Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft
File: 0VDidxb20dIqOfSm3lvj6JNPgUI.mft (raw, json)
Hash identifier: QcEwP0I5ZEmYQedH7nsl1Ci2lKD5ZBe8ytIETkJJVE8=
Subject key identifier: 1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85
Authority key identifier: D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42
Certificate issuer: /CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142
Certificate serial: 012D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft
Manifest number: 012D
Signing time: Sat 26 Apr 2025 11:06:24 +0000
Manifest this update: Sat 26 Apr 2025 11:06:24 +0000
Manifest next update: Sat 26 Apr 2025 17:06:24 +0000
Files and hashes: 1: 0VDidxb20dIqOfSm3lvj6JNPgUI.crl (hash: nlBYZc9N+zdk5lWJu/XMwhGHWMVWXNvsS/Jnkz3ZQNE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301 (0x12d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D150E27716F6D1D22A39F4A6DE5BE3E8934F8142
Validity
Not Before: Apr 26 11:06:24 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=1F5671BB92B87E4A947EBE45F2DCA129C0B59985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:b3:91:12:fd:4a:ca:29:b9:98:23:9c:5e:
07:53:17:99:67:58:79:46:79:a7:d6:2f:6f:ca:9d:
63:df:21:5e:81:85:13:cb:21:44:f7:d3:f1:f7:43:
53:06:9d:a4:e5:db:61:88:09:be:7c:18:72:57:db:
e7:cc:c2:6c:27:81:6e:ff:1d:0a:9d:f3:14:ad:c5:
6b:d6:a7:e3:6e:cc:3d:28:d0:01:23:51:58:11:3d:
f1:96:20:3f:8c:0f:e1:6a:63:c8:4f:46:a3:e4:72:
5a:57:1d:37:52:b4:b5:23:41:bd:97:a6:bd:80:97:
d6:cf:76:0c:42:f8:66:fb:82:d1:d5:58:ac:e5:58:
0f:fd:34:ea:37:69:2b:69:af:7a:cc:00:8d:86:42:
d5:20:a2:7f:13:33:4a:c0:79:0c:82:1a:30:3b:25:
b8:78:87:f3:77:5d:ae:db:ae:b9:d1:a9:b4:47:e5:
0a:67:ec:ec:bf:ad:88:bf:f1:ed:e9:6d:0c:11:34:
5e:c0:03:3c:d9:97:c8:d8:49:e0:22:79:b8:da:8c:
b8:69:fe:fa:d2:90:45:78:ee:32:1c:a3:46:d2:a0:
4c:6f:bf:b3:b4:ed:1c:9d:90:9b:07:d5:f5:f1:ac:
5c:a6:9e:1b:73:77:41:e2:f3:7c:7e:6c:48:38:a1:
fc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:56:71:BB:92:B8:7E:4A:94:7E:BE:45:F2:DC:A1:29:C0:B5:99:85
X509v3 Authority Key Identifier:
keyid:D1:50:E2:77:16:F6:D1:D2:2A:39:F4:A6:DE:5B:E3:E8:93:4F:81:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0VDidxb20dIqOfSm3lvj6JNPgUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3355/0VDidxb20dIqOfSm3lvj6JNPgUI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
37:89:53:5d:56:2e:3d:24:a6:df:62:ed:15:01:b1:a7:8f:f0:
36:5d:d6:93:58:52:e8:61:c5:f6:17:39:78:c2:46:1e:a6:86:
84:d3:8c:f3:92:be:14:24:3d:40:6c:62:fb:8c:96:76:33:31:
d9:62:e2:14:38:95:c6:25:f7:ff:fa:ac:cf:a8:04:74:35:f8:
af:65:7b:aa:04:13:cc:7a:3f:17:d7:7f:85:a9:28:40:1f:82:
4b:03:b1:8b:db:11:cc:77:b1:b3:9f:6a:14:68:39:18:e4:41:
3c:63:a3:33:e7:15:c0:a0:d2:ee:ab:74:6f:f5:20:82:52:2e:
a8:bf:eb:39:6f:44:99:50:15:f3:0b:11:6f:9e:bd:b9:1e:60:
95:36:a3:2d:9c:40:39:50:7c:d6:0b:5a:0d:f0:a3:1d:37:f3:
b0:e0:bd:e5:6a:f8:d0:58:7b:85:1a:3b:15:8b:2e:6b:1b:e8:
68:c9:81:3f:bc:89:22:29:b9:b2:a0:b4:b1:87:44:a2:76:f4:
27:ef:f0:33:ba:3f:3d:5d:91:98:f0:3f:14:bf:87:95:db:4a:
7a:24:17:0d:c7:1b:27:57:a2:a6:0e:15:6e:09:93:a8:f2:da:
66:1d:2f:90:5a:c9:da:7e:9f:54:cf:68:3b:bf:b2:06:bf:7c:
d3:3c:f1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:21:49 2025 by rpki-client