Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft
File: nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft (raw, json)
Hash identifier: meULjlpByUHwTFvuUgTnX5N9uvW81RV8IM/c+GM79r0=
Subject key identifier: 16:3A:BB:E5:6F:10:2D:33:B9:0E:73:51:13:FE:62:30:9D:ED:5F:29
Authority key identifier: 9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82
Certificate issuer: /CN=9F2B6854BE70947F0785FF966203BB650BDD1682
Certificate serial: 0FAB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft
Manifest number: 0FA0
Signing time: Sat 10 Aug 2024 03:17:28 +0000
Manifest this update: Sat 10 Aug 2024 03:17:28 +0000
Manifest next update: Sat 10 Aug 2024 09:17:28 +0000
Files and hashes: 1: -0d9Ih2_4xrstIEFPLAr5YDyDWE.roa (hash: puWBp8oudYuH+BhgQnZwi091SZQ8sGEFcEdJYSj4y0Y=)
2: 7x2nclPCMO8BeUq4S_PlgUS4DBg.roa (hash: g0T92moQN5eb21VLNeF6X7atiXQvLL6ieycRhWgQCrs=)
3: nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl (hash: TQeTL0q2RlftYSHv7msBbSBUCBjideUsz9LetGFdB3A=)
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4011 (0xfab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F2B6854BE70947F0785FF966203BB650BDD1682
Validity
Not Before: Aug 10 03:17:28 2024 GMT
Not After : Aug 10 07:41:13 2024 GMT
Subject: CN=163ABBE56F102D33B90E735113FE62309DED5F29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:63:c7:d5:0c:b7:d9:a1:28:70:c6:c1:96:e7:
95:e0:64:80:f8:75:eb:1d:34:83:17:01:c1:81:bf:
0e:68:0d:18:46:12:9d:16:42:cb:d4:82:57:17:44:
c0:70:6f:55:e1:2f:79:06:d4:c0:8b:34:4d:5c:35:
23:89:06:72:9c:3d:39:12:ea:49:67:e5:80:7a:58:
43:2a:0c:48:36:51:ce:28:83:33:52:29:be:5d:52:
62:4f:d0:03:77:86:96:e3:e5:28:c0:d1:6a:24:3f:
1b:8e:84:29:3f:e8:13:cc:f0:e4:f7:29:71:f3:cc:
d6:e6:f1:3d:d4:d3:d0:4c:b5:8e:89:2f:d4:4f:dd:
62:01:10:ce:80:ad:f8:03:25:a0:c7:5a:aa:f8:06:
fa:07:98:57:17:28:b4:20:6d:44:6c:28:e8:1e:b1:
22:78:ea:1a:7e:61:42:ec:9a:6e:04:54:ce:1f:f6:
24:1c:0f:6d:88:50:e3:14:3f:e3:66:11:fa:2a:c6:
c8:e8:c8:64:9d:4b:24:40:c1:a8:72:61:ad:18:fc:
33:0e:92:14:d9:ce:0c:fd:87:f6:59:34:ea:16:2f:
48:83:93:c2:aa:2f:09:61:00:6b:56:d8:cc:25:0d:
30:89:c1:c5:f3:32:85:f0:1c:5e:da:d0:29:f2:ea:
e7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:3A:BB:E5:6F:10:2D:33:B9:0E:73:51:13:FE:62:30:9D:ED:5F:29
X509v3 Authority Key Identifier:
keyid:9F:2B:68:54:BE:70:94:7F:07:85:FF:96:62:03:BB:65:0B:DD:16:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/nytoVL5wlH8Hhf-WYgO7ZQvdFoI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
08:19:a6:89:40:8d:44:89:8d:59:97:5d:cb:ee:61:a6:d5:77:
