Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
File: ngWjfokKtd79OHX80DVmocqs5DE.mft (raw, json)
Hash identifier: rNdfLmPs44V3rE/gFY9s/oMS5DiTNW4eAEPbC8jRXNY=
Subject key identifier: AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12
Authority key identifier: 9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
Certificate issuer: /CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Certificate serial: 37CE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
Manifest number: 37CE
Signing time: Sat 23 Aug 2025 16:04:38 +0000
Manifest this update: Sat 23 Aug 2025 16:04:38 +0000
Manifest next update: Sat 23 Aug 2025 22:04:38 +0000
Files and hashes: 1: ngWjfokKtd79OHX80DVmocqs5DE.crl (hash: oNVAMMRL98PoFDXUyEUFIC3IM2NIyqj8ghuYIW3jmag=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14286 (0x37ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E05A37E890AB5DEFD3875FCD03566A1CAACE431
Validity
Not Before: Aug 23 16:04:38 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=AD8F28FADC9041A94359BD9CF1BDB290219CED12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8d:88:29:7a:74:23:e7:4c:55:04:6f:43:93:
5f:d7:6a:33:25:f4:5a:82:55:02:13:a6:8f:d8:d1:
21:9a:46:f9:4f:51:ee:ec:4b:dd:59:3b:89:64:08:
1b:ed:36:0a:91:aa:28:a8:bb:f0:63:fc:6d:14:89:
a2:39:6f:8b:dd:73:b1:87:1c:7a:c3:81:11:f2:43:
fc:4c:8b:5b:c8:02:44:e1:04:57:0c:6d:86:1e:ee:
37:83:3c:44:ea:39:c6:86:5b:5c:5e:6b:29:85:8f:
4c:6b:60:7d:f2:7e:15:cb:b8:72:8a:e9:44:89:cd:
50:3d:8a:81:8c:14:13:f2:34:f3:10:fa:81:cb:f1:
ee:1a:b6:2b:f2:21:d2:e6:b7:a7:45:67:62:e9:09:
26:f0:73:14:2a:85:a2:f7:0d:79:31:c4:c7:9a:e0:
63:01:eb:61:b7:9c:59:61:80:43:30:6f:51:52:dc:
e9:11:ca:e0:b7:42:38:e9:fb:b6:53:79:15:51:e4:
04:50:f1:16:b5:ca:d5:f6:81:db:d4:41:c1:2d:c3:
0f:e4:08:5e:3a:4c:93:99:e8:4a:3a:b3:ef:df:bc:
31:cd:56:d8:15:cc:97:1c:b4:1e:2d:ab:70:e8:27:
bb:8c:1b:21:fa:85:53:b2:b0:c4:3e:35:f7:00:08:
b1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8F:28:FA:DC:90:41:A9:43:59:BD:9C:F1:BD:B2:90:21:9C:ED:12
X509v3 Authority Key Identifier:
keyid:9E:05:A3:7E:89:0A:B5:DE:FD:38:75:FC:D0:35:66:A1:CA:AC:E4:31
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ngWjfokKtd79OHX80DVmocqs5DE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2038/ngWjfokKtd79OHX80DVmocqs5DE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
94:b2:db:7a:50:42:96:d5:3d:c9:a2:8a:b0:e3:b5:1e:29:89:
ad:5c:e5:af:e4:04:ba:bd:d0:87:bb:53:ab:30:15:9a:74:1f:
8d:6e:28:7f:c5:f1:83:a7:ef:b3:e2:d5:20:23:ad:79:3c:fc:
2a:7f:59:79:a4:03:aa:da:f4:fd:82:74:7e:23:d0:fc:b2:b5:
cd:7d:94:a7:55:d5:2f:c7:d2:d4:f1:d8:b4:27:0d:70:fc:38:
82:34:67:1a:0b:cd:31:3a:fc:0e:58:dd:23:b8:e2:db:63:84:
36:8e:53:f5:38:12:89:25:6e:07:82:a0:97:bd:0c:e0:2a:60:
c4:fe:8b:d2:a7:e4:3d:db:41:ae:d5:6e:67:2a:a7:43:5c:9c:
7c:b5:e0:33:ac:6b:89:c0:58:1a:90:84:a0:15:f7:ff:62:77:
23:92:a0:65:95:a4:cb:d9:8f:e3:ca:2a:2a:1f:79:70:2a:45:
92:d5:bd:28:66:85:2e:b3:9e:2d:f2:ab:a3:63:e6:32:37:9a:
84:85:a6:0f:31:89:55:ec:18:36:5e:9c:b6:33:87:06:92:a3:
48:2c:41:fb:76:f6:b7:46:61:33:ae:3f:53:88:20:85:ab:84:
fd:a3:3d:8c:6d:40:42:3d:d9:53:8b:3b:87:26:6b:4c:03:2b:
6b:fd:19:e8
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICN84wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUw
NUEzN0U4OTBBQjVERUZEMzg3NUZDRDAzNTY2QTFDQUFDRTQzMTAeFw0yNTA4MjMx
NjA0MzhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEFEOEYyOEZBREM5MDQx
QTk0MzU5QkQ5Q0YxQkRCMjkwMjE5Q0VEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsjYgpenQj50xVBG9Dk1/XajMl9FqCVQITpo/Y0SGaRvlPUe7s
S91ZO4lkCBvtNgqRqiiou/Bj/G0UiaI5b4vdc7GHHHrDgRHyQ/xMi1vIAkThBFcM
bYYe7jeDPETqOcaGW1xeaymFj0xrYH3yfhXLuHKK6USJzVA9ioGMFBPyNPMQ+oHL
8e4ativyIdLmt6dFZ2LpCSbwcxQqhaL3DXkxxMea4GMB62G3nFlhgEMwb1FS3OkR
yuC3Qjjp+7ZTeRVR5ARQ8Ra1ytX2gdvUQcEtww/kCF46TJOZ6Eo6s+/fvDHNVtgV
zJcctB4tq3DoJ7uMGyH6hVOysMQ+NfcACLGzAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUrY8o+tyQQalDWb2c8b2ykCGc7RIwHwYDVR0jBBgwFoAUngWjfokKtd79OHX8
0DVmocqs5DEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjAz
OC9uZ1dqZm9rS3RkNzlPSFg4MERWbW9jcXM1REUuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL25nV2pmb2tLdGQ3OU9IWDgwRFZtb2NxczVERS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwMzgvbmdXamZva0t0ZDc5
T0hYODBEVm1vY3FzNURFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAJSy23pQQpbVPcmiirDjtR4pia1c5a/kBLq90Ie7U6swFZp0H41uKH/F8YOn
77Pi1SAjrXk8/Cp/WXmkA6ra9P2CdH4j0Pyytc19lKdV1S/H0tTx2LQnDXD8OII0
ZxoLzTE6/A5Y3SO44ttjhDaOU/U4EoklbgeCoJe9DOAqYMT+i9Kn5D3bQa7Vbmcq
p0NcnHy14DOsa4nAWBqQhKAV9/9idyOSoGWVpMvZj+PKKiofeXAqRZLVvShmhS6z
ni3yq6Nj5jI3moSFpg8xiVXsGDZenLYzhwaSo0gsQft29rdGYTOuP1OIIIWrhP2j
PYxtQEI92VOLO4cma0wDK2v9Geg=
-----END CERTIFICATE-----
Generated at Sat Aug 23 22:29:23 2025 by rpki-client