Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft
File: D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft (raw, json)
Hash identifier: wKf/FZTtp2wVoMgTvCa0QQauSSw3u3WT/Ye2bQdC7SA=
Subject key identifier: E3:49:85:A2:81:67:74:E0:0A:8C:B7:B4:FB:AE:68:94:13:5F:11:88
Authority key identifier: 0F:57:DF:34:99:34:19:E5:08:30:0C:92:DC:68:45:19:89:B0:F5:53
Certificate issuer: /CN=0F57DF34993419E508300C92DC68451989B0F553
Certificate serial: 0C54
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D1ffNJk0GeUIMAyS3GhFGYmw9VM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft
Manifest number: 0C54
Signing time: Fri 21 Mar 2025 00:28:20 +0000
Manifest this update: Fri 21 Mar 2025 00:28:20 +0000
Manifest next update: Fri 21 Mar 2025 06:28:20 +0000
Files and hashes: 1: D1ffNJk0GeUIMAyS3GhFGYmw9VM.crl (hash: rUmyzGVJbdWesXdsmAe9TUEX9KWcNKCF15iYQ1Kgf2I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3156 (0xc54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F57DF34993419E508300C92DC68451989B0F553
Validity
Not Before: Mar 21 00:28:20 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=E34985A2816774E00A8CB7B4FBAE6894135F1188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:7c:06:07:a7:f3:b5:c4:8a:2d:fc:6d:1b:
40:32:6d:a8:3e:1d:fb:0b:e2:ac:e2:74:e8:8b:fc:
35:76:d2:9a:e5:79:4f:a5:1d:98:83:df:8b:4d:91:
9c:3e:58:52:83:ea:84:79:89:25:03:a6:b1:14:25:
41:72:b5:d3:4d:7f:1e:f0:f5:f2:6c:51:c3:e1:17:
5c:4f:50:f1:48:e7:d7:e7:4a:1c:43:3b:af:c8:58:
40:c7:12:36:14:12:0b:ca:75:22:7b:78:cc:b0:29:
0b:af:03:a9:2e:66:97:03:6a:38:3f:42:44:3e:c3:
49:6d:d2:88:5e:62:4f:f7:aa:aa:d7:e5:39:ff:29:
34:b1:64:ec:07:32:4c:a3:6e:6a:06:29:60:ec:71:
d1:cd:f1:89:28:a7:e7:94:9c:5d:23:17:2c:29:ea:
8d:76:dd:7c:b8:8e:f9:c3:13:e9:1e:9e:a6:13:d1:
ed:97:99:f0:cb:40:6d:fe:1f:90:e0:ca:37:1e:ce:
50:0a:95:aa:3d:5d:a9:a5:f1:0d:4d:f2:5e:7e:06:
54:a4:b3:5c:60:15:a5:e0:f6:39:25:79:b2:c6:30:
44:b9:92:e9:85:8f:85:89:c5:c1:86:c9:ae:97:39:
59:38:ab:fd:3b:da:75:07:dd:ee:63:3a:60:17:c9:
8b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:49:85:A2:81:67:74:E0:0A:8C:B7:B4:FB:AE:68:94:13:5F:11:88
X509v3 Authority Key Identifier:
keyid:0F:57:DF:34:99:34:19:E5:08:30:0C:92:DC:68:45:19:89:B0:F5:53
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/D1ffNJk0GeUIMAyS3GhFGYmw9VM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3224/D1ffNJk0GeUIMAyS3GhFGYmw9VM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8f:d5:42:ff:c1:98:cb:67:eb:08:37:84:d3:d0:3b:e6:a1:ac:
f3:bf:0f:94:1c:07:dc:2d:12:1c:87:c2:4e:b4:7b:db:0f:95:
5a:fe:8d:d3:17:1d:e1:3d:8a:fd:2f:b3:d7:3a:8f:d5:92:e3:
b6:20:20:e3:b5:6e:9e:4f:ca:24:f9:b1:be:91:8d:af:6b:ab:
9c:5e:6f:aa:ca:35:78:39:af:b0:b7:02:04:cf:f7:f1:ca:e4:
eb:f6:b9:4d:c3:8b:0c:46:8e:95:35:a8:1a:ff:a6:be:01:4b:
86:ac:a4:11:ff:51:b9:1c:16:b7:cf:84:14:62:fe:f9:7a:d5:
fc:9d:7e:77:2e:0f:d0:d9:de:37:7e:b8:7b:9b:16:a1:e1:c0:
a7:a6:76:b9:a1:a0:50:ac:1e:9b:64:94:bd:e0:79:b6:f6:82:
17:04:e4:09:bd:32:f5:f7:ce:5a:c4:8c:4e:62:9a:a0:16:44:
41:38:02:34:dd:01:f9:96:e0:e4:1a:29:0d:46:56:c5:8f:03:
11:e6:f1:4d:19:91:45:e3:59:20:37:f3:2c:ae:26:08:8b:a1:
48:c1:ed:31:a2:d7:8d:5d:c4:8c:28:3c:e0:02:27:11:a3:ce:
49:bd:6a:7b:f4:0a:42:7b:5e:25:f6:e6:d8:09:5e:af:b4:d7:
c1:aa:5e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:45:02 2025 by rpki-client