Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft
File: 0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft (raw, json)
Hash identifier: ZhVDmUgPLOms9kxfQwM0wEJm8218CpOS00bufAsjNVQ=
Subject key identifier: EF:D8:DB:33:95:3B:C6:DC:71:7C:A6:7C:36:A6:4A:67:C3:6B:41:3B
Authority key identifier: D3:24:BB:3F:E5:C1:5A:2E:04:2A:63:2E:5A:23:59:D0:48:F0:4C:42
Certificate issuer: /CN=D324BB3FE5C15A2E042A632E5A2359D048F04C42
Certificate serial: 1D48
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft
Manifest number: 1D48
Signing time: Fri 04 Apr 2025 17:35:10 +0000
Manifest this update: Fri 04 Apr 2025 17:35:10 +0000
Manifest next update: Fri 04 Apr 2025 23:35:10 +0000
Files and hashes: 1: 0yS7P-XBWi4EKmMuWiNZ0EjwTEI.crl (hash: k7LQNbucQVt0+FwJ9B7E6uwbiJe3hFR4cwqdcb9txF4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7496 (0x1d48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D324BB3FE5C15A2E042A632E5A2359D048F04C42
Validity
Not Before: Apr 4 17:35:10 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=EFD8DB33953BC6DC717CA67C36A64A67C36B413B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:06:0e:21:8b:b1:ce:87:e9:a7:e0:0d:cc:26:
f1:4a:9d:72:f5:5f:40:55:76:44:50:ef:18:3a:d7:
e8:33:70:6e:66:d7:a2:05:08:1e:ff:cc:84:d9:6b:
39:20:82:05:c0:24:24:81:33:20:09:20:01:1b:26:
b4:8e:5f:ef:34:78:cf:86:a9:9e:1b:c0:93:6a:32:
1d:77:fc:28:e3:5e:b9:d0:ed:f9:1a:9e:45:cd:08:
3b:db:ed:22:0f:00:34:5f:67:03:21:3b:82:b8:47:
7c:e7:77:03:2a:0e:ab:a1:05:d5:c6:53:1b:a3:ba:
1c:30:42:5c:89:b3:08:ad:0e:05:72:13:a8:02:f3:
04:aa:99:8a:61:1d:41:89:f1:60:98:15:92:9e:5d:
7c:6d:10:ab:82:48:33:03:a6:a6:01:a4:f5:82:2b:
47:ae:83:43:33:2e:55:c8:a5:e8:a6:84:c7:3d:0b:
29:1b:0b:28:c7:4e:e0:06:02:2b:8a:b3:57:be:b3:
3e:c3:a9:17:8e:23:a2:6e:b1:6f:5b:56:e6:75:0a:
ac:8f:9d:68:33:0f:91:6c:b0:7e:27:8f:ba:2d:b7:
b7:0c:58:18:19:81:b3:eb:9f:f2:74:9e:ae:d0:87:
c6:4c:bb:ab:5c:ac:6e:00:aa:ea:b5:a1:3d:ac:6a:
4b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D8:DB:33:95:3B:C6:DC:71:7C:A6:7C:36:A6:4A:67:C3:6B:41:3B
X509v3 Authority Key Identifier:
keyid:D3:24:BB:3F:E5:C1:5A:2E:04:2A:63:2E:5A:23:59:D0:48:F0:4C:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/645/0yS7P-XBWi4EKmMuWiNZ0EjwTEI.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
58:5b:68:03:f0:bb:3b:ca:a6:62:46:69:45:fd:c0:c6:0b:ce:
e6:c2:0b:10:ec:24:aa:38:da:61:03:af:43:17:8e:e5:ba:c8:
af:ba:96:b9:af:ec:da:4e:3e:da:7a:11:2d:33:d5:f2:4d:02:
14:0e:ab:22:90:1b:64:0a:c2:13:72:85:4b:8c:c3:a5:1f:89:
0d:b4:fa:02:83:a7:f9:e7:71:4a:4d:03:20:da:df:dc:9a:75:
f9:cf:46:9a:aa:92:f0:2c:4a:c4:58:10:bf:73:e7:79:5b:fc:
79:e3:3a:57:90:f8:bb:33:2c:a5:24:7f:99:34:f6:8e:6a:de:
85:d2:62:3f:48:59:f7:63:a0:2c:9f:cf:b1:b1:d0:0b:ef:e8:
d7:3b:5d:8c:58:24:22:8b:7f:83:4d:df:45:14:af:9a:82:ab:
64:5c:69:1b:65:d4:4a:10:e5:86:73:02:03:94:c1:77:ca:c6:
d5:87:70:65:c1:59:ac:4a:f6:73:a7:34:4c:0b:25:09:e8:35:
33:3c:64:20:58:b0:be:62:21:ba:2b:98:2f:df:de:49:d4:95:
a5:c0:05:60:37:c8:76:e4:c2:1a:7c:ac:0f:d7:c9:a6:04:8e:
02:de:9d:dd:8c:da:76:fd:f7:26:86:38:50:91:34:cd:c5:2d:
f0:b1:a3:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:29:31 2025 by rpki-client