Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft
File: kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft (raw, json)
Hash identifier: T9LyrP20bo3HFcLNuiWia6ee6iwRe09vjIGxV56EsI4=
Subject key identifier: F7:CE:72:31:FE:6F:7D:35:AC:67:E1:25:13:0F:01:40:32:45:BB:CE
Authority key identifier: 90:F3:0E:1D:F3:27:D1:03:90:7F:1B:E0:8E:D3:EA:64:BF:B7:78:E3
Certificate issuer: /CN=90F30E1DF327D103907F1BE08ED3EA64BFB778E3
Certificate serial: 0B07
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft
Manifest number: 0B04
Signing time: Mon 11 Aug 2025 04:05:31 +0000
Manifest this update: Mon 11 Aug 2025 04:05:31 +0000
Manifest next update: Mon 11 Aug 2025 10:05:31 +0000
Files and hashes: 1: SGpuOxsalusTzpYR3fphfkpzMVY.roa (hash: YMN9QVglyHTZ+uAe4m7iUyKbPe/xcnJgsyMEy+dbYZI=)
2: kPMOHfMn0QOQfxvgjtPqZL-3eOM.crl (hash: 5yUzUrmxVSWLTOw6WHyxSEfl1bB1XZeaBplfRHya3Ek=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2823 (0xb07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90F30E1DF327D103907F1BE08ED3EA64BFB778E3
Validity
Not Before: Aug 11 04:05:31 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=F7CE7231FE6F7D35AC67E125130F01403245BBCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:17:cd:57:be:fe:14:84:57:30:f0:64:79:4f:
fe:86:52:f9:94:99:db:ee:be:6b:7c:2e:c6:ad:a7:
d2:8f:b5:7b:ea:3b:38:7d:1d:b7:ec:45:19:15:95:
0a:c3:56:ba:78:7b:ea:a0:5b:fc:09:f9:8c:2f:33:
36:a8:c7:a2:89:ef:ab:26:8f:90:e4:8c:f1:90:02:
6f:3c:40:d3:e8:96:70:1a:d4:d6:c2:4e:95:c2:9a:
12:9e:ec:9f:ab:8f:64:45:bc:54:43:a2:fa:46:16:
9f:3c:32:7e:26:a3:47:f3:1a:87:0b:67:c8:c4:e3:
23:ed:62:52:b1:bc:a6:5e:e7:66:ec:e0:c6:a7:25:
d2:ea:75:e5:81:9d:b0:8b:d7:ee:98:06:11:f2:35:
d1:87:7c:a5:02:89:e0:65:e5:b4:05:38:fe:d9:e9:
6e:92:b0:2f:28:b2:59:0c:66:27:a0:aa:a5:01:ac:
58:eb:7e:3d:12:fb:eb:0f:a1:9b:02:cf:2f:e2:70:
f5:40:fa:b3:92:25:64:a1:eb:a0:cd:57:11:b8:f4:
35:e2:92:21:db:d8:b5:86:1d:02:a2:e9:d8:31:1e:
0b:7a:da:5b:df:0c:bc:2c:c3:75:e1:89:27:97:cb:
12:7c:a2:ac:8e:ba:9a:2f:e9:21:78:35:47:61:d7:
df:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CE:72:31:FE:6F:7D:35:AC:67:E1:25:13:0F:01:40:32:45:BB:CE
X509v3 Authority Key Identifier:
keyid:90:F3:0E:1D:F3:27:D1:03:90:7F:1B:E0:8E:D3:EA:64:BF:B7:78:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a3:d2:21:b6:81:74:25:b5:79:be:b6:c0:2f:ca:fb:09:86:66:
6d:00:5d:be:4c:62:da:9c:31:38:49:23:1c:1b:84:68:4e:89:
37:47:39:6b:10:37:48:d8:97:ee:97:2a:75:67:5e:71:0f:03:
02:d3:c1:92:fb:38:3a:c1:3f:eb:09:55:54:cd:05:75:6f:77:
42:96:8b:cf:8b:11:a8:dd:2f:15:98:92:06:b7:d4:4e:6b:b7:
6b:72:08:fe:3e:a4:94:9f:df:c6:7e:ba:f0:60:4c:de:66:02:
6a:e6:90:aa:a7:12:5c:92:27:6b:fa:9f:f1:2f:b7:bf:8b:3f:
10:45:4b:3f:23:2e:2e:82:9d:85:23:3b:82:6e:e0:33:7c:42:
1c:f9:e7:1c:13:83:ff:9b:e7:66:78:f4:f7:f5:0b:24:b6:1f:
dc:38:b9:de:66:6d:94:f4:c1:2f:6c:8f:d2:8b:99:a1:25:20:
ce:3b:80:bf:9f:9e:0b:4f:e5:c9:87:0c:54:bc:0d:b0:2b:98:
2d:64:35:43:d8:69:f5:53:04:c4:34:ca:2a:ff:5d:3b:ea:f6:
15:8c:66:88:d6:32:08:9b:95:94:1a:44:a9:e7:db:c9:e1:3a:
85:33:0c:06:5f:6b:15:94:3c:19:49:7e:1a:50:13:29:be:da:
b8:e0:21:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:32:23 2025 by rpki-client