Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
File: rzr00B8M0Fbw4_aYgAsiOu53PSA.mft (raw, json)
Hash identifier: 87N4owkHQRUp0fLUTFpTQzJB6wDMfOVf9hhuqBWUJ30=
Subject key identifier: 13:F9:2B:2A:74:56:33:A9:8F:4B:51:2A:97:6B:DE:0B:BD:2F:07:CB
Authority key identifier: AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20
Certificate issuer: /CN=AF3AF4D01F0CD056F0E3F698800B223AEE773D20
Certificate serial: 25AC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
Manifest number: 2596
Signing time: Sun 20 Jul 2025 06:44:04 +0000
Manifest this update: Sun 20 Jul 2025 06:44:04 +0000
Manifest next update: Sun 20 Jul 2025 12:44:04 +0000
Files and hashes: 1: Kk7lkFGOd63QwS1t6Wm8i_dkaIM.roa (hash: 4azzc8YreuK6NU6y8WTs2uAQ4eEJtFH2AV2cGlG1rC4=)
2: d16R1vhzR6AdU3s3oYlV8svDpoc.roa (hash: pZyYQk5Fbz2ihWXOaIedm3qeVm2r1E2UFUu++wqvZGo=)
3: rzr00B8M0Fbw4_aYgAsiOu53PSA.crl (hash: bt60qgifEyJD2gle7R9oh8Weuk/DLUWa9TokcUThG0Y=)
4: w6v7yydptDXSZ48j16_eXtT0ihA.roa (hash: CWsOZMP55Xzr2Prr/bR0hScMOPX06WSPiTnRdohDoiE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9644 (0x25ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF3AF4D01F0CD056F0E3F698800B223AEE773D20
Validity
Not Before: Jul 20 06:44:04 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=13F92B2A745633A98F4B512A976BDE0BBD2F07CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d3:e1:a1:be:b7:78:45:74:59:a0:58:31:fc:
11:35:85:ee:16:c7:ea:a4:6c:cc:e4:ed:f0:4b:67:
18:80:3c:e3:ab:c5:c8:e6:6c:a9:9b:df:9d:b8:2c:
32:e7:6d:38:a9:ba:fe:4e:5e:9b:79:8c:1f:23:0a:
5f:ca:7b:83:47:ca:c0:5f:64:39:bd:b1:41:1c:38:
3f:58:35:f5:62:9e:21:32:f6:ef:01:99:82:2b:79:
2b:f3:60:a8:22:f4:48:28:ca:21:44:9e:e7:0f:69:
49:d0:10:6e:c9:fb:ae:3c:ed:d3:6e:c2:6e:1e:3a:
17:cf:c6:e3:61:05:50:7a:8b:17:df:e7:8d:16:92:
0f:49:f4:3c:1d:ba:b3:65:fb:b4:57:39:00:41:a8:
a5:84:29:f5:e8:af:24:f7:d2:5a:a1:c1:cf:fb:e5:
ae:7b:8d:a9:9b:52:0b:91:e5:ae:4b:97:44:26:e7:
9e:5c:f6:dd:72:44:d2:a8:53:47:62:46:fe:37:46:
b6:24:10:a1:27:21:a8:dd:02:52:26:94:fa:c2:45:
dc:01:35:cd:74:bc:db:d9:f5:60:cf:ec:20:76:c4:
c5:66:82:57:fe:1f:56:f2:58:34:3b:8e:45:db:ba:
fc:56:ea:b2:23:d3:1b:19:43:6e:7d:e2:7e:98:f5:
79:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F9:2B:2A:74:56:33:A9:8F:4B:51:2A:97:6B:DE:0B:BD:2F:07:CB
X509v3 Authority Key Identifier:
keyid:AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
35:24:13:3e:b6:37:c0:00:dc:8a:de:b2:78:80:ce:ae:f4:39:
65:23:c6:fe:5d:d1:43:03:ff:72:27:61:d5:6a:75:8e:a1:e3:
38:66:13:79:aa:2a:0e:16:e0:f9:94:bd:ce:bb:ab:16:e6:3a:
bd:99:17:f6:3f:82:58:9d:e9:52:56:f6:8a:47:f3:3e:b9:be:
1f:f8:7e:c8:31:2e:63:08:9b:13:38:84:95:c2:7d:3e:c5:9a:
31:76:97:8a:c5:79:03:be:56:8b:7d:7c:f9:e0:79:5b:87:0c:
83:e9:b4:b5:88:87:23:16:0f:55:b0:d2:2c:22:2d:5d:7f:a9:
c5:dd:48:c3:86:2c:37:26:ec:4b:be:f0:b2:62:ba:9d:0e:bf:
9e:b6:f9:6e:77:ce:3a:d9:89:a9:9a:6d:20:af:18:cc:b4:e1:
3c:0b:b5:5d:57:8a:45:ed:a1:c4:a0:a5:40:11:bb:fe:9e:7f:
62:a1:4d:a5:9e:73:19:00:ee:5f:7e:9e:1b:10:73:8f:fa:6c:
ea:3f:bf:af:d2:4a:fb:f2:1c:46:ac:fc:cc:04:47:40:f1:f0:
be:08:88:61:76:74:27:88:04:2e:64:75:a0:15:59:d5:61:6f:
b9:ce:db:59:8d:95:06:dc:df:3e:d6:58:8e:fe:d8:ff:46:e4:
6e:19:82:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:45:28 2025 by rpki-client