Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft
File: kIQDi2b0UmxBx2aNFCjNIrM_vng.mft (raw, json)
Hash identifier: bV6JqVAud5L1LHGCLQ4jorI63NPt2N180xZ+bfRKYQg=
Subject key identifier: 56:8C:CE:B4:B1:41:9C:6C:D2:B3:58:86:1A:C5:BE:2D:44:30:92:2C
Authority key identifier: 90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78
Certificate issuer: /CN=9084038B66F4526C41C7668D1428CD22B33FBE78
Certificate serial: 114F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft
Manifest number: 114C
Signing time: Tue 24 Dec 2024 04:23:20 +0000
Manifest this update: Tue 24 Dec 2024 04:23:20 +0000
Manifest next update: Tue 24 Dec 2024 10:23:20 +0000
Files and hashes: 1: 1eAS7-hUU41CTNzjdXn_5f-4mfk.roa (hash: TJcoDrqM0c5Y89PzjxvrShrvCZeh2y3C8O6Py8QtCZI=)
2: kIQDi2b0UmxBx2aNFCjNIrM_vng.crl (hash: u+S0w+37Gj++WEN+ayWTl8Q0C+sFtUJbCk+kA01eXyc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4431 (0x114f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9084038B66F4526C41C7668D1428CD22B33FBE78
Validity
Not Before: Dec 24 04:23:20 2024 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=568CCEB4B1419C6CD2B358861AC5BE2D4430922C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f4:66:ea:ce:41:dc:81:61:5a:19:48:b8:2e:
aa:34:54:2f:d4:cf:5b:0f:7b:a6:82:83:36:2c:ba:
72:f5:92:c1:f8:f1:62:9b:72:0c:a8:a2:15:f1:da:
e8:a8:6b:d7:81:3c:27:66:69:ff:54:1e:ef:ee:1b:
a2:90:c5:84:b1:2a:a0:d4:f9:62:3d:4f:e3:f8:ed:
b3:a9:84:8f:77:3d:58:cc:16:c7:cd:fd:fc:9e:52:
d8:ae:51:02:4a:8c:b8:e8:eb:ab:1e:21:5a:8e:10:
05:4e:9d:2b:29:4a:b6:de:7a:f1:0f:7e:9f:bc:3e:
4a:34:f3:fe:93:29:9c:e5:62:85:6f:58:ae:6c:61:
f7:b1:e5:2d:6b:85:c2:3c:00:ea:e1:8d:42:4a:47:
3d:b3:b8:76:7e:b0:5e:68:a5:19:be:f5:12:27:30:
ee:08:3d:39:84:b5:a0:7c:fc:d9:c9:85:63:95:a2:
92:04:cb:eb:35:d1:69:6d:7b:d2:5e:b8:f3:3a:1d:
d8:85:c0:3a:db:7c:92:8f:fa:f2:6b:65:76:9b:15:
dd:f6:22:f8:2e:1a:c9:39:7f:c5:a5:90:3c:ba:a7:
a0:b3:3a:a0:ff:8b:4c:a6:1f:02:5e:a4:18:ac:04:
ea:1c:57:9e:38:f5:e8:72:ea:46:ae:39:3b:4a:b1:
50:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8C:CE:B4:B1:41:9C:6C:D2:B3:58:86:1A:C5:BE:2D:44:30:92:2C
X509v3 Authority Key Identifier:
keyid:90:84:03:8B:66:F4:52:6C:41:C7:66:8D:14:28:CD:22:B3:3F:BE:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kIQDi2b0UmxBx2aNFCjNIrM_vng.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2292/kIQDi2b0UmxBx2aNFCjNIrM_vng.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6e:83:4a:98:ca:96:ce:ea:47:71:2b:67:b4:ab:56:d5:18:
