Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.mft
File: zdnD6A790w6RIRaPwiqlCoVA3f8.mft (raw, json)
Hash identifier: uDjOqIXdOKW/PfxNoBhUNVqIp9VTHFBoQLwDI8bu0v4=
Subject key identifier: 18:A8:D9:43:81:90:4A:50:7E:3C:78:24:58:45:20:3A:C2:07:87:05
Authority key identifier: CD:D9:C3:E8:0E:FD:D3:0E:91:21:16:8F:C2:2A:A5:0A:85:40:DD:FF
Certificate issuer: /CN=CDD9C3E80EFDD30E9121168FC22AA50A8540DDFF
Certificate serial: 1F88
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zdnD6A790w6RIRaPwiqlCoVA3f8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.mft
Manifest number: 1F88
Signing time: Sat 21 Jun 2025 10:12:19 +0000
Manifest this update: Sat 21 Jun 2025 10:12:19 +0000
Manifest next update: Sat 21 Jun 2025 16:12:19 +0000
Files and hashes: 1: zdnD6A790w6RIRaPwiqlCoVA3f8.crl (hash: b/jipc8ILFeQ5602SjTZYOtYLIzY6stwBdS7x1KlTK4=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8072 (0x1f88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDD9C3E80EFDD30E9121168FC22AA50A8540DDFF
Validity
Not Before: Jun 21 10:12:19 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=18A8D94381904A507E3C78245845203AC2078705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:3b:f5:af:e8:66:b2:be:d7:f0:c6:14:cc:d7:
fd:4e:b1:f2:54:14:a0:87:1b:2c:92:4c:b9:de:93:
50:7a:a8:f7:d1:44:7a:a7:a1:bb:b7:45:7d:21:d9:
3e:fd:26:27:28:49:20:35:54:95:0f:19:7f:d3:8a:
08:d8:45:31:f7:5f:9e:37:36:84:76:6a:5a:76:0a:
0e:d2:37:d8:2d:ad:57:7c:bc:33:78:48:a8:15:c5:
c7:2e:9e:d9:e0:a0:1c:fc:44:2e:02:73:94:5d:0e:
0a:ae:96:33:2c:87:2b:fb:b0:ee:f3:b6:be:6e:3d:
96:55:00:64:ef:b8:e3:40:09:da:66:7f:c9:df:de:
dc:10:42:9c:5e:73:dc:d0:93:0f:3f:e2:55:63:b9:
5b:35:40:62:31:38:1c:0d:b5:9a:c6:5a:b7:fe:ec:
18:99:c6:5b:1d:34:60:a6:b5:cc:33:a3:87:dd:d5:
6b:bf:b4:80:59:fa:7d:c5:00:1a:39:5c:f8:33:d5:
20:45:d4:c1:d8:6e:75:d9:43:5b:26:80:a9:81:be:
1d:e1:97:9e:fb:0e:9c:78:f7:6d:af:02:24:9f:26:
6a:3f:26:09:2b:90:2e:56:fd:5d:8a:69:37:30:6a:
33:ab:92:ee:2f:1b:23:a8:34:e3:b8:de:ff:ae:df:
0e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A8:D9:43:81:90:4A:50:7E:3C:78:24:58:45:20:3A:C2:07:87:05
X509v3 Authority Key Identifier:
keyid:CD:D9:C3:E8:0E:FD:D3:0E:91:21:16:8F:C2:2A:A5:0A:85:40:DD:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zdnD6A790w6RIRaPwiqlCoVA3f8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8/zdnD6A790w6RIRaPwiqlCoVA3f8.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a3:70:a8:72:6e:e4:3d:86:a7:2d:6f:9e:b3:97:a3:aa:a9:fd:
a5:ba:a6:64:34:d3:b3:6b:9e:6a:f0:4c:9a:a5:d9:88:70:09:
f9:3d:52:4d:7c:06:58:d2:c8:48:ed:40:0a:c3:6f:69:9d:f7:
50:2f:99:39:12:54:dc:5d:5a:a8:86:f2:d4:3e:cf:e4:5e:bd:
a2:0b:20:af:2e:59:f6:e9:f9:7b:e8:08:3d:73:4b:af:65:c8:
a7:ef:a5:43:99:76:ca:8d:38:3f:0e:8b:cc:bb:a2:63:77:91:
68:d1:3c:98:4b:92:59:67:a0:68:22:2b:78:97:b6:6d:51:05:
f5:ed:d1:89:81:5c:c1:c8:92:15:69:ec:8f:a3:58:13:6f:04:
58:48:0b:f7:22:f1:da:29:d1:a9:6e:17:55:33:4b:c7:e9:d5:
25:d0:ee:43:b3:d2:7a:74:75:77:27:b9:77:58:18:40:a9:3c:
26:bb:a3:cf:1d:fa:0b:d6:c3:17:57:e9:37:a0:d9:01:de:32:
7a:75:d9:7c:cc:9c:e2:a9:e9:a7:61:02:77:f4:fc:56:3f:ee:
c1:22:99:05:d5:67:b2:ce:af:3f:3c:99:80:68:1c:aa:60:12:
0a:73:eb:0c:a1:cb:75:79:55:cf:eb:73:4f:8f:22:94:b3:3b:
3d:f5:ff:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 21 16:16:51 2025 by rpki-client