Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft
File: vcTZgftYN_Id2VEGP1m0dd1WJTY.mft (raw, json)
Hash identifier: UakoPGrdy106jJrWJOkR9C76Pj4fdt8vJSVALqwjQm8=
Subject key identifier: 48:ED:2D:04:59:DF:0F:E7:68:E6:07:DA:7C:6D:13:70:A3:01:41:9D
Authority key identifier: BD:C4:D9:81:FB:58:37:F2:1D:D9:51:06:3F:59:B4:75:DD:56:25:36
Certificate issuer: /CN=BDC4D981FB5837F21DD951063F59B475DD562536
Certificate serial: 05D7
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft
Manifest number: 05D6
Signing time: Thu 05 Mar 2026 18:58:39 +0000
Manifest this update: Thu 05 Mar 2026 18:58:39 +0000
Manifest next update: Fri 06 Mar 2026 00:58:39 +0000
Files and hashes: 1: ihz4sFLDfkN7Fk9DCBqiadh-ivQ.roa (hash: gR5LOmN4JF2dPB94elxL+UoXokAkI2kc2RKlgGd4ebs=)
2: vcTZgftYN_Id2VEGP1m0dd1WJTY.crl (hash: h0hfddguSR0FcpF5vT5niOi4z/KsAabApF9JjqW0PoI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1495 (0x5d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDC4D981FB5837F21DD951063F59B475DD562536
Validity
Not Before: Mar 5 18:58:39 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=48ED2D0459DF0FE768E607DA7C6D1370A301419D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:01:25:5d:b3:c7:08:4c:9d:8f:fb:8d:cc:
f4:c4:07:1f:79:ca:fb:0d:18:3a:55:90:e8:6d:a6:
53:ed:b3:73:02:97:4d:46:3f:52:7d:2d:2a:9d:29:
b0:92:90:d8:01:f3:25:ad:1f:dd:a1:17:0a:a4:69:
d7:2e:a6:d1:2e:45:7b:ba:09:2d:c0:77:aa:d0:f5:
cb:a3:50:a9:2f:7e:5a:a0:11:0b:96:c6:ff:49:78:
79:e4:59:a5:e2:b2:d0:82:37:69:da:01:40:4c:89:
3a:d1:c2:0b:d7:ea:5d:3e:7f:92:ed:ad:2b:b7:3e:
ec:a9:b1:0e:34:16:c0:a2:8e:2f:c3:a0:06:0e:c6:
29:0e:62:a9:6a:9a:85:d9:32:83:51:7e:a0:e6:ab:
8d:e8:c2:45:7b:a1:94:9d:a5:04:29:32:a7:77:16:
8f:c7:e8:38:70:3f:43:8c:97:de:e7:3d:0e:e3:5d:
e0:7d:70:c8:11:4d:16:a1:67:c6:94:11:6b:7e:c1:
a6:1e:5a:43:06:58:74:49:a9:6f:b0:eb:54:ff:c2:
ce:2e:61:27:de:29:59:21:92:1c:54:04:69:8b:70:
76:85:e4:83:21:38:3e:69:af:de:0e:9e:cb:27:a7:
40:06:b7:03:05:3f:3d:55:56:b3:44:b9:fc:2e:41:
58:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:ED:2D:04:59:DF:0F:E7:68:E6:07:DA:7C:6D:13:70:A3:01:41:9D
X509v3 Authority Key Identifier:
keyid:BD:C4:D9:81:FB:58:37:F2:1D:D9:51:06:3F:59:B4:75:DD:56:25:36
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vcTZgftYN_Id2VEGP1m0dd1WJTY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2662/vcTZgftYN_Id2VEGP1m0dd1WJTY.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
