Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft
File: zWXd_8pJD2leEvOlPuuv8O2ncFA.mft (raw, json)
Hash identifier: l5KGVxMtvJOD4WG5uxT3aiuU8Fwf9UnZ19BUl0J6qlo=
Subject key identifier: EE:56:9C:73:AF:2A:B0:5C:81:BC:B9:16:40:D0:38:BC:FC:5A:B3:2B
Authority key identifier: CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50
Certificate issuer: /CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050
Certificate serial: 11E4
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft
Manifest number: 11DC
Signing time: Wed 18 Mar 2026 01:00:00 +0000
Manifest this update: Wed 18 Mar 2026 01:00:00 +0000
Manifest next update: Wed 18 Mar 2026 07:00:00 +0000
Files and hashes: 1: aVEwty2RaQ7ZMQsM6gPJIDhHx0s.roa (hash: iOBwcScs0YJqCUy+IANX3ajyrol1E6jNhR8CiDpsub8=)
2: gDLooqo61cW4ELEjMHUqf6lNUOo.roa (hash: GKHBn3alZIpjJZe3i8slVi6XBHRZTK/7qbql7Fxl1gQ=)
3: zWXd_8pJD2leEvOlPuuv8O2ncFA.crl (hash: rAtSIQZQs0/M5HtmW4x9x/NpxYom8FmC4i5W07hf9iQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4580 (0x11e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD65DDFFCA490F695E12F3A53EEBAFF0EDA77050
Validity
Not Before: Mar 18 01:00:00 2026 GMT
Not After : Jan 9 08:23:18 2027 GMT
Subject: CN=EE569C73AF2AB05C81BCB91640D038BCFC5AB32B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:88:b7:f2:85:fd:c1:0e:05:bb:70:87:d6:c8:
8f:03:11:7a:8f:31:93:06:9f:9f:0c:a7:b9:2c:3b:
b3:80:4b:19:42:7b:96:56:32:0b:0e:b0:b8:83:70:
65:b1:f1:a9:24:33:e2:dc:e0:86:e2:0f:b9:29:ab:
6e:30:98:5f:7a:1a:43:17:16:f1:02:9f:b2:dc:bf:
42:18:af:fd:c3:05:f7:90:bc:ce:f2:98:02:13:b2:
6a:6f:d1:ad:e4:e4:fe:1a:84:75:61:b6:14:f9:28:
d4:6d:31:71:89:24:a9:40:f1:5d:f2:aa:8d:a0:43:
03:db:64:93:1a:38:b1:d4:b7:20:bf:a1:d3:b0:64:
d1:21:c6:0a:4b:81:18:62:2e:41:43:6d:f4:e1:12:
58:f2:6a:e3:9b:95:80:70:58:a0:df:71:35:7a:05:
11:dc:d1:6f:41:08:18:da:bb:5b:d9:51:d0:f7:fd:
a8:c1:79:a4:42:2d:c9:fb:fb:64:a3:be:ac:0e:f3:
a3:67:d5:0b:41:88:ec:91:3d:aa:b5:18:b0:17:4d:
76:a3:e1:7e:51:0f:f7:7b:c9:b6:03:4a:cf:1d:b9:
4e:1b:19:5f:91:f7:99:af:b2:a3:04:9a:2e:51:eb:
da:af:0e:f8:52:ba:ae:45:50:9b:34:94:e1:f2:23:
b2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:56:9C:73:AF:2A:B0:5C:81:BC:B9:16:40:D0:38:BC:FC:5A:B3:2B
X509v3 Authority Key Identifier:
keyid:CD:65:DD:FF:CA:49:0F:69:5E:12:F3:A5:3E:EB:AF:F0:ED:A7:70:50
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/zWXd_8pJD2leEvOlPuuv8O2ncFA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/775/zWXd_8pJD2leEvOlPuuv8O2ncFA.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
