Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft
File: H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft (raw, json)
Hash identifier: CGa6AsrroL3Hbd+VTPiSANsI0TWdANBUutUxOiI6ctk=
Subject key identifier: 0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4
Authority key identifier: 1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05
Certificate issuer: /CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205
Certificate serial: 2001
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft
Manifest number: 2001
Signing time: Sat 23 Aug 2025 11:06:03 +0000
Manifest this update: Sat 23 Aug 2025 11:06:03 +0000
Manifest next update: Sat 23 Aug 2025 17:06:03 +0000
Files and hashes: 1: H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl (hash: dBvY0+Cet9pvV4Kxqm4I5X7F2HL2424U4L0fVBc7szY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8193 (0x2001)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205
Validity
Not Before: Aug 23 11:06:03 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=0A196EACD1B84454479C1DBFE9BBD3BF3613FCC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:aa:de:67:c6:ca:3c:d6:01:4b:26:20:ce:02:
0b:8d:cc:b9:e3:f2:49:51:b3:81:fa:99:bc:76:18:
3d:a1:d4:5f:9d:34:29:57:e6:f3:eb:67:8f:fb:b0:
44:3e:82:d7:60:31:f3:19:59:30:15:0c:8f:99:22:
71:4d:70:47:51:fd:55:52:3f:f0:3b:b9:26:58:0c:
69:be:1b:8c:7a:79:32:a4:58:d1:56:c5:68:e3:4c:
46:a2:61:31:45:63:36:a5:c2:bb:cc:b0:52:aa:5e:
f8:be:5d:b5:dd:52:00:ba:d6:36:c0:23:4e:41:f2:
ad:0b:b2:14:52:b5:7b:e9:46:ae:59:53:c1:6c:8f:
46:ae:9b:9a:12:20:6e:df:5a:19:88:1b:b6:f1:0f:
87:bf:62:9a:02:d2:b6:67:bd:41:e8:ce:0f:02:33:
05:e3:00:7e:51:34:2b:27:d7:a0:72:a8:cb:f8:ee:
ec:cc:ed:cf:e5:34:aa:6c:46:11:be:1b:21:4a:35:
c8:88:8a:7f:dc:08:6a:a6:6e:4e:f0:2a:7c:d3:50:
5b:d5:50:cb:75:ea:af:82:5e:aa:73:72:d3:ca:24:
25:82:5a:f0:ec:b8:71:cf:5c:ce:8f:3f:62:e9:a6:
87:65:1f:4b:35:c6:0e:0b:ab:e4:ef:cc:ad:5f:30:
10:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4
X509v3 Authority Key Identifier:
keyid:1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
94:aa:db:36:06:41:ac:c5:5d:23:c2:4d:59:78:c7:be:ee:df:
d3:3f:45:ea:80:19:3f:0f:af:a7:18:1c:f9:3d:09:44:6b:b8:
85:95:85:a0:8c:23:bf:7a:0e:57:7e:ce:c4:6b:da:83:3a:1b:
1c:67:74:be:28:eb:b3:b6:6b:70:86:b8:6e:01:f3:99:53:5c:
fc:95:1f:ed:93:48:a9:b7:ed:28:a5:fc:cd:ee:e8:9e:2d:52:
c2:1a:79:79:b4:ab:03:70:ed:ce:3b:48:c2:75:e3:bc:0f:da:
89:09:1a:47:d0:dc:92:7a:d0:ac:b3:5f:1a:1e:bb:d8:50:44:
d1:9e:9f:1e:25:6b:6b:df:e5:2e:70:45:ce:fd:d4:40:ec:1d:
d1:53:16:45:1a:a3:4b:60:c2:ce:45:6d:1c:04:c3:53:e4:2b:
d1:f7:87:e9:4f:bd:e1:f0:71:1b:6d:fd:d3:92:05:db:bf:a9:
14:ee:cb:a4:e9:ed:51:fe:e9:c1:00:57:0a:d6:a2:03:f7:7f:
00:f6:ca:9a:8a:dd:c6:14:43:24:32:96:87:b6:7c:df:eb:87:
c5:50:a2:74:34:27:7c:e5:c6:aa:91:0c:a6:7e:f5:32:67:6a:
5d:fd:ce:53:d3:86:19:0b:93:f8:9b:f8:06:7d:0c:0d:41:8a:
ce:d8:85:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:20:43 2025 by rpki-client