Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft
File: Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft (raw, json)
Hash identifier: u+003aFmW5WOyiAiutrDpIo6O76a+h/2v0RNK15OEqo=
Subject key identifier: 94:4E:1C:38:AF:E2:E2:30:95:2C:64:88:E7:63:4B:3C:0D:46:DA:AE
Authority key identifier: 0F:28:65:83:59:C9:77:32:21:71:F4:02:33:23:42:C3:1D:D7:C5:6E
Certificate issuer: /CN=0F28658359C977322171F402332342C31DD7C56E
Certificate serial: 099D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft
Manifest number: 099D
Signing time: Wed 05 Nov 2025 15:13:21 +0000
Manifest this update: Wed 05 Nov 2025 15:13:21 +0000
Manifest next update: Wed 05 Nov 2025 21:13:21 +0000
Files and hashes: 1: Dyhlg1nJdzIhcfQCMyNCwx3XxW4.crl (hash: xTJqOIHOde4ax3cymEDXupLKV5gnxyWDNo9yEpxkXeI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2461 (0x99d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F28658359C977322171F402332342C31DD7C56E
Validity
Not Before: Nov 5 15:13:21 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=944E1C38AFE2E230952C6488E7634B3C0D46DAAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b2:bf:39:ef:ea:19:21:97:bf:5d:97:ce:93:
81:d6:bf:9d:4a:29:d2:34:01:33:c8:a7:bb:48:af:
f2:bb:99:a9:7a:70:87:2e:53:bb:e2:64:38:38:ec:
52:08:cf:bd:d5:5e:8d:25:e0:84:7f:a1:07:46:1c:
32:52:cf:d6:e0:b3:ba:d5:f0:18:49:16:0d:ce:5d:
e2:ea:f5:b3:6a:28:c8:31:d1:04:b5:cf:2f:05:30:
93:4c:9c:21:98:42:d9:a2:35:08:65:c8:3b:02:20:
ba:01:e2:31:80:ee:1c:2d:50:1b:d9:18:e3:cb:42:
7a:ed:40:66:2d:b6:04:f7:06:a4:f2:df:a7:d4:d2:
47:af:a9:8b:72:90:bd:77:b9:92:e0:31:65:01:ad:
57:e8:be:7e:f6:0c:73:d5:39:e7:6b:2f:8a:52:50:
4d:7e:25:ba:da:e8:e4:94:03:8c:15:e0:ed:d8:27:
df:cf:40:c0:12:69:ed:58:fe:cc:8f:89:28:96:a9:
fd:46:15:0e:bd:40:b0:a8:d5:6e:b6:f4:51:7f:84:
53:f0:ca:fc:1d:7b:6e:09:71:67:bc:b6:b4:ab:3b:
cc:42:df:c3:23:1c:53:0e:09:8d:0a:f3:e5:ba:a1:
d3:f9:2d:22:6b:6e:27:41:91:44:20:85:96:3c:9d:
cf:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:4E:1C:38:AF:E2:E2:30:95:2C:64:88:E7:63:4B:3C:0D:46:DA:AE
X509v3 Authority Key Identifier:
keyid:0F:28:65:83:59:C9:77:32:21:71:F4:02:33:23:42:C3:1D:D7:C5:6E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3296/Dyhlg1nJdzIhcfQCMyNCwx3XxW4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
45:c0:ea:09:29:8f:c4:32:af:e7:c6:43:43:56:72:48:8b:3b:
77:86:c6:b0:93:71:57:2d:1c:bb:29:a8:cc:ad:50:bb:ea:1f:
84:40:f7:17:37:3a:80:2b:8a:8d:32:0b:72:e0:e9:10:16:f1:
d9:2c:38:a1:23:c4:8c:48:cd:cd:2f:1a:44:1b:82:cc:86:bf:
e9:0b:2a:0b:5f:19:d9:d3:7e:ed:21:2d:69:9b:d0:07:db:d4:
3d:6f:4b:74:30:67:ff:1a:9d:7d:74:37:7c:7c:81:b6:48:63:
01:34:f7:d7:9e:65:ca:ed:d5:a9:41:7b:2b:cf:58:99:a4:f8:
88:70:20:93:ba:cf:cf:0e:bf:91:ec:25:a1:44:d0:e5:62:f0:
ca:94:26:a3:2f:e0:ab:39:c8:28:db:c5:e9:48:84:13:48:69:
9b:13:e1:b3:1f:2c:ad:31:2a:62:eb:d7:c6:38:a4:2d:80:84:
3a:8e:c6:d8:a6:a5:1c:5c:59:98:ab:b0:a7:be:f4:23:53:c3:
a9:e8:2c:a6:6a:04:a0:01:a2:0b:19:c5:81:6e:1c:6c:a3:45:
6e:e7:aa:ed:31:5a:c0:33:f5:41:15:c2:15:0f:ec:51:c8:4b:
e0:20:68:5d:87:c5:31:87:93:64:5a:b3:c7:07:c0:1f:1c:57:
a4:03:13:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:49:59 2025 by rpki-client