04:bc:72:e1:8f:c1:96:b1:32:d0:ac:ff:b0:4d:43:f1:6f:52:
c2:7e:1b:e5:74:49:d5:e0:3d:7a:9c:38:d6:f2:6c:64:e0:90:
d0:9c:20:b7:c8:a5:e0:46:78:fc:a6:e4:53:7e:1c:de:6c:68:
a0:f6:45:98:7b:d3:87:c8:58:22:05:22:47:45:aa:1d:67:f2:
57:98:e7:2b:09:af:bd:14:36:0a:74:97:91:6c:49:f5:14:15:
8c:87:64:9a:6e:03:fd:0f:75:96:be:74:f2:8a:9e:69:65:d0:
cb:64:22:9f:f3:bf:71:e8:ed:5f:7c:f4:d6:99:85:8b:5f:56:
1d:0a:0c:d0:c1:80:d9:40:a0:31:15:ca:fc:22:d1:92:63:2e:
60:9b:a9:ff:ae:dc:43:a2:13:6b:5f:0e:b6:9e:ca:e9:af:c7:
ce:34:c1:75:09:28:39:73:6e:59:f2:94:4d:4a:ca:47:97:11:
21:fe:0b:3a:3a:57:4c:55:1f:cf:b0:dc:bb:30:af:62:47:00:
5d:c0:d4:9d:b7:c5:f8:bb:0a:6c:b6:82:6b:ab:1d:7a:43:84:
35:48:68:c2:59:a7:4d:74:59:25:36:5d:8b:b9:20:f7:b7:be:
04:78:7d:6a:67:9b:fb:f9:1a:0e:84:7b:de:8e:04:8d:f1:69:
ae:d1:8e:fe
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRD
NEQ5ODFGQjU4MzdGMjFERDk1MTA2M0Y1OUI0NzVERDU2MjUzNjAeFw0yNjAzMDUx
ODU4MzlaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDQ4RUQyRDA0NTlERjBG
RTc2OEU2MDdEQTdDNkQxMzcwQTMwMTQxOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDShQElXbPHCEydj/uNzPTEBx95yvsNGDpVkOhtplPts3MCl01G
P1J9LSqdKbCSkNgB8yWtH92hFwqkadcuptEuRXu6CS3Ad6rQ9cujUKkvflqgEQuW
xv9JeHnkWaXistCCN2naAUBMiTrRwgvX6l0+f5LtrSu3PuypsQ40FsCiji/DoAYO
xikOYqlqmoXZMoNRfqDmq43owkV7oZSdpQQpMqd3Fo/H6DhwP0OMl97nPQ7jXeB9
cMgRTRahZ8aUEWt+waYeWkMGWHRJqW+w61T/ws4uYSfeKVkhkhxUBGmLcHaF5IMh
OD5pr94Onssnp0AGtwMFPz1VVrNEufwuQVgNAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUSO0tBFnfD+do5gfafG0TcKMBQZ0wHwYDVR0jBBgwFoAUvcTZgftYN/Id2VEG
P1m0dd1WJTYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY2
Mi92Y1RaZ2Z0WU5fSWQyVkVHUDFtMGRkMVdKVFkuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL3ZjVFpnZnRZTl9JZDJWRUdQMW0wZGQxV0pUWS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NjIvdmNUWmdmdFlOX0lk
MlZFR1AxbTBkZDFXSlRZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAAS8cuGPwZaxMtCs/7BNQ/FvUsJ+G+V0SdXgPXqcONbybGTgkNCcILfIpeBG
ePym5FN+HN5saKD2RZh704fIWCIFIkdFqh1n8leY5ysJr70UNgp0l5FsSfUUFYyH
ZJpuA/0PdZa+dPKKnmll0MtkIp/zv3Ho7V989NaZhYtfVh0KDNDBgNlAoDEVyvwi
0ZJjLmCbqf+u3EOiE2tfDraeyumvx840wXUJKDlzblnylE1KykeXESH+Czo6V0xV
H8+w3Lswr2JHAF3A1J23xfi7Cmy2gmurHXpDhDVIaMJZp010WSU2XYu5IPe3vgR4
fWpnm/v5Gg6Ee96OBI3xaa7Rjv4=
-----END CERTIFICATE-----
Generated at Fri Mar 6 01:08:36 2026 by rpki-client