Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft
File: GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft (raw, json)
Hash identifier: 3zFVpmvvu+U1mLmOfIvL/SU7olJrSvJTQIh2ZU7Wh7k=
Subject key identifier: EE:83:F8:CB:C1:FF:8A:1A:AA:97:BE:05:8C:10:0D:8C:C5:DA:F6:58
Authority key identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5
Certificate issuer: /CN=1AF902AD66211881EA040C5FF7203D9BCC87FFC5
Certificate serial: 4FC0
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft
Manifest number: 4FC0
Signing time: Mon 28 Apr 2025 19:36:55 +0000
Manifest this update: Mon 28 Apr 2025 19:36:55 +0000
Manifest next update: Tue 29 Apr 2025 01:36:55 +0000
Files and hashes: 1: GvkCrWYhGIHqBAxf9yA9m8yH_8U.crl (hash: 0AzUZsJ2dGUpu40m6EXJm7qfW0Q8kxDfAmwZaEyQbCM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20416 (0x4fc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AF902AD66211881EA040C5FF7203D9BCC87FFC5
Validity
Not Before: Apr 28 19:36:55 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=EE83F8CBC1FF8A1AAA97BE058C100D8CC5DAF658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f6:ae:bf:8d:92:9a:81:0c:82:6e:94:28:0f:
37:d4:ac:27:d2:32:4a:81:1a:6f:c5:2c:3e:17:1a:
1c:86:02:1c:06:bc:7f:20:09:a4:30:80:cd:17:43:
b8:77:b1:b5:f0:34:41:95:e6:06:da:ca:62:4c:e3:
61:5f:41:e3:d3:6e:59:cc:89:7d:f1:3e:73:8c:c3:
82:1a:25:9f:9f:f6:27:f4:1d:9a:31:58:e1:d8:4a:
aa:57:b1:1b:16:b5:cc:19:47:8c:8b:b7:84:63:14:
96:b0:c3:ad:b2:40:50:12:0f:1e:b2:6c:16:09:20:
6e:00:cc:54:48:77:72:a3:61:c3:ca:67:be:8c:16:
c8:72:e2:78:91:f5:41:08:5a:1b:67:d0:91:05:94:
ba:07:e0:b0:7d:92:bd:c8:5d:3c:81:cd:95:d3:e7:
dd:12:1c:d7:9a:2a:80:f5:62:4b:71:3d:95:ae:01:
2e:89:e1:c3:d8:5f:61:80:5b:1c:27:75:fc:eb:27:
77:77:27:f5:a4:79:1a:82:90:f3:a2:16:bc:e9:88:
00:5d:99:63:86:a0:fe:45:3b:a0:56:39:40:90:fc:
a8:6e:e2:25:61:05:fb:4c:a8:fd:5f:ae:a6:4d:8f:
79:64:f7:85:67:f6:15:3b:2e:d4:63:a9:d5:5a:6f:
0d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:83:F8:CB:C1:FF:8A:1A:AA:97:BE:05:8C:10:0D:8C:C5:DA:F6:58
X509v3 Authority Key Identifier:
keyid:1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
95:c9:7b:f8:7c:ef:d3:0b:23:3f:bb:5a:07:ef:8f:52:9d:bb:
23:05:b0:5a:d9:bd:8b:2c:04:54:66:95:77:87:54:0a:9c:70:
64:4f:36:fa:ad:1e:aa:55:9f:30:91:4d:9f:5b:5a:6e:e3:7b:
6c:4d:96:80:3e:0e:15:30:69:2a:40:1b:09:c3:56:21:34:f2:
69:a9:35:91:57:ba:ec:7d:23:0a:d3:05:11:97:bb:0a:b9:8c:
4c:fd:db:c7:f3:73:6f:07:55:ba:2b:21:08:b8:2f:0c:dd:6b:
34:79:cc:b6:26:37:bc:89:2e:9e:7a:36:bb:9a:43:2a:40:13:
cd:35:3b:b7:a1:95:18:b0:4c:ed:f3:f6:d7:23:bb:d8:9a:62:
2e:16:e4:4e:ac:d5:d2:21:cb:81:48:67:ee:b9:64:13:7d:7d:
3a:fe:e9:64:a3:0a:72:55:7e:8e:03:01:92:bd:a1:9a:c1:56:
ea:10:50:cf:c0:a3:24:c0:76:9b:93:e3:94:7b:af:aa:d1:d1:
43:03:a6:14:b9:65:35:8b:32:99:b3:2d:f4:65:95:26:4c:5f:
84:54:8d:59:76:ca:bc:5f:89:28:77:85:69:9c:0b:94:bd:13:
34:a4:8d:91:66:0d:97:7d:3c:b6:0f:3c:5a:21:ec:ce:2a:93:
54:75:2d:4a
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICT8AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUFG
OTAyQUQ2NjIxMTg4MUVBMDQwQzVGRjcyMDNEOUJDQzg3RkZDNTAeFw0yNTA0Mjgx
OTM2NTVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEVFODNGOENCQzFGRjhB
MUFBQTk3QkUwNThDMTAwRDhDQzVEQUY2NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC79q6/jZKagQyCbpQoDzfUrCfSMkqBGm/FLD4XGhyGAhwGvH8g
CaQwgM0XQ7h3sbXwNEGV5gbaymJM42FfQePTblnMiX3xPnOMw4IaJZ+f9if0HZox
WOHYSqpXsRsWtcwZR4yLt4RjFJaww62yQFASDx6ybBYJIG4AzFRId3KjYcPKZ76M
Fshy4niR9UEIWhtn0JEFlLoH4LB9kr3IXTyBzZXT590SHNeaKoD1YktxPZWuAS6J
4cPYX2GAWxwndfzrJ3d3J/WkeRqCkPOiFrzpiABdmWOGoP5FO6BWOUCQ/Khu4iVh
BftMqP1frqZNj3lk94Vn9hU7LtRjqdVabw0lAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQU7oP4y8H/ihqql74FjBANjMXa9lgwHwYDVR0jBBgwFoAUGvkCrWYhGIHqBAxf
9yA9m8yH/8UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjQ1
My9HdmtDcldZaEdJSHFCQXhmOXlBOW04eUhfOFUuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0d2a0NyV1loR0lIcUJBeGY5eUE5bTh5SF84VS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI0NTMvR3ZrQ3JXWWhHSUhx
QkF4Zjl5QTltOHlIXzhVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBAJXJe/h879MLIz+7Wgfvj1KduyMFsFrZvYssBFRmlXeHVAqccGRPNvqtHqpV
nzCRTZ9bWm7je2xNloA+DhUwaSpAGwnDViE08mmpNZFXuux9IwrTBRGXuwq5jEz9
28fzc28HVborIQi4LwzdazR5zLYmN7yJLp56NruaQypAE801O7ehlRiwTO3z9tcj
u9iaYi4W5E6s1dIhy4FIZ+65ZBN9fTr+6WSjCnJVfo4DAZK9oZrBVuoQUM/AoyTA
dpuT45R7r6rR0UMDphS5ZTWLMpmzLfRllSZMX4RUjVl2yrxfiSh3hWmcC5S9EzSk
jZFmDZd9PLYPPFoh7M4qk1R1LUo=
-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:33 2025 by rpki-client on console.sobornost.net