Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
File: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft (raw, json)
Hash identifier: X5rPapdgoIicpJ/tx4YKyavKnz50h1fds5Zwnt0fn6Q=
Subject key identifier: 85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C
Authority key identifier: 19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03
Certificate issuer: /CN=193519DD773C40D04F641CC44558D3461297B003
Certificate serial: 1DF5
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
Manifest number: 1DEF
Signing time: Sat 17 May 2025 22:39:49 +0000
Manifest this update: Sat 17 May 2025 22:39:49 +0000
Manifest next update: Sun 18 May 2025 04:39:49 +0000
Files and hashes: 1: GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl (hash: qI/nHQ3BYKq+53uBPMsNmYrlxyoj2r46uFMU99lGa/U=)
2: ofWDTuZdBsoEHdpdD-hMueJn7lQ.roa (hash: mtF01OQZB4FrXLC5rgApOcnJP5/2xm8KbS60Erj6vHw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7669 (0x1df5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=193519DD773C40D04F641CC44558D3461297B003
Validity
Not Before: May 17 22:39:49 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=857AD43056F6EE38F2F239E3647797B73033927C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:11:dd:56:1b:93:a0:3a:ef:10:8b:28:0a:3b:
80:72:e5:0d:2a:45:a7:77:3b:65:87:c9:2d:77:ed:
19:66:30:f1:eb:74:54:4d:1f:99:1b:08:56:fa:bd:
45:26:25:3f:ea:1e:22:30:c6:39:ef:5f:39:67:0f:
7b:f7:c5:76:98:2e:bf:f4:a0:ea:b6:8a:f1:39:ba:
1a:02:bf:57:62:fc:c2:15:54:66:9c:d6:d0:09:60:
49:68:ab:0d:24:71:44:d1:4f:86:86:c2:40:15:43:
e3:95:ef:92:6b:18:82:77:e5:b8:b0:1f:4f:7e:52:
f1:86:79:05:3c:90:f5:35:c7:b7:68:ca:97:18:4d:
79:51:4a:a6:76:fa:62:a1:a7:5e:87:6d:87:a2:81:
6d:c5:f3:40:f6:96:1e:98:22:d3:ba:9d:31:07:c8:
9e:fc:0f:48:05:65:cc:45:fe:76:5c:44:a5:67:45:
98:37:83:95:6b:cf:66:f6:7b:ee:43:87:a3:7e:21:
b8:85:e6:0b:74:04:ba:bd:d2:e8:79:54:61:df:ee:
bd:16:41:6f:aa:a8:37:a4:0e:35:2e:e0:46:f0:12:
ba:76:89:8c:f8:67:89:92:22:24:11:1c:8d:d6:31:
01:18:43:1b:0f:0d:2d:93:eb:78:47:3f:5a:57:52:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7A:D4:30:56:F6:EE:38:F2:F2:39:E3:64:77:97:B7:30:33:92:7C
X509v3 Authority Key Identifier:
keyid:19:35:19:DD:77:3C:40:D0:4F:64:1C:C4:45:58:D3:46:12:97:B0:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2903/GTUZ3Xc8QNBPZBzERVjTRhKXsAM.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5e:13:e8:cc:db:e1:8c:96:41:8a:be:60:15:8b:4c:7a:6e:c4:
1b:c5:de:0b:44:23:65:78:19:33:9e:76:0b:79:12:6f:aa:fb:
37:5f:1b:76:ca:cc:da:84:1e:4c:ae:21:6d:60:e6:17:70:c4:
6f:dd:34:67:b9:c7:98:04:55:05:ef:70:8b:a6:85:75:13:91:
77:f4:97:c0:45:b8:04:0f:26:e8:fe:ca:1e:b5:fc:d7:2c:04:
01:23:f3:5c:df:92:96:29:44:ca:59:a0:cf:e1:d8:28:28:56:
4f:40:c0:3c:79:55:22:a8:4f:0d:11:d0:c6:27:68:ac:0b:fb:
44:57:25:c7:27:f3:95:98:27:bb:e8:c1:b7:c1:21:da:25:e1:
e1:5f:5b:50:6e:14:3d:54:42:e4:02:77:46:b1:e4:50:ac:e2:
f0:51:e3:3d:04:1b:92:6a:31:37:c3:96:b2:35:7f:1e:d7:63:
4b:93:a3:1c:21:0d:bf:48:4a:94:ae:16:aa:d0:e9:c6:a2:08:
60:52:be:d9:be:02:4d:4b:33:97:95:41:6d:f4:cb:0d:c9:0d:
9f:42:78:a4:f2:df:e2:1d:77:72:ff:83:2a:58:be:9f:71:36:
48:84:91:fd:c5:a2:09:61:cb:ec:89:13:15:87:10:20:a7:d0:
e6:88:72:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:45:30 2025 by rpki-client