Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft
File: 7oh6zHzktfZsz0lG8Cv6y94ot2o.mft (raw, json)
Hash identifier: eyoySeDhOIkKCz52fVduSuURowepfa815t+1L+18xXk=
Subject key identifier: 71:D1:BC:AA:71:CD:2B:AB:92:8D:BD:57:9E:F3:C1:79:07:4B:57:CC
Authority key identifier: EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
Certificate issuer: /CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Certificate serial: 1CB1
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft
Manifest number: 1CA0
Signing time: Thu 05 Jun 2025 16:40:38 +0000
Manifest this update: Thu 05 Jun 2025 16:40:38 +0000
Manifest next update: Thu 05 Jun 2025 22:40:38 +0000
Files and hashes: 1: -ADB0ul8beQrLrQh61kNdQ6Xl0I.roa (hash: 4dx4i0BTuk/HpHw9BS/JDWyxYxY/rjkaxOaRkWmyHWM=)
2: 7oh6zHzktfZsz0lG8Cv6y94ot2o.crl (hash: LmaG8hhSQcRoZo4oyioGT22c8hdf2eVNir1eszUCxDE=)
3: Zf0KaO2lvAqTZzRNnzm_99ii-aI.roa (hash: Rt65UKUI1MIChaQ4kid1nM0Cmb+I+LuUZ5rVsZCJ5zk=)
4: gAfbD59axt_g53rR7MDELLID5sU.roa (hash: 9EVLJuL3qbmLwsstxAa2k3aFuCqTvyAP0AtOReuM1OM=)
5: pCD7g6xZIOYEt3L4B5Kw69Iijwg.roa (hash: GqobMFyHZb/uTGS5by9T74r2Dh3iM+3w+uYHclash2A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7345 (0x1cb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE887ACC7CE4B5F66CCF4946F02BFACBDE28B76A
Validity
Not Before: Jun 5 16:40:38 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=71D1BCAA71CD2BAB928DBD579EF3C179074B57CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:95:0d:60:c4:3e:68:d6:46:f0:7e:0a:c7:54:
8b:25:88:5d:a6:57:09:eb:d8:6b:89:e3:d3:e3:ac:
4d:69:db:62:e5:06:8c:e4:91:ba:71:fa:f7:d5:95:
58:08:be:d8:1e:a5:1d:d0:96:57:91:8c:61:7b:ec:
ff:10:49:62:12:f0:6c:d4:5b:ed:58:6e:c9:9b:86:
88:6d:18:26:6b:9e:47:bf:c4:6b:5c:04:f1:ab:9d:
c5:6a:cd:a8:ad:19:b4:b1:f1:8e:ce:6c:fa:eb:c6:
f4:97:49:72:03:bf:5f:b3:15:71:ff:55:fd:1a:5d:
57:d9:e9:3b:c8:79:26:dc:c7:98:96:83:c0:ed:0a:
a3:a7:70:18:bf:13:3d:b8:d7:f4:7d:e1:bf:34:37:
53:dc:b8:a6:0d:42:19:7e:42:da:ac:95:e6:1d:69:
27:49:14:88:e3:bd:92:36:aa:e2:6c:3a:4c:92:32:
4c:72:8e:c0:53:97:b4:26:a2:12:33:89:4e:7a:a1:
81:f9:91:0a:42:a3:4c:bd:af:c6:2c:f5:4f:03:51:
d3:cb:05:69:0b:29:d7:da:6f:97:7e:33:60:77:74:
0f:de:0b:42:d0:28:0e:17:5d:ac:72:6c:2d:4f:0f:
ad:79:16:c8:83:fc:d5:df:1c:3b:22:0e:cd:59:3c:
ca:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D1:BC:AA:71:CD:2B:AB:92:8D:BD:57:9E:F3:C1:79:07:4B:57:CC
X509v3 Authority Key Identifier:
keyid:EE:88:7A:CC:7C:E4:B5:F6:6C:CF:49:46:F0:2B:FA:CB:DE:28:B7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/7oh6zHzktfZsz0lG8Cv6y94ot2o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/721/7oh6zHzktfZsz0lG8Cv6y94ot2o.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7b:9e:4a:2c:03:3d:d3:85:da:4d:29:9a:af:c9:44:15:3a:b3:
72:d3:35:7c:7b:0a:aa:e9:40:1b:43:9d:a0:85:a0:0b:f9:7d:
8f:d5:9f:4e:23:27:c5:2c:e5:31:09:80:a4:41:b0:13:0c:5e:
55:c7:16:7a:dd:1f:39:62:51:d1:b9:0e:0b:ab:16:2f:e6:3e:
8d:ea:7f:d7:a7:93:f3:6d:9f:a4:c3:c4:4f:c0:01:f9:e2:db:
d1:53:ae:8a:95:b7:23:ad:c1:04:ef:c7:52:f5:42:97:34:36:
ff:87:85:9d:99:ea:fd:00:f1:83:e1:b9:9a:85:6f:90:10:86:
ba:9a:0a:af:5a:b2:cf:ce:dc:9e:35:d9:ef:c7:2b:8a:cf:78:
57:59:9c:39:2d:4d:e1:b9:91:cd:25:76:fb:8c:36:77:96:d4:
4c:b4:c7:15:27:82:b0:2d:b9:ce:ea:ae:b1:6e:91:52:01:8d:
d4:f4:d1:8c:e2:33:bd:21:88:9d:4a:00:bb:6c:48:65:53:8a:
16:dc:dc:64:4b:e0:e2:6a:4f:eb:50:af:ec:28:d1:a0:f9:12:
6d:5a:a5:f4:4d:a7:59:bc:b6:84:e2:22:fe:c2:88:95:e9:ca:
1a:47:9c:7f:77:6a:a2:c3:29:be:02:c8:7d:a3:dc:77:5c:ed:
b8:da:6d:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 19:56:40 2025 by rpki-client