Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json)
Hash identifier: VUZR+ARXROjNxQ7YQb6VU7ljpXZjb+qlpGqeJCHKiVU=
Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12
Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Certificate serial: 3519
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
Manifest number: 3519
Signing time: Fri 04 Apr 2025 19:08:13 +0000
Manifest this update: Fri 04 Apr 2025 19:08:13 +0000
Manifest next update: Sat 05 Apr 2025 01:08:13 +0000
Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: bPX0EFrzBdCoHnp2ziewDeUyMzkcWRk8CMXiU44Ciqg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13593 (0x3519)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Validity
Not Before: Apr 4 19:08:13 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93:
5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1:
21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08:
1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89:
a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43:
fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee:
37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f:
4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd:
50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1:
ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09:
26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0:
63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc:
e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4:
04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3:
0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc:
31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27:
bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08:
b1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12
X509v3 Authority Key Identifier:
keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4b:29:28:76:28:4a:3c:75:3f:0b:92:3b:53:a5:16:11:1d:6d:
e2:91:e5:e3:b0:24:7f:a1:da:28:3d:62:32:0b:9d:20:70:14:
ec:92:96:56:ee:48:b8:2d:36:2d:56:c9:0d:cf:1b:4b:e1:c5:
a9:42:a8:56:15:23:03:bc:14:66:fd:56:a3:58:14:1e:3e:ca:
19:26:98:13:93:85:96:7d:c7:95:21:4f:ef:e1:9d:93:8e:e5:
37:e9:36:e5:86:60:bf:76:6c:f7:d7:e6:23:62:44:cb:49:49:
89:68:7c:6b:cf:6c:31:4d:22:1b:e4:bc:b9:ad:63:bb:9c:0c:
b0:a3:5e:41:50:a4:f9:15:11:8c:be:84:7e:b6:73:2e:92:97:
f4:71:53:54:4e:cb:55:b1:88:e4:05:a5:f4:5e:37:f8:9c:9a:
c5:c3:4f:5b:5d:29:70:73:23:6c:49:1a:87:f3:c1:84:3f:71:
1f:72:b2:1f:cb:cf:a2:98:5d:f1:3a:ba:5e:e8:eb:27:48:87:
ee:9b:84:cb:4a:e9:dc:de:9f:2f:bd:6a:e2:53:a5:8d:6f:45:
8d:38:5e:28:cf:9b:20:a6:dd:98:3a:27:e8:fd:da:43:75:b9:
cc:9e:c1:22:d0:4d:af:44:35:b1:9b:f2:a0:fa:83:04:e4:bf:
23:47:7b:ef
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICNRkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUw
NUEzN0U4OTBBQjVERUZEMzg3NUZDRDAzNTY2QTFDQUFDRTQzMTAeFw0yNTA0MDQx
OTA4MTNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEFEOEYyOEZBREM5MDQx
QTk0MzU5QkQ5Q0YxQkRCMjkwMjE5Q0VEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsjYgpenQj50xVBG9Dk1/XajMl9FqCVQITpo/Y0SGaRvlPUe7s
S91ZO4lkCBvtNgqRqiiou/Bj/G0UiaI5b4vdc7GHHHrDgRHyQ/xMi1vIAkThBFcM
bYYe7jeDPETqOcaGW1xeaymFj0xrYH3yfhXLuHKK6USJzVA9ioGMFBPyNPMQ+oHL
8e4ativyIdLmt6dFZ2LpCSbwcxQqhaL3DXkxxMea4GMB62G3nFlhgEMwb1FS3OkR
yuC3Qjjp+7ZTeRVR5ARQ8Ra1ytX2gdvUQcEtww/kCF46TJOZ6Eo6s+/fvDHNVtgV
zJcctB4tq3DoJ7uMGyH6hVOysMQ+NfcACLGzAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUrY8o+tyQQalDWb2c8b2ykCGc7RIwHwYDVR0jBBgwFoAUngWjfokKtd79OHX8
0DVmocqs5DEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjAz
OC9uZ1dqZm9rS3RkNzlPSFg4MERWbW9jcXM1REUuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL25nV2pmb2tLdGQ3OU9IWDgwRFZtb2NxczVERS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwMzgvbmdXamZva0t0ZDc5
T0hYODBEVm1vY3FzNURFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAEspKHYoSjx1PwuSO1OlFhEdbeKR5eOwJH+h2ig9YjILnSBwFOySllbuSLgt
Ni1WyQ3PG0vhxalCqFYVIwO8FGb9VqNYFB4+yhkmmBOThZZ9x5UhT+/hnZOO5Tfp
NuWGYL92bPfX5iNiRMtJSYlofGvPbDFNIhvkvLmtY7ucDLCjXkFQpPkVEYy+hH62
cy6Sl/RxU1ROy1WxiOQFpfReN/icmsXDT1tdKXBzI2xJGofzwYQ/cR9ysh/Lz6KY
XfE6ul7o6ydIh+6bhMtK6dzeny+9auJTpY1vRY04XijPmyCm3Zg6J+j92kN1ucye
wSLQTa9ENbGb8qD6gwTkvyNHe+8=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:47:23 2025 by rpki-client