Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft
File: H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft (raw, json)
Hash identifier: VcgIX1MAMPLSg5ZGJwzQ66glQ0ghtz4uAgib8bXg0Hs=
Subject key identifier: 0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4
Authority key identifier: 1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05
Certificate issuer: /CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205
Certificate serial: 1E1F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft
Manifest number: 1E1F
Signing time: Sat 17 May 2025 13:12:36 +0000
Manifest this update: Sat 17 May 2025 13:12:36 +0000
Manifest next update: Sat 17 May 2025 19:12:36 +0000
Files and hashes: 1: H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl (hash: UDgC0MjnVsQ4ttNq5oFdXwpo7edOxF/J087vnqF9QuM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7711 (0x1e1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F4299B4DDB1E68DA90F7BC7F43A062ED1610205
Validity
Not Before: May 17 13:12:36 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=0A196EACD1B84454479C1DBFE9BBD3BF3613FCC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:aa:de:67:c6:ca:3c:d6:01:4b:26:20:ce:02:
0b:8d:cc:b9:e3:f2:49:51:b3:81:fa:99:bc:76:18:
3d:a1:d4:5f:9d:34:29:57:e6:f3:eb:67:8f:fb:b0:
44:3e:82:d7:60:31:f3:19:59:30:15:0c:8f:99:22:
71:4d:70:47:51:fd:55:52:3f:f0:3b:b9:26:58:0c:
69:be:1b:8c:7a:79:32:a4:58:d1:56:c5:68:e3:4c:
46:a2:61:31:45:63:36:a5:c2:bb:cc:b0:52:aa:5e:
f8:be:5d:b5:dd:52:00:ba:d6:36:c0:23:4e:41:f2:
ad:0b:b2:14:52:b5:7b:e9:46:ae:59:53:c1:6c:8f:
46:ae:9b:9a:12:20:6e:df:5a:19:88:1b:b6:f1:0f:
87:bf:62:9a:02:d2:b6:67:bd:41:e8:ce:0f:02:33:
05:e3:00:7e:51:34:2b:27:d7:a0:72:a8:cb:f8:ee:
ec:cc:ed:cf:e5:34:aa:6c:46:11:be:1b:21:4a:35:
c8:88:8a:7f:dc:08:6a:a6:6e:4e:f0:2a:7c:d3:50:
5b:d5:50:cb:75:ea:af:82:5e:aa:73:72:d3:ca:24:
25:82:5a:f0:ec:b8:71:cf:5c:ce:8f:3f:62:e9:a6:
87:65:1f:4b:35:c6:0e:0b:ab:e4:ef:cc:ad:5f:30:
10:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:19:6E:AC:D1:B8:44:54:47:9C:1D:BF:E9:BB:D3:BF:36:13:FC:C4
X509v3 Authority Key Identifier:
keyid:1F:42:99:B4:DD:B1:E6:8D:A9:0F:7B:C7:F4:3A:06:2E:D1:61:02:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0KZtN2x5o2pD3vH9DoGLtFhAgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2194/H0KZtN2x5o2pD3vH9DoGLtFhAgU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3f:74:52:4d:c7:f8:61:40:55:3c:cb:dd:ac:cb:d9:fb:78:f4:
0f:bb:18:dd:bf:f5:f5:a9:8f:46:9d:1b:4e:40:39:cc:fa:26:
fb:a4:0b:28:cb:50:0d:a5:39:a5:32:27:cf:b1:6b:22:cc:e0:
e9:60:7c:0f:14:00:c1:40:e1:5a:5c:81:87:6d:39:75:f9:94:
71:5d:50:b6:89:fd:e8:cd:3d:2d:ea:98:59:47:ec:53:e3:86:
55:b2:6c:0d:e6:52:98:de:76:96:87:aa:29:4d:ae:d7:3f:46:
d3:f8:40:ef:6d:db:20:ce:f8:6b:c9:53:73:a9:48:0a:b2:dc:
b1:ae:ac:c0:20:42:db:e1:78:25:6b:a4:1f:20:e9:98:1a:3e:
90:15:ce:c4:a1:b9:81:51:89:54:15:d6:38:7c:22:f1:49:88:
ab:39:c9:0a:fc:e6:1f:81:40:26:f2:f2:40:0e:96:6c:45:e9:
2a:6d:eb:37:84:5b:38:6d:70:04:73:b1:38:9e:44:c7:d7:14:
66:bb:30:21:22:73:49:87:c1:92:ab:c8:48:3b:93:42:d0:f2:
61:df:28:c0:a4:2e:08:76:8a:19:d1:85:7b:27:a2:33:1c:da:
7c:ca:85:fb:ae:f7:cf:04:ad:e5:c6:7e:27:36:19:b1:8e:00:
4d:01:ea:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 19:37:43 2025 by rpki-client