Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2765/Q9LyUD904KH3KxBUoP3rv1vOEPU.mft
File: Q9LyUD904KH3KxBUoP3rv1vOEPU.mft (raw, json)
Hash identifier: Y4Oyi/NQtQ6wVTnRuwP5m4qmsXUIJm7TvLqqgLtapgI=
Subject key identifier: C2:FB:B7:5F:7B:F7:91:CD:97:F2:D9:3F:35:21:70:F6:F5:DC:8B:43
Authority key identifier: 43:D2:F2:50:3F:74:E0:A1:F7:2B:10:54:A0:FD:EB:BF:5B:CE:10:F5
Certificate issuer: /CN=43D2F2503F74E0A1F72B1054A0FDEBBF5BCE10F5
Certificate serial: 149C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Q9LyUD904KH3KxBUoP3rv1vOEPU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2765/Q9LyUD904KH3KxBUoP3rv1vOEPU.mft
Manifest number: 149C
Signing time: Sun 14 Jan 2024 19:21:02 +0000
Manifest this update: Sun 14 Jan 2024 19:21:02 +0000
Manifest next update: Mon 15 Jan 2024 01:21:02 +0000
Files and hashes: 1: Q9LyUD904KH3KxBUoP3rv1vOEPU.crl (hash: Sa7D2oSXR5wsjjX12icDIVojGenhr0RNb9pOF+0GY3U=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5276 (0x149c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43D2F2503F74E0A1F72B1054A0FDEBBF5BCE10F5
Validity
Not Before: Jan 14 19:21:02 2024 GMT
Not After : Oct 8 00:16:33 2024 GMT
Subject: CN=C2FBB75F7BF791CD97F2D93F352170F6F5DC8B43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3d:8e:c0:ad:e6:b2:c9:b9:3c:05:a9:9b:09:
0d:de:30:c9:7e:b3:fe:6c:17:3b:ed:36:48:cb:0b:
e5:31:f1:40:68:ec:f1:2e:ed:e2:11:5f:bb:8b:4b:
50:bb:51:0f:bf:2f:ec:f0:15:28:ba:cf:91:68:c1:
9a:eb:0c:43:5e:98:cf:42:f8:a7:3c:ab:55:e0:a7:
ad:19:ff:76:ee:ea:3b:fc:7d:e8:7a:b4:ec:80:d1:
ed:4c:5d:10:52:25:5e:0f:6c:3a:89:62:b5:ca:d1:
ba:71:fa:d2:94:d5:a1:f9:04:c5:b4:7d:f7:f9:31:
9c:29:74:16:93:60:0f:db:d3:26:49:36:66:f1:fb:
ae:36:24:77:9d:5d:e7:91:46:95:48:2c:ae:b6:33:
e9:7c:c1:5c:10:01:e3:3d:26:3d:49:43:4b:83:98:
8d:e5:76:05:25:dc:d2:98:70:96:ed:ab:a2:b5:28:
5a:53:f0:fa:a0:39:a4:1f:68:81:5a:42:ce:48:cd:
ad:3b:be:8c:bc:2a:ec:fc:89:e3:f1:7d:20:40:3f:
e9:1f:06:2e:7f:5d:03:52:da:09:d0:15:00:08:9d:
f9:38:8e:4f:60:45:54:87:68:6f:da:06:04:d9:37:
db:02:4e:b0:f9:30:0d:b6:f4:84:a4:74:67:0c:33:
79:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:FB:B7:5F:7B:F7:91:CD:97:F2:D9:3F:35:21:70:F6:F5:DC:8B:43
X509v3 Authority Key Identifier:
keyid:43:D2:F2:50:3F:74:E0:A1:F7:2B:10:54:A0:FD:EB:BF:5B:CE:10:F5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2765/Q9LyUD904KH3KxBUoP3rv1vOEPU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Q9LyUD904KH3KxBUoP3rv1vOEPU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2765/Q9LyUD904KH3KxBUoP3rv1vOEPU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b3:e7:77:ee:06:c8:06:44:4e:27:cd:1b:a2:35:40:a7:3e:7c:
49:7b:96:e2:63:f1:82:45:5b:ef:4e:ab:94:9d:66:0b:27:10:
52:4c:ba:2d:3f:17:7a:c4:8f:de:16:92:19:ec:09:18:4c:03:
b9:d4:ee:ac:00:0d:04:96:a7:65:e3:06:f8:3e:c6:42:12:31:
0d:11:b1:f1:18:74:c9:58:66:ab:dd:5b:86:72:35:47:88:69:
11:e6:d0:8c:5a:4e:29:d4:82:2c:8a:76:80:02:23:63:76:59:
49:0a:da:1c:43:4d:fb:d1:54:08:a5:8d:7f:f9:3b:95:2a:fa:
b3:01:3e:3b:2c:7a:c4:ba:5b:33:dd:5e:23:1c:a5:82:fc:34:
3a:5c:b6:87:e7:68:db:c3:63:a3:95:ea:62:a7:73:49:76:14:
24:24:46:ee:74:2f:bd:02:64:54:c5:5e:43:a5:12:c1:f9:c2:
49:af:18:34:f1:8e:98:b6:32:94:8a:49:74:58:3a:b3:1a:15:
e1:28:96:97:05:27:36:6e:f1:5e:d8:42:e3:ed:dc:43:0a:7a:
08:7e:fb:21:00:5a:b1:ef:14:ac:d5:49:69:de:44:13:53:0d:
12:80:31:26:92:4a:3c:c7:b6:9b:08:d6:6d:93:27:32:21:3f:
18:36:78:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 00:08:00 2024 by rpki-client on console-ams.rpki-client.org