Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3247/PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.mft
File: PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.mft (raw, json)
Hash identifier: b2qdnU4TRBlQD5iMU8mJxTLuqLTvvSklba9ihimNWsI=
Subject key identifier: 07:4D:0A:C2:BA:E8:11:F7:78:4C:6B:DE:28:5A:83:A1:EF:25:9D:E3
Authority key identifier: 3C:08:EF:D5:98:09:C1:9F:A1:3A:F4:46:4F:07:4E:F2:D8:23:0F:BA
Certificate issuer: /CN=3C08EFD59809C19FA13AF4464F074EF2D8230FBA
Certificate serial: 09D5
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3247/PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.mft
Manifest number: 09D5
Signing time: Mon 28 Apr 2025 19:38:45 +0000
Manifest this update: Mon 28 Apr 2025 19:38:45 +0000
Manifest next update: Tue 29 Apr 2025 01:38:45 +0000
Files and hashes: 1: PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.crl (hash: /Iksq2VHdfKjKZLpPlH9W+kjTI5EFWPl0OujDKG9UQs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2517 (0x9d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3C08EFD59809C19FA13AF4464F074EF2D8230FBA
Validity
Not Before: Apr 28 19:38:45 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=074D0AC2BAE811F7784C6BDE285A83A1EF259DE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:3f:6e:10:c5:a5:7f:48:a5:30:8d:d9:ff:92:
31:c7:f3:6f:c3:9d:87:43:8f:17:92:1a:0b:87:a4:
43:d8:0e:5b:24:2c:4a:38:51:ec:89:c8:49:67:de:
82:53:ee:cf:e4:25:36:e2:54:0a:be:24:0e:76:ef:
2e:ca:ba:ba:7a:f4:ff:8f:ae:f6:d5:6c:05:ae:4b:
50:2c:e3:0b:19:92:f3:29:c6:c6:91:d2:5f:03:77:
e7:45:26:7f:b9:40:6e:ff:99:ab:7e:c1:7f:d0:ce:
cd:e8:10:3d:57:31:c8:c9:d5:d6:5f:3f:98:44:b7:
08:d3:40:b9:ae:6c:31:22:77:c9:2d:2d:a3:6a:85:
f8:ba:a1:bb:e2:15:e4:a5:a5:1c:fb:d9:09:63:11:
95:e5:43:0e:8f:68:79:ad:a8:0e:4a:2f:c5:be:02:
5d:22:fc:f3:8a:26:9a:24:52:de:83:52:02:a2:89:
58:ae:c3:eb:dd:64:a2:b8:bf:d3:94:98:da:20:8b:
84:4c:6d:7c:bf:6a:e1:62:af:a6:0d:85:69:8a:44:
15:cd:b3:3a:32:ee:df:ac:e9:eb:74:33:a5:2b:91:
25:40:77:44:08:1d:74:2d:1f:d9:5b:1e:51:bb:6f:
40:73:63:fb:88:5c:1f:8e:2d:aa:ab:12:d5:a6:41:
69:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4D:0A:C2:BA:E8:11:F7:78:4C:6B:DE:28:5A:83:A1:EF:25:9D:E3
X509v3 Authority Key Identifier:
keyid:3C:08:EF:D5:98:09:C1:9F:A1:3A:F4:46:4F:07:4E:F2:D8:23:0F:BA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3247/PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3247/PAjv1ZgJwZ-hOvRGTwdO8tgjD7o.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3f:a5:18:29:24:c2:a0:6e:28:f6:42:ff:ce:ee:db:18:54:e5:
97:0c:38:68:dc:d9:eb:c4:a0:a6:bf:2e:bd:85:c8:8b:35:9a:
d1:42:1d:0d:b5:6b:1e:f0:eb:44:c8:0b:b1:cb:8e:d7:b6:2e:
ad:c8:dc:86:d0:68:16:af:cb:df:69:29:f0:0d:9c:27:da:3b:
2b:2e:52:f2:99:70:02:8c:35:d9:d2:8c:12:76:59:f1:8a:d3:
53:7c:d7:df:c4:82:b1:a7:cc:4f:67:e9:5d:61:9f:a2:e6:2c:
96:a8:33:b4:d6:88:00:18:0c:30:cc:7f:86:10:58:a9:55:14:
a2:04:e3:40:53:b1:80:39:c1:83:fd:0a:28:d0:c2:3f:37:ff:
8f:c9:ff:c0:24:b4:11:4e:e0:42:4c:48:f8:83:b8:74:39:9d:
30:5d:07:54:1f:0c:8d:cf:08:16:71:93:46:e8:7b:03:07:6a:
b2:08:68:d9:a8:3f:f6:29:34:16:68:47:c7:16:c2:bf:ab:01:
d2:c0:22:2c:53:3c:ac:ee:86:1b:bf:7c:a5:c1:51:92:6e:d3:
95:79:28:95:73:ff:d3:5e:c2:12:65:34:aa:90:34:a4:c0:ac:
45:45:52:ba:23:98:a9:77:de:4b:8f:fd:88:86:4c:ab:ad:c0:
62:be:f0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:45 2025 by rpki-client on console.sobornost.net