Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft
File: TPCRRt5gTA5ELVbGj8hsxQQArSE.mft (raw, json)
Hash identifier: KMtKF0lYk3wz7KU17oHVRgtcRVjM4cFB4+deCMBA9AA=
Subject key identifier: 3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A
Authority key identifier: 4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21
Certificate issuer: /CN=4CF09146DE604C0E442D56C68FC86CC50400AD21
Certificate serial: 0792
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft
Manifest number: 0788
Signing time: Thu 05 Jun 2025 16:41:37 +0000
Manifest this update: Thu 05 Jun 2025 16:41:37 +0000
Manifest next update: Thu 05 Jun 2025 22:41:37 +0000
Files and hashes: 1: CFAswhBnRmzys5EG_RnDZoJ67xU.roa (hash: 9J3EVHTS0qReXMU+XLU0kajttFwzT6Li9MKj9+Ovv00=)
2: TPCRRt5gTA5ELVbGj8hsxQQArSE.crl (hash: Cp3INuJqS40AH1ovjz1POsoBa/9AKUR1wz5q+CKCZNk=)
3: bGeGgRXJn_fKcQJGoNpT45uuMbM.roa (hash: 4rs03AqtGSIGgkcXeqLIzwXtuAsdWOh+07JYHmmqQtk=)
4: eFFBI7HyMfmSB3sdZ1kyhUhegUw.roa (hash: RbWIfTvN4OmqTp0iOV9zT07xIH4JEHgni/OSWa9BjAc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1938 (0x792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4CF09146DE604C0E442D56C68FC86CC50400AD21
Validity
Not Before: Jun 5 16:41:37 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=3DE44607C7258196BFB2E4514EF522AC033E120A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ad:57:8b:9f:48:fe:72:52:d5:33:80:7f:8a:
c7:e8:8e:f7:d8:2a:b2:4f:bd:6d:ca:0f:94:85:2d:
55:99:15:1d:fc:b6:eb:26:3c:1c:fa:15:e5:3c:d2:
c9:bf:b1:b2:dc:61:69:84:79:cc:d0:8b:43:f7:23:
20:f7:b8:92:c2:dc:a6:24:c4:70:f6:64:4d:a0:05:
ef:64:1c:04:e5:60:85:72:53:ed:11:83:30:7b:c7:
db:b9:83:a9:17:42:7a:c0:3b:5d:89:30:1c:1f:3d:
9a:c5:42:5c:8f:ec:1a:32:ca:a5:25:db:7d:43:8e:
d3:6c:4e:66:4b:55:ac:c5:a9:09:bd:d9:0e:2a:1c:
9f:44:80:a8:b1:3c:30:48:46:da:79:b8:bb:12:c2:
f4:b3:ff:5e:86:a7:32:db:11:b3:cc:d4:36:86:81:
85:73:50:fb:d2:4d:c8:f6:7f:08:52:89:3b:cb:87:
47:ab:f3:ac:7c:4d:73:bb:e0:16:b5:ae:92:36:5a:
d6:8d:7e:7b:1c:b9:16:22:b9:50:89:c9:de:9d:bf:
37:0a:05:2b:2f:60:ec:fc:bc:d0:56:5d:7f:d5:d7:
84:60:66:31:df:0c:7c:41:05:b4:f3:9d:42:26:7d:
e6:20:17:d2:d9:ac:43:6c:95:9c:a5:df:c4:5c:92:
86:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E4:46:07:C7:25:81:96:BF:B2:E4:51:4E:F5:22:AC:03:3E:12:0A
X509v3 Authority Key Identifier:
keyid:4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
00:73:6e:69:b7:a5:de:d9:ab:eb:f1:4d:ac:54:9e:bc:a0:cd:
73:68:43:7a:01:43:c9:3c:22:42:7e:23:cd:5d:3c:39:06:01:
6c:d5:9e:64:86:58:94:1b:40:b5:0d:ff:24:49:f1:d1:0a:42:
61:1d:e8:3a:3c:1f:23:e9:49:dd:ba:92:82:c0:63:21:d9:42:
c1:c2:e8:81:e0:15:6a:49:d2:a2:94:6a:10:b6:27:0f:2d:44:
06:1c:8e:a7:d9:f5:7f:97:e0:b1:e7:9f:29:ad:ef:78:99:ab:
18:83:36:3b:ba:89:91:78:db:44:f5:6b:38:70:97:13:30:c8:
e0:6c:07:22:bf:2c:b5:1b:6e:e8:63:53:ab:62:2b:52:d9:49:
04:c7:55:67:56:49:f1:3b:78:23:ff:d9:4a:67:b5:f0:1e:e5:
78:e0:cb:41:81:4c:78:22:f1:18:05:00:32:82:42:9b:46:2f:
9c:a0:30:59:a4:28:5b:80:8c:ca:e5:8b:5b:fc:64:ce:18:3f:
87:06:1f:5a:ad:5b:f8:c7:14:1e:53:3b:93:d3:ea:2b:ec:60:
b9:2a:e9:5e:31:2a:c5:c1:17:55:98:67:09:b9:d5:28:b8:2e:
c0:04:c6:e5:46:47:26:72:48:a6:c1:20:01:0d:a1:5b:b9:fc:
b4:7a:c2:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 20:05:48 2025 by rpki-client