Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.mft
File: F1mdmaUx-BsV172e8tRomDHw2F0.mft (raw, json)
Hash identifier: euOccZGINleTIvDAILD5ePg5bJ/8+YBIxzb2tQo52q8=
Subject key identifier: EB:7D:B0:F1:34:58:D7:F6:3E:25:07:D2:EF:36:D2:BC:FE:EB:51:81
Authority key identifier: 17:59:9D:99:A5:31:F8:1B:15:D7:BD:9E:F2:D4:68:98:31:F0:D8:5D
Certificate issuer: /CN=17599D99A531F81B15D7BD9EF2D4689831F0D85D
Certificate serial: 0AAC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/F1mdmaUx-BsV172e8tRomDHw2F0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.mft
Manifest number: 0AA6
Signing time: Wed 18 Mar 2026 03:29:00 +0000
Manifest this update: Wed 18 Mar 2026 03:29:00 +0000
Manifest next update: Wed 18 Mar 2026 09:29:00 +0000
Files and hashes: 1: F1mdmaUx-BsV172e8tRomDHw2F0.crl (hash: 0r1AUBTPmIartAuGCK9lsqC03AhJqVnt/Ay9BrWfSa4=)
2: OGAJJC7LQRlfyX9v1HigBUNeQwE.roa (hash: KxYqGs8tZwm7uAGaSRHDy6q+UjrlGH4jifpiXnm30f8=)
3: Ydhaj_TAAbcwkOTWoK0pY9cYh3g.roa (hash: 5KFsPmMUx5QzZ0N7JDhHHwC6nZ0kXxl38h6lp7xZLzY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2732 (0xaac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17599D99A531F81B15D7BD9EF2D4689831F0D85D
Validity
Not Before: Mar 18 03:29:00 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=EB7DB0F13458D7F63E2507D2EF36D2BCFEEB5181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:1c:d3:4f:72:2a:ba:ea:d2:cd:9f:a0:a5:
81:dc:f3:67:bc:0b:2d:48:d5:32:5f:e6:45:3c:ec:
28:e1:de:76:10:28:4d:5d:63:68:67:e5:19:34:8d:
d4:90:e8:81:ef:89:3a:dc:29:d0:66:0f:bc:11:47:
84:be:04:52:bc:00:74:16:2f:99:f8:d4:8a:e1:79:
bf:2e:e6:fa:84:b3:60:9c:90:bc:32:b4:9d:30:68:
07:6b:1f:4d:df:63:bf:22:f2:75:2e:bc:b6:53:1a:
0a:bf:a4:25:69:15:c3:99:ee:ef:9d:d5:58:a2:26:
b9:19:55:0a:3f:78:c4:2b:6a:fa:af:18:f4:9b:bf:
15:7f:d1:63:6d:d3:40:8a:70:a8:7b:da:9c:62:c0:
03:f7:df:24:da:c4:23:0d:79:7d:18:30:73:7b:b9:
b2:70:04:3d:f6:f7:22:54:3a:8c:0f:20:58:a4:81:
dc:85:a9:f6:df:2c:9c:ce:5c:33:28:71:46:86:5e:
5e:f1:2b:23:5b:c9:41:5c:eb:e9:9b:96:a2:9e:a3:
e4:d6:41:87:02:3a:0b:99:01:4f:80:20:c0:38:fa:
93:88:a3:26:84:ad:d6:f9:f2:11:b3:a5:ca:8a:43:
f8:41:6a:82:ad:0a:a6:88:84:57:ae:77:dd:b0:c6:
e6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7D:B0:F1:34:58:D7:F6:3E:25:07:D2:EF:36:D2:BC:FE:EB:51:81
X509v3 Authority Key Identifier:
keyid:17:59:9D:99:A5:31:F8:1B:15:D7:BD:9E:F2:D4:68:98:31:F0:D8:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/F1mdmaUx-BsV172e8tRomDHw2F0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2994/F1mdmaUx-BsV172e8tRomDHw2F0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
92:c8:05:52:fc:7d:7e:a6:81:13:0e:39:67:e4:ec:8f:97:8a:
26:70:d2:4a:38:a3:0e:57:7b:09:64:b5:26:aa:ed:fb:98:94:
db:eb:e7:1c:c3:4b:29:40:02:89:d5:1f:5a:ff:9b:10:c6:c3:
89:53:58:11:1c:7d:32:8a:95:1f:b1:8f:83:99:f3:9c:bc:2a:
60:ab:01:15:cb:10:78:ce:4a:31:c9:f7:a8:87:db:6c:37:a2:
e7:c2:70:71:b4:0a:15:f3:2a:f8:ee:d7:dc:68:18:5a:32:b7:
c4:7b:9c:cb:99:bd:bc:a0:72:f0:e1:30:b4:de:4c:5f:6f:cb:
e8:6b:92:fc:f2:d2:98:9a:62:8b:cc:14:f3:07:43:70:57:be:
47:a1:41:d4:77:65:f0:13:f3:8c:54:70:0d:a0:4f:f7:4f:65:
8b:92:e0:ce:a4:82:05:40:3a:ed:5d:c4:f9:5c:df:bc:d4:b7:
6c:1e:a5:6d:50:d0:12:15:0d:b4:07:72:dc:01:18:eb:56:52:
82:0f:de:73:7c:81:9d:9f:11:5d:34:7e:5a:d8:77:e0:6c:a2:
82:1a:aa:3c:f1:59:38:92:cc:76:46:cb:7e:6b:a7:71:64:11:
26:09:f6:ac:0e:68:d1:96:63:99:6b:d4:5e:02:97:2c:62:ef:
0d:d3:da:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 11:08:22 2026 by rpki-client