Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.mft
File: H8rXIlZ3kf1zoJH-iRyUjxkU1nI.mft (raw, json)
Hash identifier: fToSYAq3R9VJ5Pctp0jTNT7blQ6ejAMC8oCtNG72VuA=
Subject key identifier: DC:8B:89:B1:D5:3C:AB:99:01:35:B7:A9:A7:19:93:8D:DB:78:30:50
Authority key identifier: 1F:CA:D7:22:56:77:91:FD:73:A0:91:FE:89:1C:94:8F:19:14:D6:72
Certificate issuer: /CN=1FCAD722567791FD73A091FE891C948F1914D672
Certificate serial: 0C4B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.mft
Manifest number: 0C35
Signing time: Wed 18 Mar 2026 03:29:05 +0000
Manifest this update: Wed 18 Mar 2026 03:29:05 +0000
Manifest next update: Wed 18 Mar 2026 09:29:05 +0000
Files and hashes: 1: 6Ox9vYEkQ0kauWeF3ci5J0DCnyY.roa (hash: 7JH9vYwSOtQSmbNbZ1sNn45vDXImlBZc/Di0RUGYK+w=)
2: H8rXIlZ3kf1zoJH-iRyUjxkU1nI.crl (hash: DdwsGK3K8X/ZgrrFW+Xd/ZteKFfuOJ1l+ltMQRdD9sA=)
3: JSD6su-8GmSdAloMCdElkEvt0AM.roa (hash: byIajotq4oMDlZPGW2paVqqfxYBJgKLLUDwL6wPkwLA=)
4: VboEPjdm3B9tpkGKHcEJa1gcG54.roa (hash: Bd9t5IO7ldMac3QGg6dlL68DuVE/YizSDPaV1MMd6Fg=)
5: a-C0ZcbMEIueflbcZASicAD8he0.roa (hash: j0QlysAnrzL+WWQvVGQm8SUA6f3yOOh++yMn2DzuE1Q=)
6: ac9zn1KZz8GSplsJ7n3whpOXZ6Y.roa (hash: MxCG7/kDUHT7A7/tLKuXfkqQIyrHEPkO+54grftcmBg=)
7: qOLyqTgKKgxRxyxeuJhc3_cZGQ4.roa (hash: anm9VRDFQVYzPYFRpltgoGJtk4c3JmQwvUl1Lz2LLYU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3147 (0xc4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1FCAD722567791FD73A091FE891C948F1914D672
Validity
Not Before: Mar 18 03:29:05 2026 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=DC8B89B1D53CAB990135B7A9A719938DDB783050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:44:cb:45:b2:c5:2f:03:6c:6a:0c:af:3d:a8:
6f:3f:89:56:60:42:17:3b:2c:ef:61:bd:97:10:61:
71:3e:a1:78:4c:87:b3:24:8d:42:42:ce:26:38:be:
1f:46:01:f5:6a:ad:d9:48:b0:22:d7:f4:93:f3:b9:
3c:f8:b9:1b:cb:3b:9e:20:41:23:05:6f:c7:34:76:
a1:dd:9d:e2:8a:2c:d6:12:6f:6a:53:ba:09:36:cd:
fd:80:df:e7:1e:b7:55:4f:8d:01:9e:6f:0f:e8:d0:
d9:9f:c6:7a:af:a5:71:7c:15:45:18:6d:c6:01:4b:
2f:22:8d:af:e6:b8:03:93:3e:de:39:f0:79:83:f7:
b0:9e:96:e5:da:a1:98:5e:a2:9f:d9:64:39:8a:15:
f0:c4:23:f4:15:f8:04:a7:7f:6b:ae:af:76:d2:7b:
67:e3:6a:5e:0b:d9:d4:98:51:cc:83:e0:c6:82:52:
b3:84:f1:64:96:bc:d6:bf:d7:21:b2:82:23:6f:68:
1d:a4:a0:c9:de:1c:48:94:18:9d:05:86:cc:4e:2f:
92:93:3a:44:45:35:3f:1e:b5:52:3f:2e:36:cc:ea:
d3:13:04:7a:08:4c:f4:ce:ed:9c:97:23:6d:ca:59:
f9:33:63:ee:84:98:58:1a:4d:ae:a2:19:d4:57:a4:
16:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:8B:89:B1:D5:3C:AB:99:01:35:B7:A9:A7:19:93:8D:DB:78:30:50
X509v3 Authority Key Identifier:
keyid:1F:CA:D7:22:56:77:91:FD:73:A0:91:FE:89:1C:94:8F:19:14:D6:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bf:d7:bd:bb:64:cf:d7:e5:d1:1f:89:6a:36:57:20:e5:62:75:
9c:7d:4b:0d:11:3d:a2:89:c2:35:2b:65:02:71:15:ee:97:e2:
36:59:a8:3d:ee:79:28:2f:00:4d:9f:f2:41:c4:38:4f:39:20:
c4:02:52:69:c1:59:63:29:53:49:00:ca:b9:fb:d7:0c:1e:da:
23:70:3c:0b:6f:91:e3:96:b9:eb:59:eb:51:2d:9f:0f:47:0c:
0e:c4:f1:fc:85:f6:bc:67:0b:54:59:2f:ee:69:1c:ea:e3:94:
85:87:65:c2:dc:2c:1c:30:d5:a5:aa:9a:b4:29:82:1c:52:55:
bd:94:32:b3:68:29:70:14:6e:61:ff:b2:8f:99:03:53:04:5e:
3b:70:e5:ab:81:47:95:db:19:6d:52:71:77:03:81:41:ff:36:
27:76:1d:f7:46:58:20:51:d9:b3:de:81:1b:93:fb:b6:87:d0:
1f:0b:4a:f6:f0:81:c5:e9:ce:22:7d:22:3f:e9:9a:0e:96:9f:
23:9c:e3:01:4f:6d:d0:96:12:d3:c8:0f:b6:90:d5:5a:c9:59:
6b:a8:28:86:fa:a2:b9:3b:2a:6e:53:61:42:56:07:b4:bc:95:
99:27:bf:ce:d6:de:67:23:ea:a9:1d:99:32:fb:ab:4b:4c:85:
71:b1:ad:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:38:04 2026 by rpki-client