38:a6:b5:ec:3c:96:1d:ed:ee:69:e5:22:a4:96:16:9f:85:ee:
d0:c4:1f:05:62:55:2d:9d:e1:5e:9f:86:9b:e8:a1:3a:29:04:
5e:b6:10:9f:99:9f:95:59:fc:0b:1c:64:ea:a6:35:4c:88:e2:
24:c0:00:2a:a3:f3:8b:a9:71:02:93:c2:9c:cc:ed:32:d1:e8:
67:86:7d:89:ea:99:d4:2b:f2:20:c2:5e:79:f0:12:54:f1:6f:
e3:8e:09:b6:07:84:69:ef:b6:86:01:b8:7b:f1:d5:b6:28:35:
84:09:5c:70:86:b9:72:c3:d0:a9:75:69:68:ad:4a:ef:30:e1:
91:f0:e9:cc:15:14:52:a9:8f:03:5a:8b:f7:67:c1:c5:6c:0e:
d0:44:bf:be:96:35:c3:52:02:b7:52:bd:25:4f:9e:57:2b:59:
af:2f:cd:ba:98:64:9d:4b:d1:e2:d7:24:39:28:f2:98:c2:19:
0c:04:7a:52:3d:e3:cc:18:a9:47:1b:31:af:e2:7e:f5:42:85:
fd:b9:9f:d3:6f:db:d9:92:1a:2f:0f:7f:56:b3:ff:2d:75:38:
61:8a:21:11:75:4a:41:5d:8d:98:54:3e:6f:4f:d8:f8:a3:77:
31:cd:79:00
-----BEGIN CERTIFICATE-----
MIIE7DCCA9SgAwIBAgICD6swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUYy
QjY4NTRCRTcwOTQ3RjA3ODVGRjk2NjIwM0JCNjUwQkREMTY4MjAeFw0yNDA4MTAw
MzE3MjhaFw0yNDA4MTAwNzQxMTNaMDMxMTAvBgNVBAMTKDE2M0FCQkU1NkYxMDJE
MzNCOTBFNzM1MTEzRkU2MjMwOURFRDVGMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDpY8fVDLfZoShwxsGW55XgZID4desdNIMXAcGBvw5oDRhGEp0W
QsvUglcXRMBwb1XhL3kG1MCLNE1cNSOJBnKcPTkS6kln5YB6WEMqDEg2Uc4ogzNS
Kb5dUmJP0AN3hpbj5SjA0WokPxuOhCk/6BPM8OT3KXHzzNbm8T3U09BMtY6JL9RP
3WIBEM6ArfgDJaDHWqr4BvoHmFcXKLQgbURsKOgesSJ46hp+YULsmm4EVM4f9iQc
D22IUOMUP+NmEfoqxsjoyGSdSyRAwahyYa0Y/DMOkhTZzgz9h/ZZNOoWL0iDk8Kq
LwlhAGtW2MwlDTCJwcXzMoXwHF7a0Cny6udtAgMBAAGjggIIMIICBDAdBgNVHQ4E
FgQUFjq75W8QLTO5DnNRE/5iMJ3tXykwHwYDVR0jBBgwFoAUnytoVL5wlH8Hhf+W
YgO7ZQvdFoIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcv
bnl0b1ZMNXdsSDhIaGYtV1lnTzdaUXZkRm9JLmNybDBjBggrBgEFBQcBAQRXMFUw
UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE
MDAwMC9ueXRvVkw1d2xIOEhoZi1XWWdPN1pRdmRGb0kuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr
aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNy9ueXRvVkw1d2xIOEhoZi1X
WWdPN1pRdmRGb0kubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu
Y24vcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB
BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA
CBmmiUCNRImNWZddy+5hptV3OKa17DyWHe3uaeUipJYWn4Xu0MQfBWJVLZ3hXp+G
m+ihOikEXrYQn5mflVn8Cxxk6qY1TIjiJMAAKqPzi6lxApPCnMztMtHoZ4Z9ieqZ
1CvyIMJeefASVPFv444JtgeEae+2hgG4e/HVtig1hAlccIa5csPQqXVpaK1K7zDh
kfDpzBUUUqmPA1qL92fBxWwO0ES/vpY1w1ICt1K9JU+eVytZry/NuphknUvR4tck
OSjymMIZDAR6Uj3jzBipRxsxr+J+9UKF/bmf02/b2ZIaLw9/VrP/LXU4YYohEXVK
QV2NmFQ+b0/Y+KN3Mc15AA==
-----END CERTIFICATE-----
Generated at Mon Aug 12 10:21:00 2024 by rpki-client on console-fra.rpki-client.org