Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft
File: qP3wu66meVNpOJbHY_Ep2jtBg-s.mft (raw, json)
Hash identifier: P+d1CMyPnbB8RmGwXRqbTFZCUekNW+nra/5zYtqcgB4=
Subject key identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3
Authority key identifier: A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB
Certificate issuer: /CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB
Certificate serial: 012E
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft
Manifest number: 0125
Signing time: Thu 23 Oct 2025 12:34:41 +0000
Manifest this update: Thu 23 Oct 2025 12:34:41 +0000
Manifest next update: Thu 23 Oct 2025 18:34:41 +0000
Files and hashes: 1: 3gLZcEB9b6CcG88DthuUvQzuMng.roa (hash: sTik18vjb2qG/NYnXK3uG9tY/DL8xWE+DymUfLAIlnE=)
2: F0kSGnAIagivcV8g5cUdsyi-f3E.roa (hash: UcsToYzGinH+LaJVhXhSb5v+g/uBThplPaSlnEqw7FM=)
3: RXJSANHbZrdpPxa1bsPmTvjO39Q.roa (hash: 95CUp/VfY7PSkOcAscjkDxH3xv1Hjai/9RJJgyl0Hqs=)
4: WC1nHAg0yIPcV3WIpCTCZDMOWmM.roa (hash: aYTc6ZXigj8FqXcD/bFRpNLNct9j8zBZNjugMTj8hX8=)
5: qP3wu66meVNpOJbHY_Ep2jtBg-s.crl (hash: 1cE5oib8M9Ej23ue2NJMXu3v+zjW/PNvPVo4HU+GYAI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302 (0x12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB
Validity
Not Before: Oct 23 12:34:41 2025 GMT
Not After : Oct 23 03:01:03 2026 GMT
Subject: CN=81423BA77AB7087249D68E2498CC5E6A24720AE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a7:40:c5:41:bc:f5:4e:9b:62:5d:a9:4a:2d:
3f:e6:d7:ce:78:ff:60:eb:5a:fc:45:18:10:55:5e:
31:48:05:87:80:17:55:a9:d6:e3:b2:13:d4:23:9e:
f0:f4:51:84:ae:af:07:95:68:71:29:21:c8:1f:ac:
40:95:69:f7:c8:cd:b5:9f:bd:cf:9d:60:1b:03:8e:
6e:12:c1:53:bd:31:df:c5:b5:e0:67:df:39:04:60:
25:5f:3c:a5:5b:d9:61:9b:01:1f:4c:7e:ee:a7:00:
e3:07:dd:69:a7:83:82:e5:99:f9:57:24:6d:1d:a9:
5b:0f:ee:45:21:3f:b4:b1:d9:d5:72:c3:6e:59:19:
b9:d0:b7:46:65:b9:04:eb:e6:9d:d7:c8:10:1e:66:
a2:ad:3f:07:5b:2f:a8:74:79:1a:9a:7b:fd:1e:7f:
f2:a4:33:61:4a:4f:ad:8b:30:d4:b5:fe:a2:77:b0:
de:f2:85:76:d2:1d:33:e1:08:f4:b5:9d:53:5e:3a:
ae:67:ec:cb:a2:d3:39:ad:47:b5:1c:c4:90:a5:ea:
55:4e:24:55:e5:1a:e2:e2:0f:e3:77:2c:3f:4d:e6:
50:99:a8:4b:bb:fd:81:0d:12:db:31:1e:5c:20:69:
ba:16:09:96:4a:0a:3c:f3:f1:c2:8b:2f:fc:7e:b9:
1a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3
X509v3 Authority Key Identifier:
keyid:A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
74:b8:01:33:1e:7a:ff:73:1a:a3:ef:6b:5b:ef:77:6f:4f:1b:
ab:20:36:30:94:a4:d9:87:17:92:48:80:2a:dd:b3:1a:f7:59:
79:27:5d:ec:a3:22:7a:c4:cf:2e:c1:fc:97:2c:4f:ca:b4:70:
a2:9a:14:ec:37:7b:b0:3c:05:8b:ba:30:a4:8d:16:88:01:81:
3b:84:14:9b:83:2d:02:c1:4c:63:1d:70:c6:c1:5b:eb:8f:47:
6a:30:6e:11:ae:82:d8:5a:a4:83:5c:42:5c:14:4e:83:99:92:
14:0a:f5:93:0b:52:a7:94:54:cf:9d:28:38:a6:1c:32:d4:4a:
b9:67:8e:7f:1c:ea:5c:89:42:a3:1e:a2:fc:11:12:8d:8b:b0:
f4:2c:bc:8d:91:4a:00:31:87:5b:82:e5:4a:2f:cb:86:de:57:
b4:c1:4c:c2:80:ba:a2:0d:e2:b6:f6:b6:d9:12:b8:9d:ab:9c:
78:7f:a6:18:f1:dd:a9:45:2c:b9:d9:35:58:38:6a:5a:be:5c:
60:97:2b:4c:2d:fe:bb:57:f1:4c:81:a0:73:fa:73:f5:2f:93:
95:c3:9d:5a:89:30:98:77:da:75:aa:34:64:1d:0d:5c:33:93:
87:c6:cd:f0:94:d9:f9:ac:09:93:86:1f:87:49:a1:55:d0:52:
cb:03:c8:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 16:20:46 2025 by rpki-client