Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3229/hkJ-VFo-gGs0Xw0gwOOeIcToUBw.mft
File: hkJ-VFo-gGs0Xw0gwOOeIcToUBw.mft (raw, json)
Hash identifier: v5IQjotmA0TUUCdX5NFNhHJjrn5fqoSc/tOfhWsQyus=
Subject key identifier: 5A:E5:EB:E6:F2:69:00:47:5A:8B:A4:8D:FD:4E:DA:E4:5D:DB:34:BF
Authority key identifier: 86:42:7E:54:5A:3E:80:6B:34:5F:0D:20:C0:E3:9E:21:C4:E8:50:1C
Certificate issuer: /CN=86427E545A3E806B345F0D20C0E39E21C4E8501C
Certificate serial: 0B7F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hkJ-VFo-gGs0Xw0gwOOeIcToUBw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3229/hkJ-VFo-gGs0Xw0gwOOeIcToUBw.mft
Manifest number: 0B7F
Signing time: Fri 21 Mar 2025 00:30:22 +0000
Manifest this update: Fri 21 Mar 2025 00:30:22 +0000
Manifest next update: Fri 21 Mar 2025 06:30:22 +0000
Files and hashes: 1: hkJ-VFo-gGs0Xw0gwOOeIcToUBw.crl (hash: yPzuMOXNqXybeKaXtYGQ0da374sqUEHKlMYwioG6pkk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2943 (0xb7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86427E545A3E806B345F0D20C0E39E21C4E8501C
Validity
Not Before: Mar 21 00:30:22 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=5AE5EBE6F26900475A8BA48DFD4EDAE45DDB34BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1e:4d:89:ad:a4:d1:cf:95:af:20:d2:72:38:
c8:10:41:3a:e8:23:5d:d7:16:57:21:b6:a1:2d:cd:
37:8c:84:f4:c0:4f:89:ab:6c:d5:dd:7b:d5:e0:7f:
f3:3f:af:a6:fb:8e:b7:98:ab:91:d0:66:6b:14:fe:
ad:d6:f1:55:51:f2:0b:00:8f:e4:30:ac:35:cc:03:
91:99:87:8f:d5:a8:b6:61:1f:1c:ca:bc:86:e4:93:
00:eb:89:c4:89:c1:27:42:a6:28:3b:47:cc:ca:06:
41:a8:f0:6b:9c:ab:08:ce:6d:4a:18:b3:2a:ee:98:
ca:54:87:81:ed:a7:08:d4:e0:fe:84:b3:a1:d2:39:
61:15:02:16:10:08:ea:3c:f5:98:a9:89:71:7a:05:
5b:a9:17:4b:46:f6:f9:c7:74:5a:b0:96:2a:f2:e9:
b1:a6:d2:5c:ad:c7:c8:58:ac:d4:a2:2c:5c:51:6c:
71:5e:dd:4e:58:97:31:43:64:25:41:f2:5b:aa:b6:
53:dc:c3:b9:41:6f:1d:e4:31:b4:1c:03:0e:8c:53:
24:c2:04:9d:f1:2b:9f:42:9e:97:9e:92:58:78:27:
9e:dd:1f:df:e1:8e:49:a6:03:2a:4f:54:f2:d9:1d:
5b:c7:da:79:aa:04:d9:a7:5b:49:e4:d9:0e:a3:d8:
dd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E5:EB:E6:F2:69:00:47:5A:8B:A4:8D:FD:4E:DA:E4:5D:DB:34:BF
X509v3 Authority Key Identifier:
keyid:86:42:7E:54:5A:3E:80:6B:34:5F:0D:20:C0:E3:9E:21:C4:E8:50:1C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3229/hkJ-VFo-gGs0Xw0gwOOeIcToUBw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/hkJ-VFo-gGs0Xw0gwOOeIcToUBw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3229/hkJ-VFo-gGs0Xw0gwOOeIcToUBw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2c:83:08:9a:1f:60:9e:3b:6a:82:50:e2:3a:59:df:08:71:e8:
