Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft
File: fPRMBtXqffDL1PaFCPFOhNoIt1I.mft (raw, json)
Hash identifier: Pb2fig98R5DeeHRzl3ExSf5vJ3VAijmCX77L6vjp0Wg=
Subject key identifier: 7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF
Authority key identifier: 7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52
Certificate issuer: /CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752
Certificate serial: 1C23
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft
Manifest number: 1C16
Signing time: Tue 17 Mar 2026 23:59:12 +0000
Manifest this update: Tue 17 Mar 2026 23:59:12 +0000
Manifest next update: Wed 18 Mar 2026 05:59:12 +0000
Files and hashes: 1: HIkT_nEnsLxGeI-3zJUHhtNyWj8.roa (hash: IhDC9QUQgRmJWF3Vdetq/G4pSKe6C+p+OntJsqXr45o=)
2: JysggbimOtIIYLd8H4W2mvAaKtk.roa (hash: 3dVEhqycSb5TWHE0dMoeeLFGJNYtZHoiwDeanRn76Yc=)
3: OYh5JEj0uWuUFwdKjB10pF76_pI.roa (hash: An6u7oH3sagNhBru0T5ojCoKJVfFfrmJ66mlx7PcbhI=)
4: USiwWmP7_uZv84RfFsFEk-_9H8Q.roa (hash: b7crNyxxWRj94oFuRTJxzkl+UkzfJZ2V5euQ8agMh3o=)
5: cIWlcgIlWrr7dPhvnLjAEmryGDc.roa (hash: qYlW/Je7TxRMGGbrH6KCQs+TJv0I6bBgau3xwOaOT6g=)
6: fPRMBtXqffDL1PaFCPFOhNoIt1I.crl (hash: RzW7+wwvq7ONWWkCJp2BdQIeOm5ZBoW7OkBmS42vtHE=)
7: gALoy-WEClG9nOagRiQccU0WnpE.roa (hash: Gmv5mtUHklFp3j+m8mMU5eiB9lpckT1KXPsOboMEr50=)
8: nlfKk31w0-JMOBpbuydpYlmgaK4.roa (hash: Pd6xFisxhVIf9N5p5BSqwtwrTZp9+Wnd5CgCa9g0/nM=)
9: r78L_jfDaGDjaH3rsP83eK4kcG4.roa (hash: u1or2If1pLNDG9eB56Xw8Z+2kHObmlhnvE4GqSl5VaQ=)
10: xB_JUhaUTOLRuggWEFRDEbGKbdA.roa (hash: MUeQ6SBwA1FY7z2svn5ifPBc7LhDADwZ7QfDARqfH+4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7203 (0x1c23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CF44C06D5EA7DF0CBD4F68508F14E84DA08B752
Validity
Not Before: Mar 17 23:59:12 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=7C23A77681714EFB35C901DA630F2C525EFE19BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2a:bb:7b:59:64:df:24:f6:6c:eb:bb:11:8a:
b8:10:c4:dc:0b:39:e9:39:6c:d6:f4:fe:8e:d2:6e:
e7:2d:e0:8d:d1:3e:30:0e:e9:e9:40:0f:13:58:9a:
69:08:05:09:2f:da:e8:f6:ad:0c:58:f4:89:f1:ca:
1d:29:f9:c3:d9:7f:c6:67:52:8e:67:28:ac:e3:d8:
38:37:9d:d0:40:be:39:4c:d1:d0:16:c4:e8:ef:c9:
be:0c:de:94:15:2f:53:6a:a7:3a:00:77:42:a3:19:
af:82:30:ff:13:d5:ad:8d:1e:56:28:9f:59:a7:74:
5d:f8:3c:7e:c9:cf:96:8d:f7:12:24:92:e7:5d:da:
7a:86:6c:c4:44:4e:34:4c:12:22:b8:ae:6b:4f:21:
78:f5:ca:31:5f:72:7c:2d:16:ae:01:e0:b5:f1:52:
ae:78:6d:ac:46:c0:99:f9:ea:79:13:92:fa:7f:3e:
3b:d6:b1:98:50:b4:d0:4d:24:f2:1d:87:61:f9:75:
25:cc:b7:5f:cc:c7:a8:38:03:d3:32:d6:7a:73:37:
e7:d2:db:ab:8a:b2:86:aa:9f:8d:c0:b6:f4:6e:cf:
8d:8f:3c:69:99:b6:07:1d:af:c5:23:e0:a2:01:63:
df:7a:72:b4:89:b0:38:aa:e4:f5:97:12:29:1d:f1:
07:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:23:A7:76:81:71:4E:FB:35:C9:01:DA:63:0F:2C:52:5E:FE:19:BF
X509v3 Authority Key Identifier:
keyid:7C:F4:4C:06:D5:EA:7D:F0:CB:D4:F6:85:08:F1:4E:84:DA:08:B7:52
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fPRMBtXqffDL1PaFCPFOhNoIt1I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2578/fPRMBtXqffDL1PaFCPFOhNoIt1I.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
73:ba:2d:f5:9c:da:cd:c9:78:81:72:86:56:a8:96:d9:d0:f2:
26:f0:5f:59:97:ef:6d:bf:03:a1:b4:8a:57:b6:d4:bf:90:bc:
d2:0f:0d:5c:20:85:da:e8:5e:19:5f:0c:82:1c:47:cc:a3:b0:
89:19:73:e7:8f:95:55:dc:b6:3f:ab:2a:da:34:2c:70:ec:8c:
d9:39:af:b2:76:04:6e:e4:99:d1:ea:e4:79:9a:48:ab:22:27:
34:39:70:a1:da:c2:56:4a:c4:eb:64:1e:cb:d3:5f:2c:22:36:
d2:50:b7:76:39:c1:e0:b5:ef:9e:8e:56:da:78:bc:d5:f5:35:
aa:26:c6:39:a3:a5:ae:f5:1f:06:d3:e4:04:c0:78:64:a3:bd:
1e:9f:46:1b:e8:4e:91:3d:1f:db:30:a7:ae:ac:33:ae:b8:06:
62:a9:47:4a:d1:d0:e6:f5:07:93:9a:f0:61:7e:68:ab:ad:8f:
b7:88:9e:b6:9b:da:73:97:36:97:70:b5:4d:04:9a:4e:4c:06:
15:90:8d:f8:52:df:ff:35:a4:52:d9:7f:85:a1:72:2d:c0:d7:
4d:cb:27:91:26:1c:48:14:8b:6d:89:92:13:c6:13:34:57:cb:
23:42:6f:41:d6:01:07:c4:0c:54:1e:97:02:1d:be:4c:81:61:
a2:08:21:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:22:39 2026 by rpki-client