Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
File: rzr00B8M0Fbw4_aYgAsiOu53PSA.mft (raw, json)
Hash identifier: 1ulCcgNja4722/2V1IUD4JEx1o5vHZvNDTdsLi2Ere4=
Subject key identifier: 13:F9:2B:2A:74:56:33:A9:8F:4B:51:2A:97:6B:DE:0B:BD:2F:07:CB
Authority key identifier: AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20
Certificate issuer: /CN=AF3AF4D01F0CD056F0E3F698800B223AEE773D20
Certificate serial: 2A4E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
Manifest number: 2A35
Signing time: Wed 18 Mar 2026 00:59:08 +0000
Manifest this update: Wed 18 Mar 2026 00:59:08 +0000
Manifest next update: Wed 18 Mar 2026 06:59:08 +0000
Files and hashes: 1: e6xzYzHJK6pAuhPcgp7rMejVS8g.roa (hash: wY2IIxEzqxqrROdtSTpDwh1iwOk/vWVK5zIrwT7s9aY=)
2: hxxm10cip3JqtchA7UZBQymP6vk.roa (hash: 93UwpEBZZZlvsPwyvpYB2IOTZvAfQT8jp+LAd+larWY=)
3: jh-jvFWeDg5m8Hy2UFlyqMjpbec.roa (hash: Q26fJHGd729Ouq3DlNACOcIHmDfFKrHp3JT6NEvfgkk=)
4: rzr00B8M0Fbw4_aYgAsiOu53PSA.crl (hash: t2c7IMHFGgQ7+bKcizmB1k5TKnXU6hG3j/2v2N/pir4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10830 (0x2a4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF3AF4D01F0CD056F0E3F698800B223AEE773D20
Validity
Not Before: Mar 18 00:59:08 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=13F92B2A745633A98F4B512A976BDE0BBD2F07CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d3:e1:a1:be:b7:78:45:74:59:a0:58:31:fc:
11:35:85:ee:16:c7:ea:a4:6c:cc:e4:ed:f0:4b:67:
18:80:3c:e3:ab:c5:c8:e6:6c:a9:9b:df:9d:b8:2c:
32:e7:6d:38:a9:ba:fe:4e:5e:9b:79:8c:1f:23:0a:
5f:ca:7b:83:47:ca:c0:5f:64:39:bd:b1:41:1c:38:
3f:58:35:f5:62:9e:21:32:f6:ef:01:99:82:2b:79:
2b:f3:60:a8:22:f4:48:28:ca:21:44:9e:e7:0f:69:
49:d0:10:6e:c9:fb:ae:3c:ed:d3:6e:c2:6e:1e:3a:
17:cf:c6:e3:61:05:50:7a:8b:17:df:e7:8d:16:92:
0f:49:f4:3c:1d:ba:b3:65:fb:b4:57:39:00:41:a8:
a5:84:29:f5:e8:af:24:f7:d2:5a:a1:c1:cf:fb:e5:
ae:7b:8d:a9:9b:52:0b:91:e5:ae:4b:97:44:26:e7:
9e:5c:f6:dd:72:44:d2:a8:53:47:62:46:fe:37:46:
b6:24:10:a1:27:21:a8:dd:02:52:26:94:fa:c2:45:
dc:01:35:cd:74:bc:db:d9:f5:60:cf:ec:20:76:c4:
c5:66:82:57:fe:1f:56:f2:58:34:3b:8e:45:db:ba:
fc:56:ea:b2:23:d3:1b:19:43:6e:7d:e2:7e:98:f5:
79:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F9:2B:2A:74:56:33:A9:8F:4B:51:2A:97:6B:DE:0B:BD:2F:07:CB
X509v3 Authority Key Identifier:
keyid:AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a7:a2:8b:73:2d:d1:45:2f:40:bc:5c:cb:0a:5e:52:04:58:64:
98:d5:84:84:a8:47:c8:b9:56:ff:d0:b2:f5:92:f7:48:01:a7:
8e:c8:97:8a:37:44:1c:e3:39:ce:1a:e1:78:df:83:60:00:1a:
fe:9f:88:67:21:f1:49:78:28:35:b6:6a:f1:2e:4b:40:b1:b5:
5b:69:95:61:f8:a8:6a:07:5c:53:3f:76:e5:1a:4c:e5:9f:57:
a4:8b:43:ec:08:94:0f:40:c1:2c:ab:04:58:0e:42:8d:62:92:
a2:be:43:b9:c3:d1:e2:42:45:3c:ce:e4:1f:82:dc:1d:a3:79:
74:ae:ae:4e:0a:7f:52:0b:3f:2d:5e:ab:ae:63:f4:21:c4:44:
de:80:b0:75:04:7a:2f:2f:b1:6a:ff:2d:06:7e:86:be:88:63:
bd:00:99:7a:5a:c5:f7:a6:0c:cf:13:d5:eb:6a:1c:92:14:c2:
fb:f0:31:a7:9a:7d:dc:c9:61:7c:81:2d:4c:ad:2b:d2:d5:82:
b9:5e:13:70:5d:7e:67:2e:b5:87:b7:73:0c:dd:6d:ae:d7:6f:
29:8b:29:f9:ba:06:4a:ed:75:11:52:c3:74:b4:37:16:42:6c:
90:c4:78:b8:a0:b0:e8:8a:9a:93:dc:be:04:fe:41:05:a3:3a:
c2:07:43:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:31:26 2026 by rpki-client