Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3417/Q-b9qw8VDunEPPWiu3ZYin5fhQI.mft
File: Q-b9qw8VDunEPPWiu3ZYin5fhQI.mft (raw, json)
Hash identifier: paVuOcT6TdBnlD8ulw/O74y4qAvqlaWIXlT6GspnABE=
Subject key identifier: 5B:62:CF:F4:F2:DA:D3:3E:A2:7E:8C:3A:5E:DC:F5:33:45:C0:5A:25
Authority key identifier: 43:E6:FD:AB:0F:15:0E:E9:C4:3C:F5:A2:BB:76:58:8A:7E:5F:85:02
Certificate issuer: /CN=43E6FDAB0F150EE9C43CF5A2BB76588A7E5F8502
Certificate serial: 0185
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Q-b9qw8VDunEPPWiu3ZYin5fhQI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3417/Q-b9qw8VDunEPPWiu3ZYin5fhQI.mft
Manifest number: 0182
Signing time: Mon 02 Mar 2026 00:00:27 +0000
Manifest this update: Mon 02 Mar 2026 00:00:27 +0000
Manifest next update: Mon 02 Mar 2026 06:00:27 +0000
Files and hashes: 1: 7qqfCczVpqzPAfV0rFSiOaInTZo.roa (hash: He/3RBMb/hdGBTYVCyG/HVT/wnrhQ3TGFKE110yMwhM=)
2: Q-b9qw8VDunEPPWiu3ZYin5fhQI.crl (hash: a/gNZ7qgMuMjaHWIo4SNcspuQDJLhwyYGaOH6WU+vdQ=)
3: zyd9sNtiUGWk-rPMxkaAwd-jMjU.roa (hash: gJ4z3p20OCkd5sduSBhdXm57HvoUXImlRN+QEWanG2A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389 (0x185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43E6FDAB0F150EE9C43CF5A2BB76588A7E5F8502
Validity
Not Before: Mar 2 00:00:27 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=5B62CFF4F2DAD33EA27E8C3A5EDCF53345C05A25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d3:9d:79:41:41:05:98:86:d6:7d:6c:95:6c:
5f:44:23:23:51:d9:6e:da:c9:b3:b1:2d:fc:e9:e2:
f5:e0:be:d6:b2:90:ef:27:c5:aa:29:ec:10:fb:2a:
56:d1:a8:27:d6:03:99:49:44:3c:ef:ad:8d:1f:1b:
ac:6c:50:43:f4:6c:d0:dc:a7:f4:94:66:81:f7:b2:
30:8a:cb:fb:17:6f:5f:3a:44:85:d4:dc:d3:7d:6b:
d2:4f:56:f5:da:df:e2:46:81:53:c4:55:1d:44:8d:
02:56:cd:3a:c5:28:bd:c2:18:93:d6:47:2d:ca:c6:
8d:06:79:05:66:e8:4d:fa:60:a6:8d:18:a4:98:37:
65:34:87:92:e9:2d:93:25:18:a7:61:91:1c:af:08:
5c:20:d7:76:f8:63:d4:36:a8:95:55:c0:dc:c4:8c:
5a:49:bf:47:d1:f5:0c:f7:fa:49:e4:d3:c4:fc:a1:
a4:0c:eb:c1:29:db:e3:20:ba:8f:17:98:cd:8c:d4:
7c:a7:8d:44:dd:82:61:f4:ac:7b:61:92:66:fe:68:
83:a1:8e:0b:de:9b:cc:b4:f9:a2:2b:7e:d8:00:db:
30:56:f7:bd:e0:e4:74:4e:f6:2b:c7:cf:45:73:1c:
53:b0:fd:4f:f0:54:9a:b8:c9:dd:9d:51:5b:f1:56:
7b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:62:CF:F4:F2:DA:D3:3E:A2:7E:8C:3A:5E:DC:F5:33:45:C0:5A:25
X509v3 Authority Key Identifier:
keyid:43:E6:FD:AB:0F:15:0E:E9:C4:3C:F5:A2:BB:76:58:8A:7E:5F:85:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3417/Q-b9qw8VDunEPPWiu3ZYin5fhQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Q-b9qw8VDunEPPWiu3ZYin5fhQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3417/Q-b9qw8VDunEPPWiu3ZYin5fhQI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
63:7a:0e:b3:c3:d2:2a:27:78:93:69:25:7b:0c:74:bc:7d:da:
75:0c:52:13:87:f2:5e:50:d9:87:0e:53:b9:61:87:08:2f:34:
1c:55:a9:1b:9a:12:8b:d9:a6:52:54:6a:22:f7:a7:e5:9a:89:
84:35:8e:b9:43:e4:8a:fe:bc:7c:23:d3:51:ff:8c:97:45:ac:
12:e5:a6:33:35:f0:52:5d:75:9d:82:c7:e1:6e:6c:f6:87:ec:
e8:f4:57:16:41:d1:45:4c:8a:c5:4d:74:94:44:a4:25:ac:35:
85:53:5c:0d:7c:42:8f:55:a5:83:04:92:16:40:17:a0:1e:dd:
af:ee:a0:1b:7c:ab:8d:8e:c4:66:43:eb:30:4e:9e:21:36:a2:
f9:96:28:75:d1:bf:97:1d:30:b1:d3:f3:f7:6c:18:3a:a6:b8:
35:6f:60:19:ce:8d:b8:82:ca:92:44:c0:28:9c:78:17:2c:8e:
9d:d9:a6:c6:8c:a8:db:a9:8a:84:66:7b:96:ee:d5:e6:3c:e2:
70:0f:98:6b:65:19:f5:14:9d:18:d2:8a:de:3f:d6:f7:92:3d:
fe:d6:99:92:47:a1:1f:51:2e:97:2a:b0:88:97:f3:21:c9:40:
9a:9a:17:b0:dc:37:13:df:1f:a2:61:67:cc:00:4f:97:12:1b:
a1:19:38:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:20:15 2026 by rpki-client