Manifest

$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.mft
File:                     xuX5wWRNY_ogamb_ZxfB0RoqMC0.mft (raw, json)
Hash identifier:          XTZ03yhpYVQ6ChCnaKBzaEJ2+POrzgA4bqTAN5Oz7M0=
Subject key identifier:   34:AA:52:06:2B:D6:B5:F7:71:34:B2:BF:04:69:A6:4A:CA:BB:74:6A
Authority key identifier: C6:E5:F9:C1:64:4D:63:FA:20:6A:66:FF:67:17:C1:D1:1A:2A:30:2D
Certificate issuer:       /CN=C6E5F9C1644D63FA206A66FF6717C1D11A2A302D
Certificate serial:       0ADC
Authority info access:    rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer
Subject info access:      rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.mft
Manifest number:          0ADC
Signing time:             Wed 23 Jul 2025 23:41:07 +0000
Manifest this update:     Wed 23 Jul 2025 23:41:07 +0000
Manifest next update:     Thu 24 Jul 2025 05:41:07 +0000
Files and hashes:         1: xuX5wWRNY_ogamb_ZxfB0RoqMC0.crl (hash: WlY0pMytslGMEQB8LQX8DVQu4f8wuI6t+0gEPhr1Hpg=)
Validation:               OK
Signature path:           rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.crl
                          rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.mft
                          rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer
                          rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl
                          rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 24 Jul 2025 05:41:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2780 (0xadc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C6E5F9C1644D63FA206A66FF6717C1D11A2A302D
        Validity
            Not Before: Jul 23 23:41:07 2025 GMT
            Not After : Apr  3 08:00:09 2026 GMT
        Subject: CN=34AA52062BD6B5F77134B2BF0469A64ACABB746A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:08:b2:ea:05:24:28:62:89:7b:59:5e:7b:55:
                    02:54:b7:5a:90:5a:5f:6c:b1:a7:80:79:4f:90:d8:
                    e8:8b:1d:19:98:3c:58:c5:79:d5:8e:2b:30:b7:fc:
                    46:42:8e:4a:cf:a2:7a:38:f1:6c:2f:8e:0f:87:49:
                    4e:d7:06:b4:37:6c:99:2b:b9:46:f3:b3:9e:dc:b8:
                    5c:c9:1c:cd:f8:5d:9b:dd:ad:7a:2d:20:24:f2:18:
                    e3:19:4e:94:ce:bd:dd:dd:4b:09:be:80:82:bf:42:
                    b5:ae:ca:67:8c:33:1a:59:8e:2f:cc:af:21:cc:14:
                    46:31:a3:b9:0f:5c:27:ae:c0:a3:61:65:a6:c1:2e:
                    99:a0:58:f8:31:e0:64:30:3a:63:1a:16:40:01:4c:
                    c4:2a:f2:4b:d0:04:fd:ef:f5:38:a5:37:69:44:49:
                    36:88:fc:87:22:64:65:5e:b0:cb:6a:e0:33:d0:81:
                    88:da:a8:a6:dc:e5:54:dd:73:02:71:53:ed:0d:f7:
                    53:64:db:c0:b3:0e:46:60:a2:a7:df:99:3c:68:43:
                    32:b2:df:6f:a5:24:5f:85:a6:61:82:dc:73:0f:33:
                    66:30:2e:e4:e9:bd:72:56:98:13:fb:e1:58:ff:b3:
                    38:76:14:b7:63:a1:64:4f:8a:5a:c1:55:01:fa:ca:
                    fb:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:AA:52:06:2B:D6:B5:F7:71:34:B2:BF:04:69:A6:4A:CA:BB:74:6A
            X509v3 Authority Key Identifier:
                keyid:C6:E5:F9:C1:64:4D:63:FA:20:6A:66:FF:67:17:C1:D1:1A:2A:30:2D

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.mft
                RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:92:b2:4c:7e:b0:6b:7a:e6:81:3b:ea:60:05:df:f7:96:6e:
         0e:65:b5:93:c8:36:40:4e:91:fd:60:10:a7:30:cc:65:e8:6c:
         db:af:a4:18:30:91:dd:b2:e1:d2:5d:b6:24:e6:e6:44:b4:0e:
         0d:40:8e:ef:e0:85:80:07:d6:ad:4e:31:76:2b:ae:3e:54:98:
         7c:c7:ca:7b:8c:0f:fd:3a:2d:e1:52:02:e7:49:d4:30:c8:c3:
         ae:4f:de:1d:a3:73:c6:75:fa:70:df:68:52:49:43:2e:d4:5e:
         ba:ba:8f:9d:ab:f2:16:a8:59:4c:db:67:98:5b:74:52:ca:e2:
         59:6b:e9:7d:26:5d:f0:42:35:25:a4:6f:bb:68:90:66:95:5b:
         65:1d:2c:e6:c2:eb:17:22:12:bc:cb:5b:4b:ed:86:d9:3f:0e:
         de:c5:1c:e5:9b:48:5f:f0:35:13:95:14:a1:a0:b0:01:66:bd:
         08:1d:72:e5:ab:ba:0d:85:11:d5:e8:72:1b:6a:84:ed:d4:b5:
         ae:e8:6f:06:f2:8b:82:67:82:52:1d:59:20:c2:cf:ba:09:2a:
         7b:80:44:19:13:01:ca:01:53:c8:97:56:4c:08:0d:00:83:4c:
         e5:21:02:21:b9:97:bd:6a:27:af:93:05:cf:60:f9:27:ed:8e:
         9f:d5:50:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:01:49 2025 by rpki-client