Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.mft
File: KnEap9xgBJsLDYhIl-AVsRcfN7k.mft (raw, json)
Hash identifier: aYBnIZGWozMNmcnJi61bsoWMPZZBQBeNEpvawUVc3H8=
Subject key identifier: FF:A4:BA:66:D2:94:5D:86:DB:E7:BB:E8:FF:38:6F:D9:B3:2A:52:ED
Authority key identifier: 2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9
Certificate issuer: /CN=2A711AA7DC60049B0B0D884897E015B1171F37B9
Certificate serial: 1E74
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.mft
Manifest number: 1E04
Signing time: Sat 29 Mar 2025 08:27:23 +0000
Manifest this update: Sat 29 Mar 2025 08:27:23 +0000
Manifest next update: Sat 29 Mar 2025 14:27:23 +0000
Files and hashes: 1: Cx_PMXrwCzMbeqeFlDPfklmRXzE.roa (hash: sfsnweCmG/jHm5nbrPsozdJRdYLLaS3/WMbJAlYUq4E=)
2: KnEap9xgBJsLDYhIl-AVsRcfN7k.crl (hash: xGC2VPJAn/LUYphc1Nk7BdRTPKlV6w1gtibqS5tEcCQ=)
3: LybZbI5zyJ39JstrkEFIrhtylh8.roa (hash: z+mmcbUMAd//4i4kPYabxYduaYkJ6sfVgx+jU46dJGg=)
4: M5WxiIlYCW6SZUTRDTbxa2LnzjU.roa (hash: m9tbtocpg4JKbwsMbWXBIPlz4frao3dfUdJHi7zrZgg=)
5: S4HbotJRQ5_GhRWt9jAb8IEQHDw.roa (hash: otv2lZAvLzrW3EDlzi9Lnv7aEft9dRekQtock8hNwT0=)
6: Yld0PLcu0kDFCM8FFa_e7PUkDBs.roa (hash: Weph8XosCTlgY4xUw8VOwWRpLaXRiZ0P1fwqSL0Cp+s=)
7: e-RcNvHXkaYJsLZSaWMpPMFmaZE.roa (hash: NYEeAcBUsCB/ll8/IHHqbGto+nzHjpAiEbkf5GDxZjk=)
8: ekrQ2H8Y7kK2OjtlUfog_0LDO9E.roa (hash: UR8yfOSNtZ8AIr4CYZRJyls32R0dt4IjVnP4OTe1F1E=)
9: lU4MINnEocHPf7DsLjN6TqQBr9g.roa (hash: nWkWTYJDtFBZOZTTk+NylLr//gEQhbEtZuQsgeEL7No=)
10: mZ4wa3h5VnP3HhPa70W14S6h7_4.roa (hash: lcRoNbfxH5p4M1W+4xZaSBgfZt5WaNW+2CNCqFsymZU=)
11: qPTdKAqShrGpfL0vzX2Thwykdz4.roa (hash: G5XyzrC9DKKQXTNoqtUT55LljRWAhx2tEjRJFr4VKkg=)
12: rN5X1L8tl_GX_nzqwu1OyA5bT10.roa (hash: Gdm71Ynfr1CK1VYWBpYU6mNFZ9abPsblKlI3Q/vvryI=)
13: sMntCxUtK_jseejaS5-JuTzGRbo.roa (hash: W/RCOC1i921KNgUzkOxQpq7Cf8D/JtxRY4PxIMJC1do=)
14: uAf5pUFdtYtdOx45Hj4gHBGOKJE.roa (hash: 6JrQVp7ySTlmiK0e6//AOGp9uZShw5JAgDSFSxnbhKs=)
15: vxkYrgp7CFmcPITnZQ7G-ZRYsZ0.roa (hash: wbJjJh+2zu6VAgdzbvpTOYocrmVQMGQy2rapGPepPKw=)
16: yVZNZqdbW5_Cz0l5jiC27M47H_4.roa (hash: cMxeCjc8ROq48HrS48yFe56NPv4CmYX6+Y/k0JWTvj0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7796 (0x1e74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A711AA7DC60049B0B0D884897E015B1171F37B9
Validity
Not Before: Mar 29 08:27:23 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=FFA4BA66D2945D86DBE7BBE8FF386FD9B32A52ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5c:59:98:50:2b:67:d0:e5:23:8b:30:5c:b4:
86:f5:ae:45:a0:e4:81:45:f3:d8:64:e9:d9:ce:e4:
23:3d:d4:25:d7:80:b5:7b:dd:14:5b:d0:e0:6a:a1:
16:ae:47:fe:8a:9e:96:38:c2:11:aa:9b:35:89:02:
d4:43:bc:76:b7:ae:8d:d5:79:39:a7:6a:fd:11:5a:
7a:3c:55:52:a6:d7:7f:d5:ab:50:61:5b:b9:cf:65:
b6:3a:19:e2:32:8c:49:04:fb:69:1e:1b:f0:c7:d1:
25:05:a1:47:01:1a:6f:24:ed:5b:38:2e:9a:8b:69:
cc:ea:32:c7:9d:f7:96:0d:09:0f:31:9d:a3:67:4f:
ed:d2:ae:b8:0f:d1:a2:c0:45:f5:47:d0:21:1a:10:
8f:16:d2:b3:f2:3e:ad:8b:22:8b:44:7f:eb:b7:c4:
9f:fe:81:ee:e1:59:d7:36:dc:5b:fe:fc:48:4c:5f:
