Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.mft
File: aKDPmms080wyohTyM89mbhBEwAI.mft (raw, json)
Hash identifier: 1Kto2IQqpl3PAbV0wTKbzVF9vJRwaxNp2YkIijnU5os=
Subject key identifier: 0C:14:A9:B1:57:FC:93:E5:61:6B:7E:23:3A:B1:86:F1:91:D6:6B:9C
Authority key identifier: 68:A0:CF:9A:6B:34:F3:4C:32:A2:14:F2:33:CF:66:6E:10:44:C0:02
Certificate issuer: /CN=68A0CF9A6B34F34C32A214F233CF666E1044C002
Certificate serial: 159F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aKDPmms080wyohTyM89mbhBEwAI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.mft
Manifest number: 159F
Signing time: Fri 20 Jun 2025 13:12:52 +0000
Manifest this update: Fri 20 Jun 2025 13:12:52 +0000
Manifest next update: Fri 20 Jun 2025 19:12:52 +0000
Files and hashes: 1: aKDPmms080wyohTyM89mbhBEwAI.crl (hash: YAR7BsdYtmG2vviHsuFzWL/cBKybghm21kmA+KygtJg=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5535 (0x159f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68A0CF9A6B34F34C32A214F233CF666E1044C002
Validity
Not Before: Jun 20 13:12:52 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=0C14A9B157FC93E5616B7E233AB186F191D66B9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:be:03:98:94:a5:bd:2b:9e:32:47:e9:84:41:
2d:25:14:18:42:3f:b9:3e:c8:8a:d5:03:3e:12:26:
ef:78:d6:f5:dc:ee:12:42:a0:bd:3b:67:3b:ff:9c:
de:9b:59:8e:dc:c8:d8:97:c5:73:93:39:3b:5b:8a:
a1:fe:13:47:76:82:b8:01:d8:59:39:30:bd:a8:74:
9f:a1:08:18:1a:fc:95:2d:ce:3a:5c:b1:3f:14:34:
e1:03:00:55:e1:26:a4:e3:d1:23:c9:63:21:2f:62:
cf:c1:e7:51:56:18:76:a8:2a:b4:86:68:d7:0b:99:
64:71:63:3f:33:42:56:16:ad:70:4c:9a:c5:18:8c:
af:9e:14:28:fb:d0:8d:5e:c9:42:30:7c:2f:d4:44:
31:b0:e8:65:2e:d0:44:ff:7c:7d:9b:16:93:16:16:
29:20:59:4b:f7:60:66:da:95:63:4b:97:1e:63:b8:
5c:3f:f2:8e:2e:26:73:6d:b1:2f:c5:12:d3:7c:c4:
e4:30:0f:6c:61:dd:71:bd:9f:e1:9e:c2:d9:08:f6:
d1:a2:67:dc:a7:89:b6:7b:f1:2e:45:87:d9:74:1d:
8b:96:0b:57:91:f7:46:01:e7:7a:ce:48:7a:50:5d:
2e:72:f1:7e:e3:ca:e7:ec:cb:92:6a:1d:56:0d:a3:
7b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:14:A9:B1:57:FC:93:E5:61:6B:7E:23:3A:B1:86:F1:91:D6:6B:9C
X509v3 Authority Key Identifier:
keyid:68:A0:CF:9A:6B:34:F3:4C:32:A2:14:F2:33:CF:66:6E:10:44:C0:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aKDPmms080wyohTyM89mbhBEwAI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/510/aKDPmms080wyohTyM89mbhBEwAI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
