Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft
File: 3MTV8l8-ospnw9i-tmvzCTPlkWo.mft (raw, json)
Hash identifier: yOjpahSzIvs58xy2yn9ZHsPBGJmdQ5xbhd5UsyCKAxs=
Subject key identifier: 91:A5:20:C0:CA:F5:59:4B:54:50:3E:1A:F9:B3:37:B9:2A:50:B3:E0
Authority key identifier: DC:C4:D5:F2:5F:3E:A2:CA:67:C3:D8:BE:B6:6B:F3:09:33:E5:91:6A
Certificate issuer: /CN=DCC4D5F25F3EA2CA67C3D8BEB66BF30933E5916A
Certificate serial: 092B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3MTV8l8-ospnw9i-tmvzCTPlkWo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft
Manifest number: 0929
Signing time: Sun 18 May 2025 08:39:03 +0000
Manifest this update: Sun 18 May 2025 08:39:03 +0000
Manifest next update: Sun 18 May 2025 14:39:03 +0000
Files and hashes: 1: 3MTV8l8-ospnw9i-tmvzCTPlkWo.crl (hash: qH8XUpyIsr4doWe+NXj/bM7Tw0MBc9qPTJFfqilhP4g=)
2: EsVvAWAvX2Eo3GOkfzMxAiINA8g.roa (hash: 6AGrknvwDG7ihjPS80E0x4CYslbjUEAL2UvIQfteyUk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2347 (0x92b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCC4D5F25F3EA2CA67C3D8BEB66BF30933E5916A
Validity
Not Before: May 18 08:39:03 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=91A520C0CAF5594B54503E1AF9B337B92A50B3E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b6:16:81:d4:29:dd:a6:37:0c:c1:46:98:1d:
4e:df:ca:de:f1:b0:9c:67:99:92:a6:fa:14:6f:f4:
1d:2d:ea:8a:6a:fc:33:d8:77:6d:9b:0b:fa:eb:ba:
b9:a5:22:b9:fa:4f:17:49:4a:51:84:51:51:aa:7f:
45:a1:ef:b3:e3:61:42:07:04:21:c8:a4:42:d4:7b:
6a:68:d1:2d:de:92:5d:89:8c:40:8c:71:84:6d:28:
95:74:ca:09:99:6e:61:f1:c4:3a:86:ef:04:c1:67:
3f:e2:bb:59:c0:50:16:66:6d:22:87:42:78:8d:d6:
75:6a:0e:8d:b2:c5:aa:09:57:9f:58:99:66:63:6a:
82:07:5c:60:2a:ff:63:53:2f:db:d3:ba:4b:8c:69:
d3:44:49:05:c1:85:ec:3e:bc:4b:9a:42:96:87:ae:
72:fd:ca:53:e3:78:bf:9e:f1:d7:ac:3a:2c:c8:17:
a0:82:70:75:7e:99:79:00:7c:73:78:70:d1:6f:11:
63:fb:0f:f7:10:75:9c:e2:a0:b1:85:a7:3f:e4:a1:
9f:e5:74:86:ab:2c:24:89:0c:29:02:9d:11:06:27:
c8:37:84:77:54:86:34:06:41:5e:a2:59:26:ce:35:
5c:68:77:2e:30:0f:95:2a:e8:79:c0:95:c5:8d:09:
4a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A5:20:C0:CA:F5:59:4B:54:50:3E:1A:F9:B3:37:B9:2A:50:B3:E0
X509v3 Authority Key Identifier:
keyid:DC:C4:D5:F2:5F:3E:A2:CA:67:C3:D8:BE:B6:6B:F3:09:33:E5:91:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3MTV8l8-ospnw9i-tmvzCTPlkWo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3261/3MTV8l8-ospnw9i-tmvzCTPlkWo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:d9:e1:93:fd:39:4d:b1:7b:86:64:b8:2b:c6:d7:aa:c3:8c:
2d:c8:06:c7:4f:bf:5a:7e:f5:6a:5b:f3:24:c5:a5:7b:14:1d:
1d:30:8a:05:4f:b3:24:38:ea:2b:31:2a:e9:79:79:0e:cf:eb:
25:8e:7b:59:cf:a0:d0:ef:22:b0:19:3a:fd:22:ee:26:2d:b2:
a0:18:34:c4:ce:53:24:59:45:d5:c3:a8:40:d4:f2:d5:27:77:
2b:6b:6a:5a:fd:28:96:42:f6:a6:bc:52:86:16:73:51:3f:27:
89:8f:a2:d8:f7:15:d7:2a:94:cf:2d:6d:39:58:71:67:4e:74:
06:8c:03:c3:0f:b3:93:c5:97:d7:fe:c4:7e:e9:c3:d7:10:78:
18:a5:d8:aa:41:7e:d4:d6:f6:c9:b7:0a:98:63:02:0e:29:d8:
6c:e5:53:7d:47:d3:f5:07:cd:1c:52:13:62:7e:e8:30:62:0d:
14:1c:8e:4b:f4:e5:70:c8:72:c6:af:cb:ff:7d:fa:6a:a9:bc:
0e:ec:b0:81:b0:a5:58:97:ad:d0:1b:7e:0e:2c:6d:b6:09:47:
51:e5:c6:10:b6:f1:15:5c:12:03:fc:0b:d9:2c:71:e2:64:d8:
d6:f3:a9:62:ac:7f:f0:dc:20:65:5c:9d:57:68:99:52:2c:77:
04:ac:b0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 10:48:14 2025 by rpki-client