Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
File: 5W2kwnXzzMktCGICoe2neD8MPQ0.mft (raw, json)
Hash identifier: 3G5Raxc6O8J6sm11tEX1mY9MrfJfgBlWWhDvgS7L2Xg=
Subject key identifier: 0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A
Authority key identifier: E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
Certificate issuer: /CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Certificate serial: 272F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
Manifest number: 2721
Signing time: Thu 05 Mar 2026 18:59:29 +0000
Manifest this update: Thu 05 Mar 2026 18:59:29 +0000
Manifest next update: Fri 06 Mar 2026 00:59:29 +0000
Files and hashes: 1: 5W2kwnXzzMktCGICoe2neD8MPQ0.crl (hash: C1Y70sKElWxOTIzJZ7Oz2H0mbS9hDa4sET9CB521yHc=)
2: YNqcA70QNDIL-1f-HxZVMTRIsBs.roa (hash: QFl0FbaZRakp+GDoHuDV/S/9eyi8/F7xjhbaAHfVv+o=)
3: _jo-OpB0a2QqJWmzSg_T-s-buhA.roa (hash: MVdXgaSblUpx++jZOW0IupDe0oNmWrAZls5J44Lx+jk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10031 (0x272f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Validity
Not Before: Mar 5 18:59:29 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=0CCBB5AC4A4BDEAC4C767960951843F5247A1D7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:bf:55:b5:b2:2a:34:a3:a3:ce:e5:87:48:
68:50:c4:78:dd:a6:a2:af:92:c0:5f:7b:cf:2f:c8:
cc:60:4b:df:f7:3d:d8:34:9d:a0:ff:6b:f5:ea:e0:
e9:b9:61:d3:29:63:95:9c:fe:ae:d5:1c:af:5e:92:
5a:90:62:f7:01:56:0d:1a:76:da:ce:c0:30:a8:fa:
d3:4a:ca:2d:3a:3e:3b:97:80:03:58:33:2c:67:5b:
37:ac:97:0a:2e:fa:7a:07:d1:78:ef:5e:a0:e3:5b:
4d:cf:f6:6b:14:06:6f:56:00:5e:31:59:73:09:0b:
ca:af:d1:f7:a5:31:86:20:c8:48:f4:93:a3:25:3a:
15:b1:cb:21:e8:43:23:24:ca:f8:5d:c2:7d:f3:b7:
bc:96:ac:08:32:11:e6:bd:b8:80:37:f8:5e:ea:52:
5e:ad:14:78:d4:13:4a:d2:98:06:2c:ca:7b:99:ec:
7e:a8:e1:55:66:9c:a7:27:be:75:aa:43:e1:62:7a:
85:0c:e5:a5:de:b9:5e:94:9f:8d:5d:89:cf:57:21:
41:ff:9b:2c:0e:a0:5c:1d:de:17:ff:98:d0:39:e9:
a4:b5:1b:ac:25:ff:96:fe:12:1a:72:0d:86:5e:44:
0a:4a:41:7e:0a:39:67:d7:8f:07:9f:96:96:e7:1f:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A
X509v3 Authority Key Identifier:
keyid:E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:13:bd:2f:b9:fa:57:b7:d9:87:52:1e:88:f0:7f:d9:78:f8:
77:12:26:d2:79:42:4f:fd:a4:75:17:7c:68:da:e8:28:15:6e:
d8:c6:97:0c:46:25:b2:1c:fb:ee:20:b2:8d:43:d0:55:61:bd:
57:ea:bd:b7:1f:46:ec:ad:02:f8:a2:38:26:8b:10:54:87:f6:
bf:bf:8d:9a:75:32:00:62:08:c3:e0:8b:8a:3c:49:6b:04:67:
e4:7d:b1:52:5e:ee:d1:3c:5a:f2:6d:f8:e9:e4:72:17:15:77:
78:3c:d1:f2:6f:c9:ce:89:93:95:fa:10:8f:17:24:bb:3e:dc:
cb:ac:ac:fc:29:71:22:53:a8:db:c4:19:68:a9:17:53:5c:0e:
3d:53:d7:d7:f2:38:00:3e:dd:68:05:41:f7:a6:57:1b:a9:4c:
2c:f0:cc:88:25:23:d1:c4:df:88:80:a4:6d:c1:84:b1:f7:4d:
ba:4f:d5:74:87:06:bd:9a:72:f6:46:ed:95:00:44:01:f3:10:
b3:23:53:ef:67:f5:c5:5c:98:c1:25:7b:31:45:03:77:c4:ba:
df:71:26:2f:bf:b1:40:57:fe:bc:05:38:5b:e9:12:fc:02:a8:
f8:93:74:cc:90:0b:90:a3:cc:66:84:8b:ad:bb:e6:8b:4d:9a:
ca:91:42:b5
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICJy8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTU2
REE0QzI3NUYzQ0NDOTJEMDg2MjAyQTFFREE3NzgzRjBDM0QwRDAeFw0yNjAzMDUx
ODU5MjlaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKDBDQ0JCNUFDNEE0QkRF
QUM0Qzc2Nzk2MDk1MTg0M0Y1MjQ3QTFEN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDF6r9VtbIqNKOjzuWHSGhQxHjdpqKvksBfe88vyMxgS9/3Pdg0
naD/a/Xq4Om5YdMpY5Wc/q7VHK9eklqQYvcBVg0adtrOwDCo+tNKyi06PjuXgANY
MyxnWzeslwou+noH0XjvXqDjW03P9msUBm9WAF4xWXMJC8qv0felMYYgyEj0k6Ml
OhWxyyHoQyMkyvhdwn3zt7yWrAgyEea9uIA3+F7qUl6tFHjUE0rSmAYsynuZ7H6o
4VVmnKcnvnWqQ+FieoUM5aXeuV6Un41dic9XIUH/mywOoFwd3hf/mNA56aS1G6wl
/5b+EhpyDYZeRApKQX4KOWfXjweflpbnHxY7AgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUDMu1rEpL3qxMdnlglRhD9SR6HXowHwYDVR0jBBgwFoAU5W2kwnXzzMktCGIC
oe2neD8MPQ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIx
LzVXMmt3blh6ek1rdENHSUNvZTJuZUQ4TVBRMC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNVcya3duWHp6TWt0Q0dJQ29lMm5lRDhNUFEwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIxLzVXMmt3blh6ek1rdENH
SUNvZTJuZUQ4TVBRMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQBOE70vufpXt9mHUh6I8H/ZePh3EibSeUJP/aR1F3xo2ugoFW7YxpcMRiWyHPvu
ILKNQ9BVYb1X6r23H0bsrQL4ojgmixBUh/a/v42adTIAYgjD4IuKPElrBGfkfbFS
Xu7RPFrybfjp5HIXFXd4PNHyb8nOiZOV+hCPFyS7PtzLrKz8KXEiU6jbxBloqRdT
XA49U9fX8jgAPt1oBUH3plcbqUws8MyIJSPRxN+IgKRtwYSx9026T9V0hwa9mnL2
Ru2VAEQB8xCzI1PvZ/XFXJjBJXsxRQN3xLrfcSYvv7FAV/68BThb6RL8Aqj4k3TM
kAuQo8xmhIutu+aLTZrKkUK1
-----END CERTIFICATE-----
Generated at Thu Mar 5 23:54:55 2026 by rpki-client