Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.mft
File: KiJnreDthkvp9oLDpe2qFRu6hmQ.mft (raw, json)
Hash identifier: g317GFSweP1ChIhX0XFsYFGB2roGQ4Md8PAp8kJ394o=
Subject key identifier: 9D:B8:B3:1D:70:A0:9D:50:14:14:79:71:2B:74:C8:29:C7:59:61:89
Authority key identifier: 2A:22:67:AD:E0:ED:86:4B:E9:F6:82:C3:A5:ED:AA:15:1B:BA:86:64
Certificate issuer: /CN=2A2267ADE0ED864BE9F682C3A5EDAA151BBA8664
Certificate serial: 0817
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KiJnreDthkvp9oLDpe2qFRu6hmQ.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.mft
Manifest number: 0817
Signing time: Mon 28 Apr 2025 19:39:20 +0000
Manifest this update: Mon 28 Apr 2025 19:39:20 +0000
Manifest next update: Tue 29 Apr 2025 01:39:20 +0000
Files and hashes: 1: KiJnreDthkvp9oLDpe2qFRu6hmQ.crl (hash: YTbRATO1MWBfmiocHgM5LTwmhIP0a6QolF2Blq9LEMc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2071 (0x817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2267ADE0ED864BE9F682C3A5EDAA151BBA8664
Validity
Not Before: Apr 28 19:39:20 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=9DB8B31D70A09D50141479712B74C829C7596189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fe:f4:b4:fc:14:06:23:af:c2:7f:14:0d:38:
0c:fa:8f:a1:9f:f8:90:2d:50:98:3c:36:e2:7a:9e:
07:98:0c:ec:e3:4b:b0:7c:f6:62:11:04:69:1b:2b:
39:07:4d:56:32:8f:78:5c:53:35:eb:b1:24:d1:cd:
74:3f:1c:33:ec:0e:b5:1c:f2:ea:24:02:65:29:54:
9a:20:01:8e:25:a7:90:a0:1d:dc:6c:9c:b5:71:fd:
af:cf:07:dd:0e:5d:13:d1:7b:cd:5d:f0:d5:aa:67:
82:8e:db:33:c0:b2:99:6a:93:53:e4:da:7e:2c:a5:
5b:05:94:38:51:fc:96:7c:2b:6f:c9:3a:9e:95:05:
ef:90:9d:13:de:47:31:13:cf:dc:dd:bb:02:a1:f4:
6a:93:a8:67:3b:da:05:ba:6b:e5:b7:09:54:c8:10:
04:80:59:11:39:be:fb:d9:51:cf:d5:b4:bb:1e:3a:
f4:8d:ba:02:7b:9d:a9:93:6e:8d:ed:a9:f3:dc:97:
ef:ac:17:ad:e0:17:be:22:24:b8:0a:60:e7:8c:f9:
e0:ab:58:cf:be:b3:fd:c8:b7:04:8b:df:3b:26:bf:
7e:79:78:e0:fd:f6:e0:fb:79:ee:88:52:dc:aa:23:
1c:53:f2:83:a0:a9:7b:ca:10:00:1a:5b:72:e9:09:
13:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:B8:B3:1D:70:A0:9D:50:14:14:79:71:2B:74:C8:29:C7:59:61:89
X509v3 Authority Key Identifier:
keyid:2A:22:67:AD:E0:ED:86:4B:E9:F6:82:C3:A5:ED:AA:15:1B:BA:86:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KiJnreDthkvp9oLDpe2qFRu6hmQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3269/KiJnreDthkvp9oLDpe2qFRu6hmQ.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:02:88:c6:bd:5c:ab:3b:c2:1e:95:31:50:63:2e:0e:f7:75:
92:f8:46:f3:8b:cf:62:60:c7:e4:f0:1d:52:8e:11:0d:43:b9:
72:7f:7c:55:3a:c7:ef:4e:d4:39:27:72:8b:e3:71:bb:95:d7:
b9:e5:c0:30:44:00:16:04:20:7f:ee:99:dc:6a:e1:b7:49:ac:
51:67:0c:50:ae:97:0c:80:5f:93:fa:3f:b7:17:aa:29:66:16:
04:f2:68:29:5a:de:8a:c9:ac:1a:c3:d4:16:9d:e3:b5:29:19:
83:51:af:66:e2:87:03:c7:f9:ac:79:f8:1d:6b:14:7c:af:36:
4c:dd:c4:ac:bb:02:93:a1:65:0c:86:76:fd:98:f6:4d:11:4b:
04:0e:a8:c2:d8:c0:a3:8b:8c:fa:87:cf:6c:0e:2f:08:58:4c:
7f:ad:13:a6:d6:11:0c:b7:e7:fc:97:d9:ac:aa:a8:6f:a6:55:
db:54:e9:80:00:f7:d3:8a:30:11:18:f4:d6:ba:8f:5e:8e:b4:
44:5a:9a:4f:f6:89:ab:9e:7d:a9:e7:b0:04:1e:fd:98:fb:ae:
26:ec:7c:0a:ad:0b:