Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.mft
File: kOpMYj8LihBi2qgOqaj0R49Z3oU.mft (raw, json)
Hash identifier: l+dOhE8lCyKu1+vAODMBdazQ+pLKIqbdAgu/u25v5aM=
Subject key identifier: 14:3E:EE:FE:12:08:DB:B6:7D:A9:53:F5:54:2B:95:1C:DF:56:0F:F0
Authority key identifier: 90:EA:4C:62:3F:0B:8A:10:62:DA:A8:0E:A9:A8:F4:47:8F:59:DE:85
Certificate issuer: /CN=90EA4C623F0B8A1062DAA80EA9A8F4478F59DE85
Certificate serial: 0920
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kOpMYj8LihBi2qgOqaj0R49Z3oU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.mft
Manifest number: 0920
Signing time: Sun 20 Jul 2025 06:44:17 +0000
Manifest this update: Sun 20 Jul 2025 06:44:17 +0000
Manifest next update: Sun 20 Jul 2025 12:44:17 +0000
Files and hashes: 1: kOpMYj8LihBi2qgOqaj0R49Z3oU.crl (hash: iDqUNxQ0X8OWfHkXwVO/o7N5LiZZr3eehoJIyxaM6CU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2336 (0x920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90EA4C623F0B8A1062DAA80EA9A8F4478F59DE85
Validity
Not Before: Jul 20 06:44:17 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=143EEEFE1208DBB67DA953F5542B951CDF560FF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:e8:f9:51:72:bd:f8:a3:49:d8:ab:7e:aa:
a3:cc:28:a1:fb:5b:74:e3:a0:5f:7b:99:a5:f9:26:
e8:12:6d:46:15:bc:ca:55:de:ff:37:96:fa:17:70:
9d:8f:52:40:b7:7c:97:d9:d6:e1:87:3e:3a:c1:fd:
21:66:93:03:c3:4e:0c:85:c6:28:8b:0d:e4:2e:71:
f4:12:85:5c:63:2f:8c:28:d7:66:ad:e0:d5:48:fb:
f2:c5:5c:67:42:f7:f8:30:33:74:99:56:39:80:a0:
ed:66:5b:7c:88:85:fa:59:05:b1:21:67:0a:b6:1e:
cc:2a:cd:79:f5:61:48:18:95:dd:61:50:ce:e6:d5:
d8:87:91:08:36:9e:f3:9a:e7:a2:be:53:06:8e:45:
04:93:bb:04:07:75:58:39:7d:0a:ce:fd:52:42:c9:
e6:66:19:ad:15:cb:11:ae:35:a6:de:87:44:48:82:
e0:31:06:b7:98:b9:6b:e1:22:7b:07:82:22:96:41:
ae:af:51:d0:51:c3:c9:02:79:e8:0d:0a:cd:98:ef:
66:fc:fd:a2:86:c0:a3:0b:35:84:4b:6b:7d:57:93:
14:bd:94:2b:a0:4b:48:0b:58:a2:1a:6e:f3:b4:e2:
c0:97:59:25:20:02:bd:ed:c6:8c:b4:fa:63:53:03:
97:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3E:EE:FE:12:08:DB:B6:7D:A9:53:F5:54:2B:95:1C:DF:56:0F:F0
X509v3 Authority Key Identifier:
keyid:90:EA:4C:62:3F:0B:8A:10:62:DA:A8:0E:A9:A8:F4:47:8F:59:DE:85
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kOpMYj8LihBi2qgOqaj0R49Z3oU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3275/kOpMYj8LihBi2qgOqaj0R49Z3oU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7e:94:72:7c:3f:a4:1c:99:7e:ca:04:44:c0:f1:9b:58:8c:20:
