Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.mft
File: kXok3C9fwHVc6sn-HMXExV183fo.mft (raw, json)
Hash identifier: Slkgpv0qQcFComqTT6P7S4EwYsTO4baGhYVaJUz7D2o=
Subject key identifier: 35:6B:69:02:74:63:F8:A7:68:3B:39:60:AD:61:9D:11:CA:B7:44:44
Authority key identifier: 91:7A:24:DC:2F:5F:C0:75:5C:EA:C9:FE:1C:C5:C4:C5:5D:7C:DD:FA
Certificate issuer: /CN=917A24DC2F5FC0755CEAC9FE1CC5C4C55D7CDDFA
Certificate serial: 07A4
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kXok3C9fwHVc6sn-HMXExV183fo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.mft
Manifest number: 07A4
Signing time: Sun 15 Jun 2025 07:24:17 +0000
Manifest this update: Sun 15 Jun 2025 07:24:17 +0000
Manifest next update: Sun 15 Jun 2025 13:24:17 +0000
Files and hashes: 1: kXok3C9fwHVc6sn-HMXExV183fo.crl (hash: pSwygVb7LsbxkIxOqcekCRZaGdnp/xb2Oc4ML+JpRb4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1956 (0x7a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917A24DC2F5FC0755CEAC9FE1CC5C4C55D7CDDFA
Validity
Not Before: Jun 15 07:24:17 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=356B69027463F8A7683B3960AD619D11CAB74444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:4e:45:4c:b3:46:df:85:b4:aa:ff:bd:44:49:
ae:dc:9f:f2:13:71:46:0e:08:9b:42:64:81:38:a0:
3c:6c:13:19:02:51:5c:45:34:75:ca:8a:74:b0:f5:
ec:f9:8b:a6:7f:dd:78:c5:93:3d:5b:31:2c:d1:98:
22:f0:6e:7d:e6:42:15:97:11:7e:b3:da:11:e4:20:
c1:6e:64:fb:7a:05:49:2e:6a:20:56:05:a5:60:fd:
bd:ab:0d:d4:e2:9b:97:e7:f9:25:ea:f0:d5:18:3c:
5e:2e:e7:ed:f3:f8:ac:f2:0d:90:40:dc:31:12:a2:
e6:de:a0:e7:3b:55:1e:92:4d:17:37:df:53:18:21:
13:15:87:ab:bd:8d:c7:24:0a:f0:23:ee:c4:ea:03:
55:8a:6d:16:c3:13:86:61:e1:43:08:2f:8b:70:ff:
72:63:c7:a8:68:f4:a4:6f:09:7c:91:b6:9a:0a:b3:
b7:68:29:45:96:5d:17:8f:84:9f:19:05:78:d4:76:
0a:d8:9f:50:c9:5e:88:fc:e4:89:95:c1:33:b8:ec:
41:bf:55:53:b3:93:ce:b4:7b:b1:19:af:fa:d3:e7:
91:07:67:26:35:ce:74:70:27:ff:47:59:61:79:7e:
b6:8e:fb:c8:a1:9e:7d:5e:84:75:cd:cb:20:d5:98:
30:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6B:69:02:74:63:F8:A7:68:3B:39:60:AD:61:9D:11:CA:B7:44:44
X509v3 Authority Key Identifier:
keyid:91:7A:24:DC:2F:5F:C0:75:5C:EA:C9:FE:1C:C5:C4:C5:5D:7C:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kXok3C9fwHVc6sn-HMXExV183fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3284/kXok3C9fwHVc6sn-HMXExV183fo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:bb:87:74:8a:28:e6:2f:74:29:54:27:90:f4:df:19:75:5d:
66:7f:aa:c3:69:05:7e:c1:fc:b2:00:6a:70:a9:72:79:fa:9f:
06:d3:b2:9c:2c:5f:d2:28:18:d9:df:a8:e2:14:f9:5d:c3:9d:
b9:fa:96:0b:28:05:c7:7c:f7:de:ef:d7:2b:89:89:ec:0b:c4:
35:4c:56:c2:07:ce:72:e0:50:d2:74:7a:d7:95:f0:d2:2b:12:
61:31:d5:ee:e1:fd:27:5b:89:fd:07:a8:a6:d4:46:9d:24:f8:
3c:75:cc:9f:53:4b:78:cb:c3:13:b3:f3:f8:d0:d1:0a:83:7e:
f7:63:cf:a5:d0:f1:87:99:5e:7b:21:56:03:b5:56:be:cc:fb:
8d:6f:f1:ac:78:9b:d7:6b:a0:71:22:c6:b4:95:e7:5f:21:d7:
74:5c:4f:96:74:d0:af:63:8d:1a:45:a5:b5:a3:75:80:dc:ad:
52:01:1b:75:f8:cb:68:b3:57:5a:1c:cd:a9:b4:f2:0f:11:d3:
5d:e5:fb:fe:16:66:6a:4a:23:51:c3:ad:b6:a3:1c:f1:f1:ab:
cc:2b:04:28:5c:dc:84:00:f6:2a:85:6f:f4:71:72:9f:82:38:
ef:4e:7f:a6:f1:6a:ea:ce:13:5f:1b:32:5e:90:da:d2:9d:df:
7a:dc:8a:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:35:03 2025 by rpki-client