Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3322/Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.mft
File: Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.mft (raw, json)
Hash identifier: uPhVqXsUF8dS0DO8n1RcX4nMU2lRq9GcLY273e4d7mQ=
Subject key identifier: BF:78:21:F7:8F:FC:41:8D:66:AB:C2:C9:04:52:3A:53:F5:0E:1A:B7
Authority key identifier: 1A:CD:C2:6C:4E:0F:67:0D:FE:0B:A6:3C:2F:23:4D:E4:6F:62:2B:AA
Certificate issuer: /CN=1ACDC26C4E0F670DFE0BA63C2F234DE46F622BAA
Certificate serial: 0229
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.mft
Manifest number: 0229
Signing time: Fri 31 Jan 2025 15:26:17 +0000
Manifest this update: Fri 31 Jan 2025 15:26:17 +0000
Manifest next update: Fri 31 Jan 2025 21:26:17 +0000
Files and hashes: 1: Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.crl (hash: pt0+uinbF8BEUErxZBkS4aEvaOX7gyNIPVPdlTlsIQc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 553 (0x229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ACDC26C4E0F670DFE0BA63C2F234DE46F622BAA
Validity
Not Before: Jan 31 15:26:17 2025 GMT
Not After : Oct 12 07:27:43 2025 GMT
Subject: CN=BF7821F78FFC418D66ABC2C904523A53F50E1AB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8e:f6:2f:ee:1a:47:a8:a0:29:f3:cf:46:70:
8f:f3:f1:6a:c8:f5:d0:a5:56:7d:e1:dc:f9:f8:60:
61:a1:07:60:57:c0:44:0b:ec:63:1e:9b:05:27:4e:
9f:de:07:ae:49:55:1d:20:94:37:27:c2:dc:e0:80:
30:b2:af:71:d5:69:62:b3:e0:1d:d8:e0:5d:86:ef:
5c:aa:fe:bb:7c:7a:d5:63:33:89:d9:49:28:7a:4f:
c5:fb:91:b2:48:6d:7b:09:e0:dd:a1:23:d1:92:f6:
21:e7:6e:d6:92:5e:71:e6:0b:e2:35:80:dc:c8:a3:
51:ad:06:4f:0d:51:00:d9:6f:eb:04:82:ec:a4:07:
e5:af:06:44:95:6d:12:68:20:5d:f6:1f:00:83:11:
65:25:e0:01:ce:0d:ad:cc:28:7e:d2:8d:da:62:61:
89:ba:7f:b3:e6:09:6e:03:f0:49:67:b6:5c:68:01:
c7:54:40:58:58:b1:4d:28:64:27:38:56:f8:f4:f9:
c9:d3:ea:64:e9:2d:f1:ac:4c:27:84:b4:e1:40:0a:
df:39:65:80:3a:1f:ca:84:bc:46:55:fd:89:2e:97:
27:a5:4a:ff:3d:99:8e:b7:0a:e5:78:0f:2c:d9:12:
3f:c1:a8:c5:14:cd:24:f1:a3:60:50:08:e0:09:19:
fd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:78:21:F7:8F:FC:41:8D:66:AB:C2:C9:04:52:3A:53:F5:0E:1A:B7
X509v3 Authority Key Identifier:
keyid:1A:CD:C2:6C:4E:0F:67:0D:FE:0B:A6:3C:2F:23:4D:E4:6F:62:2B:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3322/Gs3CbE4PZw3-C6Y8LyNN5G9iK6o.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
06:98:83:85:fb:00:c9:31:9a:e8:1f:29:23:ca:e3:2d:6b:2e:
73:40:eb:44:76:b3:ae:73:06:30:ae:a4:20:58:18:a8:f8:e6:
8a:bf:82:2a:e6:61:b9:12:ad:e8:74:41:46:3b:38:7b:c7:61:
02:8a:f2:4d:1d:39:fc:eb:82:65:fc:ef:33:1a:c6:95:55:bc:
28:bc:42:22:d8:f4:42:15:14:d1:60:d8:d9:1e:f8:f2:b9:6a:
d9:d9:11:a6:37:65:b1:95:6c:06:af:79:62:3c:8a:87:8a:da:
07:5d:c2:be:7b:8c:d1:6d:6a:28:c1:7e:bf:71:be:64:8d:ed:
b6:ed:52:38:7a:3f:2a:d6:d4:57:36:b2:29:e1:d1:80:37:e9:
c4:00:c0:fa:90:92:dd:07:65:d9:19:7d:8b:2f:df:32:8f:4e:
e6:2f:e6:04:93:d4:b3:de:fe:e2:fe:9e:e4:1d:64:c4:6e:e2:
aa:0d:a8:ea:4c:0a:34:17:ff:06:a7:cc:9c:2c:c5:8e:57:dd:
cf:91:90:2b:0a:13:68:60:a4:51:4d:2f:67:f4:5d:44:c4:56:
fd:9f:45:be:51:11:c4:e9:cf:03:6a:85:94:a3:50:69:8f:0b:
bd:84:5d:1f:26:3b:45:42:00:3c:ee:ae:7b:f4:e6:87:56:fc:
da:95:b8:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:51:57 2025 by rpki-client