Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft
File: 5I_tdgOElq0qsZctE0aPTT1AMWQ.mft (raw, json)
Hash identifier: 4Q5EXXeBIz+n7ajahFbtef+Q1Q3pbp6mLjvvdwL6DcQ=
Subject key identifier: FA:15:89:20:CE:27:D0:A4:A1:BD:BD:C6:CC:B5:B6:9B:3C:19:3B:3E
Authority key identifier: E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64
Certificate issuer: /CN=E48FED76038496AD2AB1972D13468F4D3D403164
Certificate serial: 1A6C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft
Manifest number: 1A5F
Signing time: Wed 18 Mar 2026 04:59:17 +0000
Manifest this update: Wed 18 Mar 2026 04:59:17 +0000
Manifest next update: Wed 18 Mar 2026 10:59:17 +0000
Files and hashes: 1: 2ySXPueeKg16gsqHcFsVC9JNs10.roa (hash: kH9hywEObby9n5VG21Syrw8ZzsncChogtO5BPYypB5Q=)
2: 5I_tdgOElq0qsZctE0aPTT1AMWQ.crl (hash: QPFPKZ6ikcJ41omWfhPwqDMoNLmwaySdkk+myn8MxFM=)
3: AsXgmXQlnbabI1bW-R0zpcn76tY.roa (hash: /YIZV5ZK2bN7ACdc/DM/VupvHjYd5vv9uQLA5l7obVs=)
4: NtDgHgttC4AtVi7WA45dTq6F_XY.roa (hash: MCuyV55Hn2qvs9ldQmrl3XO+GjIyuP6/3rOWt4k3UQU=)
5: OutRVBvc9Wm-pOX8pmDKJRcv9Zc.roa (hash: l2u8dk3COhyxYbd50FYmH+fl9Kx1r630dWHFp5enw3o=)
6: g1MwaGx9H4NwOPCFJYb2liJmTQ8.roa (hash: VlRN3xP9+M4tv10j4BkWZ2KT50NTAuq0fWOXb8MJ0vg=)
7: mHioxaoNlR4rQkTXc19lcJw6Lec.roa (hash: PLOJpyanF+nIlJcassXGyNX33blBNLIGT9wBL2ZAaI4=)
8: nVccl75Q6GAgaykxcjyu72hhAnk.roa (hash: r4Mn7fAiQjl4bgZhfH+KmOGsE4ovJ6SP0fGlC4E7WqI=)
9: rkqQR8t9FrB3DjN2qqQ8nEhbcXw.roa (hash: rwfJch4aoCh0wWk4o1JgI1hRPkHLffT/cXlqq17FDs4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6764 (0x1a6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E48FED76038496AD2AB1972D13468F4D3D403164
Validity
Not Before: Mar 18 04:59:17 2026 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=FA158920CE27D0A4A1BDBDC6CCB5B69B3C193B3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d0:04:c0:e6:19:c9:d5:b1:4f:8f:bb:85:a5:
3e:06:f2:96:79:90:fc:38:83:8f:79:bf:06:01:8a:
d2:8e:01:13:c0:e9:82:83:48:bf:44:69:57:c2:6a:
ac:0c:86:16:d3:79:68:3f:ac:26:a6:39:c9:65:d8:
1a:68:ab:67:e4:f3:20:5f:5b:de:98:0a:62:d2:12:
96:27:73:41:e4:2e:d1:3c:92:da:9d:31:2a:57:91:
0a:8c:ed:99:0e:da:3f:b7:69:b0:c0:16:7f:4c:3e:
ee:ca:8e:29:74:54:f2:03:a8:a3:f8:05:f0:48:8d:
0a:c7:71:39:04:c7:fa:47:ee:05:a4:3c:32:39:cc:
7a:14:f5:f1:aa:fc:e7:59:6d:5d:d3:be:3f:27:d6:
75:76:c7:bf:43:b8:5a:8c:83:ad:ff:94:e4:2d:20:
42:2c:12:ef:39:75:5a:79:a1:04:da:c5:d2:54:f3:
53:86:e8:63:78:74:de:5f:62:41:e8:4a:1b:56:09:
8e:bc:5a:e9:8a:3b:f9:1f:a7:f1:03:61:c2:d3:0a:
20:c0:03:b0:48:7e:80:76:57:97:9f:29:72:3c:02:
0a:89:8c:b8:78:b3:7e:f3:84:f0:65:3b:9e:ab:3e:
a1:23:9d:83:67:a6:f5:83:83:3b:c8:cf:52:22:a2:
97:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:15:89:20:CE:27:D0:A4:A1:BD:BD:C6:CC:B5:B6:9B:3C:19:3B:3E
X509v3 Authority Key Identifier:
keyid:E4:8F:ED:76:03:84:96:AD:2A:B1:97:2D:13:46:8F:4D:3D:40:31:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5I_tdgOElq0qsZctE0aPTT1AMWQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/190/5I_tdgOElq0qsZctE0aPTT1AMWQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
42:e9:02:b9:9a:2f:b3:f3:b5:fa:70:41:f3:dd:bb:55:a1:d7:
05:f8:2e:2d:f2:5d:73:40:48:14:8d:a8:d8:50:2d:9a:9b:58:
87:38:d8:7d:76:b2:67:ff:05:5d:77:07:aa:3b:e0:70:49:2a:
01:5f:9f:ca:a9:8e:e2:5c:8c:19:1c:79:8a:f1:a0:03:b1:18:
1a:2d:68:39:da:af:b9:cd:5d:ee:b0:6a:c0:e5:d6:5a:6e:79:
29:b9:94:2b:f8:f9:3c:be:d8:90:60:49:26:bd:40:7e:65:49:
fc:cd:a7:04:c9:20:0e:45:bf:66:d8:5e:fc:16:a7:86:30:1d:
36:c6:33:7d:d0:4c:a2:8c:92:00:b3:ff:81:e6:2f:78:32:64:
58:60:ca:31:44:f0:7b:17:e8:3b:9e:d1:1b:21:0c:1d:af:7f:
4e:66:f4:55:1d:5b:66:2c:57:8d:fa:40:84:5e:cd:e1:17:63:
aa:5c:aa:7d:9a:59:66:62:e3:b8:da:3e:bb:56:10:f0:84:fd:
4d:56:bc:55:36:0a:2f:4f:83:4f:5e:52:39:0d:da:5f:90:f2:
89:64:2a:9c:dc:69:b2:ad:68:36:09:2d:49:5e:63:a7:bd:7c:
8f:c9:de:29:53:f2:5e:9f:27:b6:b5:f9:c0:2c:ed:b9:7a:b2:
26:32:47:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:15:24 2026 by rpki-client