Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft
File: jj4CcULGM9VlmEGN9t68Ab3YAIw.mft (raw, json)
Hash identifier: V7vdbkBHUo3pcatn5AB0iYQO9+Sg7gpww5wWLeuPlFk=
Subject key identifier: CD:0D:A4:34:76:61:96:21:68:38:80:26:EA:89:66:59:95:64:31:6C
Authority key identifier: 8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C
Certificate issuer: /CN=8E3E027142C633D56598418DF6DEBC01BDD8008C
Certificate serial: 1AD5
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft
Manifest number: 1ACB
Signing time: Wed 18 Mar 2026 01:01:38 +0000
Manifest this update: Wed 18 Mar 2026 01:01:38 +0000
Manifest next update: Wed 18 Mar 2026 07:01:38 +0000
Files and hashes: 1: hR5WgWlycencAbMn7kinM4GgA5Y.roa (hash: Zo+G1xkgkRarijdTBQlPLvHTGIBYjF9dgtJgCZVrDLM=)
2: jj4CcULGM9VlmEGN9t68Ab3YAIw.crl (hash: 1malyLpdCDuRIl/1p+docY7TgOKQtPFia+d3KUMsKhk=)
3: s_MU91GHNpBhlTzN1HTTn59KNKQ.roa (hash: IgVjsa+d0mY9flUNFa23ishGosZBgOtinh3QUA1XnD8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6869 (0x1ad5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E3E027142C633D56598418DF6DEBC01BDD8008C
Validity
Not Before: Mar 18 01:01:38 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=CD0DA4347661962168388026EA8966599564316C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2c:1c:56:12:f8:80:bf:f0:c2:fd:a7:4d:2d:
16:9e:1d:4d:9e:3e:08:a2:38:57:36:91:63:3d:f1:
e4:5b:44:e8:9e:e7:a7:79:48:59:02:ec:34:53:6b:
ac:59:7f:70:4b:62:43:fa:08:97:27:12:4f:31:13:
e9:1a:eb:49:15:35:eb:7f:75:7c:2e:98:23:ed:f4:
7c:15:ec:81:50:d2:bb:63:2b:70:f6:af:ce:34:eb:
88:fe:46:f2:d3:9f:fa:3c:f2:96:6b:31:26:5a:f4:
c3:7f:19:06:92:95:ae:2c:ac:5e:eb:77:b4:c8:1b:
26:15:84:ec:8e:f0:a9:48:25:5f:d9:46:3a:16:42:
8d:5f:aa:ef:04:6f:2d:5b:7d:68:ea:0f:44:48:d5:
d1:db:ff:ce:07:3f:7b:65:09:55:7b:b2:2f:b0:be:
55:97:02:ef:2e:a3:8b:f0:01:87:57:38:a8:24:bf:
b9:5f:65:23:4a:7d:56:3b:b2:3d:71:04:31:d5:74:
dd:c0:b1:12:81:8f:82:50:8d:5f:3e:50:d6:f6:18:
b4:66:f1:27:d9:90:62:79:c2:c1:0b:d5:d9:7c:20:
12:0c:b6:5b:ce:6f:6c:8a:c9:0e:c4:db:18:65:53:
d6:17:a0:aa:da:28:8e:d2:25:62:50:bd:0e:51:20:
0e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0D:A4:34:76:61:96:21:68:38:80:26:EA:89:66:59:95:64:31:6C
X509v3 Authority Key Identifier:
keyid:8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0a:62:30:bf:13:f8:bb:57:3e:b2:95:65:d7:b1:9e:a4:78:95:
a5:b7:a5:d9:41:50:9f:b1:89:2c:90:a2:56:46:a4:d5:b8:07:
88:f9:f9:6f:01:32:41:84:56:1c:15:5f:11:5d:d5:7a:b0:17:
52:e6:99:36:5f:4f:51:c5:60:2a:e2:65:40:07:b0:de:e5:cb:
7d:fe:39:46:77:48:30:1b:2e:6e:46:18:ec:4e:b2:7b:fb:35:
14:e4:40:bd:a6:d5:45:7e:b8:03:7b:c3:00:d9:dd:38:07:c5:
df:cc:71:98:d4:d5:b4:e0:8d:9c:c5:1e:be:dc:8f:0c:3d:20:
f1:bb:50:ad:e1:35:08:ef:b9:4c:72:4a:b6:9e:30:db:9e:b0:
d9:5c:e6:cc:52:ef:e6:1b:ba:8e:41:82:a2:84:32:ca:b0:97:
96:10:8b:58:6a:d0:9b:60:94:3b:62:bb:5d:e2:7b:a3:0d:ab:
9b:96:e4:d6:53:e1:b6:fd:5b:d9:42:01:a8:2b:d5:e1:c4:45:
df:f0:33:43:04:b6:9c:61:19:56:2e:0b:22:85:e7:2e:92:f0:
d8:bb:23:24:bd:2c:01:6e:ef:e2:dd:ce:1b:10:4a:07:f3:9c:
54:35:96:db:f2:51:0a:6f:3e:50:0e:ec:4d:3f:d4:93:4e:3e:
20:b4:ad:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:34:07 2026 by rpki-client