Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
File: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft (raw, json)
Hash identifier: Oy8kNFg7fr/DT0bV+hsaLUr71BwGPrzOu0ntx9d5XOo=
Subject key identifier: 85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C
Authority key identifier: 19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03
Certificate issuer: /CN=193519DD773C40D04F641CC44558D3461297B003
Certificate serial: 1D8B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
Manifest number: 1D85
Signing time: Sat 26 Apr 2025 11:08:30 +0000
Manifest this update: Sat 26 Apr 2025 11:08:30 +0000
Manifest next update: Sat 26 Apr 2025 17:08:30 +0000
Files and hashes: 1: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl (hash: bFBbcqwd0U8lT+QA3jwl+y5GvT8i3TNza+sQvczfRzo=)
2: ofWDTuZdBsoEHdpdD-hMueJn7lQ.roa (hash: mtF01OQZB4FrXLC5rgApOcnJP5/2xm8KbS60Erj6vHw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7563 (0x1d8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=193519DD773C40D04F641CC44558D3461297B003
Validity
Not Before: Apr 26 11:08:30 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=857AD43056F6EE38F2F239E3647797B73033927C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:11:dd:56:1b:93:a0:3a:ef:10:8b:28:0a:3b:
80:72:e5:0d:2a:45:a7:77:3b:65:87:c9:2d:77:ed:
19:66:30:f1:eb:74:54:4d:1f:99:1b:08:56:fa:bd:
45:26:25:3f:ea:1e:22:30:c6:39:ef:5f:39:67:0f:
7b:f7:c5:76:98:2e:bf:f4:a0:ea:b6:8a:f1:39:ba:
1a:02:bf:57:62:fc:c2:15:54:66:9c:d6:d0:09:60:
49:68:ab:0d:24:71:44:d1:4f:86:86:c2:40:15:43:
e3:95:ef:92:6b:18:82:77:e5:b8:b0:1f:4f:7e:52:
f1:86:79:05:3c:90:f5:35:c7:b7:68:ca:97:18:4d:
79:51:4a:a6:76:fa:62:a1:a7:5e:87:6d:87:a2:81:
6d:c5:f3:40:f6:96:1e:98:22:d3:ba:9d:31:07:c8:
9e:fc:0f:48:05:65:cc:45:fe:76:5c:44:a5:67:45:
98:37:83:95:6b:cf:66:f6:7b:ee:43:87:a3:7e:21:
b8:85:e6:0b:74:04:ba:bd:d2:e8:79:54:61:df:ee:
bd:16:41:6f:aa:a8:37:a4:0e:35:2e:e0:46:f0:12:
ba:76:89:8c:f8:67:89:92:22:24:11:1c:8d:d6:31:
01:18:43:1b:0f:0d:2d:93:eb:78:47:3f:5a:57:52:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C
X509v3 Authority Key Identifier:
keyid:19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
04:2b:e9:45:b1:47:24:d8:33:67:ea:12:84:5b:db:93:27:82:
7f:45:d2:09:bb:2e:7d:93:1f:6e:ef:c9:4b:fe:96:4a:05:aa:
51:3e:5b:7e:84:c9:31:81:fa:66:40:c1:da:03:fe:4b:84:6b:
ec:21:54:7d:35:0d:54:4b:61:ef:d4:99:8a:4a:d7:79:d1:09:
6f:d5:3e:e5:15:7a:70:1e:a5:d9:39:09:d6:e0:34:29:99:f7:
d1:06:50:26:c4:1c:66:ce:be:17:a1:7b:db:7a:9a:71:b9:c5:
1a:4b:25:87:29:5d:24:75:dd:da:54:9d:02:d3:51:18:ad:67:
41:16:90:bf:4e:ca:88:a3:35:4d:d2:2c:99:80:14:b2:cd:db:
2d:d1:51:ac:2b:a3:80:59:34:55:98:d0:c0:ff:fd:dd:f2:22:
d7:4d:72:7b:27:b8:78:19:a2:b5:63:0a:9e:ef:fd:0f:59:75:
46:27:b6:b9:37:f3:b6:4a:0d:10:3d:94:6d:a0:3f:53:f8:68:
bb:a0:88:6b:73:1b:8f:a5:95:58:85:18:90:eb:9a:78:1f:cb:
5c:02:c1:55:5b:ae:b3:8e:8a:2d:ff:c1:9e:db:7e:52:77:d3:
4f:df:71:19:6d:e6:9d:34:59:b3:59:52:24:e1:26:94:22:85:
09:04:b0:a6
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICHYswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTkz
NTE5REQ3NzNDNDBEMDRGNjQxQ0M0NDU1OEQzNDYxMjk3QjAwMzAeFw0yNTA0MjYx
MTA4MzBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDg1N0FENDMwNTZGNkVF
MzhGMkYyMzlFMzY0Nzc5N0I3MzAzMzkyN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPEd1WG5OgOu8QiygKO4By5Q0qRad3O2WHyS137RlmMPHrdFRN
H5kbCFb6vUUmJT/qHiIwxjnvXzlnD3v3xXaYLr/0oOq2ivE5uhoCv1di/MIVVGac
1tAJYEloqw0kcUTRT4aGwkAVQ+OV75JrGIJ35biwH09+UvGGeQU8kPU1x7doypcY
TXlRSqZ2+mKhp16HbYeigW3F80D2lh6YItO6nTEHyJ78D0gFZcxF/nZcRKVnRZg3
g5Vrz2b2e+5Dh6N+IbiF5gt0BLq90uh5VGHf7r0WQW+qqDekDjUu4EbwErp2iYz4
Z4mSIiQRHI3WMQEYQxsPDS2T63hHP1pXUoLZAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUhXrUMFb27jjy8jnjZHeXtzAzknwwHwYDVR0jBBgwFoAUGTUZ3Xc8QNBPZBzE
RVjTRhKXsAMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjkw
My9HVFVaM1hjOFFOQlBaQnpFUlZqVFJoS1hzQU0uY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0dUVVozWGM4UU5CUFpCekVSVmpUUmhLWHNBTS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5MDMvR1RVWjNYYzhRTkJQ
WkJ6RVJWalRSaEtYc0FNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAAQr6UWxRyTYM2fqEoRb25Mngn9F0gm7Ln2TH27vyUv+lkoFqlE+W36EyTGB
+mZAwdoD/kuEa+whVH01DVRLYe/UmYpK13nRCW/VPuUVenAepdk5CdbgNCmZ99EG
UCbEHGbOvhehe9t6mnG5xRpLJYcpXSR13dpUnQLTURitZ0EWkL9OyoijNU3SLJmA
FLLN2y3RUawro4BZNFWY0MD//d3yItdNcnsnuHgZorVjCp7v/Q9ZdUYntrk387ZK
DRA9lG2gP1P4aLugiGtzG4+llViFGJDrmngfy1wCwVVbrrOOii3/wZ7bflJ300/f
cRlt5p00WbNZUiThJpQihQkEsKY=
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:08:55 2025 by rpki-client