Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft
File: DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft (raw, json)
Hash identifier: P8byVhkXzg3Fl07u8nLVK3rPI1HGaDvEDdAzARNwmg0=
Subject key identifier: 5C:64:82:33:F6:74:8F:CB:AC:F1:42:D4:6B:E9:6E:4F:03:96:2A:68
Authority key identifier: 0D:4A:3B:62:14:07:8C:A4:8E:66:F3:B8:C5:4F:1C:5F:DB:C9:DE:74
Certificate issuer: /CN=0D4A3B6214078CA48E66F3B8C54F1C5FDBC9DE74
Certificate serial: 1B24
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft
Manifest number: 1B24
Signing time: Sat 29 Mar 2025 08:28:05 +0000
Manifest this update: Sat 29 Mar 2025 08:28:05 +0000
Manifest next update: Sat 29 Mar 2025 14:28:05 +0000
Files and hashes: 1: DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.crl (hash: lzFeK70qbDTuB5Yd7HN4ftyhCgQDP0bB8hcpDA4Ick0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6948 (0x1b24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D4A3B6214078CA48E66F3B8C54F1C5FDBC9DE74
Validity
Not Before: Mar 29 08:28:05 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=5C648233F6748FCBACF142D46BE96E4F03962A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fe:be:28:bc:e8:92:51:ab:b2:1b:df:f9:86:
30:13:3c:b6:06:e1:aa:a8:65:99:2d:88:d4:d5:a3:
2c:7b:4d:1d:c6:03:6e:7b:0a:f9:be:24:d6:f4:e1:
6e:b9:73:f2:b9:37:30:dd:bc:a8:a5:ab:65:f0:72:
ce:42:40:b2:e4:57:09:70:ba:f6:02:ea:c4:5b:d3:
78:b0:f9:45:c2:43:eb:e5:6f:6f:ac:b9:71:a8:5f:
86:fb:bc:5a:40:fc:e7:34:21:96:7f:e9:53:a3:49:
69:21:42:4d:0e:f2:ec:b0:48:6c:4f:93:67:97:fc:
45:86:cd:e4:3b:13:a9:a7:46:9a:32:8c:44:3f:84:
21:18:21:86:30:e6:71:31:cc:47:0d:d7:8b:7c:a8:
9e:7d:70:74:56:4b:6c:92:9d:51:24:b9:7f:61:7f:
28:b6:69:8b:fe:29:be:33:2f:2a:87:b1:e5:76:a7:
8f:a3:72:7f:6d:e1:bf:8d:71:1b:dd:91:73:92:16:
3b:17:a6:7c:eb:47:39:aa:2b:65:0f:d0:94:82:33:
90:37:f4:32:d0:8c:72:86:17:12:4b:74:82:9b:32:
07:93:12:3b:c7:c5:84:c2:2f:71:47:aa:af:cc:4d:
17:7d:17:2f:12:e8:cb:84:ed:de:fd:d4:e1:03:45:
7b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:64:82:33:F6:74:8F:CB:AC:F1:42:D4:6B:E9:6E:4F:03:96:2A:68
X509v3 Authority Key Identifier:
keyid:0D:4A:3B:62:14:07:8C:A4:8E:66:F3:B8:C5:4F:1C:5F:DB:C9:DE:74
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/595/DUo7YhQHjKSOZvO4xU8cX9vJ3nQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
39:5c:00:de:c7:a2:f3:64:e0:ec:20:51:8e:ae:24:a1:de:f8:
77:70:43:d2:b1:cb:21:bb:7e:0e:3e:1f:96:56:d3:aa:66:93:
44:fd:0f:76:cf:65:dc:7f:d3:be:fa:7a:87:f8:22:20:3d:2a:
2f:d0:fa:70:6c:85:e9:24:11:4f:94:db:5f:33:36:e4:9c:50:
d7:87:7f:cf:e3:ae:66:78:ad:29:ce:b5:07:eb:39:b7:bb:bd:
04:b7:a8:d1:35:14:50:d3:dd:eb:86:fa:91:64:4d:a5:60:b1:
c2:37:0d:ba:52:63:f8:f4:2b:d1:a4:f0:88:a3:d6:c2:52:de:
1f:ab:56:38:6c:ab:dd:56:fe:9a:4a:de:5d:22:81:a1:47:a6:
56:f4:37:1e:99:72:bf:50:51:bd:fc:d0:5e:c3:4c:d7:5b:7a:
49:df:e5:89:ce:fb:a8:09:30:4f:df:ca:4d:7f:46:39:16:55:
88:59:4e:1d:a4:22:15:21:e0:2e:7b:a7:28:57:e5:56:e1:4c:
28:cc:f6:b5:7c:48:93:82:a7:4e:c1:6e:bd:80:f0:d4:e1:63:
d8:4d:25:96:30:80:cb:bf:3c:17:54:d1:eb:d9:8c:13:91:bb:
ef:d3:26:00:aa:f1:b1:ee:2f:44:95:3c:ff:9b:71:bb:41:2a:
ab:b2:7f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:27 2025 by rpki-client