Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft
File: 7oh6zHzktfZsz0lG8Cv6y94ot2o.mft (raw, json)
Hash identifier: 34D8Me8Ipz2mKz6oH6ufciHBV+pabCx6h8pWNAynuns=
Subject key identifier: 71:D1:BC:AA:71:CD:2B:AB:92:8D:BD:57:9E:F3:C1:79:07:4B:57:CC
Authority key identifier: EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
Certificate issuer: /CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Certificate serial: 1B5F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft
Manifest number: 1B4E
Signing time: Sat 29 Mar 2025 10:27:55 +0000
Manifest this update: Sat 29 Mar 2025 10:27:55 +0000
Manifest next update: Sat 29 Mar 2025 16:27:55 +0000
Files and hashes: 1: -ADB0ul8beQrLrQh61kNdQ6Xl0I.roa (hash: 4dx4i0BTuk/HpHw9BS/JDWyxYxY/rjkaxOaRkWmyHWM=)
2: 7oh6zHzktfZsz0lG8Cv6y94ot2o.crl (hash: gRPaISwbTCKMSqQSIjkYy/vk7tI7yKbb2ycO1nw7shg=)
3: Zf0KaO2lvAqTZzRNnzm_99ii-aI.roa (hash: Rt65UKUI1MIChaQ4kid1nM0Cmb+I+LuUZ5rVsZCJ5zk=)
4: gAfbD59axt_g53rR7MDELLID5sU.roa (hash: 9EVLJuL3qbmLwsstxAa2k3aFuCqTvyAP0AtOReuM1OM=)
5: pCD7g6xZIOYEt3L4B5Kw69Iijwg.roa (hash: GqobMFyHZb/uTGS5by9T74r2Dh3iM+3w+uYHclash2A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7007 (0x1b5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Validity
Not Before: Mar 29 10:27:55 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=71D1BCAA71CD2BAB928DBD579EF3C179074B57CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:95:0d:60:c4:3e:68:d6:46:f0:7e:0a:c7:54:
8b:25:88:5d:a6:57:09:eb:d8:6b:89:e3:d3:e3:ac:
4d:69:db:62:e5:06:8c:e4:91:ba:71:fa:f7:d5:95:
58:08:be:d8:1e:a5:1d:d0:96:57:91:8c:61:7b:ec:
ff:10:49:62:12:f0:6c:d4:5b:ed:58:6e:c9:9b:86:
88:6d:18:26:6b:9e:47:bf:c4:6b:5c:04:f1:ab:9d:
c5:6a:cd:a8:ad:19:b4:b1:f1:8e:ce:6c:fa:eb:c6:
f4:97:49:72:03:bf:5f:b3:15:71:ff:55:fd:1a:5d:
57:d9:e9:3b:c8:79:26:dc:c7:98:96:83:c0:ed:0a:
a3:a7:70:18:bf:13:3d:b8:d7:f4:7d:e1:bf:34:37:
53:dc:b8:a6:0d:42:19:7e:42:da:ac:95:e6:1d:69:
27:49:14:88:e3:bd:92:36:aa:e2:6c:3a:4c:92:32:
4c:72:8e:c0:53:97:b4:26:a2:12:33:89:4e:7a:a1:
81:f9:91:0a:42:a3:4c:bd:af:c6:2c:f5:4f:03:51:
d3:cb:05:69:0b:29:d7:da:6f:97:7e:33:60:77:74:
0f:de:0b:42:d0:28:0e:17:5d:ac:72:6c:2d:4f:0f:
ad:79:16:c8:83:fc:d5:df:1c:3b:22:0e:cd:59:3c:
ca:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D1:BC:AA:71:CD:2B:AB:92:8D:BD:57:9E:F3:C1:79:07:4B:57:CC
X509v3 Authority Key Identifier:
keyid:EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5d:13:d1:cf:5c:0d:74:0e:70:62:0b:2f:9e:ef:71:77:09:61:
d2:4b:51:72:d8:e2:d2:29:54:05:25:d4:11:b6:03:df:54:2d:
30:ba:ba:db:6c:d7:49:c9:80:aa:fc:b8:4f:04:f0:b2:6f:e8:
4d:e1:48:df:16:83:0b:26:af:b4:25:1b:2b:90:57:1d:15:c6:
90:b7:af:99:a9:77:fc:96:0d:2d:f3:4b:55:f4:ac:e4:8f:8f:
fc:a2:50:cf:9d:c3:53:21:98:ef:f3:fb:dc:5b:fa:3b:03:42:
c4:a1:62:d3:b1:ee:b8:c5:c2:90:06:57:c2:8e:80:e3:04:b5:
ea:c7:5c:55:e0:18:53:36:d3:1c:b3:31:aa:98:84:3b:6e:7b:
0c:18:9a:21:47:37:85:5c:a9:ff:d0:b0:e0:77:8a:04:6a:eb:
1b:5a:5c:96:84:b8:4e:1f:02:44:17:0c:94:d9:69:a2:c6:48:
31:66:6a:a2:87:9b:46:bd:09:33:8d:d0:16:ac:e0:d7:76:21:
f8:0c:a1:cf:13:1f:5c:e3:99:6b:3f:45:dc:7d:9e:b3:3a:d0:
74:1f:e6:2a:0f:d2:4c:06:c8:58:46:21:e7:56:fc:04:46:8c:
df:9a:98:a8:92:4b:74:ce:c0:5f:3e:78:f5:2e:a7:ba:8e:26:
d1:b5:8d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:13:19 2025 by rpki-client