Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft
File: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft (raw, json)
Hash identifier: pQmv5G1VOXxSIk3GRV1HnoHkIq476SX1EeY41SJIV0M=
Subject key identifier: 5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A
Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Certificate serial: F613
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft
Manifest number: 4F52
Signing time: Wed 18 Mar 2026 04:59:35 +0000
Manifest this update: Wed 18 Mar 2026 04:59:34 +0000
Manifest next update: Wed 18 Mar 2026 10:59:34 +0000
Files and hashes: 1: 1pGP6piO9t8jbUERzDx-O4nhtLM.roa (hash: LgsHYyRchdYhJU6IjYfSwzPXfyeBNXFC/3oEFZaxr5E=)
2: 4wXgRujYTKfihSIvwuLg9rUOP1c.roa (hash: LPoTrqNW+wAwUy8l+OsMAuRG7zGEUq/hKav9nV2a/XY=)
3: 6wu7C6LJRgzw0YqBCypPrWvyqtk.roa (hash: Cj+QZPNg8QQ9fmyZfIpGADWCHBPEkN4OpbVPkdHjLNc=)
4: 9LZMbOJGzIWrwZIphlUZtLKBd_c.roa (hash: 2ZF77k5Fogyt6qSiuDajPcYoPcUD48QmqAkwhivvEH4=)
5: AvIoBSrNnMcpnZyXaLY_B_COOqM.roa (hash: tfuTWBj8mqfIFWkntrseawjOrEIi0ukcaV24gqQhJUE=)
6: Lzd2UazZEZK4D-Vi_LM5PwLTTJw.roa (hash: RYhKyfjdDrdFS+vtO7CbGxUt9WkZpShCr4z/pVEDnNo=)
7: No7gvAe0HiqMlWPX1eORii_qHNg.roa (hash: fsHInzrmBhxkqHfoeln8hYzxASuDDoDSJJ6xYdeYcAY=)
8: OfvtK6UGD_bVKz8pj9fgFWb6zgM.roa (hash: 40esanXG/apJXlFMV+hzoWKw+5KjI8h/fUEMtsSTOfI=)
9: PZulO6TyppqWWuGzO34PYYz5Uo0.roa (hash: yxbl0kEI9vox9RiEQxUPGxMV7cLiY2SO7AtRn6kT6eA=)
10: QD7THVmiGOcCiQQPVumiDRR-d7I.roa (hash: BeWz4UxSBqt/CJdq0rqcX/Y2LZaQqSYTg9P3zaCSJy8=)
11: TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa (hash: BweYJDm2QhqDgPj1ChzAIBwgj2kCBYjRI7BD0uiJCsI=)
12: XsbnPodlNkVFgCzTwYVVRKP-GEQ.roa (hash: yacvbm4gKGYgc5wCZtcaOFLtzo1EC6TxZpfMKP9mzO4=)
13: Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa (hash: C1aXVx3626w3lC0qVGmhnn9Jj9Gy3ZQ5/AtReox93tU=)
14: evHFKal_BLbftwTo5irhQaueD2U.roa (hash: 4JP/QyQZbAYdHqHseXBGNqOkAZdAPfM1lQ9PPjQdoAg=)
15: ffnzNkkLF4B5sEmRbbt-73LygMI.roa (hash: lfR0YWmJicUAI3V8hDlF+PVwpQclCZqiT/dKFEJOFIA=)
16: iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl (hash: vOjTUdaGHnDRqcXWdz/FC40PBYAdaJEkKEuu33bs+n4=)
17: jgjN0IxKws8jDdNRAOYX1CdHt1k.roa (hash: T74oJ4uT1nguMzcsxBkKWMEPcQYXZBdgwGGLqKFQyh4=)
18: qe20gAZbuwVu_t2cnfTPZkvTqlA.roa (hash: rEzVYj2gFODsMAGdxG3xTH2suYUBY7xxuVYE2eGkAMI=)
19: vQGMLXKuPigq7LZo-Pr7Y9YiM-c.roa (hash: zTk7jcBriJqG2gtlVugmX1oERrjs/CQDeKUtk6NsPUk=)
