Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft
File: UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft (raw, json)
Hash identifier: DkCKDiM/y/ACWRmMP4zyzkE0izAv1RHjOE7oVCbI/7s=
Subject key identifier: 1B:D3:26:D0:FA:2F:91:2E:0B:55:2A:A4:38:0F:6D:E7:47:45:FF:AD
Authority key identifier: 51:C4:C1:D5:2D:2E:3F:E6:BF:3D:9B:F1:B3:D6:92:4B:49:C5:D4:E5
Certificate issuer: /CN=51C4C1D52D2E3FE6BF3D9BF1B3D6924B49C5D4E5
Certificate serial: 5071
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UcTB1S0uP-a_PZvxs9aSS0nF1OU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft
Manifest number: 5069
Signing time: Wed 18 Mar 2026 01:00:38 +0000
Manifest this update: Wed 18 Mar 2026 01:00:38 +0000
Manifest next update: Wed 18 Mar 2026 07:00:38 +0000
Files and hashes: 1: IhwD_HdHHb_P7IOTPaMoIKmOuu4.roa (hash: 258bd+fJcXM+4xojCm+tVOzormKUhrA/sZBMd+vBO7I=)
2: UcTB1S0uP-a_PZvxs9aSS0nF1OU.crl (hash: 8plbjZCtTWBjJsapbAcSY8F6sviKSa+QrPJ+zWeFUVA=)
3: qX5cQ_scD2KsfTjXg6_DAZuGgjU.roa (hash: JPCd0lAC1nVCp1iRe4HYcMffLrAXhU3q/4vz7zChxh0=)
4: tPYxTqS-GcLLoILoTuk3kWzd_Nc.roa (hash: ZmtyINcvvpD9HByrAKW/1iOK2POP7KN/fiFNjbfmL/U=)
5: zFIWySm5N6ElnRfGZaoHHUzjEMw.roa (hash: hh9SyLQOaJgdlKBVLpshJotMHHVhkvRmHVzX7K0/wbA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20593 (0x5071)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51C4C1D52D2E3FE6BF3D9BF1B3D6924B49C5D4E5
Validity
Not Before: Mar 18 01:00:38 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=1BD326D0FA2F912E0B552AA4380F6DE74745FFAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f8:93:8d:9e:c6:83:7b:17:ea:21:78:60:96:
4a:66:cb:6f:af:86:75:80:39:a9:92:32:09:71:30:
72:53:bb:10:a3:d9:d2:6a:1b:e5:8e:d1:d3:8f:28:
13:26:02:5f:3a:bf:80:3f:1e:ba:b6:31:7a:33:fd:
d0:77:c9:17:a2:5e:f2:85:f5:a9:9e:20:93:fc:fb:
be:48:9e:f4:d8:18:26:cf:d4:7d:ed:54:89:68:52:
ac:21:2c:2c:1a:32:38:1e:51:a0:29:61:df:b9:3c:
50:14:21:eb:c2:5c:04:5c:c0:f5:04:31:3d:f4:2c:
f0:7b:4e:21:49:63:d1:29:3c:b6:49:a7:52:41:b0:
4c:38:1a:96:a4:b4:b4:3b:2e:5b:3a:ce:fd:93:e6:
e8:c2:87:33:db:c4:80:29:6d:6f:13:65:dd:ef:2d:
b2:a0:76:09:54:0f:d4:7e:12:f7:9b:9e:2a:da:06:
ee:71:b9:62:78:d2:80:3e:ac:cd:a6:94:77:c5:d3:
e0:8a:4a:a4:25:3e:3b:f4:7f:c7:d5:22:47:cf:d5:
8d:c4:1b:d5:bc:42:84:11:d8:67:ad:6d:3b:c6:4d:
8c:50:02:c7:f7:f2:47:a2:09:34:38:a3:86:76:9a:
20:a8:17:06:f1:35:4e:ab:1b:9d:8c:f5:48:28:5d:
76:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D3:26:D0:FA:2F:91:2E:0B:55:2A:A4:38:0F:6D:E7:47:45:FF:AD
X509v3 Authority Key Identifier:
