Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.mft
File: LznWwjiJNFGgbrNMUtd6vBiQa-A.mft (raw, json)
Hash identifier: H4/iG+2VP/JN4xLgukvDJZRxMBJtREExgQZAxsB5VdY=
Subject key identifier: 2F:40:59:F1:B7:DA:8A:B0:E6:12:96:7F:7C:4F:D3:08:DF:77:77:77
Authority key identifier: 2F:39:D6:C2:38:89:34:51:A0:6E:B3:4C:52:D7:7A:BC:18:90:6B:E0
Certificate issuer: /CN=2F39D6C238893451A06EB34C52D77ABC18906BE0
Certificate serial: 23FF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LznWwjiJNFGgbrNMUtd6vBiQa-A.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.mft
Manifest number: 23F4
Signing time: Wed 18 Mar 2026 00:28:49 +0000
Manifest this update: Wed 18 Mar 2026 00:28:49 +0000
Manifest next update: Wed 18 Mar 2026 06:28:49 +0000
Files and hashes: 1: 7zzMdB7u5ay_vYvE83MicNjj9Xo.roa (hash: R1FUwvHwObQjJ297J+3nwp+8OpaE6qSBQinj4OuqmMY=)
2: LznWwjiJNFGgbrNMUtd6vBiQa-A.crl (hash: F7YCiIIO+yD9eMcLWLcz6GxWwzguQyub0S58dkjNaZM=)
3: zndiDCfoVzgxP-R3Oy9u0SfbSkA.roa (hash: TwsL2eJrwe5D2HIYTlY6JevlROw5vXxZYHmIvVV/5/Y=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9215 (0x23ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F39D6C238893451A06EB34C52D77ABC18906BE0
Validity
Not Before: Mar 18 00:28:49 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=2F4059F1B7DA8AB0E612967F7C4FD308DF777777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1b:ca:33:df:74:25:87:a5:16:88:35:68:4d:
40:cc:11:97:81:e4:7f:5a:b8:8f:59:bb:88:5d:8a:
a9:23:5b:ad:d6:41:67:10:ec:9c:dd:3b:83:52:15:
a0:d7:e2:6d:7e:48:e3:55:d1:fa:db:c7:a5:7c:82:
02:79:9f:e1:ef:35:3f:16:cd:5e:67:3f:16:b0:7e:
46:56:a0:53:04:d3:14:d2:ef:3f:e1:4d:35:d0:df:
04:b8:80:d0:74:88:d2:59:e2:33:97:42:57:c2:c5:
8f:df:da:13:2a:6a:34:08:4f:09:9c:0c:68:da:8f:
bd:d2:3e:79:02:e2:df:ee:a3:c1:37:e8:3a:f2:64:
1f:5b:f8:67:33:5a:03:f6:17:cd:c3:89:62:aa:a0:
4c:6a:66:e0:cf:cc:f0:b5:22:c6:80:e7:80:2f:62:
be:e2:72:3d:d4:5f:e9:99:f7:22:cf:8e:86:b1:70:
4c:00:08:e4:0a:6a:d1:90:31:cf:a2:f6:fb:d8:a1:
87:6a:a8:fa:17:02:7d:54:58:9e:a4:e7:dc:be:57:
a7:c3:e1:c7:eb:18:4c:7b:79:19:98:8f:d9:65:28:
58:2f:14:c3:93:ab:bb:73:95:ec:b8:05:94:8a:0d:
94:bf:07:df:a7:05:c6:1b:f8:0e:90:09:d7:09:34:
75:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:40:59:F1:B7:DA:8A:B0:E6:12:96:7F:7C:4F:D3:08:DF:77:77:77
X509v3 Authority Key Identifier:
keyid:2F:39:D6:C2:38:89:34:51:A0:6E:B3:4C:52:D7:7A:BC:18:90:6B:E0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LznWwjiJNFGgbrNMUtd6vBiQa-A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2898/LznWwjiJNFGgbrNMUtd6vBiQa-A.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
02:bc:3b:e2:03:e5:7f:1b:83:cf:bb:12:90:82:3c:0a:b5:a2:
7a:87:c7:39:b3:5e:43:07:1b:75:9a:6f:af:95:10:ed:51:49:
95:c0:46:35:29:ad:1a:24:00:4f:66:fc:d8:ab:96:94:a5:3d:
e1:e7:3f:ef:7a:8b:61:16:1a:2f:aa:cf:a1:7a:95:03:2d:e1:
d5:be:68:37:a2:2a:98:43:21:7d:1f:1d:ff:24:07:a5:79:4c:
16:19:26:23:9e:b4:3a:82:88:cf:62:14:de:29:1f:52:0a:cb:
36:27:ec:ad:f5:5a:5a:7d:88:80:cd:2b:4c:c9:8f:89:35:76:
ba:5b:dc:3e:4b:72:a8:5f:d6:e5:1b:49:68:a5:00:83:9c:5b:
da:c8:5d:21:e8:32:80:9d:10:cc:9c:14:40:4b:f9:da:4b:8a:
d0:9b:00:7c:9f:bb:e5:1a:e5:c9:29:d8:25:76:79:75:68:81:
ca:28:a3:7e:11:3c:03:cb:a1:1f:94:42:ce:05:7e:32:6e:8f:
fc:3e:7b:37:51:72:b6:4d:28:01:6c:19:b7:81:e3:00:af:1a:
5d:e1:90:c9:f8:99:c7:f5:d3:88:ca:d7:3f:43:27:35:10:7a:
61:68:cd:5e:08:35:51:cd:73:d9:ef:b3:d7:9a:26:93:bd:8f:
96:c2:48:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:31:19 2026 by rpki-client