Manifest
$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft
File: 9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft (raw, json)
Hash identifier: 3174Rf7V4dMFrVd8p/3HFSSfupLrD88ajpexsMBAr4E=
Subject key identifier: 43:68:09:78:9A:65:0D:1A:65:32:F7:60:33:67:46:2E:94:03:B6:96
Authority key identifier: 9A:AF:2E:FC:0F:89:9F:EE:1E:C4:D9:9E:1C:42:C8:D4:41:64:DA:43
Certificate issuer: /CN=A91E5D610000/serialNumber=9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43
Certificate serial: 20CE605E4BA28631A9455A17EE581F1AC81897FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mq8u_A-Jn-4exNmeHELI1EFk2kM.cer
Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft
Manifest number: 4A
Signing time: Sat 04 May 2024 11:36:16 +0000
Manifest this update: Sat 04 May 2024 11:31:16 +0000
Manifest next update: Sun 05 May 2024 11:58:16 +0000
Files and hashes: 1: 3130332e3136352e3131312e302f32342d3234203d3e2034353338.roa (hash: M2F/1Y52p6FBQGkdTHB9vwPndXGrm+gqYsHCsixyZNA=)
2: 9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.crl (hash: ucEghiF842gy5O/MDDkSY1Bt4ue2OWCkQLnnCJdNGUU=)
3: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (hash: wcc6m6zeJgfv/RRIt2m8bFjCvnP1Tnjr0Wty5noIhLk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:ce:60:5e:4b:a2:86:31:a9:45:5a:17:ee:58:1f:1a:c8:18:97:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E5D610000/serialNumber=9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43
Validity
Not Before: May 4 11:31:16 2024 GMT
Not After : May 5 11:58:16 2024 GMT
Subject: CN=436809789A650D1A6532F7603367462E9403B696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0b:ff:2e:fc:98:c3:69:67:c2:5d:79:ea:6b:
85:09:09:e0:d5:2c:86:3a:05:f4:d3:38:11:9f:9d:
ad:4c:6e:4a:01:b9:5c:7a:6d:f3:a6:f1:60:70:ea:
f7:c9:3d:bd:36:b8:15:f4:2b:91:53:a7:b7:e4:ff:
c5:55:f5:be:4f:ca:0b:a2:44:06:7c:6a:27:03:12:
23:4a:a6:44:54:d4:67:50:b4:60:e0:f8:8c:9d:69:
09:df:2a:ee:65:34:08:31:4f:aa:ac:1b:aa:60:b9:
ba:9f:05:28:9c:a6:20:cc:c4:16:6e:a4:52:f8:b0:
0b:a1:04:da:2c:84:20:cd:d1:59:70:91:4f:fe:41:
1b:9f:cd:21:8e:57:63:cd:ae:fc:5a:a2:d0:e2:79:
cb:db:f6:25:3f:0e:79:bc:62:d4:d0:7e:9e:1a:06:
3e:23:9c:02:46:c1:20:f7:23:a2:f2:52:31:cb:90:
f3:64:7d:bc:18:fd:df:61:07:bb:92:58:2f:51:2e:
85:56:f4:bd:a1:05:73:d5:3f:b0:2f:e0:40:3d:e8:
dd:22:f3:c9:79:2f:b7:95:cb:52:35:2b:4f:b7:35:
2f:7e:cf:91:7d:a2:ad:a0:c3:dc:0a:b2:b7:c3:4c:
6c:4b:f4:20:bc:e1:c9:97:d5:76:f3:05:c8:c6:7b:
57:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:68:09:78:9A:65:0D:1A:65:32:F7:60:33:67:46:2E:94:03:B6:96
X509v3 Authority Key Identifier:
keyid:9A:AF:2E:FC:0F:89:9F:EE:1E:C4:D9:9E:1C:42:C8:D4:41:64:DA:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mq8u_A-Jn-4exNmeHELI1EFk2kM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/9AAF2EFC0F899FEE1EC4D99E1C42C8D44164DA43.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:83:85:e0:45:c4:df:9c:0d:f6:83:94:b8:4d:03:6d:b5:ba:
1f:63:70:cf:f3:cc:2a:0f:df:da:43:c5:cd:8a:90:65:af:c9:
33:14:fd:72:24:56:b1:b1:5a:16:9b:e6:17:9d:d4:15:5a:45:
1b:79:e4:9a:e0:37:c3:d5:5b:ed:2e:e5:62:0e:7f:13:05:df:
06:79:95:20:90:ae:03:16:63:a0:27:b4:46:19:24:e6:f3:e3:
99:87:fb:01:d6:ba:eb:6c:40:2b:b2:0e:4e:31:c8:ef:e0:70:
44:92:79:a2:dd:ac:6c:18:a2:7a:3a:24:e9:76:5d:7e:2e:c1:
86:9c:4f:45:f8:51:db:5d:51:0c:60:bf:ae:3b:ea:6b:fd:d8:
f2:7c:38:bb:92:02:12:fd:16:6e:ce:46:75:af:1a:8d:54:aa:
f0:02:62:f4:be:f2:fb:f5:2c:8e:ce:54:6c:bb:2c:6a:b3:bc:
df:2a:95:b9:df:bd:5c:ae:1b:42:6c:46:d5:32:f9:79:f8:4c:
0b:bd:89:0b:a2:6a:f3:03:60:c1:84:ea:61:88:b0:de:f3:ec:
58:89:12:a7:17:e4:29:38:40:e3:0e:0f:7b:9c:ff:16:fb:e9:
ff:dd:fe:5d:16:11:9a:09:43:c0:b2:c6:ee:2a:06:2a:ba:5a:
1b:a4:98:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:15:00 2024 by rpki-client on console-fra.rpki-client.org