Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.mft
File: NYyXKg0525XbRFMiZtreBGCHlEo.mft (raw, json)
Hash identifier: bwjk7ueOav07nsXNyQ9DP48+woWUAScvoXg7rnR46Gk=
Subject key identifier: F4:A7:32:D7:4A:F3:C4:25:61:51:DA:AD:CE:FF:1F:E5:67:7C:D0:44
Authority key identifier: 35:8C:97:2A:0D:39:DB:95:DB:44:53:22:66:DA:DE:04:60:87:94:4A
Certificate issuer: /CN=358C972A0D39DB95DB44532266DADE046087944A
Certificate serial: 04E2
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/NYyXKg0525XbRFMiZtreBGCHlEo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.mft
Manifest number: 04E2
Signing time: Fri 21 Mar 2025 00:28:12 +0000
Manifest this update: Fri 21 Mar 2025 00:28:12 +0000
Manifest next update: Fri 21 Mar 2025 06:28:12 +0000
Files and hashes: 1: NYyXKg0525XbRFMiZtreBGCHlEo.crl (hash: Ilrv8eRXVJfgoG3yXa1z/NcQThDRM4DvHl32OhiKVvA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1250 (0x4e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358C972A0D39DB95DB44532266DADE046087944A
Validity
Not Before: Mar 21 00:28:12 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=F4A732D74AF3C4256151DAADCEFF1FE5677CD044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:80:e1:9a:e6:f3:63:a4:9e:12:1a:e5:cc:b6:
35:ed:87:85:47:9d:13:b4:c6:d8:9c:e9:b9:6c:d8:
80:2e:84:c1:3e:a5:e2:2a:48:e9:77:50:d8:4c:bd:
4c:41:8b:21:49:c4:88:1f:ba:ae:8a:e1:a1:4c:24:
0c:f5:ac:75:ce:04:46:63:83:eb:f8:72:50:8f:ad:
21:65:02:01:44:2b:c3:00:b7:e8:20:76:ba:28:4a:
fd:46:ee:19:b8:b1:44:a8:81:9f:aa:f8:d9:67:fb:
2f:e4:17:dc:ae:7a:95:9c:22:36:e0:d9:da:74:09:
c2:20:ed:db:22:20:fa:3c:e5:a7:93:70:a2:01:e2:
0d:4e:50:35:aa:85:86:73:39:7c:14:49:ed:2f:94:
1f:2c:a6:20:89:ea:cf:b8:54:35:19:18:3f:ef:8c:
73:58:f7:15:a5:19:ef:4b:38:6b:35:d2:96:35:58:
8a:c5:4d:2f:8e:d9:1d:71:1f:10:5a:d0:5f:3e:bb:
fb:65:14:85:84:a6:7d:99:c0:6e:ea:f5:46:be:be:
b1:94:17:09:ea:29:16:59:e4:8b:f8:2a:2e:2c:69:
2b:d7:4c:6a:fd:c2:0b:5e:96:24:2e:f4:cd:0d:03:
0e:78:67:86:94:64:de:fa:94:71:e2:04:a8:39:62:
d2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A7:32:D7:4A:F3:C4:25:61:51:DA:AD:CE:FF:1F:E5:67:7C:D0:44
X509v3 Authority Key Identifier:
keyid:35:8C:97:2A:0D:39:DB:95:DB:44:53:22:66:DA:DE:04:60:87:94:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/NYyXKg0525XbRFMiZtreBGCHlEo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3304/NYyXKg0525XbRFMiZtreBGCHlEo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4a:41:cb:c4:4c:5f:76:7a:08:12:cc:bd:22:1a:d0:8e:23:08:
ff:79:9a:0b:de:e7:38:40:60:5f:79:9c:1a:50:b2:c0:8e:63:
55:fa:b9:91:30:5e:f9:2e:a1:f1:ff:da:a1:65:74:67:ad:27:
93:30:ec:de:4f:80:bd:54:5a:62:2d:14:d7:85:be:a2:68:d0:
80:e5:47:04:72:25:13:06:56:dc:b6:a3:68:2c:d7:c7:5c:b8:
c3:64:3c:3e:4f:a8:1d:b8:3d:e0:dc:2c:3f:b8:74:1c:ac:38:
8c:31:af:4c:5a:6e:7f:c5:f2:38:da:66:92:f0:09:1c:d0:c4:
9a:ec:b5:95:19:29:44:61:1f:ac:f0:1f:07:4a:65:7a:d8:6d:
99:80:89:65:ca:30:09:20:d2:e6:b4:5d:c0:ae:43:9e:28:68:
a4:3b:41:e9:ee:4a:20:7f:f1:70:f2:75:0f:7a:f6:08:5a:20:
e5:9c:cd:46:2e:6a:7f:5f:5a:3e:3b:27:c5:58:ba:39:0f:51:
09:ce:b5:8b:67:77:34:4e:1f:75:cf:4b:cc:06:b8:3c:b3:09:
1a:73:80:cb:21:5e:9d:b2:ae:67:08:67:64:f2:d5:ac:d2:4b:
33:04:b8:32:11:ad:93:f2:65:72:7f:90:67:5e:24:0b:a5:1f:
25:9d:1b:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:45:41 2025 by rpki-client