ca:48:f0:22:79:f0:ad:fd:e3:be:f0:84:5b:73:a1:
fb:e6:a0:eb:db:27:4c:c9:c4:98:f8:e0:63:18:f9:
73:88:c4:93:f3:b6:eb:36:f3:48:ee:75:54:bb:f8:
51:2c:4e:4c:2d:f3:2c:e0:ce:2e:68:ce:56:cf:ed:
c2:4a:1b:1c:b9:a7:a6:76:5b:d6:53:1c:30:b1:74:
73:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A4:BA:66:D2:94:5D:86:DB:E7:BB:E8:FF:38:6F:D9:B3:2A:52:ED
X509v3 Authority Key Identifier:
keyid:2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
81:13:3b:c1:46:4a:57:50:9a:6a:e4:52:8b:74:5f:10:e6:d6:
19:96:32:60:2f:55:07:9b:24:44:09:35:fc:36:f1:21:1a:e0:
0d:24:09:b3:8b:f6:83:6d:f8:d5:3f:16:76:9d:98:a7:db:00:
d4:2e:7f:fe:21:a0:e7:78:39:11:11:08:9d:88:c8:1a:53:d2:
79:ad:bf:51:03:cd:81:bc:94:f3:6e:1f:6c:e6:a1:b6:01:0b:
13:7b:6c:86:b0:b0:9f:ab:01:cb:b0:b1:c1:a3:8d:4f:b2:0e:
cc:69:79:6d:18:b5:55:5f:cc:7b:ce:6e:23:44:4c:eb:5d:20:
b0:0d:c9:4b:92:f9:90:ee:8d:36:f4:e9:21:96:a8:67:56:79:
d6:6b:63:b4:7b:ac:c9:35:f7:06:b4:df:15:fa:2b:ab:b5:eb:
cb:87:76:68:fd:bc:14:a4:e0:25:96:8c:d1:f8:ca:e4:0f:a4:
2c:db:f8:75:ea:fb:45:59:09:e8:9a:b1:06:d4:ba:7f:5b:82:
58:94:46:54:a1:dd:93:53:16:ce:eb:5e:26:67:ae:77:f2:19:
4f:93:61:0b:66:0a:ce:fd:fa:47:fd:9e:29:d2:9c:ba:2b:3f:
d8:37:73:85:16:31:2e:9a:e6:86:8d:4a:60:bf:89:40:04:52:
21:61:ba:5a
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgICHnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE3
MTFBQTdEQzYwMDQ5QjBCMEQ4ODQ4OTdFMDE1QjExNzFGMzdCOTAeFw0yNTAzMjkw
ODI3MjNaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEZGQTRCQTY2RDI5NDVE
ODZEQkU3QkJFOEZGMzg2RkQ5QjMyQTUyRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTXFmYUCtn0OUjizBctIb1rkWg5IFF89hk6dnO5CM91CXXgLV7
3RRb0OBqoRauR/6KnpY4whGqmzWJAtRDvHa3ro3VeTmnav0RWno8VVKm13/Vq1Bh
W7nPZbY6GeIyjEkE+2keG/DH0SUFoUcBGm8k7Vs4LpqLaczqMsed95YNCQ8xnaNn
T+3SrrgP0aLARfVH0CEaEI8W0rPyPq2LIotEf+u3xJ/+ge7hWdc23Fv+/EhMX8pI
8CJ58K39477whFtzofvmoOvbJ0zJxJj44GMY+XOIxJPztus280judVS7+FEsTkwt
8yzgzi5ozlbP7cJKGxy5p6Z2W9ZTHDCxdHNjAgMBAAGjggIKMIICBjAdBgNVHQ4E
FgQU/6S6ZtKUXYbb57vo/zhv2bMqUu0wHwYDVR0jBBgwFoAUKnEap9xgBJsLDYhI
l+AVsRcfN7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODE3
L0tuRWFwOXhnQkpzTERZaElsLUFWc1JjZk43ay5jcmwwYwYIKwYBBQUHAQEEVzBV
MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz
RDAwMDAvS25FYXA5eGdCSnNMRFloSWwtQVZzUmNmTjdrLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw
a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODE3L0tuRWFwOXhnQkpzTERZ
aElsLUFWc1JjZk43ay5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p
Yy5jbi9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQCBEzvBRkpXUJpq5FKLdF8Q5tYZljJgL1UHmyRECTX8NvEhGuANJAmzi/aDbfjV
PxZ2nZin2wDULn/+IaDneDkREQidiMgaU9J5rb9RA82BvJTzbh9s5qG2AQsTe2yG
sLCfqwHLsLHBo41Psg7MaXltGLVVX8x7zm4jREzrXSCwDclLkvmQ7o029Okhlqhn
VnnWa2O0e6zJNfcGtN8V+iurtevLh3Zo/bwUpOAllozR+MrkD6Qs2/h16vtFWQno
mrEG1Lp/W4JYlEZUod2TUxbO614mZ6538hlPk2ELZgrO/fpH/Z4p0py6Kz/YN3OF
FjEumuaGjUpgv4lABFIhYbpa
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:24 2025 by rpki-client