Manifest

$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft
File:                     -ta0PAnQSQoN9_iR359jtSDPIQ8.mft (raw, json)
Hash identifier:          2Zia+DCk3PgkJDykpFmb51kl0dJPhiScMA0SxHsyeZ4=
Subject key identifier:   4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC
Authority key identifier: FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F
Certificate issuer:       /CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F
Certificate serial:       14C1
Authority info access:    rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer
Subject info access:      rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft
Manifest number:          14AD
Signing time:             Wed 18 Mar 2026 01:01:17 +0000
Manifest this update:     Wed 18 Mar 2026 01:01:17 +0000
Manifest next update:     Wed 18 Mar 2026 07:01:17 +0000
Files and hashes:         1: -ta0PAnQSQoN9_iR359jtSDPIQ8.crl (hash: +PeWk0mUgAX0QSjO3IDDBfa1iJdIna6caWWRMfljYGE=)
                          2: 1_xVmznRbjgrARcOnrUzK3zkMkM.roa (hash: GCP9qK5uGloZHD8Mka7pysVMWzi2GGVFtT7E7LtKHac=)
                          3: CHHbDf38ok5HgG-AYJgAhy91wqY.roa (hash: KxJWeGq5HBzWbxvVwSmjxZ9pOeTHY0fE5UXqtx6WfOk=)
                          4: Cni4ivS0aTSHai9yUx7gJbz5jK8.roa (hash: 84n7AGw6yl+gQsNwUYQ53IvU2VCFXFgTwWVhGMKyhIk=)
                          5: LiLhG4umWIFvssfr-YRo7VPi9PQ.roa (hash: 8VzvX+6L2up29XAoS07TOWxozlHhFYSU/9tMLFarKws=)
                          6: MRmJHXHbniE2rjTMj7-XBPn2PFE.roa (hash: AZznRSYPnsoxRC7iuvzdOmezQdGSxGrbcrS0Svin9+Q=)
                          7: PZpMpUI55eB2vbRtNWyVquWC7y0.roa (hash: XGAKJedxzNaXjaRNceMDOB16UaE9Le2pcMQeq9bqLtI=)
                          8: Pie-aA_SMXi1KlttjIhePqYurTU.roa (hash: 4oxtWmiOezYONOy5kp6vAgerw2OZ94LDmtSh2UUa1A4=)
                          9: llh71OO6sGwAfZdC60WJs1U2NU0.roa (hash: 5pHK2BD7cThMf2Gdvo1WL3olc9aZ3jLaBSG3cDaQoIc=)
                          10: miGjVDXbOzQQTZP9E5umEPnWCAw.roa (hash: bFWWTZfSgak8dwI4OZSJZy4GLdjg6INc4Sl9XfE3d4k=)
                          11: rovnomnuVFMNJzTNeyy5W6WRMe0.roa (hash: aVXERw9JByy2HpoXIifbCTO+OLw9MnI6ZPVD8/WtLto=)
                          12: sZKnapg00fgKKe4LkAFvTWPY7bc.roa (hash: QsFYItD1U7Qqi5MRKBnZXLcVx+4eR2sBukx9xvp60fM=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5313 (0x14c1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F
        Validity
            Not Before: Mar 18 01:01:17 2026 GMT
            Not After : Jan  9 08:23:18 2027 GMT
        Subject: CN=4BCC447184497A8FAEB3769AD767F2E2871D2EAC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:48:ee:2b:68:e0:56:e6:b1:31:28:fd:47:ec:
                    4f:11:cb:57:24:26:ab:d1:62:af:be:7f:2a:fc:e0:
                    a6:ca:09:fa:df:39:bf:1a:4d:ee:e7:d2:04:13:4c:
                    ac:e2:0e:1e:ad:f4:e7:66:10:72:a4:dc:dc:58:0b:
                    2b:30:18:84:09:a9:c2:92:f5:48:0c:e0:c7:e2:e8:
                    76:37:fe:e1:0b:b8:b7:cc:b4:a7:1c:f6:f0:00:a2:
                    4c:88:c2:0d:1c:77:ee:ed:5e:1b:ab:6c:63:b1:fc:
                    b8:42:c7:dc:5d:96:72:b1:a2:f2:ab:6d:8b:6e:f6:
                    28:87:66:1f:a9:05:09:e7:13:7d:9d:7e:49:b9:35:
                    62:13:98:cc:ad:e2:3f:3e:50:3a:6d:ad:48:06:a3:
                    4d:d0:25:33:71:7f:f4:45:31:2e:da:ea:70:d2:f2:
                    bb:86:d1:7d:04:a2:98:b1:ca:26:25:9b:b7:84:56:
                    af:f6:ae:d6:85:b8:1a:b5:78:24:84:58:57:60:b1:
                    ed:e2:3f:f0:d1:fa:4c:57:30:15:22:fa:37:8b:f8:
                    10:fd:c8:f7:0a:50:d3:19:f8:15:cd:0d:b4:c8:b6:
                    35:e0:c2:1d:71:28:31:3d:05:53:bd:9f:f7:f2:c8:
                    51:e0:c9:cb:a8:e3:82:d0:1e:9e:d2:83:a2:44:6e:
                    5c:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC
            X509v3 Authority Key Identifier:
                keyid:FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft
                RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:b0:a9:a6:1d:49:37:3b:73:cf:a0:81:3a:c2:88:73:0a:34:
         52:6a:48:1a:d7:26:86:ef:bb:a8:5a:9c:d1:47:ab:f6:0e:24:
         30:f9:23:4b:f8:0b:15:19:04:12:af:c3:b1:96:ae:d4:ad:36:
         b5:cc:46:06:d7:ed:3f:20:f7:27:a0:3b:b6:e8:24:a7:8e:73:
         1f:3d:17:56:48:cc:af:3d:49:ae:ea:f4:18:0b:22:13:72:53:
         fe:f7:00:76:5d:39:8e:0d:50:a4:5d:67:32:f4:cf:cd:dd:e6:
         06:25:c1:1e:4e:bd:35:3f:db:47:7c:1c:08:e2:3e:ea:f5:fd:
         88:2a:57:8b:c6:c4:20:32:8f:92:42:c9:9f:d1:c3:83:80:a4:
         be:0e:5b:a7:ad:39:89:a1:fd:c0:9d:3b:43:79:c7:17:1f:8f:
         97:45:be:dc:96:ac:50:c3:22:a8:84:5c:f1:88:00:05:9e:51:
         4e:a8:3d:4b:9f:25:01:4a:0d:5e:eb:62:5c:04:28:62:9d:08:
         eb:cc:c9:2d:b5:ff:6f:4c:59:b1:ad:d6:f6:03:ed:58:e5:a6:
         aa:54:e4:09:0a:e7:2f:b7:42:b6:7e:6e:ab:83:5e:63:2b:c9:
         64:aa:d3:73:7c:80:38:ba:32:1e:47:76:7b:08:e8:14:d1:d2:
         ae:e0:ec:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----