Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft
File: DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft (raw, json)
Hash identifier: XjOEDPS9SbsDUdw2qv7fpfz05E1R+YFoLIqU1sO8xSg=
Subject key identifier: 5C:64:82:33:F6:74:8F:CB:AC:F1:42:D4:6B:E9:6E:4F:03:96:2A:68
Authority key identifier: 0D:4A:3B:62:14:07:8C:A4:8E:66:F3:B8:C5:4F:1C:5F:DB:C9:DE:74
Certificate issuer: /CN=0D4A3B6214078CA48E66F3B8C54F1C5FDBC9DE74
Certificate serial: 1CC2
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft
Manifest number: 1CC2
Signing time: Sat 21 Jun 2025 06:14:36 +0000
Manifest this update: Sat 21 Jun 2025 06:14:36 +0000
Manifest next update: Sat 21 Jun 2025 12:14:36 +0000
Files and hashes: 1: DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.crl (hash: QSCxFSA44y/EREhbVj+90wTzQFft41IPQxuuNk9FrbI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7362 (0x1cc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D4A3B6214078CA48E66F3B8C54F1C5FDBC9DE74
Validity
Not Before: Jun 21 06:14:36 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=5C648233F6748FCBACF142D46BE96E4F03962A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fe:be:28:bc:e8:92:51:ab:b2:1b:df:f9:86:
30:13:3c:b6:06:e1:aa:a8:65:99:2d:88:d4:d5:a3:
2c:7b:4d:1d:c6:03:6e:7b:0a:f9:be:24:d6:f4:e1:
6e:b9:73:f2:b9:37:30:dd:bc:a8:a5:ab:65:f0:72:
ce:42:40:b2:e4:57:09:70:ba:f6:02:ea:c4:5b:d3:
78:b0:f9:45:c2:43:eb:e5:6f:6f:ac:b9:71:a8:5f:
86:fb:bc:5a:40:fc:e7:34:21:96:7f:e9:53:a3:49:
69:21:42:4d:0e:f2:ec:b0:48:6c:4f:93:67:97:fc:
45:86:cd:e4:3b:13:a9:a7:46:9a:32:8c:44:3f:84:
21:18:21:86:30:e6:71:31:cc:47:0d:d7:8b:7c:a8:
9e:7d:70:74:56:4b:6c:92:9d:51:24:b9:7f:61:7f:
28:b6:69:8b:fe:29:be:33:2f:2a:87:b1:e5:76:a7:
8f:a3:72:7f:6d:e1:bf:8d:71:1b:dd:91:73:92:16:
3b:17:a6:7c:eb:47:39:aa:2b:65:0f:d0:94:82:33:
90:37:f4:32:d0:8c:72:86:17:12:4b:74:82:9b:32:
07:93:12:3b:c7:c5:84:c2:2f:71:47:aa:af:cc:4d:
17:7d:17:2f:12:e8:cb:84:ed:de:fd:d4:e1:03:45:
7b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:64:82:33:F6:74:8F:CB:AC:F1:42:D4:6B:E9:6E:4F:03:96:2A:68
X509v3 Authority Key Identifier:
keyid:0D:4A:3B:62:14:07:8C:A4:8E:66:F3:B8:C5:4F:1C:5F:DB:C9:DE:74
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7c:f0:2e:94:42:cc:1d:da:63:87:63:95:c3:1a:76:74:0b:e5:
6c:f6:a5:9c:23:43:64:06:17:e8:00:89:ac:90:e9:8a:e7:74:
06:cb:26:a4:34:f5:e1:1d:a7:32:d8:d5:b5:0e:ea:ad:6b:25:
73:39:62:11:8a:ca:dd:2a:8d:fd:c2:a8:d8:a5:aa:6a:cf:a7:
1c:3c:be:62:67:70:0a:e5:47:dd:78:26:6e:d0:e9:6c:08:ab:
8f:87:06:73:6c:de:f4:64:78:fa:2a:09:64:db:9e:cd:d3:62:
4f:f9:73:c0:0e:30:b1:7a:28:8d:c4:2e:a7:bc:38:e1:ee:f2:
d6:66:e6:13:cc:45:25:2b:0f:84:e9:dd:5d:90:11:99:ed:00:
54:c0:79:52:71:42:92:86:7f:12:8d:ed:5e:80:c9:41:40:a5:
63:78:60:14:60:4b:0a:ed:68:8d:00:61:f2:79:d8:e6:86:4d:
ec:c0:7f:30:ee:2b:9d:e6:da:31:70:47:77:e9:c8:bb:48:85:
1d:0e:1f:69:51:d2:c5:99:93:19:00:48:e3:b8:cd:1c:d0:00:
ab:22:fe:30:b4:4f:e4:cc:c9:e6:2e:38:fe:b9:30:90:74:ee:
39:ef:fd:25:8a:84:17:bd:95:24:6e:1c:b2:83:e3:44:49:3b:
8e:1c:b8:32
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICHMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ0
QTNCNjIxNDA3OENBNDhFNjZGM0I4QzU0RjFDNUZEQkM5REU3NDAeFw0yNTA2MjEw
NjE0MzZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDVDNjQ4MjMzRjY3NDhG
Q0JBQ0YxNDJENDZCRTk2RTRGMDM5NjJBNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDe/r4ovOiSUauyG9/5hjATPLYG4aqoZZktiNTVoyx7TR3GA257
Cvm+JNb04W65c/K5NzDdvKilq2Xwcs5CQLLkVwlwuvYC6sRb03iw+UXCQ+vlb2+s
uXGoX4b7vFpA/Oc0IZZ/6VOjSWkhQk0O8uywSGxPk2eX/EWGzeQ7E6mnRpoyjEQ/
hCEYIYYw5nExzEcN14t8qJ59cHRWS2ySnVEkuX9hfyi2aYv+Kb4zLyqHseV2p4+j
cn9t4b+NcRvdkXOSFjsXpnzrRzmqK2UP0JSCM5A39DLQjHKGFxJLdIKbMgeTEjvH
xYTCL3FHqq/MTRd9Fy8S6MuE7d791OEDRXvdAgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUXGSCM/Z0j8us8ULUa+luTwOWKmgwHwYDVR0jBBgwFoAUDUo7YhQHjKSOZvO4
xU8cX9vJ3nQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTk1
L0RVbzdZaFFIaktTT1p2TzR4VThjWDl2SjNuUS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvRFVvN1loUUhqS1NPWnZPNHhVOGNYOXZKM25RLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTk1L0RVbzdZaFFIaktTT1p2
TzR4VThjWDl2SjNuUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQB88C6UQswd2mOHY5XDGnZ0C+Vs9qWcI0NkBhfoAImskOmK53QGyyakNPXhHacy
2NW1DuqtayVzOWIRisrdKo39wqjYpapqz6ccPL5iZ3AK5UfdeCZu0OlsCKuPhwZz
bN70ZHj6Kglk257N02JP+XPADjCxeiiNxC6nvDjh7vLWZuYTzEUlKw+E6d1dkBGZ
7QBUwHlScUKShn8Sje1egMlBQKVjeGAUYEsK7WiNAGHyedjmhk3swH8w7iud5tox
cEd36ci7SIUdDh9pUdLFmZMZAEjjuM0c0ACrIv4wtE/kzMnmLjj+uTCQdO457/0l
ioQXvZUkbhyyg+NESTuOHLgy
-----END CERTIFICATE-----
Generated at Sat Jun 21 09:47:18 2025 by rpki-client