Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft
File: OLYZ9BoGgZD-7QQul78QRCJYnkE.mft (raw, json)
Hash identifier: p0s21c3fn/WqvkYDKsp7uC7xSbowS5YYwZfUPGV8rZc=
Subject key identifier: 79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F
Authority key identifier: 38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41
Certificate issuer: /CN=38B619F41A068190FEED042E97BF104422589E41
Certificate serial: 092B
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft
Manifest number: 092B
Signing time: Sat 23 Aug 2025 16:02:20 +0000
Manifest this update: Sat 23 Aug 2025 16:02:20 +0000
Manifest next update: Sat 23 Aug 2025 22:02:20 +0000
Files and hashes: 1: OLYZ9BoGgZD-7QQul78QRCJYnkE.crl (hash: qy58DBRDlzp1kUvrVKcO1BespHFIkcHuPHpmXZNVGWo=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2347 (0x92b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38B619F41A068190FEED042E97BF104422589E41
Validity
Not Before: Aug 23 16:02:20 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=795B12F48C5A66122DA21CC6799E226BD99D7B6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:31:a1:70:f2:c2:e8:60:d9:f8:60:61:8c:fd:
09:ca:51:3a:d4:1d:00:9b:34:cc:42:ae:a0:59:dd:
40:63:ea:9f:e8:62:43:e8:68:88:5e:59:10:59:8c:
a1:70:97:ef:1e:59:b7:0e:53:b6:61:f3:d2:c5:a2:
37:26:ec:43:c3:a2:c6:ce:10:50:49:f1:fd:a0:72:
1b:b7:3c:d8:12:97:fc:de:82:28:93:d7:1d:21:cb:
f1:ad:44:d0:04:65:89:c1:84:17:28:76:fd:14:13:
c9:aa:03:56:ad:8b:85:e8:19:5a:c4:e4:0c:3b:2c:
07:c5:20:78:0b:7d:58:fe:72:4a:37:56:80:37:63:
c3:d1:9c:eb:9b:e9:49:84:bf:9a:65:fb:3c:6a:37:
93:f5:68:62:03:50:8b:f1:0d:83:6f:24:35:2e:4f:
0c:25:8b:a7:9d:4e:52:28:60:b1:d9:9d:f6:11:55:
b5:97:69:15:cc:1c:4f:86:6e:06:c5:1f:43:59:95:
15:16:d3:f2:65:8b:9a:f0:ee:c9:25:84:61:43:34:
e3:0b:6e:43:a0:82:0f:e2:92:5e:e5:fd:a9:28:4a:
da:e0:af:4d:ff:70:5e:8c:39:53:6f:37:65:60:ad:
24:c3:04:74:55:1f:9e:34:1c:ad:3a:7f:96:6b:a3:
5f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5B:12:F4:8C:5A:66:12:2D:A2:1C:C6:79:9E:22:6B:D9:9D:7B:6F
X509v3 Authority Key Identifier:
keyid:38:B6:19:F4:1A:06:81:90:FE:ED:04:2E:97:BF:10:44:22:58:9E:41
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OLYZ9BoGgZD-7QQul78QRCJYnkE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3265/OLYZ9BoGgZD-7QQul78QRCJYnkE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:5a:63:ce:e4:fb:3e:d0:34:16:a9:00:e6:9b:67:1c:e6:5a:
b3:45:7a:60:af:78:bf:13:5d:5a:82:56:c0:2c:31:5a:0d:95:
8c:6c:93:eb:2f:cc:90:55:34:86:55:af:3a:d5:42:2f:66:27:
de:ad:be:03:df:f2:2a:91:32:b1:e1:00:5e:ae:27:0d:78:d9:
89:64:cc:9d:42:e8:1b:de:b6:78:0f:33:59:c8:49:a5:04:f3:
e6:af:0d:55:6e:f7:31:57:3d:11:43:fa:ef:8c:cb:2b:59:8f:
39:66:1a:36:17:d7:ac:9d:0e:c4:9c:46:8d:cf:af:7b:68:d9:
dc:dc:12:4e:33:2a:af:86:2e:31:21:c7:ab:38:93:72:95:00:
d8:40:a7:c5:3f:fe:c9:26:9b:22:a6:65:27:b9:a7:b4:c8:59:
40:e3:5e:8b:a1:b0:d3:c3:94:dc:a2:ef:cb:27:65:b7:6f:6e:
b2:70:0f:1b:f0:50:ad:3e:8c:85:8f:7b:67:99:a0:d5:44:ee:
a8:58:e6:50:57:36:14:e5:57:94:92:66:14:4a:cd:d8:42:ca:
cc:2a:95:5f:cb:f4:19:01:e9:2b:22:bb:b7:39:cb:50:2c:1f:
56:f4:db:e0:0b:9b:1b:b9:d6:d3:60:17:f9:40:5f:29:ab:f6:
53:c3:0b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:29:57 2025 by rpki-client