91:ee:8b:0c:0f:3f:90:cb:a2:4c:ec:75:e0:21:98:ae:43:cd:
97:7b:7a:b8:07:f8:14:21:40:a9:f5:c0:9b:a3:7b:a2:b3:9b:
a2:ae:56:03:4d:e1:3f:ba:42:90:fb:f7:df:74:e4:e2:91:e6:
49:ae:74:1e:dc:96:62:78:9e:63:f5:5d:55:3f:69:b5:49:e3:
13:c6:58:0a:07:62:ce:f6:19:c9:61:c1:89:83:35:87:32:b1:
1b:bd:c6:0c:d2:f2:67:35:69:64:26:71:7f:e3:94:38:ff:e7:
6e:ef:bc:8a:4e:1f:aa:fd:f5:8c:43:5e:74:17:b2:0a:f9:b2:
e3:fc:b9:e3:43:5f:22:58:78:4b:67:62:e3:cb:a0:02:a2:01:
c1:45:02:fc:f7:12:65:c4:a5:aa:20:c0:5a:18:e2:2e:f8:f1:
ad:ff:18:f8:da:7d:eb:3d:14:53:65:2a:93:76:1b:de:56:62:
a4:53:cb:d9:cc:a1:4a:36:ea:26:14:d4:1b:57:fd:a2:2d:d2:
fe:41:08:63:ae:d2:b7:d3:68:68:6f:bb:7a:33:08:01:2c:8f:
96:f0:a5:ab:0c:c6:66:d8:93:b3:8c:07:5a:33:04:39:0c:bb:
9b:92:83:9f:eb:09:84:04:bb:7f:6b:0a:5c:c2:01:f1:6d:67:
6f:f9:59:47
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICFZ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjhB
MENGOUE2QjM0RjM0QzMyQTIxNEYyMzNDRjY2NkUxMDQ0QzAwMjAeFw0yNTA2MjAx
MzEyNTJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDBDMTRBOUIxNTdGQzkz
RTU2MTZCN0UyMzNBQjE4NkYxOTFENjZCOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDavgOYlKW9K54yR+mEQS0lFBhCP7k+yIrVAz4SJu941vXc7hJC
oL07Zzv/nN6bWY7cyNiXxXOTOTtbiqH+E0d2grgB2Fk5ML2odJ+hCBga/JUtzjpc
sT8UNOEDAFXhJqTj0SPJYyEvYs/B51FWGHaoKrSGaNcLmWRxYz8zQlYWrXBMmsUY
jK+eFCj70I1eyUIwfC/URDGw6GUu0ET/fH2bFpMWFikgWUv3YGbalWNLlx5juFw/
8o4uJnNtsS/FEtN8xOQwD2xh3XG9n+GewtkI9tGiZ9ynibZ78S5Fh9l0HYuWC1eR
90YB53rOSHpQXS5y8X7jyufsy5JqHVYNo3u7AgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUDBSpsVf8k+Vha34jOrGG8ZHWa5wwHwYDVR0jBBgwFoAUaKDPmms080wyohTy
M89mbhBEwAIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEw
L2FLRFBtbXMwODB3eW9oVHlNODltYmhCRXdBSS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvYUtEUG1tczA4MHd5b2hUeU04OW1iaEJFd0FJLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTEwL2FLRFBtbXMwODB3eW9o
VHlNODltYmhCRXdBSS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQCR7osMDz+Qy6JM7HXgIZiuQ82Xe3q4B/gUIUCp9cCbo3uis5uirlYDTeE/ukKQ
+/ffdOTikeZJrnQe3JZieJ5j9V1VP2m1SeMTxlgKB2LO9hnJYcGJgzWHMrEbvcYM
0vJnNWlkJnF/45Q4/+du77yKTh+q/fWMQ150F7IK+bLj/LnjQ18iWHhLZ2Ljy6AC
ogHBRQL89xJlxKWqIMBaGOIu+PGt/xj42n3rPRRTZSqTdhveVmKkU8vZzKFKNuom
FNQbV/2iLdL+QQhjrtK302hob7t6MwgBLI+W8KWrDMZm2JOzjAdaMwQ5DLubkoOf
6wmEBLt/awpcwgHxbWdv+VlH
-----END CERTIFICATE-----
Generated at Fri Jun 20 19:37:06 2025 by rpki-client