Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft
File: Fwt8oG9XNbekD5f_H1O64TNIqT4.mft (raw, json)
Hash identifier: 7SNJrxo3wZlErd2t3AyCuFLM2xAEpXNhKsJKIERzMCo=
Subject key identifier: A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2
Authority key identifier: 17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E
Certificate issuer: /CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E
Certificate serial: 0989
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft
Manifest number: 0986
Signing time: Tue 03 Jun 2025 21:09:25 +0000
Manifest this update: Tue 03 Jun 2025 21:09:24 +0000
Manifest next update: Wed 04 Jun 2025 03:09:24 +0000
Files and hashes: 1: DTJOEl42rlpiAANO4FGlm-jwgW4.roa (hash: tZhR6vDrnzGj28cQqezVKGdCmEoL4wYz8p4dkA3OU5Q=)
2: Fwt8oG9XNbekD5f_H1O64TNIqT4.crl (hash: A199pKWuWQM7RNvVgI3EcDe2Y3kzQttJifyRHtcbNVQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2441 (0x989)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=170B7CA06F5735B7A40F97FF1F53BAE13348A93E
Validity
Not Before: Jun 3 21:09:24 2025 GMT
Not After : Apr 9 06:27:19 2026 GMT
Subject: CN=A0643FCBC0A8EB2A325E55089DE50960A7B677C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:12:cb:42:29:5b:78:a1:90:13:25:44:5a:da:
b9:04:bd:c8:ad:b5:e7:51:99:b4:f0:32:58:43:25:
6d:dc:d8:0e:31:39:27:b1:6d:e0:c4:03:e6:e6:57:
7b:0b:22:21:e6:6b:6a:d1:6f:2f:69:cd:2d:44:22:
5e:a1:76:c5:fd:5e:06:1a:45:3d:4f:98:84:bd:40:
2a:84:be:75:ce:00:57:cd:a9:f7:80:69:b0:e9:3b:
3b:01:87:66:a5:e4:b0:64:39:c6:1e:c9:57:37:49:
55:e0:ee:7c:86:4a:97:0b:56:5c:ca:48:10:b5:28:
cd:c8:4c:91:1f:1f:26:b4:41:2d:6a:4e:b1:44:3b:
9c:23:6c:13:93:42:c1:76:e1:65:9a:67:07:30:9a:
0a:9f:ce:de:a8:c7:fd:20:49:63:6b:ab:57:0e:8c:
67:5f:48:d1:91:0f:4e:78:bf:78:42:e7:7d:d7:fd:
ec:90:8b:cd:00:51:99:df:30:05:54:78:f6:11:18:
dd:71:ad:c8:65:dc:30:3d:b8:95:17:70:04:51:ac:
5e:5f:7b:b9:d5:96:b9:ef:a3:c8:52:bd:c1:09:82:
b6:ea:65:be:8d:b5:5e:e0:0e:58:1c:23:2f:4f:38:
0a:41:b0:d7:6a:16:8a:97:db:f5:fc:bf:77:3d:06:
2f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:64:3F:CB:C0:A8:EB:2A:32:5E:55:08:9D:E5:09:60:A7:B6:77:C2
X509v3 Authority Key Identifier:
keyid:17:0B:7C:A0:6F:57:35:B7:A4:0F:97:FF:1F:53:BA:E1:33:48:A9:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Fwt8oG9XNbekD5f_H1O64TNIqT4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/Fwt8oG9XNbekD5f_H1O64TNIqT4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0c:4c:cf:ad:62:38:5d:7e:41:7d:17:7a:73:44:a9:f4:70:60:
c1:45:1f:7b:4a:25:0c:8d:45:95:92:05:92:87:2b:5d:3e:0a:
b7:f6:f1:4f:ee:13:31:8b:a0:bb:4a:da:6a:be:3a:8d:c4:a1:
f9:cd:3d:72:3d:a6:71:c0:4c:7c:11:b5:1c:66:83:29:0a:1b:
83:a8:ca:40:d3:8e:2c:bd:b8:87:1f:e5:36:3d:a2:c6:db:b7:
24:77:9a:b4:2f:d0:d8:69:b0:26:eb:45:d1:89:d3:c5:4d:c5:
c0:8f:b1:6b:7e:b3:93:17:86:c8:52:12:b6:32:19:7c:f3:05:
fb:43:91:a1:00:0b:fb:ca:95:f0:79:f5:f2:61:c9:62:00:58:
2a:b4:bd:62:4c:7c:54:bb:0d:41:f3:97:09:fd:a1:03:11:9f:
42:62:20:8e:ad:bc:07:a3:e9:7d:8d:3c:75:8a:d5:c8:37:9a:
09:89:3b:a5:bf:7e:8a:8a:b1:92:50:75:85:4a:b3:9c:ff:c9:
09:e3:ff:9d:af:0b:b0:ba:01:ba:51:e0:a1:e0:06:cd:67:8f:
17:cb:c8:21:6a:60:d6:30:7a:23:ac:b4:08:ca:39:e2:88:ee:
ba:c1:90:e2:9f:f7:89:5b:4c:1b:ce:4a:a6:df:02:42:6b:6a:
6f:49:b1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:19:14 2025 by rpki-client