Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
File: 5W2kwnXzzMktCGICoe2neD8MPQ0.mft (raw, json)
Hash identifier: V52mkRPj1TXgn+4jE6evgsw72aA6obz7LHKnuOwxjlQ=
Subject key identifier: 0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A
Authority key identifier: E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
Certificate issuer: /CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Certificate serial: 276B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
Manifest number: 275D
Signing time: Tue 17 Mar 2026 23:59:52 +0000
Manifest this update: Tue 17 Mar 2026 23:59:52 +0000
Manifest next update: Wed 18 Mar 2026 05:59:52 +0000
Files and hashes: 1: 5W2kwnXzzMktCGICoe2neD8MPQ0.crl (hash: uxyRisSYtPfb2hSiSL2a0TLv5DMtEmkOPdKwFbHaoac=)
2: YNqcA70QNDIL-1f-HxZVMTRIsBs.roa (hash: QFl0FbaZRakp+GDoHuDV/S/9eyi8/F7xjhbaAHfVv+o=)
3: _jo-OpB0a2QqJWmzSg_T-s-buhA.roa (hash: MVdXgaSblUpx++jZOW0IupDe0oNmWrAZls5J44Lx+jk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10091 (0x276b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D
Validity
Not Before: Mar 17 23:59:52 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=0CCBB5AC4A4BDEAC4C767960951843F5247A1D7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:bf:55:b5:b2:2a:34:a3:a3:ce:e5:87:48:
68:50:c4:78:dd:a6:a2:af:92:c0:5f:7b:cf:2f:c8:
cc:60:4b:df:f7:3d:d8:34:9d:a0:ff:6b:f5:ea:e0:
e9:b9:61:d3:29:63:95:9c:fe:ae:d5:1c:af:5e:92:
5a:90:62:f7:01:56:0d:1a:76:da:ce:c0:30:a8:fa:
d3:4a:ca:2d:3a:3e:3b:97:80:03:58:33:2c:67:5b:
37:ac:97:0a:2e:fa:7a:07:d1:78:ef:5e:a0:e3:5b:
4d:cf:f6:6b:14:06:6f:56:00:5e:31:59:73:09:0b:
ca:af:d1:f7:a5:31:86:20:c8:48:f4:93:a3:25:3a:
15:b1:cb:21:e8:43:23:24:ca:f8:5d:c2:7d:f3:b7:
bc:96:ac:08:32:11:e6:bd:b8:80:37:f8:5e:ea:52:
5e:ad:14:78:d4:13:4a:d2:98:06:2c:ca:7b:99:ec:
7e:a8:e1:55:66:9c:a7:27:be:75:aa:43:e1:62:7a:
85:0c:e5:a5:de:b9:5e:94:9f:8d:5d:89:cf:57:21:
41:ff:9b:2c:0e:a0:5c:1d:de:17:ff:98:d0:39:e9:
a4:b5:1b:ac:25:ff:96:fe:12:1a:72:0d:86:5e:44:
0a:4a:41:7e:0a:39:67:d7:8f:07:9f:96:96:e7:1f:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CB:B5:AC:4A:4B:DE:AC:4C:76:79:60:95:18:43:F5:24:7A:1D:7A
X509v3 Authority Key Identifier:
keyid:E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
96:ee:84:4b:e2:4a:b7:71:da:fb:1f:f0:24:35:cd:0d:2e:1a:
35:6a:49:d8:5e:36:20:af:82:f7:9b:1c:95:5c:db:d1:7d:94:
5e:bf:b4:df:83:a9:10:44:1c:81:f9:26:7c:24:43:46:f1:23:
77:e2:38:1c:ba:cd:0d:75:2d:e4:81:90:a5:0a:48:92:42:f5:
2a:32:84:10:ef:22:08:4e:69:b5:00:b2:1e:57:b8:8a:26:40:
77:41:e2:ad:88:14:c5:82:8c:9b:cd:59:ec:03:1a:5d:24:48:
e0:86:d6:5c:af:90:b6:fe:d5:01:9c:0b:a5:b8:2f:32:aa:f7:
54:d8:de:c5:5e:ac:b0:3c:b1:4c:a3:d6:20:c0:3d:55:88:c4:
fd:6e:56:41:8d:eb:fc:e9:93:7e:24:e3:a7:8f:90:46:ab:b5:
5c:b7:4c:a8:f6:33:71:38:15:12:9b:89:02:94:df:e7:54:87:
01:4b:1d:f6:ab:d9:75:85:42:8a:05:0c:f7:a1:dc:30:16:f6:
2c:4b:76:ad:82:77:ff:82:8f:11:ea:c9:dc:86:05:9c:93:b5:
ec:79:31:08:c9:9f:4f:ef:b2:cb:94:40:3b:5a:41:89:cd:2d:
e7:db:fc:79:ce:81:37:8b:a5:3c:d8:2e:5f:a6:5f:98:7f:dc:
36:08:03:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:22:56 2026 by rpki-client