Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.mft
File: 3Vi43ud7iv5uKRpbggWxMTFpeE8.mft (raw, json)
Hash identifier: rzLkrN7bzivmxH8dPEAMuRmoEKSLHLATbcbdQ5Qx4bs=
Subject key identifier: BF:2E:AB:E6:21:26:06:38:CA:17:18:30:91:2C:92:15:02:05:C9:86
Authority key identifier: DD:58:B8:DE:E7:7B:8A:FE:6E:29:1A:5B:82:05:B1:31:31:69:78:4F
Certificate issuer: /CN=DD58B8DEE77B8AFE6E291A5B8205B1313169784F
Certificate serial: 2297
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3Vi43ud7iv5uKRpbggWxMTFpeE8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.mft
Manifest number: 228E
Signing time: Fri 24 Oct 2025 03:37:36 +0000
Manifest this update: Fri 24 Oct 2025 03:37:36 +0000
Manifest next update: Fri 24 Oct 2025 09:37:36 +0000
Files and hashes: 1: 3Vi43ud7iv5uKRpbggWxMTFpeE8.crl (hash: FeJwlWBsT4zm0Cw29eeHXH4nPPZg3YKcHCLv4zL/c7o=)
2: cqFqWP_u8PMUgu7Wa-ZJA_XHnQQ.roa (hash: LrTEljujW0Atd0a1+D8Fc6IgbT9Dits51r67dMvR4wQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8855 (0x2297)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD58B8DEE77B8AFE6E291A5B8205B1313169784F
Validity
Not Before: Oct 24 03:37:36 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=BF2EABE621260638CA171830912C92150205C986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:9c:fd:ca:f5:18:1f:d8:26:53:80:57:67:c9:
ee:a7:69:5e:ed:e4:a2:eb:de:d2:73:73:11:d5:6d:
6c:4d:91:5a:d8:68:84:64:29:08:a4:2a:24:a3:26:
3b:7c:30:e8:e3:b9:47:80:73:b8:2f:7c:b0:55:fc:
56:f1:d9:81:ac:8b:e1:eb:b2:81:3d:6f:f9:94:25:
ba:2e:06:0b:86:ae:1d:35:ed:15:45:f7:15:06:bc:
84:71:36:01:e5:61:96:d6:78:c5:05:f1:cb:2a:7d:
70:99:1b:16:9c:42:42:e9:04:a9:b4:8d:a4:e0:12:
f0:9a:3a:b7:cc:e7:63:8f:c6:b5:b1:e9:27:38:db:
b9:fe:11:70:47:69:b8:8d:7f:b1:f1:26:58:fc:98:
16:6c:a5:2c:67:24:63:08:2d:63:47:c3:04:58:e3:
41:13:12:ec:d1:aa:a2:c2:51:4e:d6:ae:b7:ba:d7:
f9:ce:6a:b7:08:4e:f4:e9:47:f9:54:f6:5c:a7:13:
6c:cf:e8:0b:bb:ce:3f:11:89:e2:8e:08:08:49:41:
18:90:ce:be:50:9c:0a:aa:16:6d:92:ed:fb:4e:74:
0e:c1:1c:61:38:d0:fa:be:fa:16:62:9e:1f:c8:ff:
67:05:57:f7:e3:1a:d9:85:bc:d6:7d:da:54:ec:7d:
0c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2E:AB:E6:21:26:06:38:CA:17:18:30:91:2C:92:15:02:05:C9:86
X509v3 Authority Key Identifier:
keyid:DD:58:B8:DE:E7:7B:8A:FE:6E:29:1A:5B:82:05:B1:31:31:69:78:4F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3Vi43ud7iv5uKRpbggWxMTFpeE8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2671/3Vi43ud7iv5uKRpbggWxMTFpeE8.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7d:ae:4e:35:b7:6f:03:22:36:3e:79:b4:98:3c:ba:d7:6e:8a:
