Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft
File: OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft (raw, json)
Hash identifier: jc6T415rDBojDmLDzZcq3TW++nrD0lGi1NX253Sizxw=
Subject key identifier: D5:C0:84:64:B4:0A:63:4F:DB:E6:79:1A:74:15:94:0B:79:FA:BB:61
Authority key identifier: 39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A
Certificate issuer: /CN=39E47899249325DB499BFC6910919D2F36003E9A
Certificate serial: 203B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft
Manifest number: 2029
Signing time: Mon 20 Oct 2025 07:35:49 +0000
Manifest this update: Mon 20 Oct 2025 07:35:49 +0000
Manifest next update: Mon 20 Oct 2025 13:35:49 +0000
Files and hashes: 1: 8h30GBA3h4n0nrMTSP0xr0y7b_o.roa (hash: 9cfhHU+BjNybxApiI/hSLUqpXkVi5pN6Lvjf+RUUdws=)
2: OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl (hash: 2gJbCm9wr33oZU9F6sfMqRqL2GRDBGD5Q09JbFE/wSk=)
3: aVTN-qNwRozZt36ArshpmDXx0vM.roa (hash: CYQAt9Bb/xP653vpZ4vy+xW+gUj2bdrDgCV5WzAbI34=)
4: vvJwb1gYnGrBw5xA1UrXbiG1jGk.roa (hash: Xd/UqKRCspic2JRT51UsT5/47rtxoF0+T2yGguQfGw0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8251 (0x203b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39E47899249325DB499BFC6910919D2F36003E9A
Validity
Not Before: Oct 20 07:35:49 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=D5C08464B40A634FDBE6791A7415940B79FABB61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d9:98:90:78:55:2c:20:cb:a2:b3:29:ed:dc:
f3:25:4d:a0:36:42:42:0f:12:8f:41:e4:92:79:28:
84:9f:f0:80:bd:6c:22:33:42:6e:fc:44:b4:49:8f:
14:81:bb:94:ba:44:58:be:45:f2:81:20:e0:88:86:
58:f8:ad:ad:97:46:6f:b0:8c:5f:7a:6a:df:94:a1:
cc:aa:33:73:1b:a0:87:17:0f:f7:16:c5:a6:a2:b6:
e2:f5:77:47:fb:37:85:e0:6c:83:fe:25:4d:9c:4d:
02:dd:6d:c4:91:58:3c:bf:a1:0b:f4:d7:35:e8:a6:
fd:f8:37:5d:de:04:60:5d:c1:e5:eb:80:48:8c:6a:
bc:f0:e8:37:54:ae:35:c7:dc:f8:98:71:d8:aa:f4:
e8:7a:ac:f6:b9:1e:60:c3:db:b9:ee:fc:9b:a5:24:
ae:78:51:b8:98:d7:6d:18:41:40:3b:4a:45:11:b6:
90:9f:78:54:34:31:c5:83:ce:a7:50:63:d3:97:f2:
ad:96:fa:ef:21:6a:0f:ac:00:2b:0d:93:44:b8:cb:
2f:57:49:37:96:0a:93:28:e3:64:ce:4e:56:bf:41:
4f:2e:1a:12:a2:6c:a4:f6:8b:bd:4b:12:88:50:0f:
e4:70:20:4c:5e:f0:84:70:4a:c6:9e:69:1a:39:8c:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C0:84:64:B4:0A:63:4F:DB:E6:79:1A:74:15:94:0B:79:FA:BB:61
X509v3 Authority Key Identifier:
keyid:39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:39:fa:55:01:5a:fa:39:10:93:f3:91:5a:8d:18:5e:8a:32:
f3:5e:79:2c:d0:d3:b9:3e:f6:d6:89:eb:e7:bb:59:81:af:89:
39:4e:1e:22:9e:2e:a4:1d:16:8b:83:f9:9b:d9:90:01:8a:2c:
60:2c:f0:64:7d:0e:2b:b9:d3:c7:19:bc:d9:98:7c:51:6c:75:
69:4a:78:b6:86:a3:0c:dc:45:bc:f6:67:51:e4:38:be:de:fb:
3b:df:dc:ee:07:e7:22:6f:af:a1:26:c3:2f:cb:5a:d3:b9:c9:
c1:ff:14:8c:7c:06:12:51:33:e6:fc:f7:5a:b5:22:49:92:3e:
0e:2b:68:6e:7e:03:e6:30:d1:9b:75:57:32:65:5f:58:d2:e2:
a2:a4:88:b1:b0:b9:c2:43:33:b7:05:3b:a7:9d:f4:26:d7:15:
b5:a4:72:72:bd:8d:31:4b:73:85:3b:ae:04:46:06:75:72:2b:
8e:23:d9:3c:89:93:f6:66:62:a7:22:58:60:d5:18:a0:90:12:
54:fe:37:4e:59:11:2c:ba:9c:f2:3c:8f:37:3f:15:9c:ba:f1:
b2:91:51:b1:f7:35:1f:11:1d:9b:84:26:94:3b:bf:63:6d:72:
03:04:9f:c1:aa:27:97:80:a4:c2:92:f8:4f:f9:23:52:d0:14:
3b:07:9f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:38:19 2025 by rpki-client