Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft
File: kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft (raw, json)
Hash identifier: 6UejA+/9/n+ZGbVG7Yfwtfa2jkLcJWDUaeHOJhmbOPM=
Subject key identifier: F7:CE:72:31:FE:6F:7D:35:AC:67:E1:25:13:0F:01:40:32:45:BB:CE
Authority key identifier: 90:F3:0E:1D:F3:27:D1:03:90:7F:1B:E0:8E:D3:EA:64:BF:B7:78:E3
Certificate issuer: /CN=90F30E1DF327D103907F1BE08ED3EA64BFB778E3
Certificate serial: 086E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft
Manifest number: 086B
Signing time: Sat 29 Mar 2025 08:29:16 +0000
Manifest this update: Sat 29 Mar 2025 08:29:16 +0000
Manifest next update: Sat 29 Mar 2025 14:29:16 +0000
Files and hashes: 1: SGpuOxsalusTzpYR3fphfkpzMVY.roa (hash: YMN9QVglyHTZ+uAe4m7iUyKbPe/xcnJgsyMEy+dbYZI=)
2: kPMOHfMn0QOQfxvgjtPqZL-3eOM.crl (hash: F6B/N+IVmeTdeNkm9D4ErutndoXcoF/8aGLWH8XeBkg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2158 (0x86e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90F30E1DF327D103907F1BE08ED3EA64BFB778E3
Validity
Not Before: Mar 29 08:29:16 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=F7CE7231FE6F7D35AC67E125130F01403245BBCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:17:cd:57:be:fe:14:84:57:30:f0:64:79:4f:
fe:86:52:f9:94:99:db:ee:be:6b:7c:2e:c6:ad:a7:
d2:8f:b5:7b:ea:3b:38:7d:1d:b7:ec:45:19:15:95:
0a:c3:56:ba:78:7b:ea:a0:5b:fc:09:f9:8c:2f:33:
36:a8:c7:a2:89:ef:ab:26:8f:90:e4:8c:f1:90:02:
6f:3c:40:d3:e8:96:70:1a:d4:d6:c2:4e:95:c2:9a:
12:9e:ec:9f:ab:8f:64:45:bc:54:43:a2:fa:46:16:
9f:3c:32:7e:26:a3:47:f3:1a:87:0b:67:c8:c4:e3:
23:ed:62:52:b1:bc:a6:5e:e7:66:ec:e0:c6:a7:25:
d2:ea:75:e5:81:9d:b0:8b:d7:ee:98:06:11:f2:35:
d1:87:7c:a5:02:89:e0:65:e5:b4:05:38:fe:d9:e9:
6e:92:b0:2f:28:b2:59:0c:66:27:a0:aa:a5:01:ac:
58:eb:7e:3d:12:fb:eb:0f:a1:9b:02:cf:2f:e2:70:
f5:40:fa:b3:92:25:64:a1:eb:a0:cd:57:11:b8:f4:
35:e2:92:21:db:d8:b5:86:1d:02:a2:e9:d8:31:1e:
0b:7a:da:5b:df:0c:bc:2c:c3:75:e1:89:27:97:cb:
12:7c:a2:ac:8e:ba:9a:2f:e9:21:78:35:47:61:d7:
df:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CE:72:31:FE:6F:7D:35:AC:67:E1:25:13:0F:01:40:32:45:BB:CE
X509v3 Authority Key Identifier:
keyid:90:F3:0E:1D:F3:27:D1:03:90:7F:1B:E0:8E:D3:EA:64:BF:B7:78:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kPMOHfMn0QOQfxvgjtPqZL-3eOM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3258/kPMOHfMn0QOQfxvgjtPqZL-3eOM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
