Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.mft
File: LznWwjiJNFGgbrNMUtd6vBiQa-A.mft (raw, json)
Hash identifier: jXP31oGrwkJXPf5oPTTx3pLJehaUNHJTCSdZM1HMvY8=
Subject key identifier: 2F:40:59:F1:B7:DA:8A:B0:E6:12:96:7F:7C:4F:D3:08:DF:77:77:77
Authority key identifier: 2F:39:D6:C2:38:89:34:51:A0:6E:B3:4C:52:D7:7A:BC:18:90:6B:E0
Certificate issuer: /CN=2F39D6C238893451A06EB34C52D77ABC18906BE0
Certificate serial: 1D2F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LznWwjiJNFGgbrNMUtd6vBiQa-A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.mft
Manifest number: 1D26
Signing time: Sat 29 Mar 2025 08:30:39 +0000
Manifest this update: Sat 29 Mar 2025 08:30:39 +0000
Manifest next update: Sat 29 Mar 2025 14:30:39 +0000
Files and hashes: 1: LznWwjiJNFGgbrNMUtd6vBiQa-A.crl (hash: /zOty7n2Ffy/4gr36vq0zKlXSRbSuIBnuPMXIMQ2d7U=)
2: TFHfVA751cHS7jHgiJVox534jDc.roa (hash: 6uhr4XPAMsXDZRhUd2yY0O3csi02n5IkElZ1806zd3s=)
3: d7cwv4DUcWOjqOPvssJYW2Q6SzE.roa (hash: uDrdkDtV0+glPcCXYcNhF6UYlio1F2EoZKjIywgkxLA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7471 (0x1d2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F39D6C238893451A06EB34C52D77ABC18906BE0
Validity
Not Before: Mar 29 08:30:39 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=2F4059F1B7DA8AB0E612967F7C4FD308DF777777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1b:ca:33:df:74:25:87:a5:16:88:35:68:4d:
40:cc:11:97:81:e4:7f:5a:b8:8f:59:bb:88:5d:8a:
a9:23:5b:ad:d6:41:67:10:ec:9c:dd:3b:83:52:15:
a0:d7:e2:6d:7e:48:e3:55:d1:fa:db:c7:a5:7c:82:
02:79:9f:e1:ef:35:3f:16:cd:5e:67:3f:16:b0:7e:
46:56:a0:53:04:d3:14:d2:ef:3f:e1:4d:35:d0:df:
04:b8:80:d0:74:88:d2:59:e2:33:97:42:57:c2:c5:
8f:df:da:13:2a:6a:34:08:4f:09:9c:0c:68:da:8f:
bd:d2:3e:79:02:e2:df:ee:a3:c1:37:e8:3a:f2:64:
1f:5b:f8:67:33:5a:03:f6:17:cd:c3:89:62:aa:a0:
4c:6a:66:e0:cf:cc:f0:b5:22:c6:80:e7:80:2f:62:
be:e2:72:3d:d4:5f:e9:99:f7:22:cf:8e:86:b1:70:
4c:00:08:e4:0a:6a:d1:90:31:cf:a2:f6:fb:d8:a1:
87:6a:a8:fa:17:02:7d:54:58:9e:a4:e7:dc:be:57:
a7:c3:e1:c7:eb:18:4c:7b:79:19:98:8f:d9:65:28:
58:2f:14:c3:93:ab:bb:73:95:ec:b8:05:94:8a:0d:
94:bf:07:df:a7:05:c6:1b:f8:0e:90:09:d7:09:34:
75:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:40:59:F1:B7:DA:8A:B0:E6:12:96:7F:7C:4F:D3:08:DF:77:77:77
X509v3 Authority Key Identifier:
keyid:2F:39:D6:C2:38:89:34:51:A0:6E:B3:4C:52:D7:7A:BC:18:90:6B:E0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LznWwjiJNFGgbrNMUtd6vBiQa-A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
00:9b:58:fa:17:79:5e:d6:ad:a8:a5:01:8c:a8:af:0f:72:6c:
69:54:50:5e:84:c4:89:2b:dc:55:7d:e4:fd:2b:61:3e:6c:5e:
4e:a0:ad:42:1f:16:13:9f:5f:fd:11:68:18:ca:47:b6:60:e2:
b1:16:cc:9f:3a:c2:18:c6:17:f7:1a:5d:c3:2c:6b:91:b1:26:
f4:e8:e7:b1:65:89:b7:69:c6:70:27:6e:10:1b:17:37:26:61:
63:57:57:2d:f5:62:56:95:1c:6c:54:37:d6:bc:99:d7:dc:dd:
1f:36:4f:35:db:20:3e:8c:a7:fb:58:fa:cb:16:00:2e:9b:15:
7c:dd:4c:7d:5b:c3:6f:fb:40:e2:d8:f4:46:e8:7c:75:6d:84:
c7:e7:26:75:99:43:b3:09:34:4a:9a:88:7c:c2:28:65:ea:98:
04:3e:9a:fa:d1:f5:6c:57:f4:f1:16:f5:ca:8d:de:a5:ad:87:
c5:77:9e:40:af:27:c1:bd:a2:0d:5a:6a:55:9f:c6:74:61:00:
33:3b:cd:71:38:e1:e6:7c:15:94:bc:1f:39:87:51:e1:f4:68:
08:b4:53:f9:a5:44:39:b6:69:67:19:bc:f1:5b:2b:5a:97:38:
23:31:b9:43:85:a0:3f:f0:07:bd:2c:35:7c:f8:a2:cc:52:e1:
9b:d0:79:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:45:27 2025 by rpki-client