Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft
File: gL0CjXa7PVXmZBaamvDfKpjHUFU.mft (raw, json)
Hash identifier: az7GrhLBjxHyFu54BFyE0U0qHTIiXhwAeL/U9ufN2LQ=
Subject key identifier: FA:3F:BB:B8:7E:5C:7B:29:FA:21:7F:39:55:03:60:5A:00:1E:68:CC
Authority key identifier: 80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55
Certificate issuer: /CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055
Certificate serial: 01C1
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft
Manifest number: 01BF
Signing time: Sat 23 Aug 2025 16:03:01 +0000
Manifest this update: Sat 23 Aug 2025 16:03:01 +0000
Manifest next update: Sat 23 Aug 2025 22:03:01 +0000
Files and hashes: 1: WTi5A5T4oYjpNn2dVvGbh1qURZA.roa (hash: i3CoRJ27WF0wHLzvYeShD+7iCy/Ov8mMgyrdZRrzN38=)
2: gL0CjXa7PVXmZBaamvDfKpjHUFU.crl (hash: Cq/OqE1tXrLO6LfcQeJ/Cy5ujbFcVlX5aYLAj2IuWRU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449 (0x1c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055
Validity
Not Before: Aug 23 16:03:01 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=FA3FBBB87E5C7B29FA217F395503605A001E68CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:27:e1:84:0a:83:ff:ec:79:a2:9d:4a:97:a8:
69:00:14:a3:9d:11:75:70:8d:a7:1c:d4:66:d5:51:
c7:10:fc:49:8f:34:62:61:f7:b2:61:e1:51:ba:51:
71:61:35:9c:f3:16:0c:cf:41:80:40:e8:c4:6a:d1:
20:dc:80:0a:bf:c2:a1:46:db:20:68:d8:d5:6b:66:
92:8d:36:f5:cd:8e:c0:00:fe:a8:f1:35:64:13:00:
34:65:0d:4d:03:67:2e:da:ca:1c:41:6b:cd:dd:cb:
f2:af:be:43:b0:4d:6c:98:a2:6d:ef:89:00:a9:03:
df:11:50:c2:95:21:9c:db:3d:a8:cc:4c:81:ed:be:
06:06:44:63:60:67:89:d9:fb:83:49:94:c9:fd:26:
62:c4:20:29:28:a2:b2:c3:cf:0e:dd:21:41:f5:3f:
5a:ed:c9:7c:62:4a:dd:44:9f:c7:be:9d:a0:e8:86:
48:5c:dc:de:a5:4e:cf:0a:c7:9d:e3:d8:59:82:62:
12:94:a9:5b:fe:cc:a4:f2:54:05:32:7d:07:7c:7a:
ba:1a:e9:08:a8:c0:6a:cb:fa:db:f5:f1:69:54:d5:
74:72:4d:71:a3:6c:02:7e:b0:81:d8:de:46:19:32:
ad:37:ae:d1:f1:87:43:36:c8:8b:6a:25:cd:3d:82:
78:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:3F:BB:B8:7E:5C:7B:29:FA:21:7F:39:55:03:60:5A:00:1E:68:CC
X509v3 Authority Key Identifier:
keyid:80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ae:06:51:20:29:08:ec:fe:c2:d7:b3:29:0f:f3:9e:c3:a8:ad:
6e:9f:f5:6e:09:dc:86:9a:0b:93:24:3d:ca:c9:78:4d:9e:10:
1a:67:4f:04:68:bc:d9:79:c0:b0:1a:d8:e0:8f:8b:58:71:50:
72:6d:d9:b2:8d:0c:2d:52:01:b3:78:4a:22:e0:ed:22:ec:88:
48:15:c3:6b:c5:9a:55:e2:cb:e5:67:cd:8e:80:91:ee:ff:c8:
88:84:c1:2e:db:3f:41:6f:e1:15:59:06:cc:0e:4d:ce:6e:d1:
20:53:97:71:8d:71:cb:88:be:91:9e:ba:5e:c9:e4:1b:79:4d:
c8:cb:79:00:6a:8e:36:b4:5b:af:3c:e1:a3:8c:5d:3d:43:91:
fc:62:4c:ab:13:39:72:c9:27:58:ad:ab:0b:ec:cc:32:84:82:
d4:66:b7:ad:8d:ee:22:d3:78:0b:52:2f:64:19:7a:8b:7c:8f:
4d:98:aa:52:79:73:1d:b6:d2:c8:81:52:9d:e1:ab:de:7b:c6:
99:1f:a3:c5:23:1f:e7:17:54:fb:fd:2d:8b:b0:9d:be:9f:f5:
de:70:87:45:ad:1a:9a:60:e1:e3:6a:09:9a:fb:e1:89:fc:42:
f9:37:47:e3:5a:c0:14:2d:e3:9b:02:7e:b4:ad:3e:c6:53:6e:
9a:5c:0c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:22:05 2025 by rpki-client