Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft
File: th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft (raw, json)
Hash identifier: 9gKSOFZv31V3GZRYoqaS+0MU5ZVbnMaJyfvsNqBXS4c=
Subject key identifier: 18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B
Authority key identifier: B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC
Certificate issuer: /CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC
Certificate serial: 01AD
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft
Manifest number: 01AD
Signing time: Sat 29 Mar 2025 10:31:13 +0000
Manifest this update: Sat 29 Mar 2025 10:31:13 +0000
Manifest next update: Sat 29 Mar 2025 16:31:13 +0000
Files and hashes: 1: th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl (hash: PuzN220xgCa28Z2zBKmvWJ0YZ3KzSS2Idv/7uHWl4nE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429 (0x1ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B61E9138CFEB7D89AB8CF54276ED29B3D808E0BC
Validity
Not Before: Mar 29 10:31:13 2025 GMT
Not After : Jan 2 02:11:12 2026 GMT
Subject: CN=186E78B45B3C95AF28F99FC95D6D94940A37551B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1b:c6:9f:2c:76:70:3d:16:0a:60:0c:28:9d:
0b:6e:02:15:0e:70:04:d0:29:47:03:3c:0b:c3:d4:
2e:d2:75:0e:ae:c0:63:70:93:c2:34:17:5a:cc:ce:
15:f6:7a:c8:84:9a:ac:9e:6b:a3:69:2c:43:28:77:
d9:af:a0:84:40:eb:b2:39:05:b9:b8:ba:c6:a3:9d:
02:aa:02:c0:33:24:9c:05:b7:eb:04:7a:98:0e:0a:
f3:2d:a9:c4:59:52:36:21:d2:c0:39:47:e2:13:81:
57:60:4f:a8:7b:6c:4e:f8:26:f8:15:f8:aa:b1:21:
91:c7:63:e8:23:65:39:20:4e:1a:ff:13:66:69:bf:
f6:22:44:57:bf:17:8c:bd:e4:d1:51:45:63:7a:e3:
5c:cd:2f:bc:fa:33:3f:9b:12:3e:2c:80:d9:3d:64:
81:00:bc:71:04:f9:4c:3d:00:8f:dd:ee:5a:83:0a:
84:34:cd:b6:39:52:8e:bf:af:6a:c4:4a:86:24:17:
fd:b6:cf:8a:46:d6:c9:1e:12:b4:95:2e:54:a3:10:
33:fa:36:8e:c2:4a:a8:d5:ac:0e:ef:73:3f:d1:1c:
ed:44:b6:f5:80:fa:02:da:cf:06:f8:a4:cd:0f:3b:
b1:27:10:ec:52:61:b6:bc:94:7a:f8:00:32:6f:fd:
37:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6E:78:B4:5B:3C:95:AF:28:F9:9F:C9:5D:6D:94:94:0A:37:55:1B
X509v3 Authority Key Identifier:
keyid:B6:1E:91:38:CF:EB:7D:89:AB:8C:F5:42:76:ED:29:B3:D8:08:E0:BC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/th6ROM_rfYmrjPVCdu0ps9gI4Lw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3345/th6ROM_rfYmrjPVCdu0ps9gI4Lw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
11:49:61:e9:53:99:75:c6:49:d1:ee:af:be:74:b4:9d:87:dd:
b4:32:a9:0a:61:80:38:4b:2f:ed:15:a9:93:f1:32:da:2c:ab:
79:8e:40:fc:b4:59:4e:28:aa:5e:8b:a9:dc:c9:02:18:b8:00:
41:4a:e3:30:d7:0e:22:99:be:18:51:c5:77:13:80:98:3a:25:
08:aa:6e:5b:65:cc:42:45:33:a2:15:33:13:f1:1b:5c:4d:d6:
2a:2c:52:55:74:25:ad:c7:1a:f8:b3:fd:ef:17:fe:4e:46:0f:
4d:6c:00:3d:1c:9a:ff:7c:09:44:f2:d1:90:db:51:2a:90:0f:
64:90:ab:41:56:d9:8d:10:8b:0e:b4:0a:84:10:71:27:fe:82:
32:ee:6e:51:87:67:81:29:3e:8e:08:12:f6:6e:8d:fb:28:35:
f0:5d:34:c6:42:48:59:31:61:16:22:65:e2:6b:fb:f4:95:2f:
68:c7:85:15:22:9c:8a:f1:53:14:20:aa:2a:4c:fd:f3:94:04:
4d:33:98:e9:fe:42:54:44:1c:d4:27:29:29:90:7d:0f:6f:54:
1e:d8:9f:d1:a0:42:b6:50:f4:81:34:70:ae:52:5e:c0:36:4b:
07:e1:42:f1:32:06:b7:20:11:76:d2:71:f8:4c:a5:1e:1f:5e:
47:de:68:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:01:04 2025 by rpki-client