Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft
File: MhLECXbovqr84IRHL8u8MS-Szow.mft (raw, json)
Hash identifier: j4Q9BvdAq9udQ5zrNDWs3FVU0Rk6XrAlVyNMp3Lb0us=
Subject key identifier: 8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1
Authority key identifier: 32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C
Certificate issuer: /CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C
Certificate serial: 0143
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft
Manifest number: 0143
Signing time: Sat 26 Apr 2025 06:36:38 +0000
Manifest this update: Sat 26 Apr 2025 06:36:38 +0000
Manifest next update: Sat 26 Apr 2025 12:36:38 +0000
Files and hashes: 1: MhLECXbovqr84IRHL8u8MS-Szow.crl (hash: 99plEp7uD91XS8KC5rsQWKrlDgkepwyOuGPCqyGcwEE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323 (0x143)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3212C40976E8BEAAFCE084472FCBBC312F92CE8C
Validity
Not Before: Apr 26 06:36:38 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=8F4E72369CB7C3913592C8ED1BD18339AB1E9AA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:73:c0:0a:10:46:57:fc:81:4a:e0:16:96:
31:df:e3:b6:c6:55:c2:5b:37:e9:32:93:3c:d6:08:
4b:ad:c3:79:e9:c9:ca:d1:66:48:f0:81:07:20:30:
9a:21:e2:86:e4:b3:6c:94:7a:f7:66:52:19:6e:54:
a5:56:6c:4a:33:eb:bf:c7:b1:b3:1a:4e:45:3f:09:
67:cf:88:10:38:9e:1b:dd:33:b6:40:d3:d5:57:e0:
ab:a1:56:98:80:67:1a:8d:79:2a:f2:37:a0:58:ce:
cf:6c:df:56:ac:ce:8f:66:3f:83:43:14:57:f5:3c:
49:58:7b:e1:5e:e0:96:92:3e:28:28:b1:d8:27:7a:
6c:98:45:ba:fd:d3:2d:8a:4b:25:74:83:ea:ad:7d:
c9:7c:54:8a:0c:ac:9d:85:8f:26:a6:95:06:4d:0a:
b7:91:7d:8e:e8:40:48:ab:f1:f4:67:25:9f:33:5f:
d0:88:92:1d:d2:f7:52:f6:3b:a9:bb:d4:9d:8e:15:
ef:33:78:3f:91:12:1a:19:32:ca:01:da:b1:e3:15:
ec:94:f1:ce:a4:93:4b:3a:02:05:ef:34:e5:a3:9b:
82:22:32:60:50:c0:b5:46:87:fe:ee:2a:b9:14:fb:
7d:89:98:11:31:c8:4d:08:e5:32:d2:37:93:72:d2:
b5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:4E:72:36:9C:B7:C3:91:35:92:C8:ED:1B:D1:83:39:AB:1E:9A:A1
X509v3 Authority Key Identifier:
keyid:32:12:C4:09:76:E8:BE:AA:FC:E0:84:47:2F:CB:BC:31:2F:92:CE:8C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MhLECXbovqr84IRHL8u8MS-Szow.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3353/MhLECXbovqr84IRHL8u8MS-Szow.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
af:c2:47:6a:fe:ea:a4:1c:27:60:50:c2:09:bb:a1:57:ee:94:
36:5b:91:3f:67:84:d4:c6:44:6a:c9:4b:95:0e:40:4f:56:36:
e6:cb:0c:4b:32:26:6f:6f:d3:6f:8d:ad:66:3a:50:b1:8d:af:
04:12:50:b2:bf:cc:e3:8b:b3:ba:52:e2:fd:35:7d:67:03:98:
84:7a:c6:66:f2:e4:e8:ab:5d:ac:14:31:6c:04:37:e7:d1:78:
e2:1c:38:b2:f5:5a:3c:8e:71:2e:fd:50:4c:12:ec:10:0a:44:
b8:a5:f8:ed:94:18:f1:ef:40:1d:44:23:ff:b4:9c:c3:be:c8:
1d:7c:9b:8f:4d:fd:08:f8:d6:fe:ab:e9:e8:88:ad:48:2d:53:
09:7a:52:14:23:14:e0:d9:2d:14:8a:26:c8:dd:ec:ff:c1:3c:
05:b9:0b:e1:1c:b1:3e:90:7c:9e:1d:98:db:3d:ff:67:cf:d4:
72:f2:a6:95:ac:98:d2:5f:83:1d:99:7e:d1:9f:f9:22:ec:ca:
f3:11:42:59:00:db:39:2c:6a:19:4e:2b:29:61:f6:3b:7e:ea:
f3:ea:dc:ec:0b:8c:78:36:20:59:a2:0b:71:49:5d:3c:89:d8:
d7:a5:ea:13:28:7c:b4:18:7b:28:f4:e7:87:2f:fe:16:fb:fa:
27:e3:2a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:43:36 2025 by rpki-client