73:6b:46:a6:1e:4a:d8:a8:a9:85:28:3f:e0:bf:92:cf:2f:44:
81:e6:5b:6c:73:48:6f:b2:6d:98:2f:6c:29:76:b0:60:c8:b9:
63:e4:9c:d5:31:d4:af:ce:5f:91:9b:fc:7b:b4:49:3e:73:64:
0d:cf:7d:28:7a:b8:90:3d:8e:36:d6:a5:c8:b5:b9:e7:50:7a:
83:30:85:98:a8:24:f9:11:45:19:2d:c8:fe:b3:78:2f:48:6a:
54:36:37:60:ed:f8:12:89:ac:1d:4f:13:b2:0e:fd:ae:e8:40:
24:9e:b9:bf:be:30:82:a7:13:cf:a6:43:f9:d6:0e:9d:b7:f5:
cb:35:ad:06:d0:ef:86:b3:d5:0f:74:8b:e9:8f:0d:ca:32:99:
2e:8f:db:24:2e:db:6e:13:02:16:27:24:89:e4:fd:eb:3b:17:
df:31:9c:57:56:3c:85:23:7a:91:61:b8:6c:63:ee:d5:28:66:
ae:34:55:9a:98:62:f8:03:1f:c3:4d:4b:ff:d0:69:6f:87:34:
07:4d:7c:6f:50:0e:b3:fe:cf:d6:08:3f:8a:98:38:1f:f3:00:
65:57:13:47:34:76:4e:75:b1:30:f2:db:59:85:60:41:4b:5b:
fa:74:ab:57
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICEU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTA4
NDAzOEI2NkY0NTI2QzQxQzc2NjhEMTQyOENEMjJCMzNGQkU3ODAeFw0yNDEyMjQw
NDIzMjBaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDU2OENDRUI0QjE0MTlD
NkNEMkIzNTg4NjFBQzVCRTJENDQzMDkyMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCm9GbqzkHcgWFaGUi4Lqo0VC/Uz1sPe6aCgzYsunL1ksH48WKb
cgyoohXx2uioa9eBPCdmaf9UHu/uG6KQxYSxKqDU+WI9T+P47bOphI93PVjMFsfN
/fyeUtiuUQJKjLjo66seIVqOEAVOnSspSrbeevEPfp+8Pko08/6TKZzlYoVvWK5s
Yfex5S1rhcI8AOrhjUJKRz2zuHZ+sF5opRm+9RInMO4IPTmEtaB8/NnJhWOVopIE
y+s10Wlte9JeuPM6HdiFwDrbfJKP+vJrZXabFd32IvguGsk5f8WlkDy6p6CzOqD/
i0ymHwJepBisBOocV5449ehy6kauOTtKsVA3AgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUVozOtLFBnGzSs1iGGsW+LUQwkiwwHwYDVR0jBBgwFoAUkIQDi2b0UmxBx2aN
FCjNIrM/vngwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjI5
Mi9rSVFEaTJiMFVteEJ4MmFORkNqTklyTV92bmcuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL2tJUURpMmIwVW14QngyYU5GQ2pOSXJNX3ZuZy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIyOTIva0lRRGkyYjBVbXhC
eDJhTkZDak5Jck1fdm5nLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAG1ug0qYypbO6kdxK2e0q1bVGHNrRqYeStioqYUoP+C/ks8vRIHmW2xzSG+y
bZgvbCl2sGDIuWPknNUx1K/OX5Gb/Hu0ST5zZA3PfSh6uJA9jjbWpci1uedQeoMw
hZioJPkRRRktyP6zeC9IalQ2N2Dt+BKJrB1PE7IO/a7oQCSeub++MIKnE8+mQ/nW
Dp239cs1rQbQ74az1Q90i+mPDcoymS6P2yQu224TAhYnJInk/es7F98xnFdWPIUj
epFhuGxj7tUoZq40VZqYYvgDH8NNS//QaW+HNAdNfG9QDrP+z9YIP4qYOB/zAGVX
E0c0dk51sTDy21mFYEFLW/p0q1c=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:58 2025 by rpki-client