Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
File: 5W2kwnXzzMktCGICoe2neD8MPQ0.mft (raw, json)
Hash identifier: W76eXBlcY3XotXNt4hJbgGC+jRyhV/PSs2ffRLcvRPg=
Subject key identifier: 0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A
Authority key identifier: E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
Certificate issuer: /CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Certificate serial: 209D
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
Manifest number: 2091
Signing time: Sat 29 Mar 2025 10:29:40 +0000
Manifest this update: Sat 29 Mar 2025 10:29:40 +0000
Manifest next update: Sat 29 Mar 2025 16:29:40 +0000
Files and hashes: 1: 0p4OnuorqVemfKiNz4jb1ANy_VQ.roa (hash: XoSGiFq8O6Q57IRgvp7PfupeNUc2/oaY3bSF8APHxvs=)
2: 5W2kwnXzzMktCGICoe2neD8MPQ0.crl (hash: uZucJRFI3eKINtl2k5acqjCW3HmjxNXPdCoN1KdxIYs=)
3: nupcYpRncbBv3-9dSwkTJgvZMyQ.roa (hash: 4MbXF1Yx0L8hJq971GxzZ01dBBGTfAi9S+9JFIVKcDg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8349 (0x209d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Validity
Not Before: Mar 29 10:29:40 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=0CCBB5AC4A4BDEAC4C767960951843F5247A1D7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:bf:55:b5:b2:2a:34:a3:a3:ce:e5:87:48:
68:50:c4:78:dd:a6:a2:af:92:c0:5f:7b:cf:2f:c8:
cc:60:4b:df:f7:3d:d8:34:9d:a0:ff:6b:f5:ea:e0:
e9:b9:61:d3:29:63:95:9c:fe:ae:d5:1c:af:5e:92:
5a:90:62:f7:01:56:0d:1a:76:da:ce:c0:30:a8:fa:
d3:4a:ca:2d:3a:3e:3b:97:80:03:58:33:2c:67:5b:
37:ac:97:0a:2e:fa:7a:07:d1:78:ef:5e:a0:e3:5b:
4d:cf:f6:6b:14:06:6f:56:00:5e:31:59:73:09:0b:
ca:af:d1:f7:a5:31:86:20:c8:48:f4:93:a3:25:3a:
15:b1:cb:21:e8:43:23:24:ca:f8:5d:c2:7d:f3:b7:
bc:96:ac:08:32:11:e6:bd:b8:80:37:f8:5e:ea:52:
5e:ad:14:78:d4:13:4a:d2:98:06:2c:ca:7b:99:ec:
7e:a8:e1:55:66:9c:a7:27:be:75:aa:43:e1:62:7a:
85:0c:e5:a5:de:b9:5e:94:9f:8d:5d:89:cf:57:21:
41:ff:9b:2c:0e:a0:5c:1d:de:17:ff:98:d0:39:e9:
a4:b5:1b:ac:25:ff:96:fe:12:1a:72:0d:86:5e:44:
0a:4a:41:7e:0a:39:67:d7:8f:07:9f:96:96:e7:1f:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A
X509v3 Authority Key Identifier:
keyid:E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
73:71:d0:31:d6:a3:5d:e3:f1:3e:3a:e1:aa:78:e8:79:fb:77:
ec:6e:e2:29:5f:11:72:37:b3:21:da:8a:7d:78:28:f4:87:18:
af:c7:a0:95:9b:1d:5c:d7:7d:66:3d:f0:c9:b5:55:24:61:5f:
65:61:78:16:7e:d1:8f:c5:c8:89:86:f5:3a:09:f4:cf:7c:23:
fe:1f:45:f7:8f:07:bb:62:f2:ff:54:4f:f7:ef:9c:77:43:9e:
ee:18:a9:70:a2:e9:42:26:46:bc:e7:e8:c1:e7:85:62:1d:0a:
98:cb:4a:0f:15:ea:c2:b4:70:20:43:7a:d9:23:fd:af:9b:51:
8d:19:70:d8:9c:e9:76:5d:66:82:e9:0e:bc:de:f4:66:24:8d:
72:b6:65:32:d4:bf:21:4d:bd:9a:45:83:c9:34:bd:c3:35:0c:
c6:64:5c:0f:79:ed:26:79:cb:fc:73:c3:b3:9d:da:00:cd:8f:
5e:a4:e1:66:0d:3b:b9:be:86:27:92:37:00:20:7c:dc:3e:61:
63:fa:23:85:13:18:be:f2:aa:6c:12:e8:ec:f4:4d:6d:be:68:
f3:3e:56:73:db:1f:9a:f6:43:f0:78:4a:40:7c:95:5d:17:9f:
b0:64:6a:b3:26:67:ea:ef:77:45:2d:f2:b3:1a:97:46:2b:9d:
62:40:b0:aa
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICIJ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTU2
REE0QzI3NUYzQ0NDOTJEMDg2MjAyQTFFREE3NzgzRjBDM0QwRDAeFw0yNTAzMjkx
MDI5NDBaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDBDQ0JCNUFDNEE0QkRF
QUM0Qzc2Nzk2MDk1MTg0M0Y1MjQ3QTFEN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDF6r9VtbIqNKOjzuWHSGhQxHjdpqKvksBfe88vyMxgS9/3Pdg0
naD/a/Xq4Om5YdMpY5Wc/q7VHK9eklqQYvcBVg0adtrOwDCo+tNKyi06PjuXgANY
MyxnWzeslwou+noH0XjvXqDjW03P9msUBm9WAF4xWXMJC8qv0felMYYgyEj0k6Ml
OhWxyyHoQyMkyvhdwn3zt7yWrAgyEea9uIA3+F7qUl6tFHjUE0rSmAYsynuZ7H6o
4VVmnKcnvnWqQ+FieoUM5aXeuV6Un41dic9XIUH/mywOoFwd3hf/mNA56aS1G6wl
/5b+EhpyDYZeRApKQX4KOWfXjweflpbnHxY7AgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQUDMu1rEpL3qxMdnlglRhD9SR6HXowHwYDVR0jBBgwFoAU5W2kwnXzzMktCGIC
oe2neD8MPQ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIx
LzVXMmt3blh6ek1rdENHSUNvZTJuZUQ4TVBRMC5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvNVcya3duWHp6TWt0Q0dJQ29lMm5lRDhNUFEwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIxLzVXMmt3blh6ek1rdENH
SUNvZTJuZUQ4TVBRMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQBzcdAx1qNd4/E+OuGqeOh5+3fsbuIpXxFyN7Mh2op9eCj0hxivx6CVmx1c131m
PfDJtVUkYV9lYXgWftGPxciJhvU6CfTPfCP+H0X3jwe7YvL/VE/375x3Q57uGKlw
oulCJka85+jB54ViHQqYy0oPFerCtHAgQ3rZI/2vm1GNGXDYnOl2XWaC6Q683vRm
JI1ytmUy1L8hTb2aRYPJNL3DNQzGZFwPee0mecv8c8OzndoAzY9epOFmDTu5voYn
kjcAIHzcPmFj+iOFExi+8qpsEujs9E1tvmjzPlZz2x+a9kPweEpAfJVdF5+wZGqz
Jmfq73dFLfKzGpdGK51iQLCq
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:38:57 2025 by rpki-client