Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3239/K_-tbb6GgEycV_BdDDuGxFNO9xg.mft
File: K_-tbb6GgEycV_BdDDuGxFNO9xg.mft (raw, json)
Hash identifier: O35dicpe2DIr/JGJpNHURGlde0RbRC6ws4cnqfs7BHA=
Subject key identifier: 17:8D:4B:51:69:CD:A2:4E:9A:65:E8:CA:42:C3:9D:0F:BD:F7:1C:62
Authority key identifier: 2B:FF:AD:6D:BE:86:80:4C:9C:57:F0:5D:0C:3B:86:C4:53:4E:F7:18
Certificate issuer: /CN=2BFFAD6DBE86804C9C57F05D0C3B86C4534EF718
Certificate serial: 0BAF
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/K_-tbb6GgEycV_BdDDuGxFNO9xg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3239/K_-tbb6GgEycV_BdDDuGxFNO9xg.mft
Manifest number: 0BAF
Signing time: Mon 28 Apr 2025 19:38:03 +0000
Manifest this update: Mon 28 Apr 2025 19:38:03 +0000
Manifest next update: Tue 29 Apr 2025 01:38:03 +0000
Files and hashes: 1: K_-tbb6GgEycV_BdDDuGxFNO9xg.crl (hash: m1bVshYr/9/nnQ46cqx7WiECHZlliZVpz8lliwrhSvI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2991 (0xbaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2BFFAD6DBE86804C9C57F05D0C3B86C4534EF718
Validity
Not Before: Apr 28 19:38:03 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=178D4B5169CDA24E9A65E8CA42C39D0FBDF71C62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3b:93:54:95:aa:c3:53:d8:6c:da:56:3d:b5:
35:8c:0e:5c:19:d3:2b:cd:70:77:75:b0:a3:69:d8:
30:6d:23:94:3d:85:aa:3e:2e:9f:6e:a5:ee:4a:6d:
66:dd:46:42:ce:45:38:e7:f5:e6:2d:19:43:8b:cf:
4e:20:96:5c:4c:a9:48:59:6f:5e:c3:c3:c7:fe:14:
3d:27:bc:1b:6d:ad:28:6c:af:c5:19:8e:ac:44:27:
93:52:76:e5:58:16:b9:b3:1e:a3:ea:cf:1d:a3:ad:
72:b2:fe:ab:30:20:0a:4e:61:b0:a2:b9:1d:d8:9e:
55:bd:25:2a:04:74:81:4f:fd:8c:cc:22:44:4d:2e:
da:88:b8:38:65:0a:03:7a:7e:c7:1f:b1:9a:be:b7:
52:85:b4:ed:6a:78:93:d7:a5:8e:f8:9c:85:c5:7a:
77:48:2a:6e:b9:97:05:ff:29:92:28:90:f1:80:0b:
d8:7c:bc:db:09:40:d1:ed:8e:1c:01:c4:54:7e:08:
4a:b9:21:73:73:3f:83:0b:f0:ee:3a:43:eb:69:67:
b4:c2:e7:a4:35:44:96:5a:66:bc:cc:b2:fe:a2:c8:
8d:58:70:a6:20:e3:ff:9e:b7:bb:ff:9e:f3:18:bf:
c8:da:56:a4:07:87:cc:fc:06:a3:a4:e5:1c:a7:eb:
21:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:8D:4B:51:69:CD:A2:4E:9A:65:E8:CA:42:C3:9D:0F:BD:F7:1C:62
X509v3 Authority Key Identifier:
keyid:2B:FF:AD:6D:BE:86:80:4C:9C:57:F0:5D:0C:3B:86:C4:53:4E:F7:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3239/K_-tbb6GgEycV_BdDDuGxFNO9xg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/K_-tbb6GgEycV_BdDDuGxFNO9xg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3239/K_-tbb6GgEycV_BdDDuGxFNO9xg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3d:62:a4:48:1d:f5:31:3a:bb:a7:9e:13:32:e7:a3:a2:c5:df:
b0:46:12:e6:e2:70:df:3c:d6:04:37:f5:31:2c:18:d1:48:30:
e2:2a:0b:ed:01:3b:b6:ef:6e:76:59:b2:e4:00:f6:31:d4:da:
07:8b:b4:74:65:d3:1b:95:c1:de:40:03:c5:88:00:db:c8:7a:
18:b3:6a:5d:0f:68:aa:de:c7:89:57:61:58:73:97:de:34:e7:
cb:c6:77:e9:c3:6b:23:5d:02:cb:db:9b:c4:26:90:8b:f6:6b:
ed:14:bc:31:fd:36:12:00:70:63:0f:a8:4b:c9:08:bf:46:8a:
5a:41:9c:16:55:12:44:8f:9a:69:0d:5f:ff:ec:bb:b7:00:3e:
a6:d4:96:ac:4b:a5:9a:24:ce:ef:58:ec:4a:97:f5:5b:4e:91:
97:1f:aa:92:0f:4a:1b:6e:a6:00:9e:08:d5:6e:41:c6:f0:87:
18:57:e5:f7:5d:33:1a:67:64:24:15:eb:84:14:24:e6:cd:cb:
21:43:28:cb:36:04:fc:f1:43:6d:f0:6c:fb:ab:8b:48:e1:57:
15:9f:7f:e5:f1:75:f7:36:e7:a6:33:c7:c9:c6:52:37:d1:38:
cd:53:11:8b:db:06:5d:d4:a5:fc:8f:2f:9f:39:c8:49:73:69:
f0:be:9c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:44 2025 by rpki-client on console.sobornost.net