Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
File: Lowd4ZR0A1y-pngFS22U9a-lM2E.mft (raw, json)
Hash identifier: BwVdAsEVjSlNb2/vuR1F3SKlO/5fYD/e/z6b0iW2MHs=
Subject key identifier: FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
Authority key identifier: 2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61
Certificate issuer: /CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
Certificate serial: 19BE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
Manifest number: 19B4
Signing time: Sat 29 Mar 2025 09:27:28 +0000
Manifest this update: Sat 29 Mar 2025 09:27:28 +0000
Manifest next update: Sat 29 Mar 2025 15:27:28 +0000
Files and hashes: 1: IYkJ5FCKNtKSqqAO-jf5CgFrRyo.roa (hash: iyH8j7lARJGiKTyNhZuxwAzL7RSAxkLDiciZi2qy3S0=)
2: Lowd4ZR0A1y-pngFS22U9a-lM2E.crl (hash: KBoXsu/JMUDtxAOmHptVK34eWZ2YFw7PwekSqMaURS4=)
3: fioZ3GbSWc8xCxZSX5xMaJKL5Kw.roa (hash: kSZPAF+X3T3iZ+QjAo6L0K9L6zaSBOEvFL86EZHGiME=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6590 (0x19be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
Validity
Not Before: Mar 29 09:27:28 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=FF932E425E060B53CC63EEF8B42B916DB3C01C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:ca:10:5a:c9:8f:d2:27:85:80:bb:25:3e:
26:96:85:3f:5b:51:fb:24:48:0d:d4:0d:5e:91:18:
04:52:77:b0:2d:d3:78:33:73:59:ab:3d:50:93:aa:
29:dd:c9:6d:31:6a:60:fb:17:57:f1:b6:f3:a5:bf:
ce:7d:00:da:c1:8f:9c:11:a4:28:73:44:98:bd:2f:
63:2c:f2:d6:d5:1f:e7:f0:e8:6f:42:ec:2c:4a:d4:
53:f8:f3:4e:f4:bb:5c:01:19:43:9f:2b:b4:3c:cd:
8e:20:5d:b4:f1:30:b7:0d:be:35:06:12:30:a0:cb:
80:f1:c0:44:2c:b2:20:c8:53:66:f2:2c:36:d1:53:
f6:aa:45:78:6d:b6:9c:13:2d:81:42:14:e2:e9:3d:
76:92:3a:5d:98:cc:7b:db:66:b1:88:a1:47:2b:1d:
41:d5:b1:0c:78:bb:83:ca:f7:02:ff:e7:5f:d5:53:
f0:0b:95:fc:83:77:e4:a3:ff:19:71:e2:0a:73:a5:
18:c1:12:1c:c9:77:90:c4:05:91:12:72:b2:af:fa:
f4:c1:eb:93:09:a5:4b:fb:0a:49:d4:2d:00:f4:ac:
02:11:35:44:af:04:83:7d:28:49:09:f4:8a:c5:84:
fd:3c:9a:04:0b:e6:34:60:9f:20:19:e6:a5:85:96:
45:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
X509v3 Authority Key Identifier:
keyid:2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
96:f1:ca:4e:a9:d0:da:9e:e7:0f:8f:ab:53:e5:80:a4:e3:21:
02:45:01:63:34:8e:73:96:4f:33:69:11:28:3c:aa:35:c5:ba:
fc:b3:be:ea:ea:5e:26:03:fb:62:0c:d6:ef:2e:2a:e3:d2:7f:
89:83:68:9a:ae:e1:a0:1b:a7:e1:2b:6a:f5:7c:03:59:6e:fc:
a6:f0:31:46:81:a2:6c:02:4b:8a:b0:3e:2b:42:ec:8d:d2:5d:
e5:8f:85:4e:d3:57:1d:45:42:85:f9:10:e2:de:b5:60:6a:a3:
b7:9c:d7:3d:19:4e:7a:93:18:e9:65:f8:71:fd:7d:a0:7e:dd:
ef:ee:89:f2:14:5e:b5:55:d2:5e:76:48:86:c4:c6:62:02:52:
c0:9a:61:a4:4e:4b:ae:c4:ec:2f:6d:59:30:34:cc:f3:4e:e5:
f7:c3:66:60:ca:ce:a5:be:03:73:e7:6a:2c:0c:c1:f3:1c:ca:
04:0d:e8:a9:19:54:ab:40:78:9b:82:e7:cc:f3:43:3b:cc:9d:
e1:0c:74:3d:ee:9e:ca:c4:cd:e3:b3:00:18:d3:b6:c6:a4:f8:
7c:86:07:04:76:1c:80:98:fe:39:eb:39:95:cb:60:15:69:e7:
80:a6:93:bb:d4:96:d7:77:19:82:01:ab:9d:96:a9:fe:0c:ed:
cc:85:e0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:37:13 2025 by rpki-client