Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
File: Lowd4ZR0A1y-pngFS22U9a-lM2E.mft (raw, json)
Hash identifier: l9UEOS0kP47OM1bqRAYOeVFhLHJIEusmQPu6BEjbxcE=
Subject key identifier: FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
Authority key identifier: 2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61
Certificate issuer: /CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
Certificate serial: 207B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
Manifest number: 2069
Signing time: Thu 12 Mar 2026 23:59:26 +0000
Manifest this update: Thu 12 Mar 2026 23:59:26 +0000
Manifest next update: Fri 13 Mar 2026 05:59:26 +0000
Files and hashes: 1: -Mm11tejrqk61wSAldRhB69HTQA.roa (hash: lRVxJ7t0/AkOywuPuigCifvcZhUs87v2Uh4KWM90fFc=)
2: 450N7fwLv8pQflKVuwsapP8RTas.roa (hash: v1E9iG1FEaxd+t/wnGLaGAbJ4H6g39idwuIVRcR48QM=)
3: 6lgNokrHquzfMY4o0Ue-xILR_FM.roa (hash: bnnFnI4gkAVdY9+fYPbtHDBHofbyD67V5npIc05vTNI=)
4: Af3TYKyAmWG3f3wRT4FwONVWh0E.roa (hash: WIpuVfkuPz+LipchXzs38odxTKr63ACk4GOPFnDDDQY=)
5: CdYSPaqTjHDQqoFZJ5vmPkQNpY8.roa (hash: 2hSUzzrrHhoV+leHgGGXhH0H0eP//nQX8tn6HCyCUeA=)
6: Lowd4ZR0A1y-pngFS22U9a-lM2E.crl (hash: BFqf5X2mijuBEVAKKYoyVyHPq0rlZGoFFP/QhiiYAHQ=)
7: M8L4ONjaKBoFJOwyFIfN_QL2Tn4.roa (hash: 6JL10RiuFvg5F0bZseuVtZv3iY+6VEd+5IItQvVfiV8=)
8: S4wFMhuxShBISoepIMT7J0pKx3k.roa (hash: U7UiWrQkJelvyopRtRqGDW0g4Pu1C0z06V7voETr1Pc=)
9: lwkVdD9XADeiD0DPl7lvqM4ItpQ.roa (hash: YYmUXAYWXwrCBJM5y0kPQOh2qDNOuJxksVsvgzTPY7s=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8315 (0x207b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
Validity
Not Before: Mar 12 23:59:26 2026 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=FF932E425E060B53CC63EEF8B42B916DB3C01C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:ca:10:5a:c9:8f:d2:27:85:80:bb:25:3e:
26:96:85:3f:5b:51:fb:24:48:0d:d4:0d:5e:91:18:
04:52:77:b0:2d:d3:78:33:73:59:ab:3d:50:93:aa:
29:dd:c9:6d:31:6a:60:fb:17:57:f1:b6:f3:a5:bf:
ce:7d:00:da:c1:8f:9c:11:a4:28:73:44:98:bd:2f:
63:2c:f2:d6:d5:1f:e7:f0:e8:6f:42:ec:2c:4a:d4:
53:f8:f3:4e:f4:bb:5c:01:19:43:9f:2b:b4:3c:cd:
8e:20:5d:b4:f1:30:b7:0d:be:35:06:12:30:a0:cb:
80:f1:c0:44:2c:b2:20:c8:53:66:f2:2c:36:d1:53:
f6:aa:45:78:6d:b6:9c:13:2d:81:42:14:e2:e9:3d:
76:92:3a:5d:98:cc:7b:db:66:b1:88:a1:47:2b:1d:
41:d5:b1:0c:78:bb:83:ca:f7:02:ff:e7:5f:d5:53:
f0:0b:95:fc:83:77:e4:a3:ff:19:71:e2:0a:73:a5:
18:c1:12:1c:c9:77:90:c4:05:91:12:72:b2:af:fa:
f4:c1:eb:93:09:a5:4b:fb:0a:49:d4:2d:00:f4:ac:
02:11:35:44:af:04:83:7d:28:49:09:f4:8a:c5:84:
fd:3c:9a:04:0b:e6:34:60:9f:20:19:e6:a5:85:96:
45:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
X509v3 Authority Key Identifier:
keyid:2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
77:12:66:04:a9:85:fe:c7:75:a1:be:9a:21:50:20:8b:ca:95:
0a:d6:a0:82:d0:42:01:98:15:02:40:8f:89:d8:2a:8a:4e:de:
21:22:27:ca:39:13:e1:69:82:e8:57:fc:ca:b3:15:d4:d2:27:
b0:30:81:ef:e6:a1:40:3e:b7:08:6c:14:1a:1f:6d:74:ea:2e:
30:86:a0:13:67:eb:63:ea:13:36:df:f5:45:15:fe:0a:75:d9:
8d:30:54:33:9b:88:23:e6:0b:7d:50:32:9f:a9:7e:84:0c:9f:
68:25:b9:88:7a:b7:6f:5e:47:14:df:58:f6:a3:98:9b:76:b8:
74:43:b0:52:20:71:b8:e7:a6:ae:58:73:f7:10:9a:d6:23:05:
f8:e3:af:ac:c7:64:1f:51:f8:9b:c7:d8:29:33:8c:e7:26:af:
72:b7:16:dd:3c:f9:b8:b5:fe:c4:51:2d:14:4f:2f:f7:5d:79:
f8:c0:24:36:25:5b:5e:d1:9a:54:72:cf:5d:56:e1:93:66:86:
a9:d6:41:7c:4b:2e:0b:01:49:59:18:2b:53:1f:0d:e8:2f:7e:
3f:a7:32:d1:6e:99:e0:b1:a8:42:a7:41:55:e3:d1:91:b5:1f:
92:12:57:67:01:12:96:00:a2:7e:cb:b3:50:d7:a7:3c:e0:b2:
c4:a9:6f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:09:53 2026 by rpki-client