Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft
File: kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft (raw, json)
Hash identifier: nCV9AhhMsCkCArqzqyhBQYqLXPTjoDbEr+ImX1hP9VI=
Subject key identifier: E9:FC:E1:1C:80:A9:EC:0A:48:C7:6A:8E:AA:5D:DC:AC:B7:47:36:1D
Authority key identifier: 91:5A:80:02:D6:77:FC:16:3B:74:75:9C:1C:BF:3E:6F:C2:1F:34:5D
Certificate issuer: /CN=915A8002D677FC163B74759C1CBF3E6FC21F345D
Certificate serial: 4518
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft
Manifest number: 4518
Signing time: Fri 04 Apr 2025 14:08:28 +0000
Manifest this update: Fri 04 Apr 2025 14:08:28 +0000
Manifest next update: Fri 04 Apr 2025 20:08:28 +0000
Files and hashes: 1: kVqAAtZ3_BY7dHWcHL8-b8IfNF0.crl (hash: gM2ZRU6S5cJSl8ziA5Z3nUVi0CZ10ZN7c0cJTRGSuUk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17688 (0x4518)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=915A8002D677FC163B74759C1CBF3E6FC21F345D
Validity
Not Before: Apr 4 14:08:28 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=E9FCE11C80A9EC0A48C76A8EAA5DDCACB747361D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:e4:46:b4:dd:13:5d:c9:8c:9c:ee:e1:b5:
23:9e:c3:76:6b:82:86:e3:91:63:cb:a9:25:99:d2:
ef:0c:df:59:09:a1:4f:6f:97:d9:b7:f2:dd:d0:58:
a4:f6:5b:31:e0:40:d5:8b:f7:e1:82:dd:ad:bc:81:
93:21:69:eb:80:a7:b1:42:87:0b:0f:83:e6:c7:19:
e2:f9:ca:c4:dd:fc:90:9e:b3:71:27:04:5b:f6:06:
e4:1b:54:5a:b3:a3:c0:95:33:a0:1a:24:11:0d:68:
27:ba:db:a8:23:95:96:e9:1d:8c:74:76:03:97:86:
b2:b4:b6:70:31:6b:15:ad:6f:72:21:51:7c:b6:6d:
60:a2:e0:6d:21:25:5c:e7:4d:15:94:c1:0b:20:f8:
ac:9a:78:09:c5:99:8b:66:a6:7e:58:f0:44:bb:ac:
71:29:3d:09:22:ec:56:3b:52:ec:29:7e:6c:e3:3c:
81:42:40:6e:21:8d:76:4c:2c:8e:da:b2:0b:1d:fb:
58:f8:a5:d4:88:57:3d:f6:11:88:b1:60:5e:f7:f8:
e1:53:83:64:6d:a3:c9:35:bb:9b:d5:f2:8a:10:76:
4f:45:77:e3:e3:c9:6f:3b:7f:79:f7:71:b5:1e:0c:
7e:74:52:12:c7:b2:5f:a7:b3:19:1a:29:fb:6a:fc:
da:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:FC:E1:1C:80:A9:EC:0A:48:C7:6A:8E:AA:5D:DC:AC:B7:47:36:1D
X509v3 Authority Key Identifier:
keyid:91:5A:80:02:D6:77:FC:16:3B:74:75:9C:1C:BF:3E:6F:C2:1F:34:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/531/kVqAAtZ3_BY7dHWcHL8-b8IfNF0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
07:7f:ed:da:b8:ec:af:61:77:90:91:da:58:7a:3a:e2:82:ab:
d0:d0:3c:7b:ce:6c:99:1f:79:99:76:94:1a:cd:94:f0:22:94:
2f:f9:58:bb:bb:de:03:c9:56:02:16:c3:96:6c:8f:ec:e2:43:
57:0f:53:0f:05:a2:8b:52:4a:51:a4:90:46:73:c6:d3:f9:72:
08:cb:19:5e:c4:26:88:8d:dc:c2:94:c4:cd:74:6c:c8:38:38:
b2:6e:19:5c:ad:a1:79:05:10:74:49:79:d4:10:aa:f5:6c:ec:
f2:a7:bf:2b:b6:34:49:2d:e9:5b:71:81:e6:2f:47:91:60:12:
3b:8d:f1:68:c6:a8:7d:7a:5c:34:5a:12:a0:ca:8c:91:ab:a4:
d7:fb:36:7d:7c:df:b3:c3:eb:f0:a6:f4:34:24:ad:ce:c0:e2:
80:26:c5:32:8c:35:53:82:c8:b9:3b:78:7d:24:28:8a:d8:d7:
1e:ec:ae:9a:dc:0a:f1:1e:75:a4:4b:75:24:54:17:36:d7:3f:
1d:ba:8d:7b:07:dd:af:f4:8f:60:5b:cd:5c:be:2c:5b:05:41:
21:5c:bb:76:bc:20:85:28:8a:d8:3a:37:2e:18:f7:44:20:19:
cc:29:f2:ac:83:89:ed:43:a0:a8:a6:66:cf:98:2d:3e:25:ca:
b9:30:40:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:12:52 2025 by rpki-client