Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft
File: USN2g1L_1eSeSpn0-TWAPoNb35Y.mft (raw, json)
Hash identifier: WrjVzWaQYRwaha2qQHVF6Kw/qebOMa2oP5z+3PKZxEs=
Subject key identifier: 7E:9E:E0:90:3F:FE:91:E9:63:B2:B8:E8:9E:D7:23:94:AA:68:A5:31
Authority key identifier: 51:23:76:83:52:FF:D5:E4:9E:4A:99:F4:F9:35:80:3E:83:5B:DF:96
Certificate issuer: /CN=5123768352FFD5E49E4A99F4F935803E835BDF96
Certificate serial: 0547
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/USN2g1L_1eSeSpn0-TWAPoNb35Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft
Manifest number: 0547
Signing time: Sat 26 Apr 2025 06:37:05 +0000
Manifest this update: Sat 26 Apr 2025 06:37:05 +0000
Manifest next update: Sat 26 Apr 2025 12:37:05 +0000
Files and hashes: 1: USN2g1L_1eSeSpn0-TWAPoNb35Y.crl (hash: hIni9st4FKlIQSphEXHhcSMxhiq/PJNrQdvptoB8APY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1351 (0x547)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5123768352FFD5E49E4A99F4F935803E835BDF96
Validity
Not Before: Apr 26 06:37:05 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=7E9EE0903FFE91E963B2B8E89ED72394AA68A531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9a:9d:f9:db:d7:5e:9b:ea:09:7d:fd:85:6b:
77:8b:7d:07:20:7a:11:87:2d:f3:bf:be:bf:15:ee:
a2:cc:b0:df:f3:19:de:42:46:1f:de:67:d8:f2:14:
53:b7:3b:0d:71:63:82:c7:e2:02:20:d3:74:e2:81:
2d:7c:66:6d:e0:e4:bd:5e:3a:5d:76:8e:71:ef:56:
87:4e:e3:f9:4a:df:2b:19:54:82:dd:71:4a:4d:65:
b2:99:ee:4d:b7:36:b2:89:d9:38:0c:de:58:7e:e6:
e2:93:b0:e5:64:3c:ee:7e:5c:86:00:57:20:29:60:
0b:76:9d:c7:6c:82:3e:5c:7a:09:5d:6e:77:72:18:
e6:76:03:2e:e3:1a:82:90:82:5e:2c:ef:8f:8a:30:
24:92:d1:7a:4e:3c:88:d7:73:31:0b:d8:d9:20:95:
61:73:11:aa:c4:6d:b4:d6:70:7a:18:90:b3:4e:d4:
01:72:fa:b6:35:73:11:ea:af:78:c1:b7:1d:fe:4e:
ba:92:c8:62:f6:8b:21:09:b8:57:2b:48:02:de:af:
1d:67:46:03:b9:5d:5f:f5:94:e5:ca:0d:d9:b4:4c:
4c:cf:13:98:47:fe:4f:e0:89:0a:2e:89:78:02:3b:
b4:82:a1:ed:2e:8d:ad:d3:c6:a4:af:d3:b2:a3:6e:
11:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9E:E0:90:3F:FE:91:E9:63:B2:B8:E8:9E:D7:23:94:AA:68:A5:31
X509v3 Authority Key Identifier:
keyid:51:23:76:83:52:FF:D5:E4:9E:4A:99:F4:F9:35:80:3E:83:5B:DF:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/USN2g1L_1eSeSpn0-TWAPoNb35Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3307/USN2g1L_1eSeSpn0-TWAPoNb35Y.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2e:8d:a9:ee:0d:d9:c3:b1:81:ad:a3:b9:71:22:48:63:5f:0c:
78:49:41:f3:b4:30:9b:29:8b:07:18:ec:b8:51:d7:c7:23:dd:
b9:b4:30:a4:db:9d:a9:1a:b0:1f:57:09:5d:77:a0:71:05:c9:
1b:2c:ae:9a:27:b7:1a:fb:19:cb:b0:54:96:3a:63:16:aa:33:
fd:05:50:a2:2f:2b:5b:a1:96:87:72:56:e1:28:02:fb:a3:81:
46:33:d6:48:76:0b:2f:81:df:26:5a:ff:9f:d5:f0:89:b1:85:
2e:ff:ad:f4:3e:fc:64:3f:03:ef:4d:65:bd:32:b4:bf:7d:0d:
1d:55:51:ae:45:04:e3:dd:40:90:b8:70:bd:d1:cf:46:d5:45:
8c:b6:50:f7:c3:c5:50:48:2c:35:0a:00:2d:34:a3:99:8c:7a:
33:c1:f0:51:9e:7e:79:b7:3e:3e:1c:b1:f1:4a:c9:5e:ab:fc:
a6:cc:ca:8e:af:65:03:4d:d7:d9:9f:73:7c:45:8f:97:e1:70:
72:7c:42:e9:c9:18:50:ec:14:34:7a:71:c2:cc:09:b5:1a:26:
47:95:99:61:79:26:49:d9:d6:86:e7:92:25:5c:25:99:f9:cf:
d7:16:43:c6:03:6f:76:21:ac:f8:b0:f9:a5:bc:ef:5d:7f:cc:
41:be:c6:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:06:25 2025 by rpki-client