Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft
File: H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft (raw, json)
Hash identifier: JrORMUmP5EndSSMC1S3p/6XO9I/A7PSivhbQdrwziHo=
Subject key identifier: 5F:BE:75:6E:5D:53:DF:C2:2E:3E:58:F9:2F:30:FD:94:57:44:AF:E7
Authority key identifier: 1F:41:F7:70:B9:61:EA:B5:E3:F0:2D:CF:78:2F:C6:1C:67:56:27:4D
Certificate issuer: /CN=1F41F770B961EAB5E3F02DCF782FC61C6756274D
Certificate serial: 01AE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0H3cLlh6rXj8C3PeC_GHGdWJ00.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft
Manifest number: 01AE
Signing time: Fri 16 May 2025 17:14:01 +0000
Manifest this update: Fri 16 May 2025 17:14:01 +0000
Manifest next update: Fri 16 May 2025 23:14:01 +0000
Files and hashes: 1: H0H3cLlh6rXj8C3PeC_GHGdWJ00.crl (hash: eTm54GT8Y59Sf68bYsv3EcXwFqw9rmHwkP8vvgn4QSY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430 (0x1ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F41F770B961EAB5E3F02DCF782FC61C6756274D
Validity
Not Before: May 16 17:14:01 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=5FBE756E5D53DFC22E3E58F92F30FD945744AFE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:29:e5:2a:3a:1c:96:6b:15:d9:90:40:2e:ff:
36:34:3d:dd:bd:df:58:d5:a3:8e:f5:92:29:06:1f:
bf:84:20:4a:af:9c:6f:00:d9:38:63:9b:46:c5:0d:
c4:3f:3b:bd:ae:70:10:02:8c:9f:5b:ac:93:4c:69:
31:94:bf:5b:81:a2:b7:64:62:79:2d:f3:53:09:5f:
df:cb:06:bb:5b:a9:25:80:23:d5:7f:f7:15:91:66:
c6:f5:67:0c:ba:6b:c0:e6:a9:30:86:72:f2:6b:07:
43:4d:75:43:8e:ad:9a:92:4a:95:69:b7:aa:42:61:
5c:96:4b:41:f8:82:b2:d2:da:e0:19:c3:36:65:a2:
b2:de:06:a6:e4:31:24:f1:0d:9f:32:9e:59:92:e0:
fb:2d:b6:ba:6f:b0:ee:8f:f4:1a:08:f8:7d:ce:cb:
1b:40:b8:fc:66:7e:ef:bf:5d:ef:1c:2e:2e:1a:dc:
d6:15:82:4b:ba:1f:0c:72:1a:aa:75:7b:55:55:b3:
fa:ec:b0:ee:db:07:f0:6f:73:06:23:34:3f:34:37:
5b:a3:05:bd:f6:ae:55:e7:fc:50:55:e0:d9:97:f9:
c6:60:27:8b:82:df:64:af:54:06:05:93:5b:c0:97:
5c:dd:76:4b:a2:56:75:5c:eb:8e:32:47:2b:d1:ef:
04:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BE:75:6E:5D:53:DF:C2:2E:3E:58:F9:2F:30:FD:94:57:44:AF:E7
X509v3 Authority Key Identifier:
keyid:1F:41:F7:70:B9:61:EA:B5:E3:F0:2D:CF:78:2F:C6:1C:67:56:27:4D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H0H3cLlh6rXj8C3PeC_GHGdWJ00.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3352/H0H3cLlh6rXj8C3PeC_GHGdWJ00.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
00:35:47:fb:ff:85:59:5e:5c:ff:08:44:7f:f4:ca:a9:83:15:
a8:1e:bc:98:13:bb:a5:41:46:02:d4:39:f1:d0:49:f2:b7:03:
9a:ba:e1:e9:fe:cd:ff:75:3e:eb:50:3d:83:cd:54:8e:2b:70:
7a:2d:2c:af:69:bb:1e:14:8d:1f:1b:59:e6:ea:46:f7:b4:6f:
78:c5:b3:11:e2:f1:92:2a:4b:7f:5d:58:f9:3a:68:c7:34:0e:
62:52:a6:3e:c6:e3:06:08:c8:2e:08:c5:3c:14:03:8e:df:99:
2b:1e:00:12:fa:34:e9:66:91:56:86:06:74:16:9b:62:93:a4:
ec:8a:9a:4c:fa:ba:7e:bc:18:8a:a2:e5:78:d6:29:a1:d0:c7:
dd:64:b3:62:38:18:ff:93:8e:2e:56:b3:c6:cf:bc:83:74:a8:
88:d3:92:29:b0:e9:7a:aa:50:e5:66:37:cd:b3:1d:fb:c9:7d:
58:09:84:b4:5f:6b:60:bf:5d:1c:2d:0f:ad:6d:76:5e:15:b0:
67:25:88:d6:8c:b4:09:9c:2f:9a:76:d1:6b:46:b5:d4:5c:ec:
54:1c:b9:37:50:6a:9b:72:0a:ef:35:a5:a1:99:08:e1:94:2a:
a4:64:db:78:33:80:b2:cb:57:cf:a7:18:bc:f2:32:c3:7f:d4:
c2:eb:76:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 23:59:53 2025 by rpki-client