Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft
File: erbi9MRXMdA8J66v3WCGEYcbQjw.mft (raw, json)
Hash identifier: UPLPDQELQxzIo9Qs3IroiF6WzuFf12bFnuD74vwdq40=
Subject key identifier: 53:02:D3:FB:83:49:03:BC:D0:6F:61:22:61:62:1D:D1:64:57:EF:C6
Authority key identifier: 7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C
Certificate issuer: /CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C
Certificate serial: 1132
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft
Manifest number: 1129
Signing time: Sun 03 Nov 2024 22:54:07 +0000
Manifest this update: Sun 03 Nov 2024 22:54:07 +0000
Manifest next update: Mon 04 Nov 2024 04:54:07 +0000
Files and hashes: 1: erbi9MRXMdA8J66v3WCGEYcbQjw.crl (hash: qDlshVcjoDuuyIeWurUVyPyJuHzGZfORo81iDme6xOM=)
2: r7WQGMREEfI4Fmg6PQ3ktSkAtpc.roa (hash: HFIG7iXNBsXb+vT7M7qx9nPx1zt4/JVmwPHUeyaqDfU=)
3: rtWQWkNzdmM7X4cgcVVh0l6Nwcw.roa (hash: GH/OShse8GQ4IEPWkcEUIqoGm88NyQuvgij1K2K17yc=)
4: v7BCrE2vagBj7IKaaD72gqvDsZg.roa (hash: 35v0vkO/Pxf5ZzM1m6kgzGZZX6mDLFimhwTmlHj8J5g=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4402 (0x1132)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7AB6E2F4C45731D03C27AEAFDD608611871B423C
Validity
Not Before: Nov 3 22:54:07 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=5302D3FB834903BCD06F612261621DD16457EFC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:d0:bc:40:3a:6b:7a:7d:30:ef:be:30:85:
5f:20:c6:96:af:28:70:95:54:1a:36:59:81:1e:fc:
d4:50:40:45:72:e6:0e:bc:1c:1d:e8:82:cc:3d:f7:
bf:84:97:e0:3e:b9:62:df:99:4e:49:97:da:78:78:
1c:1f:8d:fe:05:ed:dc:4c:7e:e0:ab:d4:04:85:83:
8f:6b:a5:65:cf:48:09:9b:a1:7f:86:24:1d:41:6d:
cb:79:3e:79:a4:a9:e2:34:9b:1c:3a:d3:02:61:f4:
0a:3c:24:84:38:4d:ac:87:5c:e1:80:43:e7:5c:19:
b4:14:3a:40:3a:93:b3:a5:73:da:10:be:52:de:2a:
95:ce:d1:58:36:b6:ab:84:cd:5b:ce:12:4c:fa:91:
3a:7d:37:55:78:71:a1:ba:09:77:7a:9d:86:3b:24:
70:8f:be:34:a0:42:f7:9f:9e:fe:45:43:95:69:e2:
d9:b9:86:b4:12:51:2a:e9:4b:fb:ab:d0:8b:93:4d:
f0:6f:b7:84:79:eb:c0:90:d4:58:e3:0c:b4:63:df:
7e:df:ba:f7:d4:13:6e:38:9d:33:57:f3:a9:da:af:
d9:19:69:97:9b:fb:23:0a:2a:9f:e8:d9:0a:1e:e9:
5e:9f:0d:29:8a:c3:ee:6f:1c:57:25:f2:c6:1f:74:
64:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:02:D3:FB:83:49:03:BC:D0:6F:61:22:61:62:1D:D1:64:57:EF:C6
X509v3 Authority Key Identifier:
keyid:7A:B6:E2:F4:C4:57:31:D0:3C:27:AE:AF:DD:60:86:11:87:1B:42:3C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/erbi9MRXMdA8J66v3WCGEYcbQjw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1030/erbi9MRXMdA8J66v3WCGEYcbQjw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
53:0c:9a:60:4e:f2:79:2f:c6:68:1e:a4:a1:4a:29:69:d6:37:
f0:45:d3:47:93:27:f0:f9:4a:25:51:4d:61:52:75:0f:a6:87:
ac:04:c1:8b:5d:19:24:e8:c0:78:ab:46:8e:a7:ea:b9:6a:28:
44:ef:a0:ea:4d:26:bf:6e:83:1b:9b:2c:7f:0a:aa:3d:fd:88:
c6:f3:9b:0e:0a:41:63:1b:69:ce:1f:e6:43:85:48:a5:3b:9b:
88:70:74:46:fe:bd:41:84:1f:26:1d:95:e3:f4:63:0a:38:fb:
c9:0d:5a:b2:23:94:ef:6b:06:54:d5:4b:42:ca:64:de:1a:19:
a5:3f:af:bf:9d:f8:f5:52:72:7f:09:2e:ef:d7:31:f4:78:b0:
ba:27:8c:28:cb:f3:f5:27:79:df:8f:0f:fa:a5:69:1d:c3:cf:
0e:35:ca:af:53:44:e2:32:63:d8:3b:dc:79:da:26:0f:7a:0a:
d7:b2:44:77:40:6f:75:05:ea:45:67:81:54:1d:d6:f0:1f:6f:
75:87:6c:a2:ea:9c:cb:f6:cd:47:95:47:40:a2:b9:57:8e:20:
9d:1a:c9:87:f1:84:ca:7b:d5:12:04:e2:7a:2e:fc:fd:c0:25:
77:f9:b5:35:90:53:3c:b6:ac:2a:9a:95:48:a2:de:65:38:f3:
b7:a9:0c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 05:09:26 2024 by rpki-client on console-ams.rpki-client.org