Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft
File: yiG6irdU_NZK2pljjW_l5HJTtME.mft (raw, json)
Hash identifier: ZeI3dSLyimRkA1CTH3RfLZ+0zgX8FTGJAauymNOkJ5k=
Subject key identifier: 68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34
Authority key identifier: CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1
Certificate issuer: /CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1
Certificate serial: 2996
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft
Manifest number: 2996
Signing time: Sat 17 May 2025 22:39:48 +0000
Manifest this update: Sat 17 May 2025 22:39:47 +0000
Manifest next update: Sun 18 May 2025 04:39:47 +0000
Files and hashes: 1: yiG6irdU_NZK2pljjW_l5HJTtME.crl (hash: Z98WovI/Cz4i38mIkWDcObvRuDSaJzHHkcWq7VZJFYE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10646 (0x2996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA21BA8AB754FCD64ADA99638D6FE5E47253B4C1
Validity
Not Before: May 17 22:39:47 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=68C24A1388FC9D03DDD1064E2D286614B99B9434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:35:45:84:0d:f7:9c:a7:65:94:83:6d:ed:a4:
ef:0e:58:34:52:71:ae:b9:fc:eb:af:f2:19:7c:fa:
68:fd:76:de:aa:43:e7:01:5f:f2:a7:a7:18:11:ec:
70:de:c2:50:21:52:73:aa:4d:79:8a:20:5b:b8:6d:
8a:6b:59:68:28:7c:ee:84:19:8d:5e:88:82:df:2e:
3e:6f:e9:bf:95:65:32:57:49:c1:74:64:c8:64:44:
38:5e:32:9c:a4:34:b0:55:6b:e3:60:9c:a4:b2:a0:
e4:74:71:87:d2:f4:73:d7:31:61:cc:55:e1:06:eb:
2d:06:5d:b5:d0:7d:a7:b4:95:2b:db:63:f6:24:35:
82:6f:1a:4d:96:b3:95:c3:f5:88:8b:81:44:bf:08:
8d:b2:b9:73:8e:47:26:16:fa:e9:be:36:09:a2:fc:
2b:ad:76:9e:20:5f:89:4e:7e:06:3c:b9:70:38:55:
44:ad:5b:b1:8c:75:45:f2:ae:35:12:62:1f:98:16:
4c:96:a6:83:1d:48:2e:e2:3f:3c:df:7e:dd:44:17:
7f:eb:30:b1:a8:ae:e8:a5:40:ef:a9:ae:af:00:80:
84:a1:68:96:2f:48:08:fd:e2:fc:bc:ec:74:3c:bb:
16:27:13:a3:8b:fc:38:0e:ac:af:fe:16:67:3a:36:
2d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C2:4A:13:88:FC:9D:03:DD:D1:06:4E:2D:28:66:14:B9:9B:94:34
X509v3 Authority Key Identifier:
keyid:CA:21:BA:8A:B7:54:FC:D6:4A:DA:99:63:8D:6F:E5:E4:72:53:B4:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/yiG6irdU_NZK2pljjW_l5HJTtME.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/98/yiG6irdU_NZK2pljjW_l5HJTtME.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
54:94:25:fd:2c:d9:8e:aa:2a:b4:e6:e0:63:fa:9d:dd:68:67:
36:6d:c8:b4:ca:ef:25:9d:89:b0:17:9a:65:42:cb:0a:0a:af:
6c:be:4e:1f:8b:2e:36:d3:a8:ce:08:b6:98:dd:7f:8a:62:6f:
ed:27:aa:d1:37:bf:bd:b4:3c:e6:5a:12:4c:9f:1d:3a:71:84:
9f:88:27:98:38:6d:58:db:3c:43:46:6d:4b:d0:2b:9c:c7:36:
16:86:05:a3:c5:5f:80:2e:21:43:ab:c3:71:5d:fe:6b:ea:aa:
05:67:5b:f7:5b:b7:82:c1:18:ec:73:ce:fc:54:50:df:56:7a:
a2:7e:75:56:6b:17:b0:b4:85:cd:c0:24:c0:da:0e:e6:89:d0:
58:f8:83:4b:a3:df:b5:f9:25:da:e9:24:5a:a1:7d:1b:e8:03:
c7:97:7b:1b:b6:ae:3d:e4:52:3c:ac:f3:d4:25:21:61:64:65:
69:c2:a2:88:d4:14:a9:50:86:df:8c:8d:39:07:07:10:a9:a3:
dc:9a:4a:c7:24:ed:b1:2c:b4:78:e2:75:02:8f:94:db:27:93:
ea:b4:1e:47:cc:85:19:91:54:6d:27:17:32:fa:00:f2:db:e1:
04:be:3b:a0:58:ba:fe:9b:15:d6:38:15:52:82:41:d7:a4:73:
34:be:80:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 18 04:45:33 2025 by rpki-client