Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.mft
File: UgcnAEPag5sInL-JHVe0GrI5rYo.mft (raw, json)
Hash identifier: xJmUxYeSgh/y7Cf8JjZz4hzQIraeI95oOfYL0WF5piI=
Subject key identifier: 07:6B:FC:AB:6C:1B:91:6D:A2:F5:0F:1A:9F:03:3F:91:66:7C:4A:22
Authority key identifier: 52:07:27:00:43:DA:83:9B:08:9C:BF:89:1D:57:B4:1A:B2:39:AD:8A
Certificate issuer: /CN=5207270043DA839B089CBF891D57B41AB239AD8A
Certificate serial: 0A08
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UgcnAEPag5sInL-JHVe0GrI5rYo.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.mft
Manifest number: 0A08
Signing time: Sat 23 Aug 2025 21:04:07 +0000
Manifest this update: Sat 23 Aug 2025 21:04:07 +0000
Manifest next update: Sun 24 Aug 2025 03:04:07 +0000
Files and hashes: 1: UgcnAEPag5sInL-JHVe0GrI5rYo.crl (hash: OhSTPu63GiMRny9vTlgB4tbb2xm1kGZMk2iMbWQPWk8=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2568 (0xa08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5207270043DA839B089CBF891D57B41AB239AD8A
Validity
Not Before: Aug 23 21:04:07 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=076BFCAB6C1B916DA2F50F1A9F033F91667C4A22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:25:7c:17:61:a5:b7:97:2d:83:0c:08:aa:14:
d8:8c:da:f3:0e:a4:fc:c6:60:69:23:35:d3:df:a5:
20:17:4c:f8:ca:fd:24:d5:c1:f9:f7:8c:87:fd:a4:
13:37:70:b9:a7:1a:c6:76:5a:ff:65:eb:00:3b:cb:
ad:70:e4:62:6e:f6:50:78:0e:c8:91:02:42:ec:a8:
27:89:a2:d7:b2:94:c8:85:90:8f:2a:4c:b5:19:14:
42:33:cb:83:e8:38:27:72:1b:29:71:b5:41:2e:0f:
54:25:dd:8b:f0:ef:4b:32:1f:5f:12:dd:c7:d0:7f:
4a:db:7b:a1:21:0e:dd:b8:75:97:d2:05:98:95:13:
81:44:09:41:d6:8a:14:c0:b5:a1:f0:1c:8c:a1:a3:
d5:ad:fe:da:d8:ac:a9:6b:bf:54:27:b1:96:6b:88:
3b:60:23:36:5e:d1:5d:7a:7c:80:9c:f6:84:40:c8:
2f:88:31:94:f7:9e:bc:50:d2:2e:15:9a:23:df:9c:
20:39:42:88:d7:c5:d7:1a:10:b1:2c:7a:0f:e3:ed:
0d:d9:d7:c2:6f:be:8b:a0:84:51:8f:b2:97:b8:54:
00:f4:b8:7f:3a:44:5d:5f:5d:2b:6a:25:01:02:73:
4c:71:ea:b9:7a:64:61:27:ca:ec:99:79:8a:c1:83:
20:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6B:FC:AB:6C:1B:91:6D:A2:F5:0F:1A:9F:03:3F:91:66:7C:4A:22
X509v3 Authority Key Identifier:
keyid:52:07:27:00:43:DA:83:9B:08:9C:BF:89:1D:57:B4:1A:B2:39:AD:8A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UgcnAEPag5sInL-JHVe0GrI5rYo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3271/UgcnAEPag5sInL-JHVe0GrI5rYo.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:ce:e3:8b:88:6e:e9:ba:18:c6:38:46:ae:5d:f3:0a:6b:c2:
1b:c3:dd:14:a4:4e:9a:ad:60:1f:6b:86:59:64:35:a8:d0:f7:
98:07:0a:60:25:7c:f7:fc:58:b6:dd:09:f1:04:a5:da:26:f3:
d6:99:ec:ad:de:b8:3b:ff:b8:2b:6a:5b:3d:df:a9:8e:a5:89:
62:e8:13:c8:e2:31:ff:9d:9f:62:8c:50:b2:7d:98:2a:08:42:
38:28:d4:6c:d9:b2:80:bd:5e:f1:9f:0c:b8:0b:51:7a:dc:0c:
68:8e:3f:93:f4:96:95:5e:54:2b:cf:0c:12:d6:15:41:2a:cd:
ed:1e:c9:76:e0:34:0b:3e:29:37:09:17:e7:06:22:e2:8d:55:
3d:3e:41:cb:7e:83:7e:4e:79:57:74:6c:84:12:61:0a:0c:8f:
dd:1e:3c:d7:11:b0:d2:cb:f1:fa:5f:8b:f0:f4:e8:e8:bb:1e:
ee:8b:3f:19:4d:56:5e:1d:c9:1d:97:56:6e:20:36:72:96:a8:
d0:44:35:80:69:90:b0:d2:64:41:69:e9:72:74:23:10:2c:b7:
fa:db:46:33:ba:d7:94:8a:95:9f:f9:21:f2:85:01:fd:15:0f:
75:35:d0:38:fa:e9:62:86:47:91:45:f5:b6:3c:73:55:89:91:
77:0f:41:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:39:12 2025 by rpki-client