Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.mft
File: TnhsicjML72c4lQNmb4SziD2uLM.mft (raw, json)
Hash identifier: vKpw2BGg7z+bs9LzuXmn8DCwl+K3XGImw3uMewrPmb8=
Subject key identifier: 9F:63:9C:D9:A3:0D:BF:38:00:4F:0F:8F:1F:47:30:E9:EE:E7:DD:4D
Authority key identifier: 4E:78:6C:89:C8:CC:2F:BD:9C:E2:54:0D:99:BE:12:CE:20:F6:B8:B3
Certificate issuer: /CN=4E786C89C8CC2FBD9CE2540D99BE12CE20F6B8B3
Certificate serial: 1C72
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TnhsicjML72c4lQNmb4SziD2uLM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.mft
Manifest number: 1C72
Signing time: Mon 02 Mar 2026 07:29:36 +0000
Manifest this update: Mon 02 Mar 2026 07:29:36 +0000
Manifest next update: Mon 02 Mar 2026 13:29:36 +0000
Files and hashes: 1: TnhsicjML72c4lQNmb4SziD2uLM.crl (hash: lt74xFsPbjTgy3i7ZoKmHXbI3uppCc4uoiMf4QyhAeI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7282 (0x1c72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E786C89C8CC2FBD9CE2540D99BE12CE20F6B8B3
Validity
Not Before: Mar 2 07:29:36 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=9F639CD9A30DBF38004F0F8F1F4730E9EEE7DD4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0a:d5:95:90:65:ec:e1:dd:9e:9c:49:5a:57:
6d:f6:b6:6a:3d:8d:6d:25:0e:d4:5d:f2:3e:77:48:
0f:c9:7d:ab:8a:44:55:7d:ae:fa:15:13:25:0b:42:
93:3f:09:bf:20:b6:4d:5f:be:ce:df:b8:0d:ac:55:
0a:07:5f:1b:cf:05:8b:c3:06:36:47:0b:9f:42:a7:
9f:b9:93:0b:e9:47:80:e8:59:b4:bf:72:85:f8:4a:
a0:d9:50:87:7b:f1:77:ee:55:05:e8:ec:c5:74:b1:
9c:17:d4:bc:b1:74:4e:b5:a3:0a:10:f5:71:11:7b:
1b:43:d5:64:02:7b:d7:4e:59:ac:53:8c:ee:9e:c6:
93:27:16:5d:53:59:2b:f7:4e:6c:79:ce:72:3e:a7:
65:61:8b:75:41:12:f1:12:ab:51:8b:d9:b6:2a:d1:
a4:9d:39:d2:7b:7d:11:e4:69:1a:4e:65:ce:0c:69:
57:b5:e5:da:d9:66:04:da:a2:4b:f3:ac:7d:3d:ee:
91:08:a6:31:16:7e:f6:97:d2:4b:28:6e:60:6d:8b:
ab:89:73:f7:14:f2:64:4d:e2:5c:cb:cf:b2:e7:ca:
10:7a:e1:c7:1c:9f:66:76:9b:01:63:6f:56:80:af:
ec:ab:e9:73:1d:11:d4:08:00:e4:96:27:06:a3:4e:
60:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:63:9C:D9:A3:0D:BF:38:00:4F:0F:8F:1F:47:30:E9:EE:E7:DD:4D
X509v3 Authority Key Identifier:
keyid:4E:78:6C:89:C8:CC:2F:BD:9C:E2:54:0D:99:BE:12:CE:20:F6:B8:B3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TnhsicjML72c4lQNmb4SziD2uLM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/341/TnhsicjML72c4lQNmb4SziD2uLM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d0:ce:5c:e6:4c:49:66:ce:a4:6c:13:9f:ea:12:b2:b7:9d:
