Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json)
Hash identifier: /z+uaRwbSjO85Y2AblNeATzG1jI9pJJvaFHLGjR7ORQ=
Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12
Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Certificate serial: 3726
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
Manifest number: 3726
Signing time: Sun 20 Jul 2025 06:41:57 +0000
Manifest this update: Sun 20 Jul 2025 06:41:57 +0000
Manifest next update: Sun 20 Jul 2025 12:41:57 +0000
Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: vQlf9pOG/FR2UgKe2/FBi2k0r3ILtHZBuWzNQObMneA=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14118 (0x3726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Validity
Not Before: Jul 20 06:41:57 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93:
5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1:
21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08:
1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89:
a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43:
fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee:
37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f:
4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd:
50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1:
ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09:
26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0:
63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc:
e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4:
04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3:
0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc:
31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27:
bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08:
b1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12
X509v3 Authority Key Identifier:
keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1a:83:dc:65:88:e9:f7:a5:3f:c5:0f:73:e5:cc:6b:44:ed:51:
00:ba:6a:0c:19:e3:d0:8a:ee:af:fa:f7:28:24:75:30:86:1f:
c3:61:b1:ea:08:c0:14:1e:5f:fc:db:92:ae:98:6d:ae:64:df:
e9:6e:f0:07:7b:40:37:57:8e:d2:b0:cf:84:c5:06:d5:b5:75:
f5:06:1d:94:e4:9e:b8:cb:89:2a:27:1b:21:d5:89:4a:de:66:
e1:21:53:55:b7:e1:14:83:dc:29:b9:27:ec:59:78:4e:4c:eb:
30:de:1e:78:c9:63:0c:3d:9f:e9:a5:8b:02:e8:a8:1c:6f:f2:
8e:b3:68:cf:2c:c6:b6:4c:31:d3:d9:de:4b:bb:c1:64:56:a0:
1c:59:8d:b1:85:ee:69:2a:25:4d:38:48:8d:c3:bd:4e:13:fa:
be:b8:bb:32:30:59:cf:76:9c:17:43:39:a4:d8:d3:a8:dc:49:
65:04:d5:5c:ff:16:e0:c8:5f:18:32:9c:a1:fc:94:e9:15:42:
60:4b:3b:ee:a5:7e:bf:d5:df:a5:c1:f1:a7:a3:5c:08:9c:42:
91:85:e6:24:da:2f:ab:41:c2:e0:ef:73:74:2e:7d:76:0a:6e:
37:03:23:22:2b:27:dd:0c:22:da:50:fe:62:44:47:f8:23:f1:
94:1e:01:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:53:23 2025 by rpki-client