67:6e:45:f4:4c:7e:88:15:a0:d1:6d:02:af:82:c2:81:90:b7:
0e:f4:a8:a6:56:b7:c7:eb:12:cb:23:42:56:31:87:e0:ee:ac:
ad:d4:67:74:21:56:31:b0:2b:af:9f:02:52:f8:44:51:1e:2b:
f9:d9:4d:08:2c:4c:16:d3:a8:b1:04:f0:61:37:e6:af:5e:2d:
33:90:d9:57:71:dd:91:b8:11:c4:5e:d7:81:8e:04:6f:95:60:
6f:73:00:49:15:c2:67:fe:93:ad:dc:c1:4a:e0:38:97:98:bc:
db:4f:69:ff:61:5e:f0:3e:82:5d:eb:31:06:82:f3:9c:93:16:
e6:5d:db:f8:41:c1:ba:42:69:44:cf:7a:54:75:5e:34:f0:cc:
f4:36:e9:18:11:40:cf:ea:d0:a5:19:54:7b:1a:76:74:cb:01:
fe:10:5a:d7:c7:5a:f8:1c:f7:a0:63:9f:82:03:8d:95:80:c6:
1f:79:92:2e:47:a4:f8:6c:11:b4:20:7b:ba:09:be:ae:fe:32:
a1:5f:2c:f5:2c:bd:76:21:34:39:0c:c7:a5:e0:04:36:d7:17:
56:7a:fe:87:01:8d:56:22:f1:a3:05:0f:b0:02:d1:e4:0d:b7:
3c:52:06:de
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICIpcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREQ1
OEI4REVFNzdCOEFGRTZFMjkxQTVCODIwNUIxMzEzMTY5Nzg0RjAeFw0yNTEwMjQw
MzM3MzZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEJGMkVBQkU2MjEyNjA2
MzhDQTE3MTgzMDkxMkM5MjE1MDIwNUM5ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDynP3K9Rgf2CZTgFdnye6naV7t5KLr3tJzcxHVbWxNkVrYaIRk
KQikKiSjJjt8MOjjuUeAc7gvfLBV/Fbx2YGsi+HrsoE9b/mUJbouBguGrh017RVF
9xUGvIRxNgHlYZbWeMUF8csqfXCZGxacQkLpBKm0jaTgEvCaOrfM52OPxrWx6Sc4
27n+EXBHabiNf7HxJlj8mBZspSxnJGMILWNHwwRY40ETEuzRqqLCUU7Wrre61/nO
arcITvTpR/lU9lynE2zP6Au7zj8RieKOCAhJQRiQzr5QnAqqFm2S7ftOdA7BHGE4
0Pq++hZinh/I/2cFV/fjGtmFvNZ92lTsfQxtAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUvy6r5iEmBjjKFxgwkSySFQIFyYYwHwYDVR0jBBgwFoAU3Vi43ud7iv5uKRpb
ggWxMTFpeE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3
MS8zVmk0M3VkN2l2NXVLUnBiZ2dXeE1URnBlRTguY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwLzNWaTQzdWQ3aXY1dUtScGJnZ1d4TVRGcGVFOC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzEvM1ZpNDN1ZDdpdjV1
S1JwYmdnV3hNVEZwZUU4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAH2uTjW3bwMiNj55tJg8utduimduRfRMfogVoNFtAq+CwoGQtw70qKZWt8fr
EssjQlYxh+DurK3UZ3QhVjGwK6+fAlL4RFEeK/nZTQgsTBbTqLEE8GE35q9eLTOQ
2Vdx3ZG4EcRe14GOBG+VYG9zAEkVwmf+k63cwUrgOJeYvNtPaf9hXvA+gl3rMQaC
85yTFuZd2/hBwbpCaUTPelR1XjTwzPQ26RgRQM/q0KUZVHsadnTLAf4QWtfHWvgc
96Bjn4IDjZWAxh95ki5HpPhsEbQge7oJvq7+MqFfLPUsvXYhNDkMx6XgBDbXF1Z6
/ocBjVYi8aMFD7AC0eQNtzxSBt4=
-----END CERTIFICATE-----
Generated at Fri Oct 24 06:36:25 2025 by rpki-client