Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft
File: -3g5E2fIrZfRqcIaNTKFrV5ojRw.mft (raw, json)
Hash identifier: gYMJoWZcA8HOPkTO3oEbf/KM6ahaTn8lvhWLHCEzImE=
Subject key identifier: 42:02:F5:BE:89:7E:F9:F2:A7:97:A1:A6:D0:F6:61:A0:1D:08:D0:C9
Authority key identifier: FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C
Certificate issuer: /CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C
Certificate serial: 1896
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft
Manifest number: 1895
Signing time: Tue 09 Sep 2025 00:04:32 +0000
Manifest this update: Tue 09 Sep 2025 00:04:32 +0000
Manifest next update: Tue 09 Sep 2025 06:04:32 +0000
Files and hashes: 1: -3g5E2fIrZfRqcIaNTKFrV5ojRw.crl (hash: I84x+x0fFzV5CuoNIoE9CdLTWbypJqyxw+Aa+hWF+V4=)
2: -IRe54bpv1-TQux1UjZl7eXOe8k.roa (hash: Wla7VV+qPSO8J9AN9n88AWkJuu/D49QzJW/C/8t30IQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6294 (0x1896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C
Validity
Not Before: Sep 9 00:04:32 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=4202F5BE897EF9F2A797A1A6D0F661A01D08D0C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5a:aa:3f:8d:88:71:a4:d3:cb:f5:44:bd:3d:
ac:7a:37:61:44:ba:34:1e:3d:23:2b:f6:78:07:e7:
56:11:e3:cd:24:ad:03:22:cc:7a:f0:6b:5f:98:eb:
2c:d6:41:e7:5c:14:02:aa:3f:81:2a:08:06:28:38:
f7:4e:79:f2:76:8f:fc:fd:c9:5c:d0:94:a0:28:2c:
27:c2:50:63:87:b6:2c:ba:5f:9f:cc:99:8e:a0:8a:
97:25:e2:12:03:11:95:dc:cb:c9:8a:51:d2:b2:70:
a4:d5:5a:6b:32:be:e6:46:bc:0e:fd:4a:69:9a:4a:
65:29:81:73:ec:5d:b0:9a:87:0c:c9:48:c1:20:03:
4b:5d:ba:4e:f1:7c:f3:0a:11:8a:31:e8:58:7b:e0:
58:41:35:90:38:af:98:42:f2:e6:12:cb:13:35:75:
61:96:e4:23:ce:05:9a:8f:68:6e:a3:72:de:df:21:
68:db:7b:64:b7:27:79:96:f9:f1:e8:8f:ae:52:a3:
d4:c8:8c:73:90:aa:ce:28:ec:c8:7b:9a:1b:08:31:
0c:c3:36:21:a2:a4:e5:38:5a:61:84:1a:2f:d0:60:
25:bb:6b:fd:81:46:ab:fd:f3:58:90:36:1d:ac:c8:
9e:06:9f:2c:17:44:bc:2f:de:c1:fe:fe:95:ea:77:
70:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:02:F5:BE:89:7E:F9:F2:A7:97:A1:A6:D0:F6:61:A0:1D:08:D0:C9
X509v3 Authority Key Identifier:
keyid:FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
84:40:cb:11:c4:f5:67:2f:17:e8:2f:dc:3f:b5:39:74:4c:dd:
b7:58:b0:e5:e0:7b:5e:54:77:e7:01:e6:c4:f2:0b:5d:40:6f:
43:ee:e1:bb:5a:9a:33:80:92:5f:76:cd:17:98:8c:0b:b4:52:
07:71:db:9e:f5:1a:c1:be:6d:88:75:56:79:fc:5a:71:b2:84:
f3:16:21:71:e9:b6:53:bf:64:21:3e:de:cb:d6:c6:83:ca:3d:
58:a5:de:e3:3f:6a:8d:d4:d6:6f:ee:81:85:b5:79:61:cc:94:
c0:ad:91:d1:b8:41:e7:92:6c:37:aa:b0:fc:ad:94:b5:33:c4:
96:aa:bd:dd:1d:24:70:da:4b:8f:ed:d2:56:ef:2c:57:39:05:
fa:eb:fe:62:43:89:8b:1f:6a:34:18:97:ac:50:5b:81:a3:92:
bf:4c:e8:ca:e5:68:a5:6f:11:f2:ee:31:b2:f1:f3:06:2f:8a:
d6:1a:f6:21:90:0a:c2:fe:6a:53:f7:49:be:4f:8c:dd:0c:29:
f9:c6:03:79:3b:83:69:84:5c:7a:89:17:a7:bf:2d:7c:55:2f:
65:fb:c8:7e:61:04:ce:06:74:a0:4e:9e:31:f4:64:8c:f4:b1:
7f:6d:64:75:da:6b:89:84:e4:14:3b:15:cd:0d:d4:2c:23:e0:
5f:f4:ed:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 06:06:24 2025 by rpki-client