Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.mft
File: _63I3WE2bNhNmVIbY4OA6LUC5uQ.mft (raw, json)
Hash identifier: 8QKoWbW75MnuheYXW7ELp/UoyfYWy7N6kBIXjPqc9LQ=
Subject key identifier: 79:1B:A4:E7:22:4B:38:41:76:4D:7F:2F:8D:34:FD:37:E9:D5:88:9A
Authority key identifier: FF:AD:C8:DD:61:36:6C:D8:4D:99:52:1B:63:83:80:E8:B5:02:E6:E4
Certificate issuer: /CN=FFADC8DD61366CD84D99521B638380E8B502E6E4
Certificate serial: 1480
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_63I3WE2bNhNmVIbY4OA6LUC5uQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.mft
Manifest number: 147E
Signing time: Sat 26 Apr 2025 08:37:55 +0000
Manifest this update: Sat 26 Apr 2025 08:37:55 +0000
Manifest next update: Sat 26 Apr 2025 14:37:55 +0000
Files and hashes: 1: YomhBleeUHornRZsU7lp0Uao304.roa (hash: FrEKbdfX4X8icmi7VQp7zPK/XNoFT4hchGrJJzBS6H0=)
2: _63I3WE2bNhNmVIbY4OA6LUC5uQ.crl (hash: XgtQE5vG384R6MXCKC3fzCZwWqY+uRmEbdP44uzJhaw=)
3: o3f2ejIWmEWnRAGwgEWEkjU2mZw.roa (hash: 4YWEoF5J33LWnQsLz2wIgxd0EMSlrQAvAmrnsiiM1yM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5248 (0x1480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FFADC8DD61366CD84D99521B638380E8B502E6E4
Validity
Not Before: Apr 26 08:37:55 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=791BA4E7224B3841764D7F2F8D34FD37E9D5889A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:b3:15:50:67:14:3b:f5:2e:7e:52:55:3a:
42:cb:f0:98:7f:8d:1d:51:7e:20:a2:ad:22:87:6c:
0b:1d:44:5d:1b:82:1a:83:d6:80:11:bb:a8:13:f3:
9e:8f:fb:11:98:09:ef:a6:33:9c:ad:fc:17:87:7e:
2f:08:3b:7f:b2:79:8d:8d:8f:88:e9:f0:6a:0b:c4:
8c:8d:8f:5c:f9:01:75:14:40:97:0c:a1:57:d2:2d:
38:06:c5:22:4d:26:03:77:0f:8f:0a:cb:d1:25:33:
a7:2a:51:84:07:3f:0a:a6:f0:98:27:0e:0e:b1:ed:
40:53:d3:74:4a:42:39:35:ce:64:1b:ef:c6:bf:bd:
22:db:32:d7:92:e1:1d:f2:bc:b6:6f:67:7a:04:c8:
63:ba:f0:94:a8:2b:36:b4:d9:69:ef:b9:90:fd:3f:
0a:5c:ac:a3:c9:44:90:87:80:03:9a:aa:ee:4c:90:
cf:4e:05:4d:87:03:46:47:96:b9:cf:cc:4a:a2:b0:
e1:99:f9:1f:69:84:45:7c:24:67:56:38:08:4d:e4:
96:fa:37:3f:fd:55:a7:d3:a2:78:29:b3:c4:68:e2:
65:ef:38:a5:4a:18:a7:84:b0:64:3a:9d:04:fc:38:
2e:6a:0a:86:69:91:cc:fb:35:37:4b:2f:70:51:8c:
20:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1B:A4:E7:22:4B:38:41:76:4D:7F:2F:8D:34:FD:37:E9:D5:88:9A
X509v3 Authority Key Identifier:
keyid:FF:AD:C8:DD:61:36:6C:D8:4D:99:52:1B:63:83:80:E8:B5:02:E6:E4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_63I3WE2bNhNmVIbY4OA6LUC5uQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/_63I3WE2bNhNmVIbY4OA6LUC5uQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
31:c1:13:9d:7c:ce:c5:ac:be:67:7f:a6:5d:8c:f2:28:28:5f:
e5:1f:aa:8a:a0:bd:20:66:be:f5:5c:25:ce:67:9c:79:c3:07:
be:d6:05:fc:59:0c:3a:4f:fb:65:5e:9f:bf:2f:c5:00:41:ea:
0b:ac:3f:41:17:b7:00:12:23:ea:51:48:ae:7f:3f:9f:41:59:
7a:5e:5e:06:6e:fd:c2:4e:c0:d5:77:0e:62:ec:ed:4e:c5:16:
7d:ae:31:57:e2:44:92:bc:44:a7:ea:5f:48:71:50:e9:3d:c3:
27:46:9d:0e:14:42:f3:37:cb:cb:15:54:71:3f:de:36:59:16:
26:05:32:ad:b2:00:95:4c:99:3e:05:a3:c5:6d:7f:c6:73:bd:
af:49:9a:64:cc:bc:f6:59:5a:41:6b:ae:02:7d:9f:0b:1e:b0:
20:10:5e:a6:ca:4c:42:bb:c7:e2:05:c9:d6:4e:97:ab:39:78:
69:1b:8b:57:b0:e7:54:8d:96:74:12:e9:4e:dd:07:15:70:53:
6e:4a:de:96:6f:42:d4:9f:a2:f2:0e:f8:fb:a6:54:cb:48:c0:
d2:eb:9d:43:e4:b6:b6:d6:b8:15:26:29:81:4d:46:77:64:75:
6f:35:ab:fe:ac:fe:0c:dc:7e:1f:4d:60:50:34:4c:c7:0f:35:
13:f2:36:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:07:26 2025 by rpki-client