Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3328/OCdChXYoqbKyIFmuiEdvIwYL6tA.mft
File: OCdChXYoqbKyIFmuiEdvIwYL6tA.mft (raw, json)
Hash identifier: i2qB33V0STL/7Dr52ng5M8LQMwRGIETSqEEdmGwjTr0=
Subject key identifier: 28:21:5B:26:84:B2:51:CB:C1:6E:81:F4:5A:46:65:8D:87:98:73:05
Authority key identifier: 38:27:42:85:76:28:A9:B2:B2:20:59:AE:88:47:6F:23:06:0B:EA:D0
Certificate issuer: /CN=382742857628A9B2B22059AE88476F23060BEAD0
Certificate serial: 0534
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OCdChXYoqbKyIFmuiEdvIwYL6tA.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/OCdChXYoqbKyIFmuiEdvIwYL6tA.mft
Manifest number: 0534
Signing time: Mon 11 Aug 2025 09:04:33 +0000
Manifest this update: Mon 11 Aug 2025 09:04:33 +0000
Manifest next update: Mon 11 Aug 2025 15:04:33 +0000
Files and hashes: 1: OCdChXYoqbKyIFmuiEdvIwYL6tA.crl (hash: m/fpvxQIHpKcckOVgr3pgc4EIfaBnkk0W/kWA0Sn/Pc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1332 (0x534)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382742857628A9B2B22059AE88476F23060BEAD0
Validity
Not Before: Aug 11 09:04:33 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=28215B2684B251CBC16E81F45A46658D87987305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:26:72:d5:94:16:40:a9:56:11:27:83:ad:c9:
ac:73:2e:26:c8:68:e4:37:1c:e2:b9:5d:8a:dc:5d:
52:91:42:3b:2e:de:b3:6e:fb:38:6c:62:43:f2:65:
fe:2d:44:45:7d:02:5c:fb:a1:47:11:13:de:41:4b:
e9:61:23:81:c1:3c:01:8c:a8:0c:1b:2b:47:6e:19:
76:95:78:de:65:db:39:ce:e0:22:0e:f5:e1:af:50:
40:ed:f6:61:24:bf:62:9f:a0:eb:d9:b4:02:f1:ea:
85:d3:3d:5e:85:3b:d0:19:a7:a5:e5:cc:a8:12:69:
a0:7b:a1:8b:61:e3:bc:89:4a:5e:8a:2b:eb:9c:90:
c5:6c:a9:6b:a7:08:2b:86:ba:2e:62:d7:77:ef:ab:
37:a1:fa:a1:c6:27:4e:8f:b0:83:bb:7a:98:51:bd:
d9:c4:aa:06:f2:99:ec:0a:ac:d2:44:d7:21:1d:80:
f3:d8:6a:3f:70:e1:2f:01:12:2e:8c:85:b2:f7:0e:
f7:d9:ae:c6:09:03:cd:cd:05:0b:24:bb:11:96:78:
38:bb:bd:68:67:78:5d:33:a8:1e:f6:97:cc:61:ec:
a5:11:dc:9e:e2:70:3c:31:72:f5:59:be:13:fe:f5:
5c:38:80:94:e7:6d:06:32:ca:d6:37:3a:eb:b5:19:
b9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:21:5B:26:84:B2:51:CB:C1:6E:81:F4:5A:46:65:8D:87:98:73:05
X509v3 Authority Key Identifier:
keyid:38:27:42:85:76:28:A9:B2:B2:20:59:AE:88:47:6F:23:06:0B:EA:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/OCdChXYoqbKyIFmuiEdvIwYL6tA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OCdChXYoqbKyIFmuiEdvIwYL6tA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3328/OCdChXYoqbKyIFmuiEdvIwYL6tA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
