Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft
File: zgJJuefVZubL61d9djs8y7Gwqy0.mft (raw, json)
Hash identifier: ct58UCA0mNio/WTqca+I1R7d2D0CzIbYTNjWP3GbFsQ=
Subject key identifier: D7:35:CF:06:4F:7B:A7:C5:2F:10:67:93:7F:4D:16:BA:F0:6C:5E:4A
Authority key identifier: CE:02:49:B9:E7:D5:66:E6:CB:EB:57:7D:76:3B:3C:CB:B1:B0:AB:2D
Certificate issuer: /CN=CE0249B9E7D566E6CBEB577D763B3CCBB1B0AB2D
Certificate serial: 21A4
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgJJuefVZubL61d9djs8y7Gwqy0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft
Manifest number: 2192
Signing time: Sat 26 Apr 2025 11:07:26 +0000
Manifest this update: Sat 26 Apr 2025 11:07:25 +0000
Manifest next update: Sat 26 Apr 2025 17:07:25 +0000
Files and hashes: 1: WyTkXHEhLqcsjNd_oPHvbf674aI.roa (hash: gt/t6rEu5sUWRrRf2e3Slg7FAm0I0chcu0jtaf/OGlg=)
2: cYoSIKX5rPaGhe1jQErFxMn1KlE.roa (hash: sGiqqVrNR6d7HV7W1A6wNpAMcqkm+3f/aPa23FGvVeA=)
3: zgJJuefVZubL61d9djs8y7Gwqy0.crl (hash: w0avXe+0CE9BMhNtntI26nXdRdx5NDpmLgBjSzTAidA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8612 (0x21a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE0249B9E7D566E6CBEB577D763B3CCBB1B0AB2D
Validity
Not Before: Apr 26 11:07:25 2025 GMT
Not After : Apr 9 06:40:24 2026 GMT
Subject: CN=D735CF064F7BA7C52F1067937F4D16BAF06C5E4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:09:3b:af:00:60:89:fe:1c:da:67:e3:72:bb:
e8:ad:94:64:0b:0e:e3:b8:81:9f:9f:09:c0:99:4c:
7e:5d:df:36:31:92:48:82:c2:8d:27:f8:66:60:b6:
1a:60:9c:9a:0a:da:a9:8c:fb:0e:a5:cf:6d:64:e4:
6c:b6:b3:c8:d0:15:a2:e6:03:55:bb:14:77:6e:d6:
2b:1a:2e:70:a9:a8:1f:c9:67:b7:de:a3:53:90:48:
88:12:bd:6f:1c:e2:38:aa:40:dd:5c:08:ab:18:8a:
75:5b:ac:1f:be:b1:dd:34:9d:b5:69:92:a8:6f:8d:
c5:8f:d6:51:ae:37:72:d2:44:27:f8:4c:6c:8f:d5:
6f:73:87:21:6a:21:4c:77:fd:5d:b0:1c:01:55:e7:
7d:b4:5d:bd:d8:1b:b2:1d:46:05:28:47:f1:82:6f:
94:4a:50:83:56:0c:f8:20:cd:78:f4:0e:fa:a2:41:
6c:76:1b:67:66:a3:32:12:a4:af:45:a4:f6:25:35:
22:cd:f3:b5:bc:ea:8a:2c:f0:64:c9:ba:c4:98:13:
90:16:04:5e:17:23:6f:3c:c1:b6:36:15:2c:09:a0:
73:fb:e3:51:e6:1f:96:63:14:26:bc:48:48:67:eb:
44:67:16:86:ea:59:f5:33:79:b6:5d:49:c9:eb:d5:
f1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:35:CF:06:4F:7B:A7:C5:2F:10:67:93:7F:4D:16:BA:F0:6C:5E:4A
X509v3 Authority Key Identifier:
keyid:CE:02:49:B9:E7:D5:66:E6:CB:EB:57:7D:76:3B:3C:CB:B1:B0:AB:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgJJuefVZubL61d9djs8y7Gwqy0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
02:e1:7c:e1:35:d4:ad:38:e3:b2:8a:17:de:72:94:4f:32:58:
c2:3f:c0:c2:9e:5e:0d:9b:8c:da:f7:f5:74:94:ad:1e:85:7c:
4f:41:36:fc:ff:27:6a:49:78:3c:10:1f:75:8d:3c:71:ef:6a:
cc:48:6e:01:90:74:2a:54:61:2e:87:5c:4d:a6:5f:d7:f0:b6:
af:56:d6:7c:72:6f:2d:96:a5:27:c2:78:58:cf:31:03:7c:07:
5f:93:93:51:02:4f:b4:20:0c:4e:24:b2:3c:d1:3f:60:86:b3:
53:78:3f:2c:5d:a3:0b:df:bb:ed:41:bf:67:b9:20:ec:85:99:
d4:db:ab:4c:72:18:f9:3a:31:84:b0:27:e1:b6:f2:fd:05:87:
1e:01:76:22:7c:fe:41:7f:86:b5:6e:e9:96:ed:cf:4f:63:0a:
fc:0b:58:6d:9b:d7:4d:ca:89:65:95:7f:97:ef:ba:f3:25:6c:
e6:b6:c4:c0:b4:86:6a:48:d6:66:53:c5:d7:02:ca:06:a2:94:
19:ba:0d:7e:bf:de:f5:8d:8b:72:61:16:97:d7:c4:04:a0:dc:
15:b9:5c:ed:45:61:c9:e6:64:fe:36:dc:12:5e:6e:99:ae:38:
3b:53:8a:24:14:48:ee:2b:ba:e1:6a:bb:23:76:47:0e:73:b1:
73:fc:9e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:22:01 2025 by rpki-client