Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
File: Lowd4ZR0A1y-pngFS22U9a-lM2E.mft (raw, json)
Hash identifier: L6iVU/b02/oiHlimg7nriM5akIaPogztCyLpYrq0gE4=
Subject key identifier: FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
Authority key identifier: 2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61
Certificate issuer: /CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
Certificate serial: 1AB0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
Manifest number: 1AA6
Signing time: Sat 17 May 2025 08:08:31 +0000
Manifest this update: Sat 17 May 2025 08:08:31 +0000
Manifest next update: Sat 17 May 2025 14:08:31 +0000
Files and hashes: 1: IYkJ5FCKNtKSqqAO-jf5CgFrRyo.roa (hash: iyH8j7lARJGiKTyNhZuxwAzL7RSAxkLDiciZi2qy3S0=)
2: Lowd4ZR0A1y-pngFS22U9a-lM2E.crl (hash: F5fAAJ4KGX+0wIbRmZk+FPlo+DINvB6EccSud2ESppI=)
3: fioZ3GbSWc8xCxZSX5xMaJKL5Kw.roa (hash: kSZPAF+X3T3iZ+QjAo6L0K9L6zaSBOEvFL86EZHGiME=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6832 (0x1ab0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361
Validity
Not Before: May 17 08:08:31 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=FF932E425E060B53CC63EEF8B42B916DB3C01C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:ca:10:5a:c9:8f:d2:27:85:80:bb:25:3e:
26:96:85:3f:5b:51:fb:24:48:0d:d4:0d:5e:91:18:
04:52:77:b0:2d:d3:78:33:73:59:ab:3d:50:93:aa:
29:dd:c9:6d:31:6a:60:fb:17:57:f1:b6:f3:a5:bf:
ce:7d:00:da:c1:8f:9c:11:a4:28:73:44:98:bd:2f:
63:2c:f2:d6:d5:1f:e7:f0:e8:6f:42:ec:2c:4a:d4:
53:f8:f3:4e:f4:bb:5c:01:19:43:9f:2b:b4:3c:cd:
8e:20:5d:b4:f1:30:b7:0d:be:35:06:12:30:a0:cb:
80:f1:c0:44:2c:b2:20:c8:53:66:f2:2c:36:d1:53:
f6:aa:45:78:6d:b6:9c:13:2d:81:42:14:e2:e9:3d:
76:92:3a:5d:98:cc:7b:db:66:b1:88:a1:47:2b:1d:
41:d5:b1:0c:78:bb:83:ca:f7:02:ff:e7:5f:d5:53:
f0:0b:95:fc:83:77:e4:a3:ff:19:71:e2:0a:73:a5:
18:c1:12:1c:c9:77:90:c4:05:91:12:72:b2:af:fa:
f4:c1:eb:93:09:a5:4b:fb:0a:49:d4:2d:00:f4:ac:
02:11:35:44:af:04:83:7d:28:49:09:f4:8a:c5:84:
fd:3c:9a:04:0b:e6:34:60:9f:20:19:e6:a5:85:96:
45:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:93:2E:42:5E:06:0B:53:CC:63:EE:F8:B4:2B:91:6D:B3:C0:1C:6C
X509v3 Authority Key Identifier:
keyid:2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
88:88:eb:ff:8b:29:58:22:ca:dc:49:b6:e4:b3:47:1f:13:18:
50:65:08:c4:d5:21:7c:aa:50:87:f3:93:ed:5c:03:26:bd:8f:
84:b5:16:f7:88:87:e9:78:81:f6:b4:d1:c1:6c:6b:81:c7:68:
15:de:7f:cd:0f:0a:39:64:90:f5:8f:2c:06:c3:b2:ec:c4:7e:
73:0a:2f:5e:cd:62:7c:5e:21:a0:28:0c:b9:07:3f:27:6e:98:
ef:3f:27:91:ac:b4:26:96:ce:5c:8f:f2:5d:3a:4c:d7:a7:13:
4b:60:b6:87:18:d4:fc:0b:ce:40:37:23:e1:dc:8e:d4:f9:b2:
7c:6f:1b:dc:6e:e9:4f:c7:4c:05:d3:48:c6:38:cd:03:d0:20:
2d:a5:80:6e:00:12:ab:07:43:78:b3:cb:58:19:00:da:31:c7:
16:c2:12:07:3d:53:21:e2:62:60:c6:6b:9d:f7:be:52:bf:e7:
7c:c2:99:0f:5d:e8:98:bf:d7:2b:d4:79:96:8f:52:a7:ac:25:
0a:9f:41:f7:fb:e5:17:3c:cb:75:b4:9d:ce:c5:af:c3:c0:35:
cd:c8:ba:57:95:cb:fd:2b:39:8d:bb:76:0e:56:21:31:24:3e:
3a:94:4f:5c:83:e2:92:dd:81:f3:49:7a:91:b2:7f:69:7f:9b:
24:28:96:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 14:15:19 2025 by rpki-client