Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft
File: XrjFfXL3lG3XskIFmSiOyhU8twk.mft (raw, json)
Hash identifier: PeDlw+GbSnWmanFVQn50L4N9nG2TNlRpF44Vud7t/a0=
Subject key identifier: 32:D6:DF:0C:06:98:BD:E8:50:B6:1E:3D:63:D4:5F:EA:1E:83:60:70
Authority key identifier: 5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09
Certificate issuer: /CN=5EB8C57D72F7946DD7B2420599288ECA153CB709
Certificate serial: 012C
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft
Manifest number: 011D
Signing time: Sun 20 Jul 2025 06:39:14 +0000
Manifest this update: Sun 20 Jul 2025 06:39:13 +0000
Manifest next update: Sun 20 Jul 2025 12:39:13 +0000
Files and hashes: 1: -kvC1odFCKGfYwuP6kDSWCxa5cs.roa (hash: tnU1N852eOToaS3ilm0JWRHgYOaWT3bJAfStolGhwEI=)
2: 53WDhDUk0P7JcNoey2WXAIu3VAg.roa (hash: iOmb24loXZqCFP8DSE+C3NqDD3n3CuCWWhW3g3TUjRA=)
3: AasOdNmv0zHu4_c9-AzjNCkc0uI.roa (hash: N8YP934qLXcJhJar5NjswQEwIUS7svcuTKLe+uxGRAM=)
4: Fg1ErO9BHoKc_FII_rFTeLSw7po.roa (hash: bgExHcY9aLohokDPnLtJC0JNz4gv06ZKUqd8rHdr04s=)
5: HHip6xGy3KjEAMb_7wUxr4yVUQM.roa (hash: VpCNBNNgdvIc1ysg1ppt9KGLdfl82u7emNBYfkXFK/4=)
6: IYfAkO30FFNQ0NLxemsf-zs6iNA.roa (hash: zIOBveQUSlLmVJeKCea/oWuVgo0OjGpDfgdm4U8G8mE=)
7: NpRrsLdPP0YpI7jjQD34UQ5k4G8.roa (hash: 01WGFpA57IU1hSI2uRZXrj1/+8ZrG6EjbFFy2SBjfaM=)
8: PDflsZuvg8-6ap7hZ_S293XAEs8.roa (hash: g7HtnFG2KoFpC4ixAAbI9CS9N4IAR7RNGgtVlUBc1Ic=)
9: TRsllJSkEPmnLGRBl0ebrTHdqUE.roa (hash: T9rV/A+m2L9HkkPUmRQCNU45A/Mqdg6my4PcVgCno8E=)
10: XrjFfXL3lG3XskIFmSiOyhU8twk.crl (hash: fXP7TZsIN2/hjaGM7YazVMQLBTfABqXX4sO+J0pm3cg=)
11: cWImJWVYwJtT2DVZSvess2PB44g.roa (hash: pCWOv2JcjWI9GgoFfSf2ihbHQ73eRrecxsMYo6WEBk4=)
12: ghPaf9745tJbRM2YiaM4gRBGbIQ.roa (hash: c5pyLTuOnotoKT0S1QS5Zk7365IadK9YXzhpFYcEJ8U=)
13: pCIYmEUUf4wGyVIT-YYL3EWzhYE.roa (hash: VQI1jAs2W0S0lWYH2aeurU8HN6osLbzDnzztG7Iqt1U=)
14: wLBCQS1OcFKf5jwfCrO2RuLyKxg.roa (hash: zvKAVQ1/Ys9GSlKB3gUEGolh8vjjW8BwNg1SlqEWfKU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 300 (0x12c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5EB8C57D72F7946DD7B2420599288ECA153CB709
Validity
Not Before: Jul 20 06:39:13 2025 GMT
Not After : May 26 00:40:26 2026 GMT
Subject: CN=32D6DF0C0698BDE850B61E3D63D45FEA1E836070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2d:4c:89:ed:6d:7b:32:ef:bf:90:2a:17:2e:
d7:20:4d:c0:72:d0:75:d8:84:d8:45:99:0e:cb:09:
83:2b:65:1f:6c:e8:aa:9e:61:50:70:0b:cc:3d:a5:
51:af:6c:f9:47:a8:49:4d:2c:43:49:67:4d:1b:8f:
fb:aa:45:00:c6:15:a9:91:6a:70:2d:52:3e:7d:70:
94:31:c8:95:9f:8b:8e:cd:84:dc:85:55:bb:b5:47:
0a:f5:82:91:20:67:b7:b3:78:da:2b:39:b7:94:35:
92:7d:aa:b0:e8:72:b4:46:8e:40:de:69:38:4a:4b:
d1:8b:3a:e0:dc:4e:40:19:fa:87:be:45:5b:6d:22:
70:4a:7d:de:eb:a6:dc:72:51:25:08:a8:92:40:20:
4e:a0:21:69:4d:93:4e:34:8a:96:6a:90:c0:b5:cd:
c5:a6:71:50:0d:27:9b:d8:f4:e7:46:e5:61:c6:2e:
c6:86:b1:09:90:b3:1d:66:d9:9a:4f:73:2b:8c:c8:
f2:18:a3:f3:d2:58:96:50:91:5f:ec:bd:5f:6c:74:
e7:01:24:e1:bf:03:d9:47:c7:b2:60:6c:94:d6:7c:
51:e4:b2:79:ee:c8:58:7c:8c:d1:51:37:a6:a8:ff:
4d:77:e5:41:93:b6:d7:79:03:ff:69:72:81:2d:fa:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D6:DF:0C:06:98:BD:E8:50:B6:1E:3D:63:D4:5F:EA:1E:83:60:70
X509v3 Authority Key Identifier:
keyid:5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
31:47:5f:b3:6f:59:e8:80:70:c0:93:6f:b7:da:24:7a:71:82:
19:79:7b:24:11:13:21:c1:e3:62:66:c5:f0:16:b7:89:71:d3:
ee:47:bb:3b:9e:f0:93:b9:be:ce:64:f1:13:57:da:63:a6:05:
b3:1f:a4:c2:46:12:7e:7a:3d:68:bd:e2:cd:e0:79:97:89:ea:
a4:a8:23:de:0e:9c:f8:38:a4:3c:f1:fd:c4:45:96:b6:60:59:
70:2b:33:5b:84:db:5c:90:3e:d7:38:92:f5:02:fa:da:92:3d:
93:2b:be:b2:57:b9:cc:f0:8d:6e:a2:d5:d1:ab:19:3a:ae:fe:
03:29:d7:48:46:62:2b:07:35:32:74:fc:15:29:00:56:25:79:
0b:dc:36:c2:7b:cf:66:21:7c:cf:78:10:07:fb:04:4d:13:eb:
00:f6:e4:e1:cc:7c:fd:f4:22:04:18:29:9c:b8:6f:66:c5:10:
18:8b:9c:ce:10:1f:4b:15:38:54:ee:33:88:f8:98:11:be:7a:
76:0b:e8:e9:6c:10:3d:bb:72:60:b5:8c:9a:3f:82:de:b7:b0:
51:34:eb:2a:8e:c6:f5:5a:fb:f4:e9:9c:3a:b4:02:5e:be:80:
c9:99:3d:52:08:05:e4:d3:64:89:d6:58:ab:4c:99:e8:17:6a:
6e:0a:c7:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:53:31 2025 by rpki-client