Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft
File: X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft (raw, json)
Hash identifier: j2bUpgWdhmjygVXY30t5jcO76QiPzKikAbazbYc0oYw=
Subject key identifier: 04:0D:F0:59:13:49:3C:9D:48:21:57:AE:80:F2:7C:54:14:38:C0:A1
Authority key identifier: 5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
Certificate issuer: /CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Certificate serial: 2FCC
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft
Manifest number: 2FBF
Signing time: Fri 21 Mar 2025 00:27:12 +0000
Manifest this update: Fri 21 Mar 2025 00:27:12 +0000
Manifest next update: Fri 21 Mar 2025 06:27:12 +0000
Files and hashes: 1: 0fXJo1rcoxJDjhy3_tVNe7i9Y50.roa (hash: jd4G6vfHytC8UydwqzV5b9djquOfEhtTgQQlToWZvfI=)
2: X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl (hash: 8nFmqawktODAnT9yCzHy0WLZTuKRCSBhcyz71hELvnI=)
3: pynbqNpqZ9xv39MsvrlHfOLhwMM.roa (hash: hzLRFW4oj5gFCJaqMSkvso64rZPla3dBALZLre00OQg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12236 (0x2fcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5F478F43F0AF8FEACCB81EDC7A9C76143180C9AB
Validity
Not Before: Mar 21 00:27:12 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=040DF05913493C9D482157AE80F27C541438C0A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:a8:14:80:90:87:92:2f:e6:0a:dc:f8:05:
a1:e3:cf:05:f7:8b:7a:2b:e0:d9:5e:02:a9:0b:ff:
06:71:bc:6e:ec:81:bf:f7:ac:92:7c:c8:88:90:2a:
37:49:b7:c6:4d:ba:f0:9a:80:e2:37:fa:31:59:c6:
c6:e8:6e:22:94:49:32:14:4d:33:2c:4f:52:7b:60:
74:ac:6b:d3:1e:03:80:88:d5:21:15:b1:a4:fc:d9:
63:61:30:33:17:f0:db:18:33:df:06:87:75:14:5b:
af:72:ff:9d:ab:5a:98:3a:e1:dd:e7:0c:e7:7e:01:
7c:ac:b1:f6:71:90:0e:ad:a2:22:f8:19:ce:dd:1b:
75:78:cc:5c:ea:97:07:03:c9:e4:bf:36:4d:aa:12:
7e:b5:9e:d1:33:40:b2:32:44:58:6c:89:9c:0b:df:
cb:66:85:e4:bc:53:74:62:fd:36:95:c9:1c:07:92:
91:76:c1:3c:03:3d:08:d3:d9:12:ad:2f:9e:9c:69:
fc:8b:43:0e:95:0e:5d:7e:ca:55:f3:17:03:21:eb:
a3:c3:89:33:83:4c:55:4f:52:4b:d8:22:97:9a:2b:
f4:f4:05:62:56:60:ca:b6:c7:b6:a7:c5:a4:73:2b:
6a:d4:b8:37:15:d8:d2:54:88:46:6d:75:d2:89:1a:
a0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:0D:F0:59:13:49:3C:9D:48:21:57:AE:80:F2:7C:54:14:38:C0:A1
X509v3 Authority Key Identifier:
keyid:5F:47:8F:43:F0:AF:8F:EA:CC:B8:1E:DC:7A:9C:76:14:31:80:C9:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/X0ePQ_Cvj-rMuB7cepx2FDGAyas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/X0ePQ_Cvj-rMuB7cepx2FDGAyas.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c5:04:97:17:1b:e7:c6:b3:6c:21:1a:21:cd:45:59:08:cc:
d6:74:1c:7a:f5:05:64:17:87:ee:7a:8b:18:9d:59:50:70:81:
7d:15:af:69:97:bc:ac:e9:0a:b0:df:ab:dc:a8:ec:64:96:2d:
2f:da:22:a4:34:d7:31:a5:42:ba:a0:c7:a0:02:42:75:c1:8c:
c5:ba:fa:4c:b2:69:0c:ea:a3:b4:3b:d1:47:58:ba:92:d0:9e:
cf:33:44:58:ec:59:fd:c4:f2:31:14:38:d2:a6:1c:88:44:e8:
a5:0d:b1:81:23:ef:e4:ba:a6:a2:09:84:68:06:53:36:e6:1c:
7f:ac:ab:ef:a1:0b:66:98:9d:d4:47:32:d3:3f:2c:68:43:56:
cc:72:13:13:88:dd:ba:f8:84:d9:0f:7d:43:63:72:81:d7:c1:
fa:0f:21:72:9e:ba:2a:73:b1:3e:d4:1b:4c:f3:9a:65:76:68:
b9:70:88:c2:da:80:fa:0d:69:59:d8:00:7f:c6:2f:fc:f8:c4:
c3:40:7d:de:ea:da:f0:f5:08:13:63:3e:48:f6:83:91:20:99:
b6:f4:00:48:90:2d:6a:1e:27:22:8c:81:39:00:42:4b:ce:16:
90:3a:c4:e1:d7:8c:0e:b6:e6:7a:4d:4c:4b:13:11:69:66:bc:
2c:dd:c3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:15:36 2025 by rpki-client