Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft
File: qP3wu66meVNpOJbHY_Ep2jtBg-s.mft (raw, json)
Hash identifier: Uv/NVDY1l2kS0rWRgucWzY9oGWBST7cdmTWQl07yTqo=
Subject key identifier: 81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3
Authority key identifier: A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB
Certificate issuer: /CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB
Certificate serial: 03FD
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft
Manifest number: 03F4
Signing time: Wed 18 Mar 2026 01:00:44 +0000
Manifest this update: Wed 18 Mar 2026 01:00:44 +0000
Manifest next update: Wed 18 Mar 2026 07:00:44 +0000
Files and hashes: 1: 3gLZcEB9b6CcG88DthuUvQzuMng.roa (hash: sTik18vjb2qG/NYnXK3uG9tY/DL8xWE+DymUfLAIlnE=)
2: F0kSGnAIagivcV8g5cUdsyi-f3E.roa (hash: UcsToYzGinH+LaJVhXhSb5v+g/uBThplPaSlnEqw7FM=)
3: RXJSANHbZrdpPxa1bsPmTvjO39Q.roa (hash: 95CUp/VfY7PSkOcAscjkDxH3xv1Hjai/9RJJgyl0Hqs=)
4: WC1nHAg0yIPcV3WIpCTCZDMOWmM.roa (hash: aYTc6ZXigj8FqXcD/bFRpNLNct9j8zBZNjugMTj8hX8=)
5: qP3wu66meVNpOJbHY_Ep2jtBg-s.crl (hash: ZE96UubJqm0hkEXTSJtJyRRMUhv3raBf5yu06+APm7Y=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1021 (0x3fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB
Validity
Not Before: Mar 18 01:00:44 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=81423BA77AB7087249D68E2498CC5E6A24720AE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a7:40:c5:41:bc:f5:4e:9b:62:5d:a9:4a:2d:
3f:e6:d7:ce:78:ff:60:eb:5a:fc:45:18:10:55:5e:
31:48:05:87:80:17:55:a9:d6:e3:b2:13:d4:23:9e:
f0:f4:51:84:ae:af:07:95:68:71:29:21:c8:1f:ac:
40:95:69:f7:c8:cd:b5:9f:bd:cf:9d:60:1b:03:8e:
6e:12:c1:53:bd:31:df:c5:b5:e0:67:df:39:04:60:
25:5f:3c:a5:5b:d9:61:9b:01:1f:4c:7e:ee:a7:00:
e3:07:dd:69:a7:83:82:e5:99:f9:57:24:6d:1d:a9:
5b:0f:ee:45:21:3f:b4:b1:d9:d5:72:c3:6e:59:19:
b9:d0:b7:46:65:b9:04:eb:e6:9d:d7:c8:10:1e:66:
a2:ad:3f:07:5b:2f:a8:74:79:1a:9a:7b:fd:1e:7f:
f2:a4:33:61:4a:4f:ad:8b:30:d4:b5:fe:a2:77:b0:
de:f2:85:76:d2:1d:33:e1:08:f4:b5:9d:53:5e:3a:
ae:67:ec:cb:a2:d3:39:ad:47:b5:1c:c4:90:a5:ea:
55:4e:24:55:e5:1a:e2:e2:0f:e3:77:2c:3f:4d:e6:
50:99:a8:4b:bb:fd:81:0d:12:db:31:1e:5c:20:69:
ba:16:09:96:4a:0a:3c:f3:f1:c2:8b:2f:fc:7e:b9:
1a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:42:3B:A7:7A:B7:08:72:49:D6:8E:24:98:CC:5E:6A:24:72:0A:E3
X509v3 Authority Key Identifier:
keyid:A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b0:be:73:27:06:61:82:79:d7:4a:c1:d1:c7:0f:80:cb:27:
f4:a6:ea:c5:1e:22:81:19:b7:ac:a8:7c:21:ef:9f:b1:df:13:
2a:f8:15:c4:9e:82:93:50:19:ab:d6:71:d8:3a:2b:6e:06:9c:
b4:67:b0:0f:44:e2:2d:3e:d4:35:8a:dc:02:0b:1e:27:64:de:
92:bc:15:10:59:ab:58:59:6a:28:77:f0:17:e2:2c:29:b9:36:
22:75:a8:e5:c7:37:da:74:25:34:d1:7c:95:f4:38:88:a3:01:
64:b9:44:22:66:da:98:60:52:d0:0d:1a:f6:5d:36:95:0e:ca:
97:38:9c:29:de:6c:50:5b:4e:fd:14:6b:c2:90:fc:20:d4:d7:
f2:40:25:7e:70:72:1a:f8:8c:88:72:5e:16:d0:f7:ab:5d:32:
cc:9a:30:d4:b7:2a:ba:fc:99:88:96:24:00:3e:c9:83:56:23:
41:ed:ec:ef:5e:0a:94:31:f8:66:10:b0:1b:a8:1f:bb:32:82:
2b:ed:3f:02:1e:ec:b2:fc:4a:78:32:4f:40:f2:bd:e0:99:16:
87:d8:5c:e9:3a:70:00:38:0c:4f:2d:ae:15:c4:76:9f:91:5a:
99:3e:b6:03:a2:01:03:d1:e3:47:9a:58:c0:af:9f:f2:9b:6b:
78:62:5a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:35:37 2026 by rpki-client