89:2d:01:76:79:21:85:a5:d9:24:25:ec:e0:4b:aa:a1:e3:81:
d6:34:fb:08:a8:8f:d0:f0:fd:fc:76:62:af:5b:7d:0d:05:8a:
2f:eb:51:fe:4e:85:c9:a0:12:10:df:70:23:62:2d:f0:e0:c0:
0e:33:7e:2c:23:12:1f:94:08:37:3b:45:7b:62:9f:d3:94:8b:
c1:3a:be:22:5f:8b:e3:b2:04:b2:c5:01:3c:71:77:35:6f:19:
62:8d:37:3f:8b:4a:e2:8e:ea:20:a6:7d:3e:06:38:56:a3:e6:
4e:a9:b5:0f:30:f2:33:b0:41:e3:c1:95:d7:a9:66:76:a3:88:
6f:a6:69:5d:92:27:38:a6:f5:ab:da:61:1a:53:8e:fb:c4:ab:
4b:c0:bc:dc:9a:b5:f1:21:ed:73:e7:1c:6f:5e:cd:c2:74:12:
ed:b1:8d:8d:c0:19:97:58:31:4a:d0:c5:54:6a:fa:37:56:28:
d5:09:c6:5a:69:ba:9a:0c:17:28:c5:cb:98:cb:b9:de:ae:af:
c4:27:06:66:b1:d7:40:24:e9:78:90:44:74:24:f3:b7:06:e9:
14:97:0b:83:d6:e8:00:b4:1f:2f:7b:42:8e:af:f4:3f:7a:a2:
a3:fe:d8:a0:e7:5e:22:c6:1b:6d:66:95:11:9f:13:4b:ea:ef:
16:cc:03:50
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICEeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Q2
NURERkZDQTQ5MEY2OTVFMTJGM0E1M0VFQkFGRjBFREE3NzA1MDAeFw0yNjAzMTgw
MTAwMDBaFw0yNzAxMDkwODIzMThaMDMxMTAvBgNVBAMTKEVFNTY5QzczQUYyQUIw
NUM4MUJDQjkxNjQwRDAzOEJDRkM1QUIzMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDiLfyhf3BDgW7cIfWyI8DEXqPMZMGn58Mp7ksO7OASxlCe5ZW
MgsOsLiDcGWx8akkM+Lc4IbiD7kpq24wmF96GkMXFvECn7Lcv0IYr/3DBfeQvM7y
mAITsmpv0a3k5P4ahHVhthT5KNRtMXGJJKlA8V3yqo2gQwPbZJMaOLHUtyC/odOw
ZNEhxgpLgRhiLkFDbfThEljyauOblYBwWKDfcTV6BRHc0W9BCBjau1vZUdD3/ajB
eaRCLcn7+2SjvqwO86Nn1QtBiOyRPaq1GLAXTXaj4X5RD/d7ybYDSs8duU4bGV+R
95mvsqMEmi5R69qvDvhSuq5FUJs0lOHyI7JBAgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQU7lacc68qsFyBvLkWQNA4vPxasyswHwYDVR0jBBgwFoAUzWXd/8pJD2leEvOl
Puuv8O2ncFAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzc1
L3pXWGRfOHBKRDJsZUV2T2xQdXV2OE8ybmNGQS5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAveldYZF84cEpEMmxlRXZPbFB1dXY4TzJuY0ZBLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzc1L3pXWGRfOHBKRDJsZUV2
T2xQdXV2OE8ybmNGQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQCJLQF2eSGFpdkkJezgS6qh44HWNPsIqI/Q8P38dmKvW30NBYov61H+ToXJoBIQ
33AjYi3w4MAOM34sIxIflAg3O0V7Yp/TlIvBOr4iX4vjsgSyxQE8cXc1bxlijTc/
i0rijuogpn0+BjhWo+ZOqbUPMPIzsEHjwZXXqWZ2o4hvpmldkic4pvWr2mEaU477
xKtLwLzcmrXxIe1z5xxvXs3CdBLtsY2NwBmXWDFK0MVUavo3VijVCcZaabqaDBco
xcuYy7nerq/EJwZmsddAJOl4kER0JPO3BukUlwuD1ugAtB8ve0KOr/Q/eqKj/tig
514ixhttZpURnxNL6u8WzANQ
-----END CERTIFICATE-----
Generated at Mon Jun 22 06:13:55 2026 by rpki-client