55:6b:e1:8d:ed:9e:21:df:79:51:c2:27:96:1b:89:78:88:68:
cb:39:8c:bb:7e:e6:83:bb:0a:9f:1e:99:d5:13:59:5f:eb:47:
98:be:f1:5b:6c:e4:92:c5:e1:f2:9b:03:7d:9c:39:f4:7a:d5:
27:4a:a6:2a:37:2e:8a:81:a9:d8:8b:9b:67:64:12:b7:f1:c6:
16:e8:b1:80:01:49:e4:9a:2b:4e:15:8e:11:99:b9:7d:02:fd:
25:89:6e:59:e3:c2:f9:52:7c:b0:95:22:2f:fb:d7:79:ab:31:
06:f9:12:47:ae:d8:21:e4:1f:af:bf:62:7d:3e:c0:7d:09:3b:
20:16:9f:3d:12:ba:74:02:6a:20:5f:2b:29:bb:3c:f1:1a:29:
69:cd:65:15:95:06:a8:86:e1:8d:7f:e8:f2:c0:fd:f5:d7:ba:
06:10:76:19:ce:95:54:12:2e:02:a9:a2:73:15:cd:6c:28:ff:
be:78:a2:dc:ca:df:0a:31:4c:b0:8c:a2:24:b9:5e:ca:9c:ac:
9f:f9:4c:de:39:f5:96:59:cc:05:76:f1:ab:b6:8f:ae:b2:e1:
a3:00:a8:d1:a0:71:1d:c8:fc:4a:02:ff:84:8e:08:05:28:39:
39:42:46:a0
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICC38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODY0
MjdFNTQ1QTNFODA2QjM0NUYwRDIwQzBFMzlFMjFDNEU4NTAxQzAeFw0yNTAzMjEw
MDMwMjJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDVBRTVFQkU2RjI2OTAw
NDc1QThCQTQ4REZENEVEQUU0NUREQjM0QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAHk2JraTRz5WvINJyOMgQQTroI13XFlchtqEtzTeMhPTAT4mr
bNXde9Xgf/M/r6b7jreYq5HQZmsU/q3W8VVR8gsAj+QwrDXMA5GZh4/VqLZhHxzK
vIbkkwDricSJwSdCpig7R8zKBkGo8GucqwjObUoYsyrumMpUh4HtpwjU4P6Es6HS
OWEVAhYQCOo89ZipiXF6BVupF0tG9vnHdFqwliry6bGm0lytx8hYrNSiLFxRbHFe
3U5YlzFDZCVB8luqtlPcw7lBbx3kMbQcAw6MUyTCBJ3xK59Cnpeeklh4J57dH9/h
jkmmAypPVPLZHVvH2nmqBNmnW0nk2Q6j2N11AgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUWuXr5vJpAEdai6SN/U7a5F3bNL8wHwYDVR0jBBgwFoAUhkJ+VFo+gGs0Xw0g
wOOeIcToUBwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIy
OS9oa0otVkZvLWdHczBYdzBnd09PZUljVG9VQncuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL2hrSi1WRm8tZ0dzMFh3MGd3T09lSWNUb1VCdy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMjkvaGtKLVZGby1nR3Mw
WHcwZ3dPT2VJY1RvVUJ3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBACyDCJofYJ47aoJQ4jpZ3whx6FVr4Y3tniHfeVHCJ5YbiXiIaMs5jLt+5oO7
Cp8emdUTWV/rR5i+8Vts5JLF4fKbA32cOfR61SdKpio3LoqBqdiLm2dkErfxxhbo
sYABSeSaK04VjhGZuX0C/SWJblnjwvlSfLCVIi/713mrMQb5Ekeu2CHkH6+/Yn0+
wH0JOyAWnz0SunQCaiBfKym7PPEaKWnNZRWVBqiG4Y1/6PLA/fXXugYQdhnOlVQS
LgKponMVzWwo/754otzK3woxTLCMoiS5XsqcrJ/5TN459ZZZzAV28au2j66y4aMA
qNGgcR3I/EoC/4SOCAUoOTlCRqA=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:32:31 2025 by rpki-client