Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3259/hX8ghpiiSaBZYHneTz2uX6e5Z1Q.mft
File: hX8ghpiiSaBZYHneTz2uX6e5Z1Q.mft (raw, json)
Hash identifier: hxOZeIaX0TtGUKBRomiIScQnK370LJ4HR+yeF33STlA=
Subject key identifier: 4D:28:36:42:2D:A4:F1:4F:8E:8A:7E:1D:DA:A1:7B:D2:F2:CF:62:79
Authority key identifier: 85:7F:20:86:98:A2:49:A0:59:60:79:DE:4F:3D:AE:5F:A7:B9:67:54
Certificate issuer: /CN=857F208698A249A0596079DE4F3DAE5FA7B96754
Certificate serial: 08ED
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hX8ghpiiSaBZYHneTz2uX6e5Z1Q.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3259/hX8ghpiiSaBZYHneTz2uX6e5Z1Q.mft
Manifest number: 08ED
Signing time: Sat 26 Apr 2025 13:07:31 +0000
Manifest this update: Sat 26 Apr 2025 13:07:30 +0000
Manifest next update: Sat 26 Apr 2025 19:07:30 +0000
Files and hashes: 1: hX8ghpiiSaBZYHneTz2uX6e5Z1Q.crl (hash: WaCHsNsY97tE+27WzwcdHga8HIAXtnOr6obaysQm5iQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2285 (0x8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857F208698A249A0596079DE4F3DAE5FA7B96754
Validity
Not Before: Apr 26 13:07:30 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=4D2836422DA4F14F8E8A7E1DDAA17BD2F2CF6279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c1:61:84:f2:15:6d:fb:f5:6d:1c:83:13:14:
46:d6:5f:2d:2e:43:72:41:d8:d1:e4:3a:ce:59:76:
0a:bb:77:95:38:9e:b5:ec:4f:d6:b2:17:78:c6:29:
03:5e:6c:85:17:f3:8b:5f:28:e8:8e:51:c4:f0:24:
56:16:e3:f0:03:d2:e8:f5:da:aa:0e:a7:c6:fa:6c:
1f:66:60:7e:72:9c:6e:44:95:00:10:e6:e0:38:90:
c1:f1:47:a3:33:63:bc:d6:85:92:5f:02:7c:e6:8c:
1e:4c:20:54:a3:77:ed:ca:8e:31:e3:8f:1d:62:14:
12:91:24:f2:28:30:a2:e1:70:54:ca:81:f1:3f:07:
4c:1f:e6:18:c0:df:9b:04:d7:61:63:f6:4a:b7:9a:
41:ea:38:f4:4f:65:75:92:26:97:0a:9f:39:4b:b1:
95:98:ce:a0:0a:48:2b:4c:52:26:91:22:1a:45:58:
5e:40:5e:ba:b9:52:80:58:9e:4a:7c:db:1a:dc:85:
d0:1e:e9:9a:08:d5:9d:47:48:46:ed:dc:e3:80:d8:
49:67:c5:9f:10:1b:db:6e:18:69:4b:72:06:ee:f1:
1f:8b:1e:2a:c7:60:e5:2b:90:f3:49:eb:f7:43:1e:
d3:c1:59:81:1a:51:f6:a6:24:17:3f:1f:33:94:28:
12:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:28:36:42:2D:A4:F1:4F:8E:8A:7E:1D:DA:A1:7B:D2:F2:CF:62:79
X509v3 Authority Key Identifier:
keyid:85:7F:20:86:98:A2:49:A0:59:60:79:DE:4F:3D:AE:5F:A7:B9:67:54
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3259/hX8ghpiiSaBZYHneTz2uX6e5Z1Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hX8ghpiiSaBZYHneTz2uX6e5Z1Q.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3259/hX8ghpiiSaBZYHneTz2uX6e5Z1Q.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2e:4e:9d:53:c5:8f:ca:06:bf:1e:8e:10:d8:b1:27:b8:08:6b:
59:8a:88:b4:c4:80:a9:bc:6c:0d:b4:9f:12:25:05:cc:1f:52:
7f:76:37:c1:4d:a8:20:c3:e8:00:fd:fc:1d:0c:be:bb:f4:39:
dc:1c:a6:95:4a:a8:5e:62:03:2b:e6:4b:ad:07:9e:d6:b3:81:
b9:b0:2f:f3:17:8c:24:62:5a:bf:fd:88:86:05:b6:d5:58:1b:
91:d1:50:cf:92:2f:4d:78:45:57:58:52:42:1b:04:4e:d8:bc:
78:ce:21:b1:6e:46:10:dc:5e:ef:3e:38:2f:fd:c5:c0:19:a0:
a5:e4:49:4c:2a:b3:f8:4d:3e:69:dc:8f:44:c9:a5:6b:84:36:
42:b6:35:00:67:5b:50:8e:38:a0:89:94:c9:0c:f7:9e:0e:70:
7a:a8:6f:e7:f6:db:32:14:83:1e:d5:72:25:44:82:7a:bf:d5:
83:ec:65:2f:68:b5:98:e0:8b:6e:84:ba:dc:53:76:92:36:48:
88:20:0f:6a:ce:d9:38:ad:17:81:f5:e9:58:c1:88:f7:db:26:
09:63:3f:ee:9a:d0:67:a9:c1:d6:c2:98:1e:9c:88:8c:61:25:
9b:d9:29:10:2b:fa:fd:86:75:21:ba:a1:29:6b:20:51:b4:09:
c5:a0:da:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:25:34 2025 by rpki-client