7oV/1TLUV6TOj2FUtB4kWUwj5/N00zWdxsIGnqN/XYs=)
3: _vFV8ryPmXcDJSKKYiefz7qeDoo.roa (hash: nDSiEHblnogOTH0vtmprpOOXzeXtDGxFQg1r57ivxU4=)
4: g59Ve5-fL2zdda-0q6iip5bGEOg.crl (hash: BJAmWaa2af91Y0gMy4y+mgyJqbe9GZhOaRnKOZG1BLI=)
5: t05hAA9APvyFUV5ngGozKE0Qjqw.roa (hash: tWUvZzjRQhw/9pUnBOecSVtgKLbxz3y1LlqMKSuKjTE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7260 (0x1c5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=839F557B9F9F2F6CDD75AFB4ABA8A2A796C610E8
Validity
Not Before: Mar 1 21:28:15 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=1086D9C21350683FA9CF521D5ACEE4B7CA965A0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1e:b8:0d:60:0b:8b:8e:21:9c:a5:33:d2:af:
2d:58:22:2e:3e:9c:c4:bc:b0:21:a7:6f:a8:3f:32:
2b:54:2f:a6:0c:73:68:7d:50:d5:1e:6e:4d:7f:3d:
b8:23:e3:c9:2a:e7:7e:9d:ec:9f:28:0f:ff:ba:e3:
26:67:0f:68:2d:6d:12:ed:3e:db:f5:71:dd:6a:25:
2a:11:a5:c4:85:18:e8:0a:1e:3b:2b:9b:63:e4:c2:
cf:7a:5f:5a:37:93:71:c3:f7:fc:e7:ef:9c:f3:b3:
d4:8f:39:04:53:07:cb:61:f3:3b:54:9c:dc:a9:ec:
f8:15:fb:13:2f:80:d0:88:c4:f2:4e:d7:37:02:c9:
47:98:15:91:2a:85:12:44:ef:99:7a:0d:e2:e6:7d:
34:4d:9f:b7:59:1b:c8:cd:ee:da:92:76:83:0f:51:
91:e5:a9:a7:46:6e:da:df:2c:13:f0:05:5d:0c:6b:
47:f9:2a:a5:df:9f:b3:a8:3f:7e:e0:c3:c7:4b:36:
a4:d5:9d:40:9b:cb:1c:d3:e1:02:39:c3:6b:f7:d8:
9c:a7:ca:d0:35:8a:51:9b:04:91:de:c3:72:c4:91:
6f:c9:cd:6e:06:50:df:c4:a2:30:32:33:97:c4:04:
90:2c:9c:27:de:30:70:8c:3c:04:7f:2a:6b:66:06:
d5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:86:D9:C2:13:50:68:3F:A9:CF:52:1D:5A:CE:E4:B7:CA:96:5A:0C
X509v3 Authority Key Identifier:
keyid:83:9F:55:7B:9F:9F:2F:6C:DD:75:AF:B4:AB:A8:A2:A7:96:C6:10:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/g59Ve5-fL2zdda-0q6iip5bGEOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g59Ve5-fL2zdda-0q6iip5bGEOg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2894/g59Ve5-fL2zdda-0q6iip5bGEOg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9f:98:5f:1b:f9:2a:5a:13:76:cf:da:16:0f:0c:dd:71:e7:bb:
7e:ce:32:26:97:51:96:7a:b3:10:bb:ba:91:60:30:5e:4a:ac:
80:59:2a:a1:39:b6:b8:07:58:5a:27:d7:a0:21:59:e5:7d:62:
fb:94:57:28:61:f7:8d:11:d5:78:2f:54:18:11:25:c6:f5:ed:
f5:3c:c2:d6:f3:55:fa:ca:ac:30:3e:bf:7a:e4:37:eb:e5:79:
67:9b:27:ef:71:ee:bf:e5:87:5a:21:97:6b:22:d4:40:42:84:
ca:47:6e:68:60:a3:55:50:01:c8:6b:78:97:29:e7:e8:d5:2f:
7c:23:87:51:51:43:fa:eb:5b:6b:37:81:1e:ca:3b:0b:2b:75:
f7:d3:d5:ec:81:66:e3:42:f2:dc:57:50:99:36:83:8c:0b:60:
33:97:6d:ed:7f:29:6c:ba:66:69:c8:6a:13:64:98:d9:c0:29:
f3:15:76:b9:26:81:97:01:48:c8:a3:47:d0:55:a5:90:de:65:
0c:83:c4:85:18:39:16:62:cd:ff:0e:f9:e4:e6:74:81:3f:52:
1a:78:cd:dd:f7:fa:91:2c:97:44:3e:85:eb:1a:b1:a4:ba:55:
dd:95:24:a4:eb:9c:95:e1:e7:f4:88:eb:b8:76:38:6b:2f:9f:
40:67:9e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:08:16 2026 by rpki-client