37:ed:91:32:16:45:01:48:e5:98:09:9c:91:7b:32:99:d9:46:
2e:83:2b:22:c1:e6:22:01:99:4a:d2:78:ab:88:4e:dd:4d:d1:
25:9f:2e:73:8e:71:13:9e:c2:4e:ec:22:54:25:9e:c2:e5:56:
d1:bb:41:9d:9a:26:c0:48:91:74:bf:81:ee:ce:13:32:61:45:
02:79:27:8d:e9:ec:bb:8c:47:e6:02:70:50:e0:8d:68:a9:ad:
d1:bc:f5:79:34:f0:c8:28:5b:8c:4d:56:e8:f4:ad:69:b9:2f:
40:c7:ba:ce:8d:e3:54:32:69:e3:ca:58:87:20:32:8a:92:6a:
48:99:d4:ed:5d:cc:ff:70:87:c7:46:fd:4d:96:ae:9b:fd:e9:
e2:0b:af:89:db:e7:2b:8e:ce:bb:85:a0:9f:e9:34:a2:e3:2c:
41:fa:e3:6a:30:f0:62:fe:df:78:36:4c:8d:19:52:65:4e:aa:
48:11:bd:8e:dd:6d:2e:a2:d4:f9:de:44:64:ad:13:48:3f:ec:
96:a6:98:47:86:7f:50:ef:db:66:2e:a4:1e:c5:9b:3f:8a:8e:
a2:e7:66:e9:e3:2c:7e:5b:84:21:5d:2e:cd:0e:b9:34:01:b5:
71:31:e2:e3:9e:93:91:38:87:eb:bc:c1:36:62:f4:aa:78:a4:
9c:dd:8f:53
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICCG4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTBG
MzBFMURGMzI3RDEwMzkwN0YxQkUwOEVEM0VBNjRCRkI3NzhFMzAeFw0yNTAzMjkw
ODI5MTZaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEY3Q0U3MjMxRkU2RjdE
MzVBQzY3RTEyNTEzMEYwMTQwMzI0NUJCQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCVF81Xvv4UhFcw8GR5T/6GUvmUmdvuvmt8Lsatp9KPtXvqOzh9
HbfsRRkVlQrDVrp4e+qgW/wJ+YwvMzaox6KJ76smj5DkjPGQAm88QNPolnAa1NbC
TpXCmhKe7J+rj2RFvFRDovpGFp88Mn4mo0fzGocLZ8jE4yPtYlKxvKZe52bs4Man
JdLqdeWBnbCL1+6YBhHyNdGHfKUCieBl5bQFOP7Z6W6SsC8oslkMZiegqqUBrFjr
fj0S++sPoZsCzy/icPVA+rOSJWSh66DNVxG49DXikiHb2LWGHQKi6dgxHgt62lvf
DLwsw3XhiSeXyxJ8oqyOupov6SF4NUdh19+vAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQU985yMf5vfTWsZ+ElEw8BQDJFu84wHwYDVR0jBBgwFoAUkPMOHfMn0QOQfxvg
jtPqZL+3eOMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI1
OC9rUE1PSGZNbjBRT1FmeHZnanRQcVpMLTNlT00uY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL2tQTU9IZk1uMFFPUWZ4dmdqdFBxWkwtM2VPTS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNTgva1BNT0hmTW4wUU9R
Znh2Z2p0UHFaTC0zZU9NLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBADftkTIWRQFI5ZgJnJF7MpnZRi6DKyLB5iIBmUrSeKuITt1N0SWfLnOOcROe
wk7sIlQlnsLlVtG7QZ2aJsBIkXS/ge7OEzJhRQJ5J43p7LuMR+YCcFDgjWiprdG8
9Xk08MgoW4xNVuj0rWm5L0DHus6N41QyaePKWIcgMoqSakiZ1O1dzP9wh8dG/U2W
rpv96eILr4nb5yuOzruFoJ/pNKLjLEH642ow8GL+33g2TI0ZUmVOqkgRvY7dbS6i
1PneRGStE0g/7JammEeGf1Dv22YupB7Fmz+KjqLnZunjLH5bhCFdLs0OuTQBtXEx
4uOek5E4h+u8wTZi9Kp4pJzdj1M=
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:35:14 2025 by rpki-client