Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft
File: 0VDidxb20dIqOfSm3lvj6JNPgUI.mft (raw, json)
Hash identifier: hYLQuhVZ6lEbifdOe1W+YdC/FZrCN3R2++k0TqLUaDE=
Subject key identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85
Authority key identifier: D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42
Certificate issuer: /CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142
Certificate serial: 0247
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft
Manifest number: 0247
Signing time: Sat 21 Jun 2025 19:11:04 +0000
Manifest this update: Sat 21 Jun 2025 19:11:04 +0000
Manifest next update: Sun 22 Jun 2025 01:11:04 +0000
Files and hashes: 1: 0VDidxb20dIqOfSm3lvj6JNPgUI.crl (hash: s8B+K6A568KI+qkYVyClL7Gw7C36mPsVZN3hD7Cu9nc=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 583 (0x247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142
Validity
Not Before: Jun 21 19:11:04 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=1F5671BB92B87E4A947EBE45F2DCA129C0B59985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:b3:91:12:fd:4a:ca:29:b9:98:23:9c:5e:
07:53:17:99:67:58:79:46:79:a7:d6:2f:6f:ca:9d:
63:df:21:5e:81:85:13:cb:21:44:f7:d3:f1:f7:43:
53:06:9d:a4:e5:db:61:88:09:be:7c:18:72:57:db:
e7:cc:c2:6c:27:81:6e:ff:1d:0a:9d:f3:14:ad:c5:
6b:d6:a7:e3:6e:cc:3d:28:d0:01:23:51:58:11:3d:
f1:96:20:3f:8c:0f:e1:6a:63:c8:4f:46:a3:e4:72:
5a:57:1d:37:52:b4:b5:23:41:bd:97:a6:bd:80:97:
d6:cf:76:0c:42:f8:66:fb:82:d1:d5:58:ac:e5:58:
0f:fd:34:ea:37:69:2b:69:af:7a:cc:00:8d:86:42:
d5:20:a2:7f:13:33:4a:c0:79:0c:82:1a:30:3b:25:
b8:78:87:f3:77:5d:ae:db:ae:b9:d1:a9:b4:47:e5:
0a:67:ec:ec:bf:ad:88:bf:f1:ed:e9:6d:0c:11:34:
5e:c0:03:3c:d9:97:c8:d8:49:e0:22:79:b8:da:8c:
b8:69:fe:fa:d2:90:45:78:ee:32:1c:a3:46:d2:a0:
4c:6f:bf:b3:b4:ed:1c:9d:90:9b:07:d5:f5:f1:ac:
5c:a6:9e:1b:73:77:41:e2:f3:7c:7e:6c:48:38:a1:
fc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85
X509v3 Authority Key Identifier:
keyid:D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a4:58:a8:56:3c:b6:fe:39:4a:24:b9:9e:1b:f7:0e:b9:d3:c0:
fd:f0:ee:b9:ad:c7:6a:3a:8d:fb:ec:2b:b3:a3:92:57:9b:2c:
4f:5c:16:b7:5e:d6:c8:2e:d6:30:29:ba:69:05:4c:df:ac:ca:
bc:f6:25:47:b8:1d:88:16:c5:c9:5c:01:7d:7c:43:17:d7:40:
28:53:98:6c:8a:d3:11:4a:c9:64:3e:a5:41:41:d3:ce:67:be:
3e:0c:a8:7e:eb:0e:a1:db:81:60:e9:e6:42:80:7f:58:27:7c:
86:88:45:7a:f1:81:55:9b:b6:9c:a8:e8:41:29:16:47:58:0a:
a5:d3:e3:77:8b:16:6a:58:ff:9b:a7:0f:6b:0e:8e:a2:14:e4:
98:c1:22:a3:03:87:b6:31:1b:c8:fc:24:cd:dc:9f:2f:1e:61:
31:d0:2e:50:a3:f1:7e:de:7d:0f:46:0b:5c:a4:0b:42:20:90:
57:d7:98:5b:4a:42:d8:65:64:f8:cd:e9:83:18:12:eb:93:c9:
95:56:6e:68:3a:c2:cd:d3:82:34:0f:39:52:38:54:7d:7c:68:
fc:01:ff:34:ec:b6:27:8d:37:b7:8f:ab:79:fe:8b:0b:82:d5:
b5:6c:5b:b3:01:56:cc:6d:34:fa:f9:41:c7:d1:05:0e:ec:c8:
b3:6e:4f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 02:01:22 2025 by rpki-client