Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3329/zgR4-r6RlrVNC9GqhMs5Bz1s-fk.mft
File: zgR4-r6RlrVNC9GqhMs5Bz1s-fk.mft (raw, json)
Hash identifier: Bd5XMTq/HKDEazOUOI3JqU+D50ddY3k02LmEjuEm1ZM=
Subject key identifier: 52:5E:66:19:12:15:EC:C0:61:97:4A:DA:55:D6:26:AC:F4:E5:D5:A7
Authority key identifier: CE:04:78:FA:BE:91:96:B5:4D:0B:D1:AA:84:CB:39:07:3D:6C:F9:F9
Certificate issuer: /CN=CE0478FABE9196B54D0BD1AA84CB39073D6CF9F9
Certificate serial: 0419
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgR4-r6RlrVNC9GqhMs5Bz1s-fk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3329/zgR4-r6RlrVNC9GqhMs5Bz1s-fk.mft
Manifest number: 0419
Signing time: Sun 15 Jun 2025 07:24:06 +0000
Manifest this update: Sun 15 Jun 2025 07:24:06 +0000
Manifest next update: Sun 15 Jun 2025 13:24:06 +0000
Files and hashes: 1: zgR4-r6RlrVNC9GqhMs5Bz1s-fk.crl (hash: U0FxbbNZkq32y6Cmloz/gzrY8Uz3L+ArNlbSJ2jBhdY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1049 (0x419)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE0478FABE9196B54D0BD1AA84CB39073D6CF9F9
Validity
Not Before: Jun 15 07:24:06 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=525E66191215ECC061974ADA55D626ACF4E5D5A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:60:c6:7c:39:63:96:f1:d6:55:de:3a:6e:e7:
d5:a7:5b:44:06:e6:54:93:82:46:5a:f7:cb:3d:fb:
ba:4e:6c:47:e8:a4:84:dc:83:a3:3d:e1:bd:3d:8a:
38:9e:0c:98:eb:f0:da:e6:dd:b4:92:45:bc:c6:02:
af:25:cb:91:01:db:b9:58:b8:0b:5d:bb:d4:e4:db:
f0:02:b9:81:1c:bf:5f:d5:e4:7a:f3:fc:25:6b:76:
4d:e9:0e:72:0b:dc:f9:2b:7c:ad:d6:47:ac:ef:eb:
b4:23:5d:bb:f9:cf:ef:ce:bf:53:24:20:7a:fb:15:
02:fc:d5:bb:c6:27:8b:e2:3b:ec:2f:43:94:8e:77:
56:f5:37:17:11:33:8f:e8:6d:af:92:0d:47:5d:e5:
75:08:ac:7b:05:30:51:d1:cc:dd:6e:ca:6c:cc:e7:
7e:15:16:d8:72:24:e1:f6:aa:77:21:69:46:75:10:
3f:ca:2f:06:51:60:63:96:3b:ac:38:78:a2:a3:93:
75:72:74:9f:2b:9f:b5:cd:de:0f:62:3e:7a:ad:bb:
ac:c8:88:0d:73:ce:8b:f2:8a:96:14:28:07:91:fb:
0c:53:ee:e5:66:11:eb:40:96:72:23:8f:f5:e0:a8:
a9:ae:2e:11:e8:7f:a9:bb:af:29:7f:a3:55:9b:2a:
d3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5E:66:19:12:15:EC:C0:61:97:4A:DA:55:D6:26:AC:F4:E5:D5:A7
X509v3 Authority Key Identifier:
keyid:CE:04:78:FA:BE:91:96:B5:4D:0B:D1:AA:84:CB:39:07:3D:6C:F9:F9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3329/zgR4-r6RlrVNC9GqhMs5Bz1s-fk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zgR4-r6RlrVNC9GqhMs5Bz1s-fk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3329/zgR4-r6RlrVNC9GqhMs5Bz1s-fk.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c3:62:44:4e:44:fd:dc:c6:08:fb:25:92:e0:f4:f3:a9:b3:0f:
