Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft
File: TPCRRt5gTA5ELVbGj8hsxQQArSE.mft (raw, json)
Hash identifier: bgYAHQCNNXdIc9m/JfmJP+Vqd0zTmsLfzS9yCs/F+20=
Subject key identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A
Authority key identifier: 4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21
Certificate issuer: /CN=4CF09146DE604C0E442D56C68FC86CC50400AD21
Certificate serial: 0CC6
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft
Manifest number: 0CBC
Signing time: Sun 01 Mar 2026 21:31:06 +0000
Manifest this update: Sun 01 Mar 2026 21:31:06 +0000
Manifest next update: Mon 02 Mar 2026 03:31:06 +0000
Files and hashes: 1: TPCRRt5gTA5ELVbGj8hsxQQArSE.crl (hash: e+tkgJCWl6uiMRdHatiqg7R3Y4Akyz6idpbg/MJZNAI=)
2: bGeGgRXJn_fKcQJGoNpT45uuMbM.roa (hash: 4rs03AqtGSIGgkcXeqLIzwXtuAsdWOh+07JYHmmqQtk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3270 (0xcc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4CF09146DE604C0E442D56C68FC86CC50400AD21
Validity
Not Before: Mar 1 21:31:06 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=3DE44607C7258196BFB2E4514EF522AC033E120A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ad:57:8b:9f:48:fe:72:52:d5:33:80:7f:8a:
c7:e8:8e:f7:d8:2a:b2:4f:bd:6d:ca:0f:94:85:2d:
55:99:15:1d:fc:b6:eb:26:3c:1c:fa:15:e5:3c:d2:
c9:bf:b1:b2:dc:61:69:84:79:cc:d0:8b:43:f7:23:
20:f7:b8:92:c2:dc:a6:24:c4:70:f6:64:4d:a0:05:
ef:64:1c:04:e5:60:85:72:53:ed:11:83:30:7b:c7:
db:b9:83:a9:17:42:7a:c0:3b:5d:89:30:1c:1f:3d:
9a:c5:42:5c:8f:ec:1a:32:ca:a5:25:db:7d:43:8e:
d3:6c:4e:66:4b:55:ac:c5:a9:09:bd:d9:0e:2a:1c:
9f:44:80:a8:b1:3c:30:48:46:da:79:b8:bb:12:c2:
f4:b3:ff:5e:86:a7:32:db:11:b3:cc:d4:36:86:81:
85:73:50:fb:d2:4d:c8:f6:7f:08:52:89:3b:cb:87:
47:ab:f3:ac:7c:4d:73:bb:e0:16:b5:ae:92:36:5a:
d6:8d:7e:7b:1c:b9:16:22:b9:50:89:c9:de:9d:bf:
37:0a:05:2b:2f:60:ec:fc:bc:d0:56:5d:7f:d5:d7:
84:60:66:31:df:0c:7c:41:05:b4:f3:9d:42:26:7d:
e6:20:17:d2:d9:ac:43:6c:95:9c:a5:df:c4:5c:92:
86:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A
X509v3 Authority Key Identifier:
keyid:4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
95:04:a2:bc:d0:2d:ca:25:2e:24:ce:83:b8:14:4b:aa:d9:76:
2c:6f:60:1b:2d:c7:e0:78:28:48:f9:be:e0:d6:75:02:26:f4:
76:ba:39:3a:cc:c2:39:77:51:5f:25:13:6b:fb:73:6b:f9:2d:
46:0b:71:eb:7c:55:3b:9c:d5:04:84:ca:c6:0f:38:a4:88:2d:
30:52:4d:95:35:1f:f7:01:03:92:be:7d:d4:7e:cc:c8:e2:8f:
4e:4f:68:e8:6a:be:a8:e2:06:7f:4d:d9:3c:04:d1:85:37:6c:
da:d0:a6:b7:3b:34:a8:d4:27:81:cf:8d:fa:80:ee:bf:60:20:
3d:e9:7e:e3:be:67:57:fc:ec:6e:c1:47:f1:3f:2a:da:46:d5:
64:3f:c4:3d:07:cd:9c:fd:43:a9:68:81:0a:dd:f6:68:c4:8c:
3b:f0:79:b7:04:3a:a6:54:d4:62:50:fa:ee:21:8d:21:2c:74:
d4:0f:88:c8:db:eb:b1:2e:25:f3:38:05:0f:0b:c4:dd:88:ad:
3b:6c:14:7c:01:05:98:97:53:5a:73:69:0e:a9:b5:16:a7:ff:
22:26:70:f3:b3:72:a9:6a:3b:49:b2:73:1a:d8:f5:f7:a0:51:
85:b9:3a:7b:f7:b5:a8:32:6d:a2:fa:50:50:b8:3a:34:00:13:
48:20:9f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:44:55 2026 by rpki-client