Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft
File: aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft (raw, json)
Hash identifier: /93IQaN8eMkP5mt0M4fI2/0SLucZ2iyTnnXn6Fvwbjc=
Subject key identifier: AA:54:C7:33:A6:46:C8:4D:43:40:0E:F5:B3:B5:FE:12:DF:33:E3:CE
Authority key identifier: 69:74:47:C3:97:D1:8C:9E:11:0B:24:E5:05:C1:14:6C:F1:3E:A8:71
Certificate issuer: /CN=697447C397D18C9E110B24E505C1146CF13EA871
Certificate serial: 3A
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft
Manifest number: 39
Signing time: Mon 20 Oct 2025 01:04:15 +0000
Manifest this update: Mon 20 Oct 2025 01:04:15 +0000
Manifest next update: Mon 20 Oct 2025 07:04:15 +0000
Files and hashes: 1: BZUi2Cy-x-5xY8XLQ7H-sa3JIuI.roa (hash: r4NPIAsWOPVI4/TlBnHCHN0/vB3fsl6rRgv0C6aogiE=)
2: aXRHw5fRjJ4RCyTlBcEUbPE-qHE.crl (hash: RmyfvyfBXl52t5/MXefFsgXNCB4G3Qn9rLxBkk12GpA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58 (0x3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=697447C397D18C9E110B24E505C1146CF13EA871
Validity
Not Before: Oct 20 01:04:15 2025 GMT
Not After : Oct 9 06:50:27 2026 GMT
Subject: CN=AA54C733A646C84D43400EF5B3B5FE12DF33E3CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:19:f4:45:c8:e1:99:dc:ac:f8:b0:ab:32:f1:
ec:35:60:05:c1:82:85:2a:68:82:d4:ce:52:46:71:
df:ff:e3:66:54:ed:49:c4:c0:a8:e2:b7:d5:49:a2:
f6:aa:aa:ca:24:79:c9:3f:7c:88:59:e6:b3:37:b9:
95:fb:98:63:34:0b:d2:a0:8c:b0:19:73:71:3a:bf:
a5:b8:31:77:d3:16:14:3c:4a:26:e2:ab:4b:00:d4:
ef:ae:07:ee:49:34:7c:d3:28:4c:44:47:97:7a:24:
e0:dc:e8:51:bf:1b:10:74:c1:05:45:09:11:73:9d:
40:cf:c3:82:09:97:11:12:9f:89:af:f1:9f:16:f1:
0b:6f:60:17:70:07:7f:af:9b:67:58:22:e4:13:26:
7d:42:a0:eb:48:55:9f:55:bc:0e:40:5e:aa:a0:80:
64:65:f7:c0:7e:88:55:98:8d:bd:13:90:59:54:10:
34:50:03:45:73:b3:4d:40:15:9c:28:aa:fc:88:a7:
c5:e6:35:82:8f:fc:90:48:77:d7:16:14:70:16:9d:
d7:38:43:89:0f:d7:4b:17:d5:25:53:9b:0a:6c:b2:
bd:08:f4:49:2f:16:d4:24:63:2d:9c:db:1d:56:18:
8b:bf:92:fb:e5:da:38:c1:ac:5c:a1:67:f7:e0:2f:
c8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:54:C7:33:A6:46:C8:4D:43:40:0E:F5:B3:B5:FE:12:DF:33:E3:CE
X509v3 Authority Key Identifier:
keyid:69:74:47:C3:97:D1:8C:9E:11:0B:24:E5:05:C1:14:6C:F1:3E:A8:71
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/631/aXRHw5fRjJ4RCyTlBcEUbPE-qHE.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
13:c8:16:ae:a6:69:76:84:46:83:4e:f6:2f:a8:94:9b:0d:9c:
f9:10:89:6a:75:f0:ba:bc:14:ae:4b:13:b5:5a:7d:39:86:8a:
e2:d0:12:89:e5:b2:25:79:a0:24:a1:6c:72:1e:09:b0:54:fe:
11:38:ad:5b:80:2c:78:58:32:cd:6e:26:f8:ea:31:89:6b:43:
8f:ac:31:bf:17:aa:5e:5e:38:48:50:c3:41:5b:eb:2a:37:9b:
ff:70:02:be:44:99:69:6f:c0:28:be:c0:d6:c4:4e:1d:2e:4a:
7d:40:60:d3:b0:28:71:b1:4e:1c:f2:76:51:a4:2d:ab:f2:73:
b1:10:b8:31:fc:34:f2:fb:b2:72:52:f5:10:b8:07:57:7c:1c:
07:a1:85:83:83:a5:df:52:6e:e9:af:e9:dd:43:f3:18:ea:03:
36:3a:e1:29:8a:c5:ce:c7:31:24:b9:8e:c4:b8:fe:d9:51:1e:
fc:b0:33:d3:f1:44:6a:a8:57:a2:b5:9a:90:47:97:4e:37:2e:
df:de:8f:18:a0:99:30:af:81:2e:6f:33:b8:55:82:71:ed:5f:
b5:0d:71:42:e8:2d:bb:f9:72:57:dd:5a:41:49:bb:6d:f4:e1:
ce:20:4a:5e:f7:1c:dd:e9:43:3d:31:63:72:ea:ff:a1:a4:57:
00:d2:0e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:52:07 2025 by rpki-client