80:ad:85:1f:36:a3:40:24:e1:81:bd:0a:64:c3:4f:5c:7e:91:
e9:1a:99:ea:e9:71:a9:10:56:8b:52:be:28:c0:dd:fe:80:17:
d5:91:bd:11:05:dc:a9:b5:63:56:01:70:7d:7d:7d:a7:09:85:
4f:49:8f:a6:74:c2:73:e5:99:6f:58:fa:e4:2e:27:c3:51:07:
19:2b:e9:93:3b:e3:e2:a0:e8:c8:30:79:ff:63:d2:60:24:b4:
64:1e:d1:ea:36:1f:44:e5:42:5c:8e:10:6a:78:ff:1e:b5:72:
c4:00:d9:a5:43:b9:f0:af:70:30:8a:6f:71:9b:0f:c6:97:9e:
30:98:79:34:d2:6e:b0:74:d3:4d:5d:c7:46:1b:82:03:6d:e1:
63:49:29:2d:a1:01:d8:3f:54:ac:2c:93:16:6b:4d:af:1e:6d:
4c:7b:fc:c3:25:fc:04:5a:9b:d3:8f:b9:ec:bf:25:3a:8f:c9:
26:14:33:4a:78:ef:d2:d5:84:f3:8a:52:76:db:2c:72:ad:ea:
e7:42:20:de:8f:57:f3:7e:3e:0a:0f:8c:54:c4:0f:e4:98:ee:
4a:2e:37:64:60:43:5f:bb:0a:47:44:7f:cc:19:fa:cc:cb:60:
b5:b9:4d:27
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Uw
NDc4RkFCRTkxOTZCNTREMEJEMUFBODRDQjM5MDczRDZDRjlGOTAeFw0yNTA2MTUw
NzI0MDZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDUyNUU2NjE5MTIxNUVD
QzA2MTk3NEFEQTU1RDYyNkFDRjRFNUQ1QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7YMZ8OWOW8dZV3jpu59WnW0QG5lSTgkZa98s9+7pObEfopITc
g6M94b09ijieDJjr8Nrm3bSSRbzGAq8ly5EB27lYuAtdu9Tk2/ACuYEcv1/V5Hrz
/CVrdk3pDnIL3PkrfK3WR6zv67QjXbv5z+/Ov1MkIHr7FQL81bvGJ4viO+wvQ5SO
d1b1NxcRM4/oba+SDUdd5XUIrHsFMFHRzN1uymzM534VFthyJOH2qnchaUZ1ED/K
LwZRYGOWO6w4eKKjk3VydJ8rn7XN3g9iPnqtu6zIiA1zzovyipYUKAeR+wxT7uVm
EetAlnIjj/XgqKmuLhHof6m7ryl/o1WbKtPTAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUUl5mGRIV7MBhl0raVdYmrPTl1acwHwYDVR0jBBgwFoAUzgR4+r6RlrVNC9Gq
hMs5Bz1s+fkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy
OS96Z1I0LXI2UmxyVk5DOUdxaE1zNUJ6MXMtZmsuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL3pnUjQtcjZSbHJWTkM5R3FoTXM1Qnoxcy1may5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjkvemdSNC1yNlJsclZO
QzlHcWhNczVCejFzLWZrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAMNiRE5E/dzGCPslkuD086mzD4CthR82o0Ak4YG9CmTDT1x+kekamerpcakQ
VotSvijA3f6AF9WRvREF3Km1Y1YBcH19facJhU9Jj6Z0wnPlmW9Y+uQuJ8NRBxkr
6ZM74+Kg6Mgwef9j0mAktGQe0eo2H0TlQlyOEGp4/x61csQA2aVDufCvcDCKb3Gb
D8aXnjCYeTTSbrB0001dx0YbggNt4WNJKS2hAdg/VKwskxZrTa8ebUx7/MMl/ARa
m9OPuey/JTqPySYUM0p479LVhPOKUnbbLHKt6udCIN6PV/N+PgoPjFTED+SY7kou
N2RgQ1+7CkdEf8wZ+szLYLW5TSc=
-----END CERTIFICATE-----
Generated at Sun Jun 15 10:08:34 2025 by rpki-client