Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.mft
File: QANTiAtHjVuXKhIEzwZR3ilfjso.mft (raw, json)
Hash identifier: Vcqvib/JBmNYWBCGbfCdFRq4i6VhcS05MMMKH5HrrEg=
Subject key identifier: 3E:02:B0:EC:72:B4:53:6E:FB:18:99:9F:8A:FE:BD:6B:63:5D:F8:01
Authority key identifier: 40:03:53:88:0B:47:8D:5B:97:2A:12:04:CF:06:51:DE:29:5F:8E:CA
Certificate issuer: /CN=400353880B478D5B972A1204CF0651DE295F8ECA
Certificate serial: 134B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/QANTiAtHjVuXKhIEzwZR3ilfjso.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.mft
Manifest number: 1346
Signing time: Fri 21 Feb 2025 00:25:50 +0000
Manifest this update: Fri 21 Feb 2025 00:25:50 +0000
Manifest next update: Fri 21 Feb 2025 06:25:50 +0000
Files and hashes: 1: QANTiAtHjVuXKhIEzwZR3ilfjso.crl (hash: SQ6nYxNXkn94vpTYHC/7iCg7HpAk7PtbHulErgJet7M=)
2: YChybX2-uPVVnqdSYmR5njJNPi8.roa (hash: Eoa/Wqb1zFLj0i5Y48PjM9Jp4VzTiVGXZggsf4eLD9A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4939 (0x134b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400353880B478D5B972A1204CF0651DE295F8ECA
Validity
Not Before: Feb 21 00:25:50 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3E02B0EC72B4536EFB18999F8AFEBD6B635DF801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:32:58:a9:d9:69:b3:4b:f1:61:4b:87:6a:75:
b6:dc:4a:1c:b4:5f:ba:82:db:a0:72:66:f1:81:08:
59:bd:57:ef:79:43:59:e7:38:14:5a:62:1f:35:98:
41:d2:5f:f0:df:8d:c1:62:65:50:ca:e2:5c:08:a0:
d0:6d:af:98:80:82:a4:85:45:bf:5e:83:60:f2:53:
99:f3:2d:fe:d7:95:35:30:00:87:20:de:a5:5b:69:
1b:0a:1c:b3:83:65:27:64:be:d9:fa:d4:cf:99:f4:
d7:e5:de:c4:9d:7f:a1:a4:37:55:3a:fd:04:50:66:
34:88:f5:cc:62:55:6b:03:3b:7b:eb:ae:8e:0c:8f:
b5:3b:c8:7f:cc:ab:c1:4a:b6:6f:10:e5:80:06:dd:
6b:19:c4:d5:49:fe:f5:33:13:ad:62:ec:cf:17:5f:
1c:1b:8b:b4:7a:89:1b:87:32:d1:c7:ee:ea:c5:9d:
2c:19:b7:11:ca:ca:d4:6d:17:bf:f6:4a:2c:0f:8e:
5f:5a:63:d4:33:f4:86:05:10:71:4b:25:a4:fa:95:
f1:4d:2a:24:7b:a9:55:95:ee:4e:94:86:70:36:a4:
80:c0:b0:62:2e:39:5b:48:f4:14:d7:a4:b6:9c:0f:
6d:91:f2:30:19:7e:6d:86:c6:12:7b:5a:a2:a1:e5:
0c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:02:B0:EC:72:B4:53:6E:FB:18:99:9F:8A:FE:BD:6B:63:5D:F8:01
X509v3 Authority Key Identifier:
keyid:40:03:53:88:0B:47:8D:5B:97:2A:12:04:CF:06:51:DE:29:5F:8E:CA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/QANTiAtHjVuXKhIEzwZR3ilfjso.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2890/QANTiAtHjVuXKhIEzwZR3ilfjso.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0d:b4:95:55:96:86:d8:8d:f4:03:83:cb:75:0c:80:a0:3d:85:
ad:2f:69:de:4c:b8:dd:fc:dc:ae:35:89:a0:04:dd:c4:62:53:
bd:57:e8:ba:f1:c2:b8:b5:10:0f:1a:e0:b4:93:82:0f:57:29:
00:c6:06:5b:d3:02:99:ae:ce:e3:90:a3:7d:2b:60:46:e5:c7:
2b:6a:0f:d8:31:1b:c5:4b:b6:e6:00:1e:8e:aa:82:c2:16:21:
3e:48:94:22:db:02:f7:d6:50:81:18:ac:7c:3e:c1:56:bf:c5:
85:4c:e4:71:d4:8d:7c:e1:5f:56:64:ac:27:74:7a:0f:24:87:
82:a4:32:45:c1:1e:e1:2e:87:c0:35:46:54:20:ae:ac:2e:17:
ab:ee:39:ac:d4:6f:87:3a:8a:3e:ca:00:0e:3b:71:f2:31:e2:
d3:6b:ec:15:b4:b4:ba:e8:9b:f9:13:4c:80:0a:d4:cc:81:7f:
f8:27:ca:fe:e1:65:e8:70:c6:cc:36:30:10:b2:8e:b2:3a:24:
82:26:65:68:00:31:87:3b:9c:d7:cb:95:74:e9:6a:74:7b:20:
f3:93:80:09:5f:b4:51:16:b9:53:9c:4c:e4:00:67:58:35:7c:
9d:7c:b3:dc:a9:4b:78:31:6b:f6:84:75:6a:78:d8:7c:e2:2a:
0a:29:29:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:41:53 2025 by rpki-client