20: ywCQM1l3K43_E-WiIpSnSbWqOvE.roa (hash: hgEPrLxxvDkD6XngS/o1Hzja3xdYFuhr99lC4QpzvhQ=)
21: zWbsOJJ1UwVI5pnA1_vMfQ9v7YA.roa (hash: BBz3fH6gauC81KGSU8veCkKr25fDnWrXmEydKqB3KzU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62995 (0xf613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC
Validity
Not Before: Mar 18 04:59:34 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=5ACA5AE6103E8498345BCBABD47A443AC093C25A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f0:f9:68:52:99:6a:aa:0f:1d:28:ef:d6:32:
00:4b:4b:5b:e0:b8:b8:b9:11:b3:01:db:61:3e:66:
5e:29:0d:9d:15:62:48:a5:9a:8d:56:e4:ae:2c:e8:
d7:c7:ad:fb:37:56:a2:f7:b7:17:64:bc:75:c9:84:
df:61:26:6d:a0:94:db:60:2d:da:09:36:45:28:f1:
d9:ff:98:4e:b8:6d:f9:7d:32:b4:c8:d5:ca:98:92:
04:70:f3:f0:98:8f:66:02:98:6f:8d:f9:48:98:68:
17:4b:99:d3:16:04:49:11:32:f7:db:5b:8e:bd:6c:
8f:e9:20:b7:11:b0:c5:47:f9:69:82:e9:84:ed:8d:
46:2e:a3:90:74:d5:31:bc:f7:36:b9:26:77:39:bb:
0f:c7:e2:59:11:83:9b:c8:41:1d:4c:cc:1f:5a:13:
99:ba:9a:1b:70:9d:f1:5e:88:99:c5:73:23:eb:c3:
8f:0b:61:f0:8d:d7:54:84:5a:9f:93:5a:c3:22:fa:
c0:7a:0c:ee:bb:c9:34:3d:82:18:5f:52:96:8f:e1:
e9:1f:4e:be:5b:ad:e5:88:61:79:9c:22:91:1f:64:
62:5b:6f:0e:0b:c8:6a:9d:34:03:13:56:2b:5f:36:
b6:75:4f:d2:79:06:ae:67:e0:7f:59:46:9c:66:2e:
22:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CA:5A:E6:10:3E:84:98:34:5B:CB:AB:D4:7A:44:3A:C0:93:C2:5A
X509v3 Authority Key Identifier:
keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
04:ed:4d:f7:5f:a3:33:7e:03:e0:c7:7f:85:f8:e4:98:46:6f:
1e:10:5a:2e:20:aa:35:19:4e:b2:c8:c2:8d:ed:08:b0:e7:0c:
e4:82:fe:33:24:a6:92:42:78:ac:23:e7:ab:a0:ff:44:3f:42:
11:49:0d:81:7a:c2:3a:75:60:ed:fd:be:91:b6:ea:c1:0e:83:
82:fd:42:ed:7d:75:29:ca:5f:d5:c3:3f:b1:48:f7:cd:df:3f:
f4:b9:ba:0a:7d:22:d8:bb:b8:e4:3a:91:f0:6d:d3:7c:da:33:
c6:c7:9f:3a:00:0b:cf:d0:11:2a:72:6e:f4:2c:fd:79:10:23:
1c:ab:d4:cb:56:8f:7d:bc:7e:5e:ce:9a:da:a2:b4:1c:08:bf:
03:1b:44:64:3a:17:f9:6f:b3:28:41:f8:80:b2:94:00:5b:84:
f6:78:69:cf:f1:00:07:18:ca:f2:59:a9:19:86:89:55:a7:f1:
7b:b8:a3:69:fa:41:98:b8:36:61:9b:34:81:42:08:42:15:70:
04:25:a8:dd:66:8e:fb:98:2f:53:af:a8:da:01:52:de:86:4b:
44:bf:02:ea:13:f9:3a:99:e9:64:d3:28:8e:74:9b:2b:24:09:
25:ae:f5:53:b2:5e:11:0c:bb:83:5a:d1:3e:2d:48:c2:5d:b6:
d4:de:5d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:28:57 2026 by rpki-client