Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft
File: cROxlpJLKFBkXlV_4f_EwNArHRk.mft (raw, json)
Hash identifier: w7nn4Qt0wyfcx7GM8gZTuHDYa+mACPwnyJEDkLqgpnw=
Subject key identifier: C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06
Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19
Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19
Certificate serial: 067B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft
Manifest number: 067B
Signing time: Sat 19 Jul 2025 17:09:34 +0000
Manifest this update: Sat 19 Jul 2025 17:09:34 +0000
Manifest next update: Sat 19 Jul 2025 23:09:34 +0000
Files and hashes: 1: cROxlpJLKFBkXlV_4f_EwNArHRk.crl (hash: lLm/lkUYVdbUeP+g49rd3Olm45JKVRtGLZWGmCncvrA=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1659 (0x67b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19
Validity
Not Before: Jul 19 17:09:34 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=C9E8CD681001D59A71F920C6960D52270BAF6506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:82:95:a5:8a:a7:2b:c0:59:48:1b:b1:9f:2c:
a8:80:c6:ce:66:0a:59:59:b9:4f:8c:9a:cf:e6:14:
5e:56:cd:46:38:3c:a9:c7:b0:ec:fb:88:06:6e:ab:
6c:de:67:92:a5:87:c3:d5:b3:8d:90:40:06:e1:32:
62:0c:14:9b:5a:8a:e9:02:fe:b0:4f:f4:ec:7c:39:
cb:22:39:16:46:c3:10:e1:70:84:db:a6:55:9f:bf:
e7:18:73:83:bd:06:01:d0:b9:3a:83:d1:4c:a9:f7:
e0:fb:ac:65:fd:09:e1:80:39:92:91:d5:80:5e:75:
b3:e0:85:4d:b4:91:ad:bc:f3:e0:31:cc:8d:19:3e:
05:4a:77:9b:b6:a0:3e:cc:72:0a:72:1e:18:68:ce:
cb:69:16:29:8a:88:c1:bb:27:e5:c7:45:ab:41:7d:
78:17:cc:ab:c7:58:7f:a9:aa:24:e4:62:df:b9:f6:
40:74:86:8f:22:0d:57:f6:c4:dd:62:2a:91:f3:a5:
61:35:38:52:90:dc:49:4c:26:0b:d8:2e:82:59:8b:
5f:2c:22:d2:c1:16:30:6e:f5:74:b4:39:1a:98:9d:
cf:51:59:3f:0a:9f:35:7d:d2:f5:c4:f0:28:7f:0c:
37:fa:04:91:f7:42:52:34:ce:46:ac:3e:50:01:6a:
16:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E8:CD:68:10:01:D5:9A:71:F9:20:C6:96:0D:52:27:0B:AF:65:06
X509v3 Authority Key Identifier:
keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:80:69:9e:f4:aa:42:35:fc:d8:10:61:aa:13:e5:f5:eb:1f:
a6:77:7c:5d:60:0d:69:52:50:5f:1b:1a:c3:a7:8e:bd:92:14:
1b:a1:c1:f6:72:06:c5:d7:62:c7:2e:a0:b5:f8:e0:c8:94:84:
fd:60:99:93:4a:3c:36:fa:2f:7a:d2:d4:0c:b9:4c:52:73:16:
5e:9a:ec:70:e5:9c:84:ba:a0:79:3e:69:34:76:1e:27:3c:99:
4e:ec:c1:a1:9e:b0:32:94:15:99:5f:55:5a:19:c6:4b:47:c4:
54:73:fa:1f:71:b9:54:c8:33:60:5e:13:1d:00:0e:d5:63:fc:
fe:fa:19:31:d5:c2:ec:77:b7:ca:c5:5a:49:4a:17:85:1c:25:
58:4d:37:14:7e:1c:0a:11:21:7c:be:e0:50:39:b0:86:dc:8b:
6d:f8:20:b0:9b:55:21:dc:a4:64:f3:6b:1e:09:ce:b0:ff:43:
0e:54:69:38:5b:e1:c4:21:69:4d:41:f1:a2:62:1a:42:a9:7e:
f5:66:89:a7:5f:d5:91:ec:68:08:45:7d:b4:be:bd:e2:b5:23:
77:1d:5d:d7:ec:e4:95:ad:57:e9:d9:16:54:e7:a6:31:da:ec:
bb:fd:2f:f4:67:99:72:4b:03:01:82:3c:a2:97:c4:0b:9c:e9:
80:70:47:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 19 23:13:16 2025 by rpki-client