Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
File: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft (raw, json)
Hash identifier: LhAwtS2GRcBUSxoyQ8ARLsQm2iNnaGfUS885kxgqYBs=
Subject key identifier: 85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C
Authority key identifier: 19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03
Certificate issuer: /CN=193519DD773C40D04F641CC44558D3461297B003
Certificate serial: 23CF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
Manifest number: 23C8
Signing time: Tue 17 Mar 2026 23:59:24 +0000
Manifest this update: Tue 17 Mar 2026 23:59:24 +0000
Manifest next update: Wed 18 Mar 2026 05:59:24 +0000
Files and hashes: 1: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl (hash: jfwxxqSUNeytQbp8L7NPH0gfubA23ObYWaKVzqEGl8g=)
2: eMIWP4XLPoa-BcL8MMBWqPKLcdk.roa (hash: 8w2a4HhRyqkpXHjd1277to3Ev/Gq3g0CrTtkX3BkuXs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9167 (0x23cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=193519DD773C40D04F641CC44558D3461297B003
Validity
Not Before: Mar 17 23:59:24 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=857AD43056F6EE38F2F239E3647797B73033927C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:11:dd:56:1b:93:a0:3a:ef:10:8b:28:0a:3b:
80:72:e5:0d:2a:45:a7:77:3b:65:87:c9:2d:77:ed:
19:66:30:f1:eb:74:54:4d:1f:99:1b:08:56:fa:bd:
45:26:25:3f:ea:1e:22:30:c6:39:ef:5f:39:67:0f:
7b:f7:c5:76:98:2e:bf:f4:a0:ea:b6:8a:f1:39:ba:
1a:02:bf:57:62:fc:c2:15:54:66:9c:d6:d0:09:60:
49:68:ab:0d:24:71:44:d1:4f:86:86:c2:40:15:43:
e3:95:ef:92:6b:18:82:77:e5:b8:b0:1f:4f:7e:52:
f1:86:79:05:3c:90:f5:35:c7:b7:68:ca:97:18:4d:
79:51:4a:a6:76:fa:62:a1:a7:5e:87:6d:87:a2:81:
6d:c5:f3:40:f6:96:1e:98:22:d3:ba:9d:31:07:c8:
9e:fc:0f:48:05:65:cc:45:fe:76:5c:44:a5:67:45:
98:37:83:95:6b:cf:66:f6:7b:ee:43:87:a3:7e:21:
b8:85:e6:0b:74:04:ba:bd:d2:e8:79:54:61:df:ee:
bd:16:41:6f:aa:a8:37:a4:0e:35:2e:e0:46:f0:12:
ba:76:89:8c:f8:67:89:92:22:24:11:1c:8d:d6:31:
01:18:43:1b:0f:0d:2d:93:eb:78:47:3f:5a:57:52:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C
X509v3 Authority Key Identifier:
keyid:19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8d:a0:3f:85:6b:a0:d6:7e:07:a5:03:61:1a:30:e3:b8:9d:53:
8f:1e:6f:22:5c:fc:65:a5:bf:ec:6f:1d:0b:e2:7e:e4:23:a2:
48:1d:19:35:33:24:e8:4a:4a:dc:c8:24:79:14:ed:30:7c:b7:
06:d8:21:26:65:e8:9c:d7:d0:f6:fd:ee:31:10:99:ba:23:eb:
11:1b:ef:cd:5e:68:62:12:df:3a:90:79:19:18:a2:70:d9:db:
a4:71:ee:d8:9b:ec:40:67:c9:fe:d9:de:b9:7d:46:0f:33:1f:
fe:05:48:af:d6:fa:82:69:e3:35:08:de:11:99:b5:a0:4f:b9:
03:bc:57:12:b7:56:23:8a:26:55:84:a0:9b:f0:f5:c8:e6:86:
05:ac:4d:f0:c8:26:02:7b:50:70:11:bd:cd:39:7c:2e:cf:6e:
03:91:c9:c0:0c:da:c2:6d:cd:30:cc:87:aa:f1:5b:38:bd:34:
6c:11:3a:21:99:b2:2c:77:40:2a:63:21:f1:1d:93:13:63:f7:
85:2b:97:7c:2a:19:24:a6:bb:08:67:b5:d8:3e:62:aa:48:13:
4c:d1:45:fb:04:b6:80:37:9f:f7:2e:09:24:c3:b8:3b:07:af:
62:f3:8e:90:ea:47:7a:c0:d9:34:9d:5b:fd:1d:68:b8:d8:fc:
c3:60:35:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 11:09:49 2026 by rpki-client