Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.mft
File: LiZtw-rYDrJdSYWKZNwe8cihuUI.mft (raw, json)
Hash identifier: J+Zc3gM3SBU6qYleBsPXfodsgl4RZ/b5r1fUD2+DDxE=
Subject key identifier: 3D:AB:33:4D:EF:9E:C0:9F:69:7B:E2:E8:AA:96:12:66:37:E5:FE:2D
Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Certificate serial: 66
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.mft
Manifest number: 59
Signing time: Sat 26 Apr 2025 11:07:40 +0000
Manifest this update: Sat 26 Apr 2025 11:07:40 +0000
Manifest next update: Sat 26 Apr 2025 17:07:40 +0000
Files and hashes: 1: -1TXyCnR9iUOSL2BUXFRzk72O2k.roa (hash: Gv9OHjB2+pxSSGvait4ep8/w3eAyFS/+a3xNLHuDb58=)
2: -GYOd-df_Oy-f0YGZ8QoXpE-KUY.roa (hash: XMRU4RMulafL9ykW2oShRAn56DaYEZ2ldVuJ0Q69omY=)
3: LiZtw-rYDrJdSYWKZNwe8cihuUI.crl (hash: /8V4IlBqbJy4E2DhhugLHg9GXFBxnXXznpcq6Ml8oRQ=)
4: MtZDpTZ70d2pPcDrnrLfRtErlHs.roa (hash: kct1KBzlRi9WU8ZnI1ARMiBQfEL2G3rm7rfqc6M11RI=)
5: N068Movxhd0HY-G9IlBTH0wcH-o.roa (hash: 52PacQFpyIpw+nFdeX2RQwEMG/bZk45cRChsSeSXizk=)
6: OjvJeSo6lsEg9uLCdozMhBG1wpM.roa (hash: o11AaYnXnEfRHY+f+c5bRhxX0vq/1+fUyNDi4psENWI=)
7: ZIu2cDATC1fuyNWUre-4z8MdRJQ.roa (hash: FvWAWdHlZfe8cZsITf2/A06d9VsOp6LGA7o/YZd8tAI=)
8: g6dvdPPpijOkcmRmRTZnT-y14Tk.roa (hash: CB2d6yyYQRrRoAdL2nEn/Kl5Yw9asCUF8Gr2w7kfsrs=)
9: kHETLM6cygeGpKKoqih1EPU7gmI.roa (hash: +LQA3OraGUIU6wW3F0A+ePFfIqnRqwHWcGXQxQ6FNG4=)
10: nHfB2GHYBmc8bX5DxbEirv_IKF0.roa (hash: 6zuNH+NuLOtHpcZwmZyV/YBPSvVE39rWVdrUOXiD83g=)
11: yVCeVSdYcGSgIEZ7ns34fALeY6w.roa (hash: 37YcQVfz5Xs12JKZlzGMhU0SATgmn3/Zn9Jnck5yiyU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102 (0x66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942
Validity
Not Before: Apr 26 11:07:40 2025 GMT
Not After : Apr 9 06:33:21 2026 GMT
Subject: CN=3DAB334DEF9EC09F697BE2E8AA96126637E5FE2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:04:1a:85:4f:41:aa:4f:1d:ad:88:bd:9e:28:
1f:ee:13:f9:de:f9:37:ac:78:ea:a9:b3:6d:4b:31:
54:0f:be:48:75:53:a3:bb:f9:eb:19:27:3a:cd:ad:
bd:a9:d6:82:d8:76:ca:7c:31:80:53:db:5c:e5:b1:
f6:b9:9b:5a:3d:24:8f:1c:9a:f4:2d:16:d4:8a:6f:
66:0a:db:b7:ec:fd:e8:9c:5f:5f:78:0c:ca:42:91:
f4:9f:96:45:b8:19:f0:b7:90:92:8a:39:fc:85:bd:
15:1f:8a:72:49:91:41:25:30:2c:7a:c1:44:a5:98:
bb:93:62:25:87:cf:11:46:0e:ec:f6:29:fd:8c:01:
40:d9:3b:5a:a4:53:d1:57:72:bd:85:81:3e:63:88:
9d:a0:cf:31:3e:50:6d:94:81:6e:96:bb:ba:09:e9:
32:3b:87:3e:2b:03:b4:36:c8:14:1a:45:4d:11:2c:
18:53:66:c7:b7:6b:7f:12:68:3e:e7:f6:e8:09:c6:
c8:da:61:14:e1:8a:8a:37:bd:73:91:1e:83:1d:47:
77:e4:3c:59:07:32:ad:4c:47:e3:5a:ab:27:81:a8:
f9:02:67:a1:4a:5b:cf:a9:de:68:a4:31:94:d8:be:
e9:da:1f:83:f7:d2:26:6a:5f:cc:99:ba:40:62:01:
92:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:AB:33:4D:EF:9E:C0:9F:69:7B:E2:E8:AA:96:12:66:37:E5:FE:2D
X509v3 Authority Key Identifier:
keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
47:46:44:c0:f1:13:50:2d:d3:16:9c:8b:39:75:36:ce:e5:bf:
37:4d:f7:38:36:c3:46:d3:ac:92:16:7a:da:cd:18:1e:23:1b:
12:cd:e0:db:33:b2:2c:43:7c:49:16:ae:10:ab:8a:9d:4c:df:
a5:97:0e:02:21:71:94:92:b1:64:85:8e:0e:23:cc:6c:6b:0b:
70:59:76:48:69:f1:3a:6f:11:89:e5:eb:5b:3b:c3:e2:92:47:
40:9a:0c:9c:c5:f8:1e:bc:68:7a:0f:3b:34:c5:e8:4d:f7:d0:
47:04:da:64:00:2c:42:a6:4a:64:21:8a:3e:2c:f7:3c:53:9d:
24:c4:a6:41:e9:73:59:e1:d8:d4:fd:6c:cf:48:eb:36:f7:60:
1f:25:4a:ca:04:ec:4e:a3:e7:c7:56:58:d0:e1:1e:62:44:11:
1e:72:56:dd:97:31:bb:c5:48:57:8a:d8:18:fb:fb:2f:2d:c2:
9b:15:4b:49:64:e2:35:b2:d4:09:fe:2e:9a:23:12:be:42:cd:
18:53:39:79:7a:ef:fe:f4:bc:08:94:c9:b1:bc:22:93:af:54:
bd:b6:39:cc:c6:91:89:78:07:13:11:4f:78:cb:6f:e2:0c:8b:
fa:20:a0:f2:81:3c:51:8a:37:39:8d:ba:93:71:fd:37:63:19:
fb:5a:c9:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:25:51 2025 by rpki-client