Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.mft
File: Ab4zXmpO-5VNuniThGkpo6X2hno.mft (raw, json)
Hash identifier: 0x48axHCfn2XQgj8Fa0qxaep/8Y6Pjt4HgzOabstrow=
Subject key identifier: FA:83:3F:CB:2C:B6:E9:1B:02:46:73:91:50:C5:68:9D:89:84:67:09
Authority key identifier: 01:BE:33:5E:6A:4E:FB:95:4D:BA:78:93:84:69:29:A3:A5:F6:86:7A
Certificate issuer: /CN=01BE335E6A4EFB954DBA7893846929A3A5F6867A
Certificate serial: 02EA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.mft
Manifest number: 02E2
Signing time: Wed 18 Mar 2026 01:01:09 +0000
Manifest this update: Wed 18 Mar 2026 01:01:09 +0000
Manifest next update: Wed 18 Mar 2026 07:01:09 +0000
Files and hashes: 1: 5LOLlAIfQshnZv-A-yit2bYPTFo.roa (hash: hxfdu9xHt7cnTvpqU3L+8tXpGulefAZyhVcuuyqv+JE=)
2: AZp661QogaamAn6kJhyEDq3lnpI.roa (hash: uVgRCC3TYs9CHxk1EXfcS4ShgRRYkecdU6L+XifaETw=)
3: Ab4zXmpO-5VNuniThGkpo6X2hno.crl (hash: 7I7YAxzN6cKXh2fyn5jjhaeu0ZW1QaIXiK168vjbJbs=)
4: TkMmlTcEcQLD7pSSb1TqYpSMWS0.roa (hash: EXUzTGbeJC8KE4XzujOoFpoduu3zvEsV8X0422gj9gE=)
5: sbu17e0QoVUI9W7RNg3UI95CtpM.roa (hash: s9gRekXs+s24fDqiGJ+uhEWtDdujVoxBCQiLjYe1MCQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 746 (0x2ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01BE335E6A4EFB954DBA7893846929A3A5F6867A
Validity
Not Before: Mar 18 01:01:09 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=FA833FCB2CB6E91B0246739150C5689D89846709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a4:35:f9:4b:da:d1:4a:84:f2:7d:6d:83:80:
fc:b2:9e:1a:43:bc:c5:b6:16:62:69:16:d8:f8:32:
f4:fb:8a:2a:f4:f3:90:c5:2b:6e:d0:d4:52:93:2d:
aa:be:11:a6:c2:a3:ef:ef:f6:e2:00:c3:89:11:50:
2e:9b:10:9b:59:45:1a:fa:cb:44:ed:7a:f5:a7:26:
46:4e:95:50:df:fb:2f:e6:a2:0b:02:d5:12:4a:aa:
16:ad:86:5f:05:1e:4d:33:a1:cf:60:ea:6c:b8:e2:
c7:00:ae:12:31:09:6e:a0:4f:33:77:e6:63:1f:23:
93:46:00:db:c0:f0:ce:0b:e1:c4:16:a0:55:2b:aa:
2d:51:68:47:0b:65:27:96:45:1e:36:cd:d6:d0:1b:
ca:1f:7b:b4:6f:6a:ec:aa:e3:2d:5b:b0:d5:3e:90:
56:fb:23:b4:96:ec:bb:ea:09:f1:a9:3f:da:88:02:
b6:9f:d3:9b:b6:28:cc:65:54:e8:a0:52:9a:49:f8:
bd:81:bb:75:35:ec:48:17:bd:95:48:65:0d:31:de:
15:1e:de:18:49:f5:95:22:01:ed:a2:92:5f:76:86:
92:64:af:36:d9:10:af:6c:2c:6d:a4:3b:96:5f:e8:
99:fb:e8:4d:6f:86:81:83:62:c5:de:d1:b9:10:73:
df:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:83:3F:CB:2C:B6:E9:1B:02:46:73:91:50:C5:68:9D:89:84:67:09
X509v3 Authority Key Identifier:
keyid:01:BE:33:5E:6A:4E:FB:95:4D:BA:78:93:84:69:29:A3:A5:F6:86:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:65:f0:cd:de:67:28:54:10:03:e0:e8:57:a8:03:eb:41:25:
26:c7:9b:80:55:6a:c2:e1:b6:bc:2c:81:26:7f:bc:4d:06:ba:
25:58:b5:41:6e:d9:f4:1e:dc:ec:44:85:88:a8:74:e9:a5:07:
4a:88:55:ab:8a:94:2e:ef:47:e6:26:b9:e6:77:3f:6c:1f:74:
d6:d0:ea:25:3c:51:46:20:03:20:d8:60:b2:fc:6b:33:f1:6f:
f3:82:85:9b:9b:11:4a:28:5e:a2:22:46:06:11:99:6b:58:6c:
83:34:d5:34:df:21:19:9c:94:b3:67:27:de:b8:67:5c:5d:5b:
8e:73:b8:bc:f7:0f:1d:49:3c:dd:97:e4:f4:d8:94:9d:36:64:
d8:dd:8e:15:49:ec:ff:0d:bd:33:a7:86:d8:5a:c6:99:79:c8:
a6:83:c6:67:94:14:bb:03:2f:34:f4:4f:fc:4a:35:b1:65:6a:
2a:72:24:1d:b8:00:d5:68:cd:ba:32:ed:6d:f6:e5:bf:d8:5a:
c0:8b:bc:77:a7:63:b2:c8:fa:e0:ad:7e:d4:db:84:a7:12:c3:
b2:2c:36:25:76:ff:92:23:11:cf:24:7a:c8:07:d5:98:26:83:
42:92:83:ee:6e:98:9d:6b:52:f4:29:d7:9f:c4:2d:bc:c3:55:
d2:91:43:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:35:35 2026 by rpki-client