Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft
File: zWXd_8pJD2leEvOlPuuv8O2ncFA.mft (raw, json)
Hash identifier: ChXFAvzmPQN2SRtu/TD5YevxxOetU1eoC5wMQM3AS+8=
Subject key identifier: EE:56:9C:73:AF:2A:B0:5C:81:BC:B9:16:40:D0:38:BC:FC:5A:B3:2B
Authority key identifier: CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50
Certificate issuer: /CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050
Certificate serial: 0B15
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft
Manifest number: 0B0F
Signing time: Sat 29 Mar 2025 08:27:51 +0000
Manifest this update: Sat 29 Mar 2025 08:27:51 +0000
Manifest next update: Sat 29 Mar 2025 14:27:51 +0000
Files and hashes: 1: 3nfNANeZpQNWhOYI-JFxLY8ZRWY.roa (hash: 9pS0HGd1K9EIK2FmKxwb8m/hDfZg9moseaeeLHgPBEQ=)
2: n9Hcm5Sa9oY_YS6U9M36kf6JDrI.roa (hash: WiA2dmlFgYZLTYhkU+W3rl32i7S/9rr0ZrgMYCN6s1s=)
3: zWXd_8pJD2leEvOlPuuv8O2ncFA.crl (hash: 6rYmZkCNfGy5Up4CtLT3xNgheU2e843HPwyzKg8nIP4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2837 (0xb15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050
Validity
Not Before: Mar 29 08:27:51 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=EE569C73AF2AB05C81BCB91640D038BCFC5AB32B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:88:b7:f2:85:fd:c1:0e:05:bb:70:87:d6:c8:
8f:03:11:7a:8f:31:93:06:9f:9f:0c:a7:b9:2c:3b:
b3:80:4b:19:42:7b:96:56:32:0b:0e:b0:b8:83:70:
65:b1:f1:a9:24:33:e2:dc:e0:86:e2:0f:b9:29:ab:
6e:30:98:5f:7a:1a:43:17:16:f1:02:9f:b2:dc:bf:
42:18:af:fd:c3:05:f7:90:bc:ce:f2:98:02:13:b2:
6a:6f:d1:ad:e4:e4:fe:1a:84:75:61:b6:14:f9:28:
d4:6d:31:71:89:24:a9:40:f1:5d:f2:aa:8d:a0:43:
03:db:64:93:1a:38:b1:d4:b7:20:bf:a1:d3:b0:64:
d1:21:c6:0a:4b:81:18:62:2e:41:43:6d:f4:e1:12:
58:f2:6a:e3:9b:95:80:70:58:a0:df:71:35:7a:05:
11:dc:d1:6f:41:08:18:da:bb:5b:d9:51:d0:f7:fd:
a8:c1:79:a4:42:2d:c9:fb:fb:64:a3:be:ac:0e:f3:
a3:67:d5:0b:41:88:ec:91:3d:aa:b5:18:b0:17:4d:
76:a3:e1:7e:51:0f:f7:7b:c9:b6:03:4a:cf:1d:b9:
4e:1b:19:5f:91:f7:99:af:b2:a3:04:9a:2e:51:eb:
da:af:0e:f8:52:ba:ae:45:50:9b:34:94:e1:f2:23:
b2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:56:9C:73:AF:2A:B0:5C:81:BC:B9:16:40:D0:38:BC:FC:5A:B3:2B
X509v3 Authority Key Identifier:
keyid:CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
39:2c:57:1b:ab:26:34:b2:59:54:2e:06:60:da:bf:2e:a3:a7:
8c:77:4e:45:b2:67:61:9c:23:0f:52:6c:30:53:0a:f7:49:06:
be:01:de:5d:86:4a:07:c4:8d:6a:8f:96:01:bf:8d:c7:bc:02:
85:b3:2b:7e:d9:b7:6a:94:a1:4d:0f:5b:7a:af:bd:44:0e:5b:
e5:ad:84:cb:c0:39:d9:4e:f8:25:20:e2:48:64:f5:f1:d6:a3:
ce:c1:05:c7:1a:6c:3b:4a:e1:23:16:e1:3c:0b:fa:ce:44:1c:
60:c0:c4:36:aa:d4:1d:dd:30:67:8e:21:f2:a3:20:1a:58:89:
03:67:b1:58:93:6c:75:27:8d:a4:1b:c7:e7:5a:c1:8d:ed:2d:
d5:13:a7:3f:49:7c:37:b9:6c:01:54:ec:fe:7b:8e:ef:2c:15:
7c:01:af:43:22:55:33:70:b4:91:ab:a4:ab:aa:b7:7e:c6:a6:
21:a0:53:db:52:ac:47:bb:b1:4e:11:f3:77:88:b2:d0:39:11:
ea:ab:8e:23:fd:85:13:46:ff:96:06:8d:60:9a:a1:8a:c2:c6:
5a:ba:e9:0e:f0:bc:68:a2:92:06:97:37:25:93:47:76:5e:4a:
cb:5e:f2:94:6e:ca:b6:c7:fe:08:e5:fe:04:10:1c:e6:93:7e:
a6:6f:29:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:02:11 2025 by rpki-client