Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft
File: XrjFfXL3lG3XskIFmSiOyhU8twk.mft (raw, json)
Hash identifier: IeG4Io1tXKKnQa5yVEEpic6AvaRps1AFO/IlxQy+zlM=
Subject key identifier: 32:D6:DF:0C:06:98:BD:E8:50:B6:1E:3D:63:D4:5F:EA:1E:83:60:70
Authority key identifier: 5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09
Certificate issuer: /CN=5EB8C57D72F7946DD7B2420599288ECA153CB709
Certificate serial: 43
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft
Manifest number: 34
Signing time: Tue 03 Jun 2025 19:38:36 +0000
Manifest this update: Tue 03 Jun 2025 19:38:36 +0000
Manifest next update: Wed 04 Jun 2025 01:38:36 +0000
Files and hashes: 1: -kvC1odFCKGfYwuP6kDSWCxa5cs.roa (hash: tnU1N852eOToaS3ilm0JWRHgYOaWT3bJAfStolGhwEI=)
2: 53WDhDUk0P7JcNoey2WXAIu3VAg.roa (hash: iOmb24loXZqCFP8DSE+C3NqDD3n3CuCWWhW3g3TUjRA=)
3: AasOdNmv0zHu4_c9-AzjNCkc0uI.roa (hash: N8YP934qLXcJhJar5NjswQEwIUS7svcuTKLe+uxGRAM=)
4: Fg1ErO9BHoKc_FII_rFTeLSw7po.roa (hash: bgExHcY9aLohokDPnLtJC0JNz4gv06ZKUqd8rHdr04s=)
5: HHip6xGy3KjEAMb_7wUxr4yVUQM.roa (hash: VpCNBNNgdvIc1ysg1ppt9KGLdfl82u7emNBYfkXFK/4=)
6: IYfAkO30FFNQ0NLxemsf-zs6iNA.roa (hash: zIOBveQUSlLmVJeKCea/oWuVgo0OjGpDfgdm4U8G8mE=)
7: NpRrsLdPP0YpI7jjQD34UQ5k4G8.roa (hash: 01WGFpA57IU1hSI2uRZXrj1/+8ZrG6EjbFFy2SBjfaM=)
8: PDflsZuvg8-6ap7hZ_S293XAEs8.roa (hash: g7HtnFG2KoFpC4ixAAbI9CS9N4IAR7RNGgtVlUBc1Ic=)
9: TRsllJSkEPmnLGRBl0ebrTHdqUE.roa (hash: T9rV/A+m2L9HkkPUmRQCNU45A/Mqdg6my4PcVgCno8E=)
10: XrjFfXL3lG3XskIFmSiOyhU8twk.crl (hash: urzdWyPrc2sdoJH4uJoKeIJe4bo1g0l1Ffpjz+KLNc4=)
11: cWImJWVYwJtT2DVZSvess2PB44g.roa (hash: pCWOv2JcjWI9GgoFfSf2ihbHQ73eRrecxsMYo6WEBk4=)
12: ghPaf9745tJbRM2YiaM4gRBGbIQ.roa (hash: c5pyLTuOnotoKT0S1QS5Zk7365IadK9YXzhpFYcEJ8U=)
13: pCIYmEUUf4wGyVIT-YYL3EWzhYE.roa (hash: VQI1jAs2W0S0lWYH2aeurU8HN6osLbzDnzztG7Iqt1U=)
14: wLBCQS1OcFKf5jwfCrO2RuLyKxg.roa (hash: zvKAVQ1/Ys9GSlKB3gUEGolh8vjjW8BwNg1SlqEWfKU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67 (0x43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5EB8C57D72F7946DD7B2420599288ECA153CB709
Validity
Not Before: Jun 3 19:38:36 2025 GMT
Not After : May 26 00:40:26 2026 GMT
Subject: CN=32D6DF0C0698BDE850B61E3D63D45FEA1E836070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2d:4c:89:ed:6d:7b:32:ef:bf:90:2a:17:2e:
d7:20:4d:c0:72:d0:75:d8:84:d8:45:99:0e:cb:09:
83:2b:65:1f:6c:e8:aa:9e:61:50:70:0b:cc:3d:a5:
51:af:6c:f9:47:a8:49:4d:2c:43:49:67:4d:1b:8f:
fb:aa:45:00:c6:15:a9:91:6a:70:2d:52:3e:7d:70:
94:31:c8:95:9f:8b:8e:cd:84:dc:85:55:bb:b5:47:
0a:f5:82:91:20:67:b7:b3:78:da:2b:39:b7:94:35:
92:7d:aa:b0:e8:72:b4:46:8e:40:de:69:38:4a:4b:
d1:8b:3a:e0:dc:4e:40:19:fa:87:be:45:5b:6d:22:
70:4a:7d:de:eb:a6:dc:72:51:25:08:a8:92:40:20:
4e:a0:21:69:4d:93:4e:34:8a:96:6a:90:c0:b5:cd:
c5:a6:71:50:0d:27:9b:d8:f4:e7:46:e5:61:c6:2e:
c6:86:b1:09:90:b3:1d:66:d9:9a:4f:73:2b:8c:c8:
f2:18:a3:f3:d2:58:96:50:91:5f:ec:bd:5f:6c:74:
e7:01:24:e1:bf:03:d9:47:c7:b2:60:6c:94:d6:7c:
51:e4:b2:79:ee:c8:58:7c:8c:d1:51:37:a6:a8:ff:
4d:77:e5:41:93:b6:d7:79:03:ff:69:72:81:2d:fa:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D6:DF:0C:06:98:BD:E8:50:B6:1E:3D:63:D4:5F:EA:1E:83:60:70
X509v3 Authority Key Identifier:
keyid:5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:a6:3a:45:cc:6c:d0:0c:26:76:67:21:93:d3:39:3f:fb:10:
94:57:e5:50:4b:b6:cf:fc:bf:c0:85:28:bb:88:67:31:13:99:
66:30:af:fe:d1:44:3f:32:d8:48:e7:a1:ec:9b:00:ad:bc:37:
fd:60:ed:76:ea:58:62:31:0a:61:fa:a2:3f:60:a3:60:fb:1e:
34:75:2f:2e:44:24:4d:45:17:33:4e:df:89:eb:e7:87:a7:67:
28:42:ad:02:1e:1d:45:6b:d2:ad:40:80:4d:a4:3e:a6:4b:2d:
c1:5e:e5:0f:24:ee:46:e2:3b:e9:6d:23:22:ba:e9:2d:a0:6e:
f9:c1:1b:b9:78:9f:65:6c:d4:bf:94:7b:af:cb:e9:d7:e4:11:
21:39:78:e1:05:28:68:0f:70:ad:0f:6c:e0:92:42:70:80:d6:
85:16:ab:ea:7c:fd:b7:6c:8d:7c:fa:b4:a0:c4:2d:2e:fe:e3:
b4:9e:39:fc:73:a2:b9:0a:dc:cc:0f:52:36:68:1c:e0:e1:15:
fd:e6:96:db:d4:49:31:06:5b:c5:8a:7b:0b:09:61:11:d7:71:
a4:c5:8e:83:a7:5a:20:9e:e1:35:ea:5c:7a:1a:bf:1f:d7:c0:
d5:10:24:03:65:d6:f4:4c:05:31:23:1e:56:cc:41:84:27:41:
74:b0:44:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 02:10:17 2025 by rpki-client