Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3023/H4HG-W0BkJkB20LNehLnmKk_Trc.mft
File: H4HG-W0BkJkB20LNehLnmKk_Trc.mft (raw, json)
Hash identifier: HoUWX8Rqi96or6eRt+5xSXk4A9okUwz7KH80lZMZwdI=
Subject key identifier: 28:8B:2C:D2:5A:72:65:02:C8:E7:0C:1A:5D:FE:7B:88:37:0F:67:4E
Authority key identifier: 1F:81:C6:F9:6D:01:90:99:01:DB:42:CD:7A:12:E7:98:A9:3F:4E:B7
Certificate issuer: /CN=1F81C6F96D01909901DB42CD7A12E798A93F4EB7
Certificate serial: 20C5
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H4HG-W0BkJkB20LNehLnmKk_Trc.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3023/H4HG-W0BkJkB20LNehLnmKk_Trc.mft
Manifest number: 20C5
Signing time: Mon 28 Apr 2025 19:40:09 +0000
Manifest this update: Mon 28 Apr 2025 19:40:09 +0000
Manifest next update: Tue 29 Apr 2025 01:40:09 +0000
Files and hashes: 1: H4HG-W0BkJkB20LNehLnmKk_Trc.crl (hash: HnWEJY9oJgwWAGIf5aWk8uoA5Zj5/DDCuQtav1wnryY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8389 (0x20c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F81C6F96D01909901DB42CD7A12E798A93F4EB7
Validity
Not Before: Apr 28 19:40:09 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=288B2CD25A726502C8E70C1A5DFE7B88370F674E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ab:01:e3:31:74:77:76:6e:ae:0d:cd:02:f0:
bc:8f:70:47:97:3b:28:21:d6:db:28:68:f6:e0:ff:
aa:18:2b:bf:1a:ca:2f:4d:fe:f9:e7:ab:2d:3f:fc:
42:87:6b:c3:7d:56:d9:aa:22:23:2a:c2:da:1c:34:
18:ed:8e:34:12:5a:25:e2:07:b4:fb:36:5f:43:4b:
99:0f:14:32:bf:c0:25:8f:5f:18:0b:fd:d0:40:02:
36:52:8d:d4:da:1d:20:fe:03:f5:14:ea:12:fe:38:
c2:65:d7:26:af:c1:de:eb:01:0a:e9:e3:0f:31:ad:
0f:93:a4:8a:38:be:e7:e7:a5:45:e6:ce:d1:53:68:
8f:65:85:b4:33:a2:8a:87:9e:24:82:2a:ed:cf:10:
17:15:a5:33:55:04:0b:c2:dd:16:cc:71:33:d6:41:
fd:30:85:e9:d1:17:17:66:48:e2:ec:42:44:c8:07:
b9:e7:06:c5:cc:15:dc:f4:21:55:cc:e2:3e:c2:9a:
4f:60:59:cc:54:b5:d8:29:78:84:98:5b:b3:2d:2e:
61:b2:89:0b:26:91:aa:65:00:2c:ae:8a:82:56:bb:
00:c2:ab:2e:d5:11:4d:b5:46:bd:ef:1a:34:02:d9:
50:f6:5a:0e:93:a1:fd:f9:d1:92:3d:d0:fe:ae:7c:
95:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8B:2C:D2:5A:72:65:02:C8:E7:0C:1A:5D:FE:7B:88:37:0F:67:4E
X509v3 Authority Key Identifier:
keyid:1F:81:C6:F9:6D:01:90:99:01:DB:42:CD:7A:12:E7:98:A9:3F:4E:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3023/H4HG-W0BkJkB20LNehLnmKk_Trc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H4HG-W0BkJkB20LNehLnmKk_Trc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3023/H4HG-W0BkJkB20LNehLnmKk_Trc.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
56:25:4e:aa:7f:27:36:ba:f2:2f:45:67:61:26:fb:83:58:9d:
ce:55:bc:61:4f:3d:dc:e2:c0:48:f0:61:c1:a1:43:1f:6e:11:
1b:97:fb:80:4a:01:b0:61:71:a9:1a:c6:a8:8d:d3:a8:27:57:
48:55:72:de:71:12:20:ac:a3:20:be:3e:72:b2:54:0e:31:aa:
95:0f:40:69:7a:82:66:ef:92:c1:2c:51:35:a8:80:0c:78:4d:
9b:7b:16:b2:00:82:d8:03:8f:bb:a7:c5:0d:3e:29:b8:9d:f3:
60:41:d1:3f:ac:b5:10:f1:99:11:a3:8c:e4:ed:17:b0:c2:3e:
34:28:20:6d:3c:23:55:4c:c5:bf:a3:85:6d:d8:e4:1e:04:68:
ff:e6:da:da:f0:60:4b:e8:9e:fd:b3:a1:f6:6b:39:89:f9:ca:
3a:bd:46:24:0e:53:b5:38:81:bf:6d:98:fa:8e:c7:2e:16:5e:
d4:24:e1:d8:5b:9a:3f:0d:49:1d:b3:1d:71:f4:07:57:c0:78:
37:2d:49:dd:ef:9c:bb:cb:69:53:c5:e3:ac:55:cc:b3:98:70:
10:32:f1:b3:86:bf:bd:71:fe:61:aa:94:f3:6d:ef:c0:23:c8:
92:22:a7:59:5c:7a:e1:7e:ee:70:58:56:10:2e:75:12:71:3f:
2c:7e:f2:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:41 2025 by rpki-client on console.sobornost.net