Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
File: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft (raw, json)
Hash identifier: yTzv2cOpgOBVgZ0jW1fT4ek79MawGaLzyGrVdn9WeJY=
Subject key identifier: 77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B
Authority key identifier: F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A
Certificate issuer: /CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A
Certificate serial: 1736
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
Manifest number: 1728
Signing time: Thu 05 Mar 2026 19:00:03 +0000
Manifest this update: Thu 05 Mar 2026 19:00:03 +0000
Manifest next update: Fri 06 Mar 2026 01:00:03 +0000
Files and hashes: 1: 9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl (hash: 1iKAUBY/HjNfcEYflSmtW/bQUraDMl1d39rzUlWG0ZA=)
2: DXjFrf_OgBlIsDSW_d80nxJDYy0.roa (hash: I/0Nk3G2UjpS1Dd3jjRv9K9JPA1+5O1V1YsAJ6efLV0=)
3: Ytt-sZWFeEl7Ag-etQDx2u34_Ek.roa (hash: Am7wWX/+t2PT/KQGXWKB1Li0f65LRNZE2QFYyl/AQmw=)
4: lI9ajDytEBoqP3nY6k07TCbYYw4.roa (hash: LWyUgAWzaJTkzHAy91TtZ1KUB8GaXK9r6LOFEw6+TPE=)
5: uG9LWLpK67qpxjgXRPMAAm6hR9Y.roa (hash: URTxuyS38BOkzq2ChrFnplSe6g+QKSVcXtGhOX6pla8=)
6: v6Faz7VKoqwNwglDNFtgd3H0Nhc.roa (hash: Aq7JCfWo6hLi8NMkcsfakV2tH3kB+NE4WHgBDNgDz3U=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5942 (0x1736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F556C3AAA1001F89DC0FCED5436A21BB4FF35D7A
Validity
Not Before: Mar 5 19:00:03 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=772D59F81B388CADC0607D6B8A284603EF6E296B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b3:a6:65:9c:e4:3f:1a:f8:4c:65:02:42:d8:
44:71:a7:a6:c2:64:48:59:ca:83:76:f1:7b:1f:f6:
e2:c1:10:9d:c4:35:8f:2c:44:94:72:e2:03:e4:6a:
d5:04:79:5a:59:d1:4b:3e:8e:96:65:7c:0a:2b:64:
95:41:b9:10:fd:30:c9:29:d7:48:a2:64:1c:9d:3c:
57:5b:69:17:43:d8:fc:a5:4b:1e:c6:18:7f:c5:d9:
ce:10:82:cb:d7:4e:ca:b7:de:14:c4:93:7d:ae:b4:
84:02:05:92:7d:9c:05:3d:14:ce:a0:ac:c4:e9:63:
ef:0f:67:ea:24:93:25:4a:9c:b0:d6:3b:5c:ea:4c:
3d:09:d0:4b:d7:83:cd:25:46:d6:a3:0a:19:30:9a:
7c:91:70:5b:78:41:3a:fc:65:bf:93:07:10:fe:9d:
95:db:39:84:d9:86:97:e2:e6:b0:0b:be:87:5a:95:
62:74:4f:ae:c9:ee:de:82:4a:26:81:5a:ca:b5:1f:
af:7f:fc:02:4e:8c:2e:5f:c7:10:4e:9b:70:15:f4:
10:d1:46:d9:1e:bd:ab:19:07:53:79:d6:11:d3:53:
0a:87:e6:03:94:43:c5:46:b3:22:5d:62:d2:6e:b0:
6b:c3:91:6b:96:5a:e8:ec:bc:c1:46:9b:b8:ab:13:
1c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2D:59:F8:1B:38:8C:AD:C0:60:7D:6B:8A:28:46:03:EF:6E:29:6B
X509v3 Authority Key Identifier:
keyid:F5:56:C3:AA:A1:00:1F:89:DC:0F:CE:D5:43:6A:21:BB:4F:F3:5D:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9VbDqqEAH4ncD87VQ2ohu0_zXXo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/119/9VbDqqEAH4ncD87VQ2ohu0_zXXo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
63:fc:4d:3c:a5:45:08:ce:80:4c:7f:a5:20:fb:3b:fb:1d:16:
5b:49:57:2b:fb:f8:2c:97:5e:93:d8:96:4c:e2:8c:1c:27:29:
b5:49:0f:94:18:02:5f:dd:2d:3f:a6:42:34:c7:0b:2f:0f:58:
5a:e4:84:45:17:56:4b:e3:12:5f:bd:93:16:ae:51:7f:c7:71:
54:32:96:c7:14:17:72:7c:25:f7:72:db:38:9d:4f:b3:0c:3e:
0e:2d:ca:f1:d3:31:d1:f3:59:f7:ef:8d:d4:d3:65:09:ae:06:
19:f0:50:85:18:a3:39:5a:85:6a:25:c3:b2:bf:44:68:79:ca:
1a:7d:41:15:22:04:24:a1:98:6c:18:c0:1f:7e:0a:5c:86:07:
ac:01:d1:1a:2c:5c:95:c8:7b:02:02:e0:f4:90:e3:7f:19:ba:
ec:35:55:db:8a:1f:78:1a:24:70:09:fe:ea:ff:99:1e:67:0d:
d0:48:e8:d0:4f:c1:35:6f:44:b5:14:3b:de:cc:40:08:4d:9b:
54:f4:de:dc:17:ef:51:66:fb:db:b4:e8:f0:ee:09:d7:f6:09:
51:c6:d6:40:e6:a2:14:85:5f:ab:78:47:7f:c9:d9:9c:91:6a:
b6:69:34:b6:24:a0:eb:3d:e2:93:a8:e9:3e:50:47:df:f5:2f:
c7:2d:5a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 01:01:34 2026 by rpki-client