Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft
File: YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft (raw, json)
Hash identifier: 2irb15Jgq0KQMR3drsAO0R8QuU5XTqBQjKgc5D3eK9c=
Subject key identifier: ED:23:7B:79:59:A2:7F:5B:DF:B8:CE:97:8E:E2:B5:50:34:03:80:39
Authority key identifier: 61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E
Certificate issuer: /CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E
Certificate serial: 1B76
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft
Manifest number: 1B69
Signing time: Sun 01 Mar 2026 21:28:27 +0000
Manifest this update: Sun 01 Mar 2026 21:28:27 +0000
Manifest next update: Mon 02 Mar 2026 03:28:27 +0000
Files and hashes: 1: OBSIJudzuJf6E5wc9KiuVnPwtO8.roa (hash: OrMamXPOBn3LQsd70PUtZHIukdL36650IQqdOG8XKms=)
2: YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl (hash: oQRhlnP4s3alM6odp2Qnd/zYRZPedW0zSecbbohDuVw=)
3: gvqgf9X3F5lAkpyP9pMBz7_Af_s.roa (hash: dbjoFl3negX/Dh4v0U17o5gnK9+/dHfkN3BeOndRto4=)
4: ke-FN3rYTvgxO6_ePBmWuPrd8pM.roa (hash: SR1aaHQlQsTyy8wGvj/fzSjiYMsOF9jnGeWQew2ZpQ4=)
5: m_ku9b95rIZvTjlyKpvktiE2mmU.roa (hash: YCQPNj+dQ0XjKbvOY82q9utZ7Q/OXrj8oy8Hb+gPrIY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7030 (0x1b76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615BCE8F7F8A83DB939AE0F42FA05413B285181E
Validity
Not Before: Mar 1 21:28:27 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=ED237B7959A27F5BDFB8CE978EE2B55034038039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6e:a0:22:5a:c4:f8:55:eb:26:40:78:97:1a:
25:53:eb:52:1f:70:45:64:cd:44:4d:14:15:83:e3:
8b:d3:48:e9:a9:e1:dd:2c:7b:d5:ae:6e:2f:9d:09:
4c:45:f1:7f:45:fd:89:62:a4:11:52:c5:cc:87:28:
f6:50:9a:a8:67:87:90:c5:11:d7:05:b2:49:4f:cd:
70:52:63:4b:d3:88:b6:71:56:18:0d:eb:2b:ad:62:
49:00:2e:95:8d:99:37:16:bd:fb:71:ad:db:f4:0b:
ca:80:ae:7e:15:0e:82:b5:0d:f9:ce:e2:3d:81:aa:
a1:f4:10:f1:b9:2b:1c:cd:bc:a0:22:6a:65:2a:66:
82:86:09:85:2c:83:3d:a4:ce:57:49:c4:26:5e:25:
dc:13:c9:08:6d:af:c8:6a:e5:41:55:57:1e:32:c2:
47:db:5b:1d:36:f4:8a:90:5f:86:b6:63:44:60:cd:
4f:5e:3a:00:6b:c3:8c:8d:98:5a:ae:5b:ad:82:6d:
b2:99:32:3e:04:28:4a:d9:0c:3f:97:c2:0d:43:9e:
61:dc:c6:c0:71:82:5a:d7:b1:bc:6f:a1:46:08:b5:
b1:c8:06:f9:1f:6c:48:32:d2:0b:d7:1b:96:39:62:
91:70:8b:00:10:2d:0e:e9:de:de:b1:e7:a0:b9:8b:
31:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:23:7B:79:59:A2:7F:5B:DF:B8:CE:97:8E:E2:B5:50:34:03:80:39
X509v3 Authority Key Identifier:
keyid:61:5B:CE:8F:7F:8A:83:DB:93:9A:E0:F4:2F:A0:54:13:B2:85:18:1E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/861/YVvOj3-Kg9uTmuD0L6BUE7KFGB4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ab:dc:de:4f:ef:6f:c4:1a:1e:54:81:9a:94:66:da:ba:8b:11:
e8:2c:50:28:c4:7c:a9:c1:41:66:f3:13:35:0e:8e:8a:c2:ea:
95:e1:7c:a8:c0:96:c8:b7:c7:48:63:32:84:37:48:29:73:04:
1c:12:9c:59:c5:c3:99:27:9d:ca:12:57:20:9c:e8:10:df:21:
ce:d8:a7:7b:7a:1f:4b:61:76:b2:06:92:3b:b4:a3:74:f4:38:
e5:63:30:c9:cf:c9:48:d9:b9:aa:72:d0:dd:8e:6a:d1:49:67:
36:e5:61:b8:8d:a1:62:16:1a:cb:21:77:e4:4c:6d:9f:29:ad:
e0:0e:e0:ed:02:44:28:ad:23:47:87:d8:9b:e7:f0:cf:62:f8:
65:20:85:a9:1e:79:5b:bd:a6:41:68:bc:52:2b:ec:61:65:31:
96:11:d8:73:0b:1c:7e:de:ba:2d:e2:63:76:6a:b9:b5:77:97:
1c:4f:96:cb:87:50:7a:0e:91:e0:b9:55:8b:85:45:59:42:d9:
93:84:3f:d1:48:f9:09:ac:68:2f:43:83:78:35:8f:cb:56:b6:
64:da:fc:4b:eb:9d:02:7f:b1:b3:c5:e2:5d:9f:92:34:08:96:
c2:e9:2e:e3:2c:25:9e:9f:39:bd:9b:68:9b:21:61:63:fc:05:
de:d7:38:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:16:41 2026 by rpki-client