Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft
File: -ta0PAnQSQoN9_iR359jtSDPIQ8.mft (raw, json)
Hash identifier: RTvcwbok9zULzgxPh3MHj+FaG3UoXWkqkBxEMbiOhu4=
Subject key identifier: 4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC
Authority key identifier: FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F
Certificate issuer: /CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F
Certificate serial: 0DE1
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft
Manifest number: 0DD9
Signing time: Sat 29 Mar 2025 10:31:46 +0000
Manifest this update: Sat 29 Mar 2025 10:31:46 +0000
Manifest next update: Sat 29 Mar 2025 16:31:46 +0000
Files and hashes: 1: -ta0PAnQSQoN9_iR359jtSDPIQ8.crl (hash: 11S+VbOCHkp+iVDmh7MF/cTsYJ69gtwHYeLsyWkLQlo=)
2: jZYYEWocgaa7kE62wHrtcbhmeqg.roa (hash: imxvfDsgpwHiKGk2ShLZNPp9PfRPBN6EzLl65EE3xwI=)
3: quj3JK30OXbnje-5SHznSVufOkU.roa (hash: QFco1R1nZco2MXFS8wJ24/UVjY0SEkcS4e5JbGrfWNA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3553 (0xde1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F
Validity
Not Before: Mar 29 10:31:46 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=4BCC447184497A8FAEB3769AD767F2E2871D2EAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:48:ee:2b:68:e0:56:e6:b1:31:28:fd:47:ec:
4f:11:cb:57:24:26:ab:d1:62:af:be:7f:2a:fc:e0:
a6:ca:09:fa:df:39:bf:1a:4d:ee:e7:d2:04:13:4c:
ac:e2:0e:1e:ad:f4:e7:66:10:72:a4:dc:dc:58:0b:
2b:30:18:84:09:a9:c2:92:f5:48:0c:e0:c7:e2:e8:
76:37:fe:e1:0b:b8:b7:cc:b4:a7:1c:f6:f0:00:a2:
4c:88:c2:0d:1c:77:ee:ed:5e:1b:ab:6c:63:b1:fc:
b8:42:c7:dc:5d:96:72:b1:a2:f2:ab:6d:8b:6e:f6:
28:87:66:1f:a9:05:09:e7:13:7d:9d:7e:49:b9:35:
62:13:98:cc:ad:e2:3f:3e:50:3a:6d:ad:48:06:a3:
4d:d0:25:33:71:7f:f4:45:31:2e:da:ea:70:d2:f2:
bb:86:d1:7d:04:a2:98:b1:ca:26:25:9b:b7:84:56:
af:f6:ae:d6:85:b8:1a:b5:78:24:84:58:57:60:b1:
ed:e2:3f:f0:d1:fa:4c:57:30:15:22:fa:37:8b:f8:
10:fd:c8:f7:0a:50:d3:19:f8:15:cd:0d:b4:c8:b6:
35:e0:c2:1d:71:28:31:3d:05:53:bd:9f:f7:f2:c8:
51:e0:c9:cb:a8:e3:82:d0:1e:9e:d2:83:a2:44:6e:
5c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CC:44:71:84:49:7A:8F:AE:B3:76:9A:D7:67:F2:E2:87:1D:2E:AC
X509v3 Authority Key Identifier:
keyid:FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:ec:fb:88:11:88:40:51:67:3b:78:d5:87:f9:5e:6c:28:ec:
51:cb:2b:3b:70:86:64:ec:a0:4f:91:b0:6c:16:db:e0:e2:61:
09:6e:59:55:c1:98:ff:cc:e5:3d:d0:91:02:db:4f:f0:07:a3:
8c:5c:67:21:ae:80:44:17:55:78:8e:94:8d:67:77:28:22:d2:
2c:94:e3:1a:f2:95:26:83:e2:4e:ea:2f:d7:3a:c3:3c:42:2c:
cb:35:ad:e4:d0:04:b7:59:25:5f:82:c0:56:9a:f0:34:10:48:
6a:80:8a:76:b4:fd:af:00:01:b7:b9:5d:12:05:8a:6c:16:99:
01:11:1a:b9:5b:aa:ac:80:2d:7c:60:d9:b9:ed:75:63:9d:86:
81:14:40:fd:77:1f:db:30:b8:6b:ba:c4:c7:5d:54:ab:51:3b:
39:c3:c0:0c:c0:26:eb:09:84:5c:a2:95:7f:58:82:eb:5a:1a:
60:bc:e4:b2:10:98:8a:e2:1d:7d:b0:b8:b0:d8:aa:d0:21:21:
ef:a9:41:fe:f1:57:6e:c8:5c:82:10:a7:c3:a3:d9:e2:16:8a:
cb:bf:3d:53:4b:40:3b:50:5f:4c:bc:14:2a:fb:ed:62:c2:c2:
00:d2:a0:87:b3:81:11:c6:10:31:f2:c6:1a:e3:b5:4d:39:fe:
d8:2d:5d:8f
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICDeEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkFE
NkI0M0MwOUQwNDkwQTBERjdGODkxREY5RjYzQjUyMENGMjEwRjAeFw0yNTAzMjkx
MDMxNDZaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDRCQ0M0NDcxODQ0OTdB
OEZBRUIzNzY5QUQ3NjdGMkUyODcxRDJFQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhSO4raOBW5rExKP1H7E8Ry1ckJqvRYq++fyr84KbKCfrfOb8a
Te7n0gQTTKziDh6t9OdmEHKk3NxYCyswGIQJqcKS9UgM4Mfi6HY3/uELuLfMtKcc
9vAAokyIwg0cd+7tXhurbGOx/LhCx9xdlnKxovKrbYtu9iiHZh+pBQnnE32dfkm5
NWITmMyt4j8+UDptrUgGo03QJTNxf/RFMS7a6nDS8ruG0X0EopixyiYlm7eEVq/2
rtaFuBq1eCSEWFdgse3iP/DR+kxXMBUi+jeL+BD9yPcKUNMZ+BXNDbTItjXgwh1x
KDE9BVO9n/fyyFHgycuo44LQHp7Sg6JEblyVAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUS8xEcYRJeo+us3aa12fy4ocdLqwwHwYDVR0jBBgwFoAU+ta0PAnQSQoN9/iR
359jtSDPIQ8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0
MS8tdGEwUEFuUVNRb045X2lSMzU5anRTRFBJUTguY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwLy10YTBQQW5RU1FvTjlfaVIzNTlqdFNEUElROC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDEvLXRhMFBBblFTUW9O
OV9pUjM1OWp0U0RQSVE4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBACjs+4gRiEBRZzt41Yf5Xmwo7FHLKztwhmTsoE+RsGwW2+DiYQluWVXBmP/M
5T3QkQLbT/AHo4xcZyGugEQXVXiOlI1ndygi0iyU4xrylSaD4k7qL9c6wzxCLMs1
reTQBLdZJV+CwFaa8DQQSGqAina0/a8AAbe5XRIFimwWmQERGrlbqqyALXxg2bnt
dWOdhoEUQP13H9swuGu6xMddVKtROznDwAzAJusJhFyilX9YgutaGmC85LIQmIri
HX2wuLDYqtAhIe+pQf7xV27IXIIQp8Oj2eIWisu/PVNLQDtQX0y8FCr77WLCwgDS
oIezgRHGEDHyxhrjtU05/tgtXY8=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:38:53 2025 by rpki-client