Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft
File: 6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft (raw, json)
Hash identifier: 1Lbc/t7BATYfE8t+6Ul/cqtnoalRnzoVLo2UlbkzP1M=
Subject key identifier: 95:04:C6:72:57:F7:D1:E8:BD:CA:CE:86:67:6A:E2:6E:D0:1C:E8:D0
Authority key identifier: E8:22:87:BB:56:FA:C8:E6:75:3A:BD:E3:6B:3B:6A:93:9C:B5:9A:53
Certificate issuer: /CN=E82287BB56FAC8E6753ABDE36B3B6A939CB59A53
Certificate serial: 21AB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6CKHu1b6yOZ1Or3jaztqk5y1mlM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft
Manifest number: 21A5
Signing time: Sun 24 Aug 2025 07:04:17 +0000
Manifest this update: Sun 24 Aug 2025 07:04:17 +0000
Manifest next update: Sun 24 Aug 2025 13:04:17 +0000
Files and hashes: 1: 6CKHu1b6yOZ1Or3jaztqk5y1mlM.crl (hash: iN15+ayz4KEQOCYtcgMQzngAAF47MJv4pt92xD9WiXg=)
2: S2bjNQej-REqHgT0YrR_t7OF0FY.roa (hash: JxMODKuWSwr6iH8TL8EdeU0qcY/yfLIHP/GxfzV8PUw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8619 (0x21ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E82287BB56FAC8E6753ABDE36B3B6A939CB59A53
Validity
Not Before: Aug 24 07:04:17 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=9504C67257F7D1E8BDCACE86676AE26ED01CE8D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a3:c2:38:5d:ef:6d:62:88:61:35:41:9f:07:
3c:dd:f7:29:98:e8:22:b1:85:65:c7:87:ef:98:d6:
59:a4:a2:d1:21:11:87:29:f4:f8:94:fe:f5:63:c9:
ba:43:50:68:2d:ea:38:3d:15:9d:a2:52:09:7d:50:
a2:d4:89:9a:f5:42:a9:d0:6d:7a:3d:eb:89:cb:b9:
27:4e:c8:3e:2b:31:d3:e0:d8:94:68:29:ec:45:e9:
e3:26:33:6b:4b:14:c2:4e:81:27:e4:60:ea:24:23:
bb:40:cc:6d:b5:fa:cd:db:53:06:64:ae:92:40:04:
6f:68:c3:58:f5:be:50:a4:af:63:e7:97:ea:60:34:
10:e3:36:45:10:98:a2:d0:08:6c:d5:e7:1c:2d:b3:
77:d0:40:6e:e8:91:2a:c4:f8:71:ae:21:f4:39:25:
2a:91:f2:18:31:7c:04:cf:5a:19:09:50:6d:50:22:
9b:9d:d5:93:01:74:a3:51:c8:90:00:2d:87:9f:0c:
66:34:c8:33:bf:6c:1f:a6:fd:4e:fb:29:9c:7c:26:
9b:80:71:75:05:a8:ea:90:ce:fb:32:37:f2:16:34:
b0:aa:db:2a:a7:a9:ab:f5:6c:a4:10:4f:80:45:1b:
64:e3:8b:78:18:0d:03:ba:58:e2:cc:be:b7:c6:42:
e1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:04:C6:72:57:F7:D1:E8:BD:CA:CE:86:67:6A:E2:6E:D0:1C:E8:D0
X509v3 Authority Key Identifier:
keyid:E8:22:87:BB:56:FA:C8:E6:75:3A:BD:E3:6B:3B:6A:93:9C:B5:9A:53
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6CKHu1b6yOZ1Or3jaztqk5y1mlM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2291/6CKHu1b6yOZ1Or3jaztqk5y1mlM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
14:04:6d:93:d5:6a:b9:6f:80:a1:29:76:1e:9b:3c:fc:a6:83:
15:ae:24:49:60:dd:e3:49:87:7f:ac:e6:d6:51:76:a4:dc:ff:
ac:f7:ac:98:a0:79:4a:e9:ca:7a:84:ed:fc:71:27:2c:3d:0c:
82:84:4a:aa:3d:a3:65:b7:a8:19:23:ce:9c:83:bc:11:f1:ff:
ba:77:63:5b:7d:53:3c:e4:53:aa:88:59:a1:ed:36:3e:0d:4d:
a2:bd:72:50:77:e6:f3:17:2e:09:86:c9:46:47:5f:55:7a:28:
31:64:72:d3:cc:2d:42:89:6f:9b:3f:07:fb:f0:4f:28:0f:32:
dd:8d:6a:db:71:2e:c7:7d:25:a4:e0:ff:26:c5:5b:7c:6d:ed:
04:b3:08:72:61:d9:b0:38:96:d5:82:ad:00:17:01:aa:4a:55:
19:4d:01:94:8b:4b:c9:20:da:40:70:71:5e:ed:d8:fe:c9:6f:
64:6a:1e:d8:d0:45:14:d7:88:37:70:b9:15:21:db:ea:34:ab:
96:bf:e2:9f:f2:af:ef:b4:ea:b2:fc:b2:db:ed:bb:a6:1b:9b:
66:88:b2:39:15:50:fd:74:e9:5f:6e:19:07:e4:dc:a0:49:d5:
e1:51:dd:a3:44:99:cc:dd:05:b2:1e:65:06:9e:b6:ff:42:e6:
77:af:0e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 11:12:51 2025 by rpki-client