Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft
File: E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft (raw, json)
Hash identifier: ziXahQAGy36bIzF9ow7qxioQB3ls0fU+DKvQBo7ey0Y=
Subject key identifier: B9:43:8C:55:06:FC:B9:C4:7B:7F:7F:60:BA:4C:12:3B:FB:48:4F:87
Authority key identifier: 13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75
Certificate issuer: /CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75
Certificate serial: 0BE4
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft
Manifest number: 0BE1
Signing time: Sat 17 May 2025 17:39:08 +0000
Manifest this update: Sat 17 May 2025 17:39:08 +0000
Manifest next update: Sat 17 May 2025 23:39:08 +0000
Files and hashes: 1: E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl (hash: XjlaNtKWctoM4h0ekm+TU9gbECWTDXLBqKZnUsokGWw=)
2: dZXEqaGxmzAzSwQfOSuj4GVQ0gg.roa (hash: acKWSIHX1ZbTm99RSURHM2kfCk/nXcKQCe+6vMB1VMY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3044 (0xbe4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=136A39C7630A3C7491050D3E9DBD5B6F7906FD75
Validity
Not Before: May 17 17:39:08 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=B9438C5506FCB9C47B7F7F60BA4C123BFB484F87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:01:84:3c:bc:71:4c:46:3d:ab:2e:d8:52:f4:
b7:ec:1a:b2:26:2c:91:04:ab:9d:e5:db:17:1c:5a:
30:36:89:dd:3e:9a:0f:9a:16:e5:8b:34:05:67:0f:
da:fe:e5:81:1b:06:9d:46:f5:de:30:76:34:a6:34:
ce:34:e5:88:0b:72:dd:0c:e7:11:59:cb:06:28:04:
be:61:e0:cf:8a:93:47:cc:16:df:d1:94:62:f7:60:
26:f4:c5:25:97:28:90:96:0e:51:0b:f4:56:0b:87:
b5:28:e8:ff:45:69:e9:35:08:5c:a5:91:c5:6b:a5:
c2:07:fe:f2:c3:6f:cb:44:ec:25:1f:36:e2:4e:de:
60:ab:54:cd:87:10:48:68:cb:88:62:d0:f5:4f:4f:
ac:92:4b:7a:a6:a4:4e:ee:68:0e:67:4f:f1:2a:36:
0e:f1:43:e0:3a:da:78:ee:ca:89:a0:dc:88:54:c6:
04:f5:1e:a2:58:04:04:85:8b:8a:b0:9e:21:b8:61:
66:42:61:84:53:f6:ef:4f:45:9c:f8:a5:83:ad:9b:
9a:1c:a4:0b:1d:63:b8:9e:67:c0:4f:8a:e0:d2:02:
88:84:91:d9:06:b0:1c:b3:1e:ed:54:d8:34:e5:34:
50:4e:c8:2e:4f:7c:1c:74:a0:e4:65:a5:f7:a5:8e:
c9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:43:8C:55:06:FC:B9:C4:7B:7F:7F:60:BA:4C:12:3B:FB:48:4F:87
X509v3 Authority Key Identifier:
keyid:13:6A:39:C7:63:0A:3C:74:91:05:0D:3E:9D:BD:5B:6F:79:06:FD:75
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3181/E2o5x2MKPHSRBQ0-nb1bb3kG_XU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:74:1e:87:55:22:42:ce:e1:e8:f6:81:dc:10:2b:b1:b8:d5:
0d:7a:4e:96:e0:f5:8b:98:6e:f0:62:0b:1e:70:64:48:17:79:
81:e7:6b:fd:b8:45:4f:ab:b5:42:fc:25:a1:be:a6:1e:94:eb:
89:3c:db:d6:30:03:46:93:6e:af:da:b6:a4:ff:e2:6f:9c:81:
d3:eb:46:e7:87:ef:85:36:bf:18:cc:7c:03:c9:85:fd:cd:bc:
83:ed:5d:7c:31:21:9d:ce:d2:a2:da:a0:c6:ea:97:cc:a8:50:
54:dc:cc:bb:4e:dc:8c:17:33:10:4c:e5:c1:15:3c:19:89:ad:
92:24:d3:b6:cc:9b:ba:f4:35:5b:e8:ac:94:15:98:8e:65:5e:
1c:d0:49:02:3f:71:18:53:78:75:af:97:67:a7:90:80:86:15:
7a:53:5e:83:7d:60:92:be:0f:2c:30:25:08:6a:49:fd:0a:bd:
30:7f:a5:bf:3f:05:64:97:d4:b4:f6:5a:3c:b5:41:41:0d:2e:
c3:e3:18:4a:6f:93:cb:05:19:82:55:c1:18:8f:03:e2:46:cf:
e8:dc:44:93:5f:8c:dd:52:cb:44:a7:9f:81:02:7d:7d:b1:30:
f0:6d:26:5e:df:95:56:b3:24:73:e6:75:d2:0f:b6:58:d4:38:
d3:29:c4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 23:47:53 2025 by rpki-client