18:c1:b1:03:d2:22:14:af:f2:33:65:92:77:ad:3c:ee:00:a7:
bd:16:b4:a2:13:57:92:c0:3c:3d:e5:5d:87:01:78:6f:9b:4a:
b4:c1:cd:bd:7f:4c:ea:b1:54:67:12:6a:b0:5e:e2:54:03:71:
98:b5:db:e7:3a:79:ed:b2:85:48:0a:45:d9:33:79:0b:a9:37:
95:8b:37:f3:12:03:ea:28:04:84:38:9a:40:76:39:4c:09:aa:
c4:28:e4:a0:3a:6c:5f:c2:9a:92:6c:f2:4d:c0:75:c7:d5:94:
90:7f:2c:e0:0d:66:34:e3:7c:27:d0:f2:3f:a1:78:bc:50:c0:
e7:0a:ff:d7:0d:43:38:43:a7:7d:30:df:cd:bd:63:b5:a7:b5:
75:9e:59:d0:16:e1:c1:af:7d:c3:49:3d:48:7b:37:d3:47:3a:
1c:ba:ca:ce:9e:cd:76:0b:92:5b:32:e3:d8:45:b6:1b:5d:4e:
02:19:8b:c4:cd:2f:2b:90:07:96:c0:33:b0:56:5d:ac:d2:d7:
0a:f2:ad:51:f1:47:20:f1:51:a7:17:29:46:ef:3b:89:9f:86:
19:6e:bf:c2:40:91:db:83:be:13:9b:b6:3b:54:ae:2f:0e:23:
e3:ca:7f:4c:59:39:80:69:30:29:41:0c:71:bc:16:d1:fc:05:
8a:19:63:16
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICBTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzgy
NzQyODU3NjI4QTlCMkIyMjA1OUFFODg0NzZGMjMwNjBCRUFEMDAeFw0yNTA4MTEw
OTA0MzNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDI4MjE1QjI2ODRCMjUx
Q0JDMTZFODFGNDVBNDY2NThEODc5ODczMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCdJnLVlBZAqVYRJ4OtyaxzLibIaOQ3HOK5XYrcXVKRQjsu3rNu
+zhsYkPyZf4tREV9Alz7oUcRE95BS+lhI4HBPAGMqAwbK0duGXaVeN5l2znO4CIO
9eGvUEDt9mEkv2KfoOvZtALx6oXTPV6FO9AZp6XlzKgSaaB7oYth47yJSl6KK+uc
kMVsqWunCCuGui5i13fvqzeh+qHGJ06PsIO7ephRvdnEqgbymewKrNJE1yEdgPPY
aj9w4S8BEi6MhbL3DvfZrsYJA83NBQskuxGWeDi7vWhneF0zqB72l8xh7KUR3J7i
cDwxcvVZvhP+9Vw4gJTnbQYyytY3Ouu1Gbn9AgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUKCFbJoSyUcvBboH0WkZljYeYcwUwHwYDVR0jBBgwFoAUOCdChXYoqbKyIFmu
iEdvIwYL6tAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy
OC9PQ2RDaFhZb3FiS3lJRm11aUVkdkl3WUw2dEEuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL09DZENoWFlvcWJLeUlGbXVpRWR2SXdZTDZ0QS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjgvT0NkQ2hYWW9xYkt5
SUZtdWlFZHZJd1lMNnRBLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBABjBsQPSIhSv8jNlknetPO4Ap70WtKITV5LAPD3lXYcBeG+bSrTBzb1/TOqx
VGcSarBe4lQDcZi12+c6ee2yhUgKRdkzeQupN5WLN/MSA+ooBIQ4mkB2OUwJqsQo
5KA6bF/CmpJs8k3AdcfVlJB/LOANZjTjfCfQ8j+heLxQwOcK/9cNQzhDp30w3829
Y7WntXWeWdAW4cGvfcNJPUh7N9NHOhy6ys6ezXYLklsy49hFthtdTgIZi8TNLyuQ
B5bAM7BWXazS1wryrVHxRyDxUacXKUbvO4mfhhluv8JAkduDvhObtjtUri8OI+PK
f0xZOYBpMClBDHG8FtH8BYoZYxY=
-----END CERTIFICATE-----
Generated at Mon Aug 11 14:55:14 2025 by rpki-client