Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft
File: OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft (raw, json)
Hash identifier: AwVfOz1vGDmvlDDfChrUCoXc1l8mKjsjyedEwDP7Hqc=
Subject key identifier: A2:B1:0D:87:B2:0C:1D:01:60:A4:67:5C:11:BF:53:A0:49:28:C5:23
Authority key identifier: 39:D2:89:C2:10:E0:ED:08:BD:30:06:0E:C8:FD:CE:6D:68:EE:69:95
Certificate issuer: /CN=39D289C210E0ED08BD30060EC8FDCE6D68EE6995
Certificate serial: 16D2
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft
Manifest number: 16D2
Signing time: Sun 24 Aug 2025 02:04:04 +0000
Manifest this update: Sun 24 Aug 2025 02:04:04 +0000
Manifest next update: Sun 24 Aug 2025 08:04:04 +0000
Files and hashes: 1: OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl (hash: GrBZoP7qFx26F1BqS4XBpVyDHhG8GBoMj0bhzcLDX/Y=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5842 (0x16d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39D289C210E0ED08BD30060EC8FDCE6D68EE6995
Validity
Not Before: Aug 24 02:04:04 2025 GMT
Not After : Aug 3 08:44:40 2026 GMT
Subject: CN=A2B10D87B20C1D0160A4675C11BF53A04928C523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f5:0f:57:bf:fd:7f:fc:57:01:e7:d8:db:f1:
33:81:b6:c1:f4:14:a7:56:4d:ca:ab:f7:58:59:e2:
9c:ad:d5:06:0a:9d:1d:7d:8e:79:3e:65:bd:2f:15:
f0:d5:85:04:0b:c5:d0:fe:54:e4:6a:41:ee:79:d1:
1a:15:91:74:c2:9d:94:81:82:9d:ca:0a:3b:c2:b5:
6f:6b:50:ff:db:03:c5:02:e8:d1:4b:43:e9:84:ca:
fd:cf:93:a1:d2:ba:14:1d:79:ca:4f:87:dd:56:a8:
2a:6e:be:46:0a:78:f4:86:5d:3f:a4:8c:b0:4b:3a:
ef:1e:e6:c2:ca:e5:84:a3:1b:34:4f:8c:03:9f:09:
6a:b8:c2:ed:33:29:ee:7b:a0:ac:77:13:53:6b:4d:
fa:db:c5:49:1c:6e:c0:47:cb:45:15:b9:8b:ae:b1:
9a:4e:93:c4:7e:d0:46:63:e0:3e:25:bd:f0:3e:3c:
ad:30:ec:f0:a9:32:96:bb:ac:fa:64:6d:a6:0e:87:
22:20:90:96:a4:6d:c8:2f:ad:27:2a:ef:c4:9d:08:
d7:38:a3:52:f2:10:44:5c:33:be:16:86:c9:d7:07:
ac:82:5b:53:fb:9b:45:4c:91:80:fd:04:5f:2b:cc:
74:30:5c:7f:8c:cf:dd:71:2d:a0:2d:45:46:6b:48:
3c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B1:0D:87:B2:0C:1D:01:60:A4:67:5C:11:BF:53:A0:49:28:C5:23
X509v3 Authority Key Identifier:
keyid:39:D2:89:C2:10:E0:ED:08:BD:30:06:0E:C8:FD:CE:6D:68:EE:69:95
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/50/OdKJwhDg7Qi9MAYOyP3ObWjuaZU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8b:29:95:8d:c3:ed:8d:bf:da:15:a2:62:85:24:b0:6a:8a:f0:
e9:d4:49:26:22:03:d8:12:9b:64:0e:10:3e:3a:f0:71:d2:d8:
cf:23:3c:e8:89:e4:d3:04:e4:86:1b:5a:4f:a8:9d:59:88:84:
d8:6d:ac:18:97:70:8f:af:1e:e0:63:f6:be:86:e2:84:66:5c:
07:c0:9b:cc:fc:f2:d1:77:31:ab:41:7a:9c:df:e0:52:41:dd:
97:5a:36:e4:81:f4:8c:2a:e0:5c:0f:28:af:10:6a:7a:d8:0b:
b6:08:da:f3:5f:a2:aa:b8:98:b5:0e:c2:f4:3c:46:c8:af:ca:
55:91:1a:8b:e7:f4:69:f9:f5:01:17:b1:70:08:a3:ed:17:e6:
38:b8:37:ce:27:f8:14:f3:0e:e7:7f:3c:2f:96:2c:88:be:3f:
6f:02:ae:a8:b6:1a:e7:8c:7d:68:3b:86:cf:d0:77:7e:1c:48:
59:29:67:24:10:59:85:a3:64:6d:60:28:c0:51:16:73:e9:4d:
c7:59:23:73:79:1e:cd:28:ce:c9:82:f3:92:33:18:4c:db:46:
25:0a:26:dd:6d:28:48:6a:76:a5:11:6a:b6:10:ff:fe:3c:b7:
12:f7:3b:d3:73:c6:32:f6:b0:29:76:7a:a4:a2:f5:43:08:3b:
43:0e:5c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 07:16:20 2025 by rpki-client