Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft
File: th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft (raw, json)
Hash identifier: nDUpzsnHKzDLLgjGvKSWsJ4DBu8EreCx2Yo2zU+lFr0=
Subject key identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B
Authority key identifier: B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC
Certificate issuer: /CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC
Certificate serial: 05EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft
Manifest number: 05EA
Signing time: Wed 05 Nov 2025 10:15:16 +0000
Manifest this update: Wed 05 Nov 2025 10:15:16 +0000
Manifest next update: Wed 05 Nov 2025 16:15:16 +0000
Files and hashes: 1: th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl (hash: RlGMMIdj39rw+nq/A2MC689d7wZZFEom9acrhITonAk=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1514 (0x5ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC
Validity
Not Before: Nov 5 10:15:16 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=186E78B45B3C95AF28F99FC95D6D94940A37551B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1b:c6:9f:2c:76:70:3d:16:0a:60:0c:28:9d:
0b:6e:02:15:0e:70:04:d0:29:47:03:3c:0b:c3:d4:
2e:d2:75:0e:ae:c0:63:70:93:c2:34:17:5a:cc:ce:
15:f6:7a:c8:84:9a:ac:9e:6b:a3:69:2c:43:28:77:
d9:af:a0:84:40:eb:b2:39:05:b9:b8:ba:c6:a3:9d:
02:aa:02:c0:33:24:9c:05:b7:eb:04:7a:98:0e:0a:
f3:2d:a9:c4:59:52:36:21:d2:c0:39:47:e2:13:81:
57:60:4f:a8:7b:6c:4e:f8:26:f8:15:f8:aa:b1:21:
91:c7:63:e8:23:65:39:20:4e:1a:ff:13:66:69:bf:
f6:22:44:57:bf:17:8c:bd:e4:d1:51:45:63:7a:e3:
5c:cd:2f:bc:fa:33:3f:9b:12:3e:2c:80:d9:3d:64:
81:00:bc:71:04:f9:4c:3d:00:8f:dd:ee:5a:83:0a:
84:34:cd:b6:39:52:8e:bf:af:6a:c4:4a:86:24:17:
fd:b6:cf:8a:46:d6:c9:1e:12:b4:95:2e:54:a3:10:
33:fa:36:8e:c2:4a:a8:d5:ac:0e:ef:73:3f:d1:1c:
ed:44:b6:f5:80:fa:02:da:cf:06:f8:a4:cd:0f:3b:
b1:27:10:ec:52:61:b6:bc:94:7a:f8:00:32:6f:fd:
37:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B
X509v3 Authority Key Identifier:
keyid:B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:3b:df:fa:cc:7c:d2:34:16:35:7b:d8:1a:13:cc:78:78:33:
35:9d:ab:70:29:da:e6:16:14:df:a8:5a:68:29:21:5d:4a:9e:
b9:65:91:33:06:87:99:d6:53:3e:42:94:eb:c1:88:14:1c:25:
eb:09:3b:28:2a:d9:fd:b1:c8:5d:d1:9f:6d:fb:c8:b2:0e:6b:
12:04:68:b1:23:e0:c9:c8:e1:2d:2b:03:98:65:22:27:4a:94:
8a:f5:8c:30:85:47:26:e3:2d:48:4a:88:7b:c5:46:a2:1f:bf:
21:0d:48:1a:4d:47:20:20:ba:34:ab:80:1d:30:2c:c3:f5:62:
86:ef:9a:e5:01:f4:87:18:56:84:66:69:3c:48:88:cb:18:ae:
63:e9:6c:71:a9:2b:85:04:02:27:6e:0b:0b:19:09:11:3c:a9:
5a:1a:68:af:59:3f:b4:87:55:46:11:be:70:9a:50:57:b8:c9:
d6:20:13:6c:58:22:43:54:e4:16:cd:67:63:37:c8:f9:f3:f3:
e3:03:66:67:c8:12:b4:8e:82:3d:83:7b:d2:50:ce:87:d2:46:
08:54:9a:4e:6c:3f:1a:a4:0c:3d:ca:95:c7:7c:e1:dd:b2:78:
c8:55:d2:b6:8e:ff:ef:67:1b:91:3a:7b:82:c0:59:a6:2f:6f:
a3:a5:48:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 16:27:31 2025 by rpki-client