Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft
File: 3uCPUof2aTE85pkPEXQBsXmEiuE.mft (raw, json)
Hash identifier: ++2o0cL9BYdFwuvHeOLRiOjHXFJXFVr7NvVsZKvnifM=
Subject key identifier: 73:76:0A:42:48:92:4B:44:02:2C:EF:E6:67:D6:9A:69:43:DA:A4:EA
Authority key identifier: DE:E0:8F:52:87:F6:69:31:3C:E6:99:0F:11:74:01:B1:79:84:8A:E1
Certificate issuer: /CN=DEE08F5287F669313CE6990F117401B179848AE1
Certificate serial: 1CF3
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft
Manifest number: 1CEE
Signing time: Fri 21 Mar 2025 00:29:41 +0000
Manifest this update: Fri 21 Mar 2025 00:29:41 +0000
Manifest next update: Fri 21 Mar 2025 06:29:41 +0000
Files and hashes: 1: 3uCPUof2aTE85pkPEXQBsXmEiuE.crl (hash: omRKXIBFDhUM0uksb6arz6VCumbqCS8zoNBqY2JK8WY=)
2: gSkd6A4h9soSgsnL1gwv_ZaTpXk.roa (hash: /ePEyOx0cammh0obLmcE/YBuFH1gX+5nN6CzmwxqWsM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7411 (0x1cf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DEE08F5287F669313CE6990F117401B179848AE1
Validity
Not Before: Mar 21 00:29:41 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=73760A4248924B44022CEFE667D69A6943DAA4EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ed:fe:97:b2:a2:7a:a1:62:92:45:75:1a:ed:
5c:02:01:0f:3b:ca:31:45:89:26:35:14:ff:50:e9:
f0:b0:2d:43:37:2c:11:61:ac:7d:82:b8:8f:62:a6:
f5:f0:b0:a2:bb:25:64:69:8a:68:85:a7:73:eb:a5:
aa:1e:2c:e7:1b:63:27:d8:c9:ce:75:9e:de:7e:4b:
2b:9e:cd:d7:37:8d:cf:bd:e7:1c:79:05:8a:eb:a2:
ac:b5:1c:67:67:88:7f:be:83:e5:29:00:9e:3f:db:
11:ba:25:56:29:68:34:a6:74:af:cd:f2:42:33:da:
76:7b:3d:22:e3:55:62:3f:a6:89:e7:1d:de:62:81:
3d:8c:e7:f8:2e:53:1d:68:88:a3:f3:2a:f0:6e:f1:
96:df:ba:22:bf:24:c7:c4:eb:59:e3:57:5f:e4:ab:
0f:01:13:69:7c:c9:aa:4c:e8:cc:18:f0:3e:4d:f7:
de:b5:a5:8f:df:61:e6:aa:7a:dc:4f:48:43:a0:4f:
51:f5:3e:de:74:ea:fd:1f:c5:d8:b1:e9:7d:32:0c:
9b:51:7a:0d:1f:7c:17:64:3b:63:22:51:b3:95:ba:
ea:0b:07:4b:c4:6b:b3:6f:b1:83:bb:4d:e9:10:82:
a6:5c:1f:18:c9:78:80:8d:c4:38:ef:20:9e:ad:f1:
ac:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:76:0A:42:48:92:4B:44:02:2C:EF:E6:67:D6:9A:69:43:DA:A4:EA
X509v3 Authority Key Identifier:
keyid:DE:E0:8F:52:87:F6:69:31:3C:E6:99:0F:11:74:01:B1:79:84:8A:E1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3uCPUof2aTE85pkPEXQBsXmEiuE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2785/3uCPUof2aTE85pkPEXQBsXmEiuE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8e:51:24:98:08:f6:84:6f:10:74:7d:d3:09:86:c5:ce:58:03:
db:dd:7c:b2:a2:61:3b:85:19:85:34:38:f5:ab:3a:c7:f6:1f:
cf:e5:45:a7:4d:98:fa:57:00:cb:05:19:15:8e:e4:b7:b7:56:
8d:e8:72:6a:ba:bb:d3:05:b3:85:c0:1c:b1:8f:04:aa:01:9e:
35:20:05:52:63:54:5d:df:8b:70:ab:1d:01:2e:7b:6a:77:29:
72:d7:eb:da:20:b8:d1:f5:f4:6b:26:d5:57:d0:ca:d6:80:62:
a9:02:07:62:fb:0f:c3:2b:b9:e9:5e:33:12:dc:f8:9b:37:94:
aa:89:ac:0d:c0:d4:94:ea:55:72:17:4e:a5:52:aa:27:f3:af:
04:aa:6d:dc:87:84:0e:75:cf:e7:30:a7:0a:47:73:9c:a7:8b:
be:7e:fe:73:af:ab:9e:50:d9:8c:1a:49:97:7d:eb:9e:c0:62:
23:35:fb:06:6c:66:80:12:92:54:85:14:62:c1:25:32:40:af:
a5:34:38:52:2c:82:b9:81:23:a9:15:40:f7:13:91:87:8c:d0:
dc:14:3e:de:af:7e:92:d9:5d:dd:4f:ab:f3:1d:95:03:39:84:
92:dd:6f:92:0f:c8:37:1b:5c:d6:dc:32:e4:e2:25:1c:9f:67:
94:90:85:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:38:16 2025 by rpki-client