Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.mft
File: 2GueAukE5bR2WU2yt5eONcp8HW4.mft (raw, json)
Hash identifier: yONC6uvuWUnaMYTETi8bODKJSQv06Sv0BmYB+6M3kOQ=
Subject key identifier: 63:61:AC:F5:C7:06:11:74:05:73:5D:A1:DB:C1:45:84:1F:E7:E8:CF
Authority key identifier: D8:6B:9E:02:E9:04:E5:B4:76:59:4D:B2:B7:97:8E:35:CA:7C:1D:6E
Certificate issuer: /CN=D86B9E02E904E5B476594DB2B7978E35CA7C1D6E
Certificate serial: 02FA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2GueAukE5bR2WU2yt5eONcp8HW4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.mft
Manifest number: 02FA
Signing time: Thu 05 Jun 2025 16:44:17 +0000
Manifest this update: Thu 05 Jun 2025 16:44:17 +0000
Manifest next update: Thu 05 Jun 2025 22:44:17 +0000
Files and hashes: 1: 2GueAukE5bR2WU2yt5eONcp8HW4.crl (hash: CxJkgw7HJwSq8aL5KgWuysxzihfO2ywJ8nrVE4PWK6A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 762 (0x2fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D86B9E02E904E5B476594DB2B7978E35CA7C1D6E
Validity
Not Before: Jun 5 16:44:17 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=6361ACF5C706117405735DA1DBC145841FE7E8CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6d:e1:1e:1c:50:f8:51:6d:8b:dd:6b:57:64:
02:42:4e:11:f9:95:bd:ef:6b:7c:45:0b:94:45:98:
60:af:b4:58:f3:95:57:ec:e9:f3:ef:7f:be:ec:65:
09:bb:56:07:6b:63:d2:22:37:c8:7b:26:fc:6a:56:
f2:14:58:79:6d:9a:7b:0a:32:a7:bb:e9:f9:d9:3d:
99:2c:c4:b5:5e:98:3b:8b:0d:42:9e:dd:2b:6e:ed:
1a:25:c8:6b:60:d4:dc:4a:9d:31:54:c8:a4:cf:e5:
ba:a0:2c:59:d8:a8:fc:9c:f4:a6:62:61:cf:a1:0e:
ab:d6:04:30:a4:6d:a5:68:1e:71:d2:69:1e:59:ec:
2e:28:43:1a:4a:63:af:b8:8d:52:3e:17:4c:30:13:
08:98:a7:0e:83:e9:8f:e5:b7:07:33:d9:d1:e3:93:
43:31:e1:96:6d:00:ba:7d:94:b7:58:48:30:ec:f3:
3b:7c:b1:9a:bf:d9:c3:ea:b2:3f:54:ba:c0:7c:12:
7b:2a:64:6e:fc:6c:17:9c:21:82:4a:1a:84:47:a7:
fc:35:c5:77:df:81:e9:32:09:3d:c9:19:fd:9a:a2:
88:f3:b6:19:1b:4e:36:87:59:7f:f3:6a:ab:b4:62:
99:0c:ff:7a:6b:fc:bc:b9:06:81:c7:b1:35:fa:54:
eb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:61:AC:F5:C7:06:11:74:05:73:5D:A1:DB:C1:45:84:1F:E7:E8:CF
X509v3 Authority Key Identifier:
keyid:D8:6B:9E:02:E9:04:E5:B4:76:59:4D:B2:B7:97:8E:35:CA:7C:1D:6E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2GueAukE5bR2WU2yt5eONcp8HW4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3346/2GueAukE5bR2WU2yt5eONcp8HW4.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
80:e0:d0:a9:10:38:dc:51:f1:7c:69:a3:72:62:ef:7a:39:b9:
2c:30:4b:54:cf:89:39:38:9b:0b:60:1c:4c:eb:52:df:a2:d0:
50:07:ce:a4:be:3a:29:a1:e7:72:c2:60:ea:22:9e:55:f4:b4:
d5:69:96:47:97:eb:8d:c5:46:a5:c4:a7:75:7e:b8:0e:4f:97:
64:9d:98:6f:2d:ff:e0:2f:2b:23:a4:52:a4:b6:cf:12:fa:fc:
07:ef:75:1e:2e:f9:51:9a:31:da:0d:7d:6d:fc:81:b6:86:3b:
93:13:d9:0f:df:98:2f:ca:bd:1a:41:02:91:d4:b9:77:ac:21:
87:ae:d1:56:e4:a5:48:8c:20:6b:83:d0:31:30:90:03:b7:2d:
a6:8a:03:a6:c9:3b:a2:a4:4e:f4:0d:32:31:4e:0b:f5:a1:91:
93:0b:0d:91:42:6f:56:57:2c:62:68:9d:22:4d:7b:38:04:49:
75:92:4a:b7:4a:97:69:f9:66:a3:97:23:48:f0:43:c8:96:93:
8f:a4:33:ca:89:f0:5b:bf:e3:f0:67:d2:9e:50:b5:77:ad:37:
83:3a:c5:19:95:53:5d:da:b3:c3:6b:be:29:c9:82:82:7f:1a:
95:41:c7:ab:15:3c:18:08:a0:ab:64:01:d7:a1:da:89:48:f6:
5a:c1:1e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 19:59:13 2025 by rpki-client