Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft
File: aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft (raw, json)
Hash identifier: Lde6QucLPlUtvKib540wg5CvdoCqvp8Q7K17r3M1xmM=
Subject key identifier: AA:54:C7:33:A6:46:C8:4D:43:40:0E:F5:B3:B5:FE:12:DF:33:E3:CE
Authority key identifier: 69:74:47:C3:97:D1:8C:9E:11:0B:24:E5:05:C1:14:6C:F1:3E:A8:71
Certificate issuer: /CN=697447C397D18C9E110B24E505C1146CF13EA871
Certificate serial: 031C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft
Manifest number: 031B
Signing time: Wed 18 Mar 2026 01:01:06 +0000
Manifest this update: Wed 18 Mar 2026 01:01:06 +0000
Manifest next update: Wed 18 Mar 2026 07:01:06 +0000
Files and hashes: 1: BZUi2Cy-x-5xY8XLQ7H-sa3JIuI.roa (hash: r4NPIAsWOPVI4/TlBnHCHN0/vB3fsl6rRgv0C6aogiE=)
2: aXRHw5fRjJ4RCyTlBcEUbPE-qHE.crl (hash: sEl6SEmXjZjrjtU7DXY/ciu8QoffqNnxeAw7Rq+q5fw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 796 (0x31c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=697447C397D18C9E110B24E505C1146CF13EA871
Validity
Not Before: Mar 18 01:01:06 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=AA54C733A646C84D43400EF5B3B5FE12DF33E3CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:19:f4:45:c8:e1:99:dc:ac:f8:b0:ab:32:f1:
ec:35:60:05:c1:82:85:2a:68:82:d4:ce:52:46:71:
df:ff:e3:66:54:ed:49:c4:c0:a8:e2:b7:d5:49:a2:
f6:aa:aa:ca:24:79:c9:3f:7c:88:59:e6:b3:37:b9:
95:fb:98:63:34:0b:d2:a0:8c:b0:19:73:71:3a:bf:
a5:b8:31:77:d3:16:14:3c:4a:26:e2:ab:4b:00:d4:
ef:ae:07:ee:49:34:7c:d3:28:4c:44:47:97:7a:24:
e0:dc:e8:51:bf:1b:10:74:c1:05:45:09:11:73:9d:
40:cf:c3:82:09:97:11:12:9f:89:af:f1:9f:16:f1:
0b:6f:60:17:70:07:7f:af:9b:67:58:22:e4:13:26:
7d:42:a0:eb:48:55:9f:55:bc:0e:40:5e:aa:a0:80:
64:65:f7:c0:7e:88:55:98:8d:bd:13:90:59:54:10:
34:50:03:45:73:b3:4d:40:15:9c:28:aa:fc:88:a7:
c5:e6:35:82:8f:fc:90:48:77:d7:16:14:70:16:9d:
d7:38:43:89:0f:d7:4b:17:d5:25:53:9b:0a:6c:b2:
bd:08:f4:49:2f:16:d4:24:63:2d:9c:db:1d:56:18:
8b:bf:92:fb:e5:da:38:c1:ac:5c:a1:67:f7:e0:2f:
c8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:54:C7:33:A6:46:C8:4D:43:40:0E:F5:B3:B5:FE:12:DF:33:E3:CE
X509v3 Authority Key Identifier:
keyid:69:74:47:C3:97:D1:8C:9E:11:0B:24:E5:05:C1:14:6C:F1:3E:A8:71
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:19:3a:86:3b:c8:82:62:9c:1b:41:cd:1c:40:2e:5b:47:89:
a6:25:70:42:05:79:d5:51:04:51:20:65:ad:77:03:31:94:77:
77:3a:3a:a6:bd:0a:42:e6:71:3c:20:d4:8f:0e:62:8e:81:f0:
25:7c:dd:bc:de:42:d1:c0:ab:a0:37:01:1f:e6:be:2d:d6:89:
26:87:a9:66:ce:c6:a1:cf:65:df:6e:64:6e:fb:74:db:35:77:
92:9d:82:3e:80:e2:38:db:9a:2c:6c:08:2a:65:99:05:62:33:
03:b7:9b:dd:7d:87:85:55:b3:b2:61:64:d1:d4:57:5f:f8:ab:
eb:c4:e3:4c:2c:2e:72:af:cd:3f:79:b7:b6:2f:1f:5e:65:fc:
bb:2d:c2:13:80:cd:2a:a1:a5:2b:50:91:1b:06:b3:24:b1:4e:
6f:bf:91:f3:73:23:ae:6b:54:32:23:c6:32:2c:12:16:6e:9e:
c2:82:03:4e:87:47:70:21:93:9e:d7:fb:59:60:63:9a:4c:70:
ac:5e:e3:09:3c:6b:2d:0a:6e:03:a1:f2:de:d8:2b:11:08:10:
6d:cc:c0:7d:16:03:c7:5a:7f:f4:c2:66:ec:3e:50:2e:9a:b4:
99:5b:6a:be:b8:9a:cd:25:45:90:15:02:b2:19:da:ec:94:96:
d1:e8:44:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 06:25:33 2026 by rpki-client