Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft
File: u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft (raw, json)
Hash identifier: fCbbEL9hX2o6SPC5eFwSm0O13xlJNl/yqcxm7HQgNpA=
Subject key identifier: 02:53:C1:7D:25:A1:E0:73:AD:A2:39:EE:AB:C6:3F:6F:08:F4:25:69
Authority key identifier: BB:FB:51:F1:C5:79:3C:38:82:13:84:FA:98:2C:FE:68:8A:5D:84:0C
Certificate issuer: /CN=BBFB51F1C5793C38821384FA982CFE688A5D840C
Certificate serial: 0633
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/u_tR8cV5PDiCE4T6mCz-aIpdhAw.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft
Manifest number: 0633
Signing time: Sun 19 Oct 2025 22:08:04 +0000
Manifest this update: Sun 19 Oct 2025 22:08:04 +0000
Manifest next update: Mon 20 Oct 2025 04:08:04 +0000
Files and hashes: 1: u_tR8cV5PDiCE4T6mCz-aIpdhAw.crl (hash: HL3y/mRRx5UlWfpKxV++b1oHVyoNrDf/HgLysdEqfR4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1587 (0x633)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBFB51F1C5793C38821384FA982CFE688A5D840C
Validity
Not Before: Oct 19 22:08:04 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=0253C17D25A1E073ADA239EEABC63F6F08F42569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7d:ef:86:8d:7a:f1:02:b0:0f:dd:9a:f5:e2:
e0:22:79:aa:26:0b:fe:d5:ab:d6:60:d3:45:92:07:
c9:86:1e:7f:d7:a1:a6:5e:87:fb:c6:5b:8a:42:96:
08:a2:60:75:54:c8:3a:bb:76:f6:1c:9d:90:ea:7d:
89:95:80:a1:7d:47:25:9b:6f:b8:50:62:0a:70:79:
a0:a6:6e:a9:77:30:7c:de:32:e3:96:99:27:e1:2c:
54:41:9e:47:1c:2c:0d:8b:ed:ce:3d:ef:5e:57:d1:
7a:74:ab:27:86:f8:1c:97:82:e9:1d:3d:7b:23:46:
39:b2:a8:79:cc:d7:09:2e:e7:fa:58:59:e4:a0:c7:
bd:6c:88:fc:64:95:55:c0:f1:ad:19:0f:ce:e9:2b:
95:3b:df:ca:3a:f8:c3:f0:e0:a9:fe:2a:43:72:c3:
9f:a5:12:27:f4:8b:d7:83:82:f0:e7:30:99:2c:d4:
c7:a2:f1:f6:ca:6a:90:11:a1:0c:78:ab:ce:b8:d2:
23:53:94:a0:4d:3c:60:bb:df:ca:94:5d:7a:48:a6:
5f:92:09:b6:f1:e5:c1:be:07:ea:b1:9f:f4:66:02:
d9:18:34:5c:09:2f:81:f8:c0:85:13:0c:85:f4:81:
2c:57:32:35:7d:cc:ad:7b:ac:be:50:58:69:8e:94:
c8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:53:C1:7D:25:A1:E0:73:AD:A2:39:EE:AB:C6:3F:6F:08:F4:25:69
X509v3 Authority Key Identifier:
keyid:BB:FB:51:F1:C5:79:3C:38:82:13:84:FA:98:2C:FE:68:8A:5D:84:0C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/u_tR8cV5PDiCE4T6mCz-aIpdhAw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3334/u_tR8cV5PDiCE4T6mCz-aIpdhAw.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
14:76:b3:ac:ee:22:e2:de:62:c7:4b:e5:7d:c4:85:4f:cb:a9:
1e:97:19:06:8b:59:16:52:63:17:0b:a2:b5:08:7b:d0:66:85:
81:8a:a7:d1:84:1f:2e:0d:8c:7c:0d:b1:16:c9:7f:99:d1:fc:
ee:07:cf:e9:40:93:e9:91:9f:4d:8c:b0:cd:c2:1a:60:05:46:
2c:3d:91:27:26:34:92:c8:f2:a0:bb:f9:0f:55:3b:f5:e4:0b:
0f:a0:eb:80:8b:7e:a1:61:70:1b:c5:3f:81:b8:8c:be:31:c1:
42:3d:b6:aa:90:d1:24:18:51:1c:c6:85:d2:a0:c0:58:38:c5:
ad:bc:3d:a5:74:82:dd:b7:5a:3e:f7:c3:35:2a:8d:a8:2e:1a:
7d:9a:9e:d8:f8:c7:0c:80:1c:a1:0d:bc:3b:80:8c:95:3a:71:
47:fc:50:e9:85:cb:31:a7:69:ca:51:4d:bd:65:8b:23:bc:92:
83:4a:b3:42:4c:72:3e:d7:2a:ea:dc:a0:92:0c:da:ba:e0:30:
3a:99:24:e8:13:9a:f7:da:cf:13:b0:8a:e7:d2:9f:f8:88:a0:
eb:c3:c4:b2:bc:77:36:87:9b:a6:55:bf:67:4c:76:75:be:34:
43:d8:75:25:88:72:dd:db:b1:d2:08:37:0d:c8:23:77:f9:72:
0c:cc:82:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:23:35 2025 by rpki-client