Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft
File: pDidtIvE6TSc2eEd0MttcHaa4xk.mft (raw, json)
Hash identifier: o+h1H904e/JnbPhUCWGgIl7nzG+uQs+Z91iiPCXJCDk=
Subject key identifier: C0:52:39:ED:FF:B8:35:E3:EA:F1:43:96:11:63:60:E3:9C:CB:FE:1A
Authority key identifier: A4:38:9D:B4:8B:C4:E9:34:9C:D9:E1:1D:D0:CB:6D:70:76:9A:E3:19
Certificate issuer: /CN=A4389DB48BC4E9349CD9E11DD0CB6D70769AE319
Certificate serial: 02E1
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft
Manifest number: 02E1
Signing time: Sat 17 May 2025 13:12:08 +0000
Manifest this update: Sat 17 May 2025 13:12:08 +0000
Manifest next update: Sat 17 May 2025 19:12:08 +0000
Files and hashes: 1: pDidtIvE6TSc2eEd0MttcHaa4xk.crl (hash: BYQU/neqavBFJ5jXtpLsvWL2pRQzYBBQn/zhf2AEgKM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 737 (0x2e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A4389DB48BC4E9349CD9E11DD0CB6D70769AE319
Validity
Not Before: May 17 13:12:08 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=C05239EDFFB835E3EAF14396116360E39CCBFE1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fc:64:9d:88:bd:06:62:49:e7:89:cb:66:36:
3e:77:37:0e:8e:8d:35:9e:5b:97:5d:90:3d:f3:61:
ce:7c:59:e9:0a:31:f1:dd:81:fa:24:99:71:dc:e4:
78:a6:9e:b6:12:74:61:08:47:72:8b:35:66:96:92:
e2:06:10:af:f0:6a:c9:87:1f:de:cd:6e:d0:50:4a:
22:3c:22:4a:58:c6:86:8a:83:95:9a:17:2c:9e:3e:
3e:a3:ad:62:b6:f5:c8:1b:aa:04:e9:64:a7:23:2e:
a2:bd:35:27:55:e2:23:2a:e2:7a:91:bb:f4:1f:c3:
e4:fa:81:82:9f:ea:69:ec:1b:27:a2:b0:b6:8e:90:
3e:86:3d:63:52:bb:dd:75:30:f6:0d:93:a7:97:fc:
98:1b:62:eb:35:67:3c:f7:40:30:58:3a:f0:21:78:
bb:00:d3:55:63:84:3c:8e:87:be:10:5c:6e:62:fa:
80:4a:a4:e8:5b:74:ec:5a:50:7f:1b:eb:64:b5:30:
da:43:09:7a:c3:7a:2f:85:71:5a:4d:72:7b:9b:d2:
ac:5a:b1:a6:50:f1:8a:47:ee:24:27:26:43:85:fa:
07:56:06:69:9a:ba:be:f9:c4:2f:12:c3:4d:d4:ed:
74:d5:1a:24:7b:7a:a7:ad:4f:e0:92:9b:30:95:3f:
c2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:52:39:ED:FF:B8:35:E3:EA:F1:43:96:11:63:60:E3:9C:CB:FE:1A
X509v3 Authority Key Identifier:
keyid:A4:38:9D:B4:8B:C4:E9:34:9C:D9:E1:1D:D0:CB:6D:70:76:9A:E3:19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/pDidtIvE6TSc2eEd0MttcHaa4xk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3340/pDidtIvE6TSc2eEd0MttcHaa4xk.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
90:ec:01:e5:61:6a:5f:1d:70:fa:eb:2e:5d:55:a9:be:df:8a:
af:13:7f:72:41:e8:3d:40:62:a4:d4:dd:a0:78:73:d5:d9:4f:
49:4d:ed:a3:04:c5:3d:d8:24:70:48:2b:f0:68:7d:d6:84:20:
ff:c6:7d:85:8d:e0:1e:03:5f:4c:7b:fe:bf:33:e7:58:a6:9f:
12:67:0d:5f:c9:7d:bf:96:b8:ec:54:1c:ad:12:f9:32:f9:1b:
1b:11:ac:54:3a:6b:6b:2a:1d:77:d2:a5:eb:92:d2:a5:3d:10:
06:da:0a:79:30:a0:72:57:16:51:62:05:65:56:13:f6:55:d5:
cd:f1:0f:ba:c6:e7:8a:a4:bd:9f:df:61:71:f8:d0:eb:cd:0f:
e5:7f:de:d6:5d:3d:a7:c8:07:fe:14:13:ae:af:f0:10:0a:f4:
42:4b:ba:ee:4e:16:7c:44:ed:f3:86:40:e9:88:c1:6d:95:03:
61:11:d6:63:82:7e:4a:c9:e9:d6:da:1b:b2:d1:59:2c:fe:96:
b4:67:24:f8:52:da:b0:29:bb:65:db:3f:cc:ba:17:9d:f6:20:
20:ff:eb:e6:1f:46:f2:06:00:99:db:96:5a:88:c8:63:4b:39:
28:17:72:46:cf:96:83:bf:42:95:91:80:3b:fa:26:95:b2:45:
5f:60:4f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 19:38:01 2025 by rpki-client