a6:a1:e3:aa:0e:4a:89:62:0f:70:b5:38:97:63:b5:c3:3b:d4:
d3:c9:8a:45:0a:61:53:99:4e:55:be:be:a3:e8:12:a1:db:2c:
cc:c1:bf:e5:45:9f:d2:a6:df:05:6a:1d:1b:cf:05:07:06:3c:
2d:49:e1:ef:2a:47:f6:75:ad:40:a5:2b:46:d1:bd:63:70:c8:
03:4e:e0:e6:ad:e8:dc:ff:b2:89:33:48:24:8f:3a:7a:df:6d:
eb:cb:86:ac:c5:ff:72:a0:67:20:14:4a:00:a4:62:7a:46:b6:
e3:56:a0:a7:2a:8c:d8:70:20:c0:9d:86:e1:1b:8b:16:0c:26:
e0:2b:f9:2e:f3:ed:9b:da:de:9c:c8:49:1b:07:43:39:c2:19:
87:4a:e3:6e:9f:35:ce:6f:1e:d2:a6:7f:e1:0a:3b:eb:59:25:
75:9a:1f:af:eb:89:d6:1a:ff:dc:50:db:d1:34:dd:8d:f7:ed:
34:4e:f4:13:cf:85:a9:ec:96:33:9d:ea:78:d0:7c:54:7a:da:
af:bb:c5:27:9a:3b:f8:41:c2:01:41:60:fd:87:95:a4:c6:97:
3a:1f:83:c6:43:87:6c:eb:67:d9:06:00:7d:6b:df:99:8b:75:
d4:52:62:1f
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICCSAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTBF
QTRDNjIzRjBCOEExMDYyREFBODBFQTlBOEY0NDc4RjU5REU4NTAeFw0yNTA3MjAw
NjQ0MTdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDE0M0VFRUZFMTIwOERC
QjY3REE5NTNGNTU0MkI5NTFDREY1NjBGRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDIej5UXK9+KNJ2Kt+qqPMKKH7W3TjoF97maX5JugSbUYVvMpV
3v83lvoXcJ2PUkC3fJfZ1uGHPjrB/SFmkwPDTgyFxiiLDeQucfQShVxjL4wo12at
4NVI+/LFXGdC9/gwM3SZVjmAoO1mW3yIhfpZBbEhZwq2HswqzXn1YUgYld1hUM7m
1diHkQg2nvOa56K+UwaORQSTuwQHdVg5fQrO/VJCyeZmGa0VyxGuNabeh0RIguAx
BreYuWvhInsHgiKWQa6vUdBRw8kCeegNCs2Y72b8/aKGwKMLNYRLa31XkxS9lCug
S0gLWKIabvO04sCXWSUgAr3txoy0+mNTA5djAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUFD7u/hII27Z9qVP1VCuVHN9WD/AwHwYDVR0jBBgwFoAUkOpMYj8LihBi2qgO
qaj0R49Z3oUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI3
NS9rT3BNWWo4TGloQmkycWdPcWFqMFI0OVozb1UuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL2tPcE1ZajhMaWhCaTJxZ09xYWowUjQ5WjNvVS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNzUva09wTVlqOExpaEJp
MnFnT3FhajBSNDlaM29VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAH6Ucnw/pByZfsoERMDxm1iMIKah46oOSoliD3C1OJdjtcM71NPJikUKYVOZ
TlW+vqPoEqHbLMzBv+VFn9Km3wVqHRvPBQcGPC1J4e8qR/Z1rUClK0bRvWNwyANO
4Oat6Nz/sokzSCSPOnrfbevLhqzF/3KgZyAUSgCkYnpGtuNWoKcqjNhwIMCdhuEb
ixYMJuAr+S7z7Zva3pzISRsHQznCGYdK426fNc5vHtKmf+EKO+tZJXWaH6/ridYa
/9xQ29E03Y337TRO9BPPhansljOd6njQfFR62q+7xSeaO/hBwgFBYP2HlaTGlzof
g8ZDh2zrZ9kGAH1r35mLddRSYh8=
-----END CERTIFICATE-----
Generated at Sun Jul 20 12:45:40 2025 by rpki-client