Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft
File: MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft (raw, json)
Hash identifier: jtHkvG0SFLMZVgGTVTS5Ig5alaYzdxfEcZVpoOO30aQ=
Subject key identifier: 61:9D:7A:78:02:41:74:56:E9:3C:0E:3E:02:1B:96:4B:CD:13:C6:91
Authority key identifier: 31:24:30:90:5B:96:28:14:29:D4:E1:14:10:DA:0A:35:75:08:3C:04
Certificate issuer: /CN=312430905B96281429D4E11410DA0A3575083C04
Certificate serial: 05DC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft
Manifest number: 05DC
Signing time: Mon 11 Aug 2025 04:05:28 +0000
Manifest this update: Mon 11 Aug 2025 04:05:28 +0000
Manifest next update: Mon 11 Aug 2025 10:05:28 +0000
Files and hashes: 1: MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl (hash: R/zWxhEfnopNcdCFWkp4CYUPpO1mLG63AfeBc4kcQLM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1500 (0x5dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=312430905B96281429D4E11410DA0A3575083C04
Validity
Not Before: Aug 11 04:05:28 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=619D7A7802417456E93C0E3E021B964BCD13C691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f0:cd:da:1f:39:c0:51:b3:c7:fb:ac:61:a1:
e1:92:96:4b:ac:88:5b:ab:11:3b:34:a1:b5:85:aa:
bb:1f:38:d6:db:15:a2:f8:8c:67:9f:ce:ad:0a:35:
32:eb:39:59:f3:c9:39:0b:11:bb:66:23:0b:6c:eb:
95:11:2b:a0:d3:8f:36:a8:dd:c8:c0:bf:fd:c4:11:
fe:5f:dd:34:ba:cc:ed:26:e6:74:75:9d:63:fc:56:
54:a0:72:79:b2:d0:75:07:d3:b6:fb:28:61:bd:ac:
e3:3e:2c:cc:92:d6:e1:5e:14:6f:1b:0c:47:93:66:
9d:1e:2d:11:21:b7:08:af:49:02:a4:21:7d:5e:8a:
65:36:24:bb:50:74:6f:60:59:19:52:aa:8b:01:03:
13:d6:48:d3:c4:ab:81:fe:1f:55:af:ec:05:2f:30:
71:85:72:95:71:6e:5b:74:ef:87:59:cc:9b:e1:d1:
38:49:08:71:bf:30:b7:fc:f6:8b:8b:94:78:82:a1:
73:67:09:87:51:c4:6c:ed:c5:e2:51:24:88:dd:39:
0d:d4:0d:cc:bd:b2:cd:c0:3f:b5:88:48:e8:83:3b:
0d:81:3e:67:15:0e:cc:19:65:2e:f1:b0:cf:1d:f5:
2a:12:ab:31:8c:bb:93:c0:db:77:bf:b5:72:c5:0d:
4f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9D:7A:78:02:41:74:56:E9:3C:0E:3E:02:1B:96:4B:CD:13:C6:91
X509v3 Authority Key Identifier:
keyid:31:24:30:90:5B:96:28:14:29:D4:E1:14:10:DA:0A:35:75:08:3C:04
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MSQwkFuWKBQp1OEUENoKNXUIPAQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/MSQwkFuWKBQp1OEUENoKNXUIPAQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:c2:50:e3:8a:8d:71:18:0f:80:ed:d7:4b:98:5d:04:72:6d:
eb:7d:d1:79:34:11:f7:32:b2:d2:1b:82:b7:85:e8:3c:ce:93:
88:28:94:c5:45:f9:98:5e:18:a9:24:e9:bf:13:73:bc:40:ee:
f0:89:6c:89:c1:d2:c6:34:51:c5:68:6e:72:dd:c2:ce:4d:de:
dc:d1:00:72:f0:63:6e:e6:5a:9f:a5:27:70:45:09:b1:e3:62:
72:dc:17:cc:23:4e:a9:d5:4d:0e:1a:bc:7b:2b:f6:50:dd:c2:
4d:e9:47:57:da:00:ad:14:d6:fe:a6:57:34:83:80:9c:d7:59:
07:7c:91:0b:11:7a:ef:00:39:8a:1e:82:b8:1c:cb:01:53:83:
22:49:af:35:57:81:41:36:6b:15:88:ea:98:e9:12:ef:4c:47:
04:f8:0e:a0:3f:83:7b:e9:67:e6:81:bc:0d:08:75:5c:49:d2:
e3:99:71:89:57:48:50:5d:1f:f6:f9:01:dd:9b:d5:42:54:a4:
e3:19:c4:41:87:e0:83:82:fd:40:fa:0a:cd:b8:12:4d:ac:c2:
a0:e4:a8:84:53:86:fc:1e:b2:48:89:47:9c:52:17:92:7a:4e:
a8:78:55:05:64:a6:0e:1d:1b:40:75:c2:cd:ef:0f:ce:cf:42:
bd:3d:96:d8
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICBdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEy
NDMwOTA1Qjk2MjgxNDI5RDRFMTE0MTBEQTBBMzU3NTA4M0MwNDAeFw0yNTA4MTEw
NDA1MjhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDYxOUQ3QTc4MDI0MTc0
NTZFOTNDMEUzRTAyMUI5NjRCQ0QxM0M2OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC78M3aHznAUbPH+6xhoeGSlkusiFurETs0obWFqrsfONbbFaL4
jGefzq0KNTLrOVnzyTkLEbtmIwts65URK6DTjzao3cjAv/3EEf5f3TS6zO0m5nR1
nWP8VlSgcnmy0HUH07b7KGG9rOM+LMyS1uFeFG8bDEeTZp0eLREhtwivSQKkIX1e
imU2JLtQdG9gWRlSqosBAxPWSNPEq4H+H1Wv7AUvMHGFcpVxblt074dZzJvh0ThJ
CHG/MLf89ouLlHiCoXNnCYdRxGztxeJRJIjdOQ3UDcy9ss3AP7WISOiDOw2BPmcV
DswZZS7xsM8d9SoSqzGMu5PA23e/tXLFDU/TAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUYZ16eAJBdFbpPA4+AhuWS80TxpEwHwYDVR0jBBgwFoAUMSQwkFuWKBQp1OEU
ENoKNXUIPAQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy
Mi9NU1F3a0Z1V0tCUXAxT0VVRU5vS05YVUlQQVEuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL01TUXdrRnVXS0JRcDFPRVVFTm9LTlhVSVBBUS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjIvTVNRd2tGdVdLQlFw
MU9FVUVOb0tOWFVJUEFRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAEjCUOOKjXEYD4Dt10uYXQRybet90Xk0EfcystIbgreF6DzOk4golMVF+Zhe
GKkk6b8Tc7xA7vCJbInB0sY0UcVobnLdws5N3tzRAHLwY27mWp+lJ3BFCbHjYnLc
F8wjTqnVTQ4avHsr9lDdwk3pR1faAK0U1v6mVzSDgJzXWQd8kQsReu8AOYoegrgc
ywFTgyJJrzVXgUE2axWI6pjpEu9MRwT4DqA/g3vpZ+aBvA0IdVxJ0uOZcYlXSFBd
H/b5Ad2b1UJUpOMZxEGH4IOC/UD6Cs24Ek2swqDkqIRThvweskiJR5xSF5J6Tqh4
VQVkpg4dG0B1ws3vD87PQr09ltg=
-----END CERTIFICATE-----
Generated at Mon Aug 11 10:32:21 2025 by rpki-client