31:b7:7e:d9:ea:06:60:44:cb:59:e8:ad:12:a4:56:99:e5:aa:
c8:e4:9a:f2:ed:7b:d5:fb:21:94:4d:67:f7:fd:dc:b4:4a:25:
3a:62:ac:b6:37:c6:3a:dd:c0:12:ec:dc:6a:9b:7f:f5:24:e3:
22:29:7a:5a:e9:d4:d6:54:a6:9b:ab:eb:76:22:67:3f:c9:9e:
14:42:78:cb:cb:23:fd:9c:a9:80:1f:dc:8f:46:4b:2e:77:a6:
70:ff:89:3d:6d:29:3d:7d:bc:e3:9a:9c:76:d9:1c:54:7f:05:
86:8e:7c:ce:90:0c:84:bc:29:c7:79:68:08:45:76:26:09:02:
ec:07:29:e2:dd:92:2e:7d:8e:41:9a:e7:b2:92:da:38:81:2c:
2a:64:1e:35:09:76:3c:47:f2:6b:12:7d:a5:91:d2:0b:51:ee:
83:d7:ff:0b:74:88:cd:99:0a:48:28:4a:3f:19:8d:4e:aa:3e:
a7:c2:e2:00:ad:50:90:e0:3b:8f:4f:25:db:3e:80:fb:e4:ca:
f1:2c:b5:d3:6b:49:63:8e:82:6f:f0:39:03:89:ea:cf:c9:26:
1a:37:ff:a6:f4:33:49:6b:7b:89:f1:83:13:78:ff:56:2e:ad:
a4:9c:63:88
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICHHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3
ODZDODlDOENDMkZCRDlDRTI1NDBEOTlCRTEyQ0UyMEY2QjhCMzAeFw0yNjAzMDIw
NzI5MzZaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDlGNjM5Q0Q5QTMwREJG
MzgwMDRGMEY4RjFGNDczMEU5RUVFN0RENEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtCtWVkGXs4d2enElaV232tmo9jW0lDtRd8j53SA/JfauKRFV9
rvoVEyULQpM/Cb8gtk1fvs7fuA2sVQoHXxvPBYvDBjZHC59Cp5+5kwvpR4DoWbS/
coX4SqDZUId78XfuVQXo7MV0sZwX1LyxdE61owoQ9XERextD1WQCe9dOWaxTjO6e
xpMnFl1TWSv3Tmx5znI+p2Vhi3VBEvESq1GL2bYq0aSdOdJ7fRHkaRpOZc4MaVe1
5drZZgTaokvzrH097pEIpjEWfvaX0ksobmBti6uJc/cU8mRN4lzLz7LnyhB64ccc
n2Z2mwFjb1aAr+yr6XMdEdQIAOSWJwajTmBrAgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUn2Oc2aMNvzgATw+PH0cw6e7n3U0wHwYDVR0jBBgwFoAUTnhsicjML72c4lQN
mb4SziD2uLMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQx
L1RuaHNpY2pNTDcyYzRsUU5tYjRTemlEMnVMTS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvVG5oc2ljak1MNzJjNGxRTm1iNFN6aUQydUxNLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzQxL1RuaHNpY2pNTDcyYzRs
UU5tYjRTemlEMnVMTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQAL0M5c5kxJZs6kbBOf6hKyt50xt37Z6gZgRMtZ6K0SpFaZ5arI5Jry7XvV+yGU
TWf3/dy0SiU6Yqy2N8Y63cAS7Nxqm3/1JOMiKXpa6dTWVKabq+t2Imc/yZ4UQnjL
yyP9nKmAH9yPRksud6Zw/4k9bSk9fbzjmpx22RxUfwWGjnzOkAyEvCnHeWgIRXYm
CQLsByni3ZIufY5Bmueykto4gSwqZB41CXY8R/JrEn2lkdILUe6D1/8LdIjNmQpI
KEo/GY1Oqj6nwuIArVCQ4DuPTyXbPoD75MrxLLXTa0ljjoJv8DkDierPySYaN/+m
9DNJa3uJ8YMTeP9WLq2knGOI
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:00:28 2026 by rpki-client