Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/767/zIz3JvIyMpkQh0TWkwvvGNZ3RF0.mft
File: zIz3JvIyMpkQh0TWkwvvGNZ3RF0.mft (raw, json)
Hash identifier: rj+gXTFKZ9UNlo9IKSOGcv7SafNQUY4cVHUFcqhzBQM=
Subject key identifier: 32:60:A4:7F:05:31:7A:0E:5D:CA:C6:FD:9B:82:46:AE:0C:C9:8E:B6
Authority key identifier: CC:8C:F7:26:F2:32:32:99:10:87:44:D6:93:0B:EF:18:D6:77:44:5D
Certificate issuer: /CN=CC8CF726F2323299108744D6930BEF18D677445D
Certificate serial: 177F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zIz3JvIyMpkQh0TWkwvvGNZ3RF0.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/zIz3JvIyMpkQh0TWkwvvGNZ3RF0.mft
Manifest number: 1776
Signing time: Fri 04 Apr 2025 17:05:57 +0000
Manifest this update: Fri 04 Apr 2025 17:05:57 +0000
Manifest next update: Fri 04 Apr 2025 23:05:57 +0000
Files and hashes: 1: 1H_dEmlcHR9WrgXuUkgyw7TC6PI.roa (hash: PYMpJ9QJ790iCzSPPg6odQyh509VNCs3J8a0L4Xr8Vs=)
2: KzxPrZsNmlG9fHcuHEAELhTildI.roa (hash: lKTisdtJ9wopA8c02OL0FrfptSw09OytCXCrsSw4ZJ4=)
3: zIz3JvIyMpkQh0TWkwvvGNZ3RF0.crl (hash: TxdMdIxzYS8slsVWVvKsyOqLCQQPVqIrwNH7xm6fpPM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6015 (0x177f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CC8CF726F2323299108744D6930BEF18D677445D
Validity
Not Before: Apr 4 17:05:57 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=3260A47F05317A0E5DCAC6FD9B8246AE0CC98EB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d0:16:1d:f1:24:d5:4f:31:8e:f6:7f:b2:0a:
0f:6a:55:ce:e2:ef:43:77:69:91:f8:8b:ba:64:ee:
6d:13:b0:e7:93:c7:74:0d:f4:f1:71:1a:3d:e5:a5:
ed:c7:68:4f:ae:56:da:ea:2d:7e:d0:4d:9f:df:9d:
66:c6:1e:3c:ac:6f:db:d7:37:c1:f0:fa:bc:a4:c8:
06:81:2c:b6:57:52:91:23:64:28:9c:16:2a:bc:24:
76:c5:f4:0e:2c:6c:a3:86:16:d4:92:d0:a3:97:aa:
94:c8:0b:63:bd:3d:16:90:4d:95:47:3a:d2:c2:1e:
b7:08:6e:fc:cc:6a:3f:d0:1b:29:06:6d:ea:c3:86:
11:ae:18:33:d8:2c:e8:85:80:c1:9c:06:84:86:f7:
a4:0a:6c:33:34:8a:31:f2:00:9c:36:83:1a:93:0d:
fb:96:60:d0:6a:de:ce:17:77:91:ac:84:67:67:98:
7b:e3:dd:41:37:fb:f8:13:b0:5a:4e:aa:3c:e1:a5:
85:66:5b:71:c6:c9:7f:05:ee:54:da:97:e2:58:e8:
50:eb:c4:8c:be:28:dd:c3:5a:a3:91:5d:24:99:45:
41:ef:0a:92:84:30:bc:7c:7b:67:0e:e6:06:ba:16:
53:2e:31:76:cb:54:43:69:8e:2d:e4:b1:31:02:16:
b6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:60:A4:7F:05:31:7A:0E:5D:CA:C6:FD:9B:82:46:AE:0C:C9:8E:B6
X509v3 Authority Key Identifier:
keyid:CC:8C:F7:26:F2:32:32:99:10:87:44:D6:93:0B:EF:18:D6:77:44:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/zIz3JvIyMpkQh0TWkwvvGNZ3RF0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zIz3JvIyMpkQh0TWkwvvGNZ3RF0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/zIz3JvIyMpkQh0TWkwvvGNZ3RF0.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:5c:06:2c:ff:0e:0e:0e:62:82:99:9d:69:bc:33:75:09:f1:
f7:75:5d:3b:44:fe:de:0c:dd:cf:84:75:19:a5:72:af:e6:41:
3f:a6:0f:c0:1a:ca:69:af:fd:37:b0:79:47:9b:e5:3e:da:bb:
07:9a:e8:6c:89:d4:8e:e6:ac:2c:95:1c:f0:38:b5:4b:ee:f7:
ab:07:01:89:f7:7b:fd:36:14:d2:d4:46:0a:3b:68:cb:16:3e:
f3:5b:4a:26:ed:9d:3c:ca:66:20:73:d8:fb:99:3f:94:d8:69:
2a:89:94:1e:a2:89:e7:2c:ce:6d:10:2e:41:4e:00:23:37:4f:
39:e7:eb:17:e1:fa:a6:58:bd:c8:a8:c5:93:01:02:67:3e:52:
4c:bc:f3:2c:73:3a:aa:fa:18:67:53:a7:b8:0d:12:fa:52:0c:
f2:2b:e8:e8:a2:90:c7:2b:1d:c4:f8:81:8e:4c:a0:6e:3f:93:
78:e0:a0:eb:89:6c:fd:47:36:40:ed:87:73:c1:17:d1:b8:bb:
7a:13:53:d0:9e:55:76:0e:ac:7d:25:13:61:d9:d5:6d:7d:53:
9b:29:67:f0:ce:2c:04:08:61:48:b2:0c:80:46:23:5a:33:52:
d1:0e:b5:72:13:34:78:8d:cd:bf:d8:4e:db:d0:be:60:97:d6:
c2:ba:fa:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:33 2025 by rpki-client