Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3267/OstT3inBC2LxfO9hjR44QUU6wOg.mft
File: OstT3inBC2LxfO9hjR44QUU6wOg.mft (raw, json)
Hash identifier: zSB/nDdBmrXcr3v/0QIC8D3tG7vCGi++6pkkahNNgfM=
Subject key identifier: 53:9F:71:D4:C3:E8:20:FA:15:5B:BC:F7:9E:4B:1A:D9:CD:F7:B5:7D
Authority key identifier: 3A:CB:53:DE:29:C1:0B:62:F1:7C:EF:61:8D:1E:38:41:45:3A:C0:E8
Certificate issuer: /CN=3ACB53DE29C10B62F17CEF618D1E3841453AC0E8
Certificate serial: 082F
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OstT3inBC2LxfO9hjR44QUU6wOg.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3267/OstT3inBC2LxfO9hjR44QUU6wOg.mft
Manifest number: 082F
Signing time: Mon 28 Apr 2025 19:38:46 +0000
Manifest this update: Mon 28 Apr 2025 19:38:46 +0000
Manifest next update: Tue 29 Apr 2025 01:38:46 +0000
Files and hashes: 1: OstT3inBC2LxfO9hjR44QUU6wOg.crl (hash: wk0pXxisUxXAJaaq8WMPN2R7YgFBuRsV9sAOqmgfDJE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2095 (0x82f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ACB53DE29C10B62F17CEF618D1E3841453AC0E8
Validity
Not Before: Apr 28 19:38:46 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=539F71D4C3E820FA155BBCF79E4B1AD9CDF7B57D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:07:66:9e:d2:03:96:b0:e1:9a:f2:2f:ab:f3:
99:3b:83:7a:68:7b:7b:18:38:84:7d:82:50:32:22:
71:c8:6b:e3:4c:2f:2a:ba:cf:cf:86:24:84:a0:7d:
dc:fb:dc:33:2a:f4:d7:d5:7e:39:ea:8b:b7:75:64:
ff:d6:98:c4:c5:a2:1f:7d:f7:d1:21:b4:c2:8a:d5:
55:80:8d:b5:f3:08:4f:10:ef:41:e5:26:0d:00:68:
89:e0:28:2e:52:43:a3:c8:e4:6b:80:f8:94:8a:92:
57:c3:d9:18:8f:9b:75:d0:b9:52:67:fa:fe:66:7a:
47:1d:bf:cc:11:a5:b5:0b:ab:f5:e8:f5:2a:e9:10:
17:e0:37:09:1c:10:18:d6:ed:62:86:c3:98:46:d1:
13:11:03:f1:3e:c1:2b:74:e9:c1:8f:42:a7:25:23:
ea:42:1f:8c:ab:59:9d:b0:7b:f1:d2:1d:fb:5e:2b:
85:87:c1:49:1a:33:37:c3:4c:26:ee:1d:9a:57:50:
d1:12:04:c8:7a:57:c3:17:60:72:bc:2c:ac:80:5b:
52:1c:1d:3e:c2:5e:19:75:0f:a5:b2:b4:51:93:e9:
a2:0a:f8:ee:e6:0b:ae:b9:4a:83:4b:52:09:6e:9c:
41:b0:43:94:3d:7e:9d:74:ef:e2:43:d5:e2:b0:9c:
6f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9F:71:D4:C3:E8:20:FA:15:5B:BC:F7:9E:4B:1A:D9:CD:F7:B5:7D
X509v3 Authority Key Identifier:
keyid:3A:CB:53:DE:29:C1:0B:62:F1:7C:EF:61:8D:1E:38:41:45:3A:C0:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3267/OstT3inBC2LxfO9hjR44QUU6wOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OstT3inBC2LxfO9hjR44QUU6wOg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3267/OstT3inBC2LxfO9hjR44QUU6wOg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
26:52:f0:ce:b5:d9:8b:b3:2a:8a:62:fd:f7:9d:0c:83:d5:21:
07:b7:7b:8f:9e:4c:a1:95:72:6e:74:be:10:e7:8a:5d:b1:bc:
fa:34:c8:29:7c:96:94:82:20:c9:6f:97:92:1e:56:37:d8:7a:
e8:99:47:1c:ff:ab:2f:c8:57:f0:ca:1b:d0:f7:bc:92:2e:b7:
54:d5:a4:97:2a:6f:7c:3d:ff:b1:ef:31:4b:0a:a1:96:e8:47:
78:77:eb:78:34:18:62:07:ef:e2:4e:bd:c0:7b:a6:18:b0:0b:
2c:ee:4e:42:93:c6:59:0b:7e:45:37:59:86:95:93:fb:38:b5:
cf:31:3b:3d:81:b5:d7:85:6c:0b:39:c6:53:1f:35:ff:f4:81:
c4:68:5b:28:f3:02:19:33:b6:54:ac:e9:06:57:45:2b:c3:2a:
9e:3d:e0:fe:f4:1e:a3:e4:d4:c0:e4:b1:74:21:8f:07:05:7b:
e1:4b:bf:b6:48:11:8a:6f:22:d2:a9:10:62:d9:2d:d4:8f:1a:
83:7e:e6:3e:26:a8:37:78:a1:57:35:55:f4:ef:85:09:e4:d5:
5a:ea:b3:cb:e4:77:47:bb:29:2e:3a:a0:37:fb:f5:59:4b:1d:
aa:16:f9:a6:d1:b5:c0:40:fd:e6:73:28:1c:e1:11:bc:e7:ec:
a0:9e:56:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:45 2025 by rpki-client on console.sobornost.net