Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft
File: OLYZ9BoGgZD-7QQul78QRCJYnkE.mft (raw, json)
Hash identifier: 84q+k+5GhW5Vzj1kvQtYJQWxE0onrpgaKs21IzkOKgQ=
Subject key identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F
Authority key identifier: 38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41
Certificate issuer: /CN=38B619F41A068190FEED042E97BF104422589E41
Certificate serial: 074A
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft
Manifest number: 074A
Signing time: Sun 18 May 2025 10:07:42 +0000
Manifest this update: Sun 18 May 2025 10:07:42 +0000
Manifest next update: Sun 18 May 2025 16:07:42 +0000
Files and hashes: 1: OLYZ9BoGgZD-7QQul78QRCJYnkE.crl (hash: DZUYPNI05rxKhfKWCw1uyVrFCmyxCQ84KkQeWJxapHc=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1866 (0x74a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38B619F41A068190FEED042E97BF104422589E41
Validity
Not Before: May 18 10:07:42 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=795B12F48C5A66122DA21CC6799E226BD99D7B6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:31:a1:70:f2:c2:e8:60:d9:f8:60:61:8c:fd:
09:ca:51:3a:d4:1d:00:9b:34:cc:42:ae:a0:59:dd:
40:63:ea:9f:e8:62:43:e8:68:88:5e:59:10:59:8c:
a1:70:97:ef:1e:59:b7:0e:53:b6:61:f3:d2:c5:a2:
37:26:ec:43:c3:a2:c6:ce:10:50:49:f1:fd:a0:72:
1b:b7:3c:d8:12:97:fc:de:82:28:93:d7:1d:21:cb:
f1:ad:44:d0:04:65:89:c1:84:17:28:76:fd:14:13:
c9:aa:03:56:ad:8b:85:e8:19:5a:c4:e4:0c:3b:2c:
07:c5:20:78:0b:7d:58:fe:72:4a:37:56:80:37:63:
c3:d1:9c:eb:9b:e9:49:84:bf:9a:65:fb:3c:6a:37:
93:f5:68:62:03:50:8b:f1:0d:83:6f:24:35:2e:4f:
0c:25:8b:a7:9d:4e:52:28:60:b1:d9:9d:f6:11:55:
b5:97:69:15:cc:1c:4f:86:6e:06:c5:1f:43:59:95:
15:16:d3:f2:65:8b:9a:f0:ee:c9:25:84:61:43:34:
e3:0b:6e:43:a0:82:0f:e2:92:5e:e5:fd:a9:28:4a:
da:e0:af:4d:ff:70:5e:8c:39:53:6f:37:65:60:ad:
24:c3:04:74:55:1f:9e:34:1c:ad:3a:7f:96:6b:a3:
5f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F
X509v3 Authority Key Identifier:
keyid:38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:32:5c:8e:10:ad:64:07:49:6c:d4:7c:68:12:89:2b:ef:0a:
0a:d1:fe:0a:b8:09:be:67:16:bb:45:89:ff:57:19:39:90:f0:
dc:7c:f9:81:28:d4:19:8d:0e:62:85:7f:96:74:a8:fc:6b:f1:
74:3f:45:06:74:56:cc:0d:4a:a2:13:f7:75:67:df:26:74:54:
b5:74:3c:bd:48:52:6c:e3:5c:11:62:8a:9a:54:fc:7f:fe:23:
76:1e:1c:bc:62:f3:c1:c6:58:77:ce:52:da:7d:fb:8b:12:86:
4a:48:3a:d0:27:0c:38:02:59:c2:80:80:c0:19:9d:bf:20:cd:
5f:9e:3c:89:a9:57:20:52:c6:f8:fd:59:79:5a:9b:46:4f:d1:
b2:5a:04:40:74:ec:ff:7b:59:ad:0d:ed:2f:95:d2:9e:2c:4e:
d6:20:89:35:56:c7:1e:09:0b:b0:99:69:98:c7:4b:b8:55:96:
f5:71:92:24:c5:94:6c:4a:e2:ff:67:62:24:7f:e0:02:43:bb:
8a:ef:0a:a1:d8:50:ca:40:e6:4e:29:c2:59:31:ca:4a:19:88:
53:25:c6:07:f4:a7:9d:be:e7:d9:0c:32:3a:2a:46:08:42:98:
22:3a:8d:09:ab:03:03:0f:54:a1:ff:9c:9f:e4:25:2e:73:1b:
e8:3f:4c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 16:38:52 2025 by rpki-client