Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft
File: 3MTV8l8-ospnw9i-tmvzCTPlkWo.mft (raw, json)
Hash identifier: DsrnHmoXq88PC/bzSOMAq+qfKyZYG2luIMCH7AdACJs=
Subject key identifier: 91:A5:20:C0:CA:F5:59:4B:54:50:3E:1A:F9:B3:37:B9:2A:50:B3:E0
Authority key identifier: DC:C4:D5:F2:5F:3E:A2:CA:67:C3:D8:BE:B6:6B:F3:09:33:E5:91:6A
Certificate issuer: /CN=DCC4D5F25F3EA2CA67C3D8BEB66BF30933E5916A
Certificate serial: 0834
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3MTV8l8-ospnw9i-tmvzCTPlkWo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft
Manifest number: 0832
Signing time: Sat 29 Mar 2025 08:29:30 +0000
Manifest this update: Sat 29 Mar 2025 08:29:30 +0000
Manifest next update: Sat 29 Mar 2025 14:29:30 +0000
Files and hashes: 1: 3MTV8l8-ospnw9i-tmvzCTPlkWo.crl (hash: B/Gw1VjF15OEosDvMRB+Hc7X7atTIxvmiJ30D0g1PaM=)
2: EsVvAWAvX2Eo3GOkfzMxAiINA8g.roa (hash: 6AGrknvwDG7ihjPS80E0x4CYslbjUEAL2UvIQfteyUk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2100 (0x834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCC4D5F25F3EA2CA67C3D8BEB66BF30933E5916A
Validity
Not Before: Mar 29 08:29:30 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=91A520C0CAF5594B54503E1AF9B337B92A50B3E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b6:16:81:d4:29:dd:a6:37:0c:c1:46:98:1d:
4e:df:ca:de:f1:b0:9c:67:99:92:a6:fa:14:6f:f4:
1d:2d:ea:8a:6a:fc:33:d8:77:6d:9b:0b:fa:eb:ba:
b9:a5:22:b9:fa:4f:17:49:4a:51:84:51:51:aa:7f:
45:a1:ef:b3:e3:61:42:07:04:21:c8:a4:42:d4:7b:
6a:68:d1:2d:de:92:5d:89:8c:40:8c:71:84:6d:28:
95:74:ca:09:99:6e:61:f1:c4:3a:86:ef:04:c1:67:
3f:e2:bb:59:c0:50:16:66:6d:22:87:42:78:8d:d6:
75:6a:0e:8d:b2:c5:aa:09:57:9f:58:99:66:63:6a:
82:07:5c:60:2a:ff:63:53:2f:db:d3:ba:4b:8c:69:
d3:44:49:05:c1:85:ec:3e:bc:4b:9a:42:96:87:ae:
72:fd:ca:53:e3:78:bf:9e:f1:d7:ac:3a:2c:c8:17:
a0:82:70:75:7e:99:79:00:7c:73:78:70:d1:6f:11:
63:fb:0f:f7:10:75:9c:e2:a0:b1:85:a7:3f:e4:a1:
9f:e5:74:86:ab:2c:24:89:0c:29:02:9d:11:06:27:
c8:37:84:77:54:86:34:06:41:5e:a2:59:26:ce:35:
5c:68:77:2e:30:0f:95:2a:e8:79:c0:95:c5:8d:09:
4a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A5:20:C0:CA:F5:59:4B:54:50:3E:1A:F9:B3:37:B9:2A:50:B3:E0
X509v3 Authority Key Identifier:
keyid:DC:C4:D5:F2:5F:3E:A2:CA:67:C3:D8:BE:B6:6B:F3:09:33:E5:91:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3MTV8l8-ospnw9i-tmvzCTPlkWo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ef:a6:ef:be:26:81:71:0d:6e:cf:6d:04:c9:4b:56:bc:34:
49:2f:cb:da:61:61:17:41:8d:b2:f8:99:7c:7b:36:9c:21:57:
96:bc:f8:fd:47:11:97:e2:38:af:49:4b:d1:a4:e1:f0:2c:ec:
ef:38:79:93:55:0e:39:40:23:c0:0d:1c:26:80:0d:48:fa:9b:
0e:f9:48:a3:ab:74:41:73:1b:48:11:0d:33:14:f5:6e:30:c2:
4c:44:fa:77:52:07:d9:66:99:72:c1:c8:71:f8:50:37:94:39:
17:28:be:64:a2:74:ae:38:f8:11:d3:cf:00:a0:ef:33:0e:a4:
d1:14:b9:8e:7e:3e:64:6a:30:d1:0f:f7:b0:73:2e:b0:c1:fa:
7d:bc:f6:b0:bc:d0:ff:ea:21:97:b8:ac:47:fc:a4:a4:0c:4b:
0b:bd:1c:df:48:5a:ed:00:d7:82:c7:42:04:11:a2:22:ab:71:
6f:cb:4b:d1:a8:94:ad:ed:a2:f1:82:00:57:f1:50:b6:3e:a9:
27:72:2b:9d:b4:b3:9d:f6:63:16:0f:f3:e3:07:d0:a4:ff:b5:
d9:d5:71:94:dc:d9:64:b5:34:72:8a:c3:e4:e5:b9:a9:0a:68:
b0:88:c7:af:05:16:a1:9c:bd:f2:d7:7e:ad:21:e3:0d:01:0e:
24:d9:46:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:36:10 2025 by rpki-client