Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft
File: yiG6irdU_NZK2pljjW_l5HJTtME.mft (raw, json)
Hash identifier: XGyMM58ADFqd0s2NhRf/6HGeBNsREUbPE1Lyg+075bg=
Subject key identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34
Authority key identifier: CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1
Certificate issuer: /CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1
Certificate serial: 1BFA
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft
Manifest number: 1BFA
Signing time: Thu 30 Jan 2025 19:55:48 +0000
Manifest this update: Thu 30 Jan 2025 19:55:48 +0000
Manifest next update: Fri 31 Jan 2025 01:55:48 +0000
Files and hashes: 1: yiG6irdU_NZK2pljjW_l5HJTtME.crl (hash: Vsy7t2ctCSaq+86Bv03E0nX70WO5er8GMKA62rT8JcE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7162 (0x1bfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1
Validity
Not Before: Jan 30 19:55:48 2025 GMT
Not After : Jan 31 01:13:46 2025 GMT
Subject: CN=68C24A1388FC9D03DDD1064E2D286614B99B9434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:35:45:84:0d:f7:9c:a7:65:94:83:6d:ed:a4:
ef:0e:58:34:52:71:ae:b9:fc:eb:af:f2:19:7c:fa:
68:fd:76:de:aa:43:e7:01:5f:f2:a7:a7:18:11:ec:
70:de:c2:50:21:52:73:aa:4d:79:8a:20:5b:b8:6d:
8a:6b:59:68:28:7c:ee:84:19:8d:5e:88:82:df:2e:
3e:6f:e9:bf:95:65:32:57:49:c1:74:64:c8:64:44:
38:5e:32:9c:a4:34:b0:55:6b:e3:60:9c:a4:b2:a0:
e4:74:71:87:d2:f4:73:d7:31:61:cc:55:e1:06:eb:
2d:06:5d:b5:d0:7d:a7:b4:95:2b:db:63:f6:24:35:
82:6f:1a:4d:96:b3:95:c3:f5:88:8b:81:44:bf:08:
8d:b2:b9:73:8e:47:26:16:fa:e9:be:36:09:a2:fc:
2b:ad:76:9e:20:5f:89:4e:7e:06:3c:b9:70:38:55:
44:ad:5b:b1:8c:75:45:f2:ae:35:12:62:1f:98:16:
4c:96:a6:83:1d:48:2e:e2:3f:3c:df:7e:dd:44:17:
7f:eb:30:b1:a8:ae:e8:a5:40:ef:a9:ae:af:00:80:
84:a1:68:96:2f:48:08:fd:e2:fc:bc:ec:74:3c:bb:
16:27:13:a3:8b:fc:38:0e:ac:af:fe:16:67:3a:36:
2d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34
X509v3 Authority Key Identifier:
keyid:CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2f:c7:3a:a0:da:31:8a:35:da:e8:81:93:f9:61:00:f7:a7:4c:
c6:3b:d5:fe:1c:c7:13:0a:ad:8e:49:e8:79:f5:1f:73:9e:30:
d4:49:78:85:cd:c1:e4:de:db:c3:2a:83:56:b6:0d:9d:5f:92:
86:6f:95:88:f7:49:9f:a4:c2:41:5f:cf:11:d1:a4:1e:7b:79:
73:96:4a:75:8c:ac:61:11:66:33:29:58:41:3a:6c:33:3a:cf:
fd:c2:a0:6b:12:33:47:be:b7:3c:2f:91:14:88:62:9d:b3:57:
b7:c6:a0:69:e2:3e:92:87:18:e5:40:0d:77:f2:87:d8:e6:8a:
89:83:b0:5c:29:c7:1c:ef:ba:4f:73:12:09:9a:3f:fb:24:e5:
68:46:ca:ce:87:f4:b1:4d:e1:77:6c:b8:97:e7:93:d0:1c:96:
fa:87:f2:de:89:56:c0:e0:b6:7c:f2:89:69:da:4c:52:b4:7a:
af:95:42:80:e6:38:6a:93:91:af:f7:3b:32:2f:ad:ec:72:2a:
31:36:d8:23:a7:a6:cd:7d:83:46:ef:e2:a8:d4:4a:d1:3e:f2:
e7:41:22:8a:2d:2b:82:ca:27:87:b8:d9:88:08:44:11:86:f9:
95:80:49:0d:47:00:02:d9:8b:98:43:0f:10:55:34:d4:cc:f4:
16:21:14:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:24:39 2025 by rpki-client