Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft
File: 5nly8uDEjmq9G__KM5YicDZJm28.mft (raw, json)
Hash identifier: AZnzGNryI7dqviyVf3ouU0cUiEKRmqxTbOhrmjxSBis=
Subject key identifier: E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC
Authority key identifier: E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F
Certificate issuer: /CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F
Certificate serial: 0EEE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft
Manifest number: 0EEE
Signing time: Fri 06 Jun 2025 10:39:06 +0000
Manifest this update: Fri 06 Jun 2025 10:39:06 +0000
Manifest next update: Fri 06 Jun 2025 16:39:06 +0000
Files and hashes: 1: 5nly8uDEjmq9G__KM5YicDZJm28.crl (hash: +9gKysFEI+QJr+prTE3Dm6I2pA3DyWEKjRH78IFiquc=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3822 (0xeee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E67972F2E0C48E6ABD1BFFCA3396227036499B6F
Validity
Not Before: Jun 6 10:39:06 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=E81B8D2CD9AABC3441DFC8A1756818541B6D89DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:11:47:e9:65:0b:f8:62:f2:4f:c0:1e:78:b5:
8a:c9:c5:07:a5:ab:c1:bd:2c:76:a6:79:a4:ac:7c:
bb:50:37:04:83:e6:0d:dd:01:dc:fb:d5:3a:f6:c9:
d3:1f:48:43:96:08:34:db:92:0f:54:3c:44:e1:05:
9f:95:d7:94:30:2f:be:81:7f:4b:84:83:93:9e:a9:
ce:ae:8b:36:1c:63:fb:d9:49:7c:0e:89:f3:33:f1:
e0:eb:56:ec:45:fb:f2:4f:fb:ae:f0:59:3b:7e:b8:
54:68:e7:44:a8:d2:bb:e5:1b:4d:42:e3:2d:ad:dd:
5c:53:b6:05:f2:3c:2d:a4:d7:a8:6c:aa:90:cf:3b:
ff:71:b2:50:0f:61:65:b5:5d:bf:1a:33:61:a0:7c:
4e:f0:7b:89:61:c7:ba:1e:ff:6f:91:e6:40:2c:f6:
fd:3f:25:3a:64:92:f7:78:8e:e6:b5:2b:58:48:aa:
d7:da:26:71:5a:dd:f4:bb:4c:9f:b7:cb:77:2d:df:
b3:cb:c8:6c:b9:1f:fe:03:7c:a7:a0:9c:65:ed:06:
97:b3:d6:a3:48:58:e0:ef:b8:7a:46:85:2a:ef:ce:
a7:9a:7a:8a:70:10:b2:d1:80:d6:89:33:ba:e4:ba:
d4:a5:ea:87:25:6c:0b:c4:8f:97:8f:1d:e8:96:e5:
d0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:1B:8D:2C:D9:AA:BC:34:41:DF:C8:A1:75:68:18:54:1B:6D:89:DC
X509v3 Authority Key Identifier:
keyid:E6:79:72:F2:E0:C4:8E:6A:BD:1B:FF:CA:33:96:22:70:36:49:9B:6F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5nly8uDEjmq9G__KM5YicDZJm28.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3215/5nly8uDEjmq9G__KM5YicDZJm28.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2d:e9:a0:44:98:8c:02:26:2a:6d:bc:93:2a:82:9d:75:1b:e6:
1d:ff:8f:d2:ba:42:71:5c:7e:40:87:8b:43:d7:6d:3e:a1:8d:
af:ca:da:ae:6d:6e:f6:70:de:1c:ae:08:1d:ae:75:67:43:2f:
72:dd:03:48:ee:f4:d5:38:7c:6c:46:2d:72:3c:4c:44:d4:a3:
14:05:63:dc:35:e5:c0:8b:e8:2e:7c:16:cc:3b:24:bf:82:e3:
f6:a8:d5:22:08:5a:94:ff:3d:b7:c8:d9:83:f6:72:5a:4b:42:
13:d4:92:73:b3:8b:9c:99:a8:ae:e2:16:2d:53:95:de:85:25:
69:b2:18:5f:80:07:db:59:93:74:c7:b6:1f:4b:41:a7:84:5e:
28:9c:48:36:28:8f:8d:b2:e9:81:58:e1:fb:e6:74:bc:97:00:
54:38:f8:68:ae:44:f4:f8:11:33:fb:5b:c3:4a:a4:dc:2c:2e:
66:f9:fb:05:f0:fd:a7:68:93:6e:59:4f:92:a3:e2:85:4f:52:
0e:2f:13:7a:e8:4f:03:d2:b9:7c:21:1c:08:1b:ac:54:2a:38:
fb:78:91:41:96:33:37:9e:4d:3b:67:79:92:58:3a:a1:91:7b:
a9:dc:84:63:5c:62:cd:3b:82:e7:2c:6d:b0:a4:c5:c7:7b:1c:
21:41:bf:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 17:39:03 2025 by rpki-client