keyid:51:C4:C1:D5:2D:2E:3F:E6:BF:3D:9B:F1:B3:D6:92:4B:49:C5:D4:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UcTB1S0uP-a_PZvxs9aSS0nF1OU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/399/UcTB1S0uP-a_PZvxs9aSS0nF1OU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0d:f8:6f:2d:b6:66:c8:bf:57:89:74:a8:eb:c0:8f:49:98:d2:
30:35:21:18:70:fe:bb:8d:72:bb:83:c4:5c:18:32:29:8e:54:
74:1e:92:b5:82:55:ed:5c:68:9b:d6:ef:a7:fc:b0:22:72:1b:
c3:64:2c:bc:06:53:53:ef:3d:e1:a7:a5:24:90:5f:5c:6e:62:
f7:1b:28:39:0a:bd:cf:b0:b5:b3:74:89:b0:6d:97:62:97:09:
d0:89:5e:a6:b8:83:30:c0:2d:78:f9:da:69:ce:d2:e3:16:e7:
42:09:de:9e:8f:5e:ed:5d:af:e4:9f:f2:40:f8:ae:2b:c0:7a:
d4:de:d2:36:81:9d:e8:96:d5:0c:4d:3f:5f:0f:fa:bd:eb:f9:
7a:d9:df:24:ac:f0:ec:68:0d:11:ee:f3:ca:0f:a0:cc:a6:1c:
87:3d:43:0f:d3:5b:de:cd:f6:4e:c9:76:f8:8b:3e:5a:c0:59:
96:ab:06:7a:7f:64:f6:f0:ae:d5:e4:80:03:9e:e9:b4:f4:1a:
f4:9f:cb:e9:08:f4:dc:be:58:ac:37:64:25:b8:93:1f:16:9e:
8a:9a:ec:5d:51:ab:82:7d:03:63:49:0c:b1:c4:c4:9f:11:51:
bc:af:1b:8e:4f:5e:d7:3a:36:64:cd:c5:a7:7c:8e:49:62:e5:
6a:a6:06:bc
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICUHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTFD
NEMxRDUyRDJFM0ZFNkJGM0Q5QkYxQjNENjkyNEI0OUM1RDRFNTAeFw0yNjAzMTgw
MTAwMzhaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDFCRDMyNkQwRkEyRjkx
MkUwQjU1MkFBNDM4MEY2REU3NDc0NUZGQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDE+JONnsaDexfqIXhglkpmy2+vhnWAOamSMglxMHJTuxCj2dJq
G+WO0dOPKBMmAl86v4A/Hrq2MXoz/dB3yReiXvKF9ameIJP8+75InvTYGCbP1H3t
VIloUqwhLCwaMjgeUaApYd+5PFAUIevCXARcwPUEMT30LPB7TiFJY9EpPLZJp1JB
sEw4GpaktLQ7Lls6zv2T5ujChzPbxIApbW8TZd3vLbKgdglUD9R+EvebniraBu5x
uWJ40oA+rM2mlHfF0+CKSqQlPjv0f8fVIkfP1Y3EG9W8QoQR2GetbTvGTYxQAsf3
8keiCTQ4o4Z2miCoFwbxNU6rG52M9UgoXXaRAgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUG9Mm0PovkS4LVSqkOA9t50dF/60wHwYDVR0jBBgwFoAUUcTB1S0uP+a/PZvx
s9aSS0nF1OUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzk5
L1VjVEIxUzB1UC1hX1BadnhzOWFTUzBuRjFPVS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvVWNUQjFTMHVQLWFfUFp2eHM5YVNTMG5GMU9VLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzk5L1VjVEIxUzB1UC1hX1Ba
dnhzOWFTUzBuRjFPVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQAN+G8ttmbIv1eJdKjrwI9JmNIwNSEYcP67jXK7g8RcGDIpjlR0HpK1glXtXGib
1u+n/LAichvDZCy8BlNT7z3hp6UkkF9cbmL3Gyg5Cr3PsLWzdImwbZdilwnQiV6m
uIMwwC14+dppztLjFudCCd6ej17tXa/kn/JA+K4rwHrU3tI2gZ3oltUMTT9fD/q9
6/l62d8krPDsaA0R7vPKD6DMphyHPUMP01vezfZOyXb4iz5awFmWqwZ6f2T28K7V
5IADnum09Br0n8vpCPTcvlisN2QluJMfFp6KmuxdUauCfQNjSQyxxMSfEVG8rxuO
T17XOjZkzcWnfI5JYuVqpga8
-----END CERTIFICATE-----
Generated at Mon Jun 22 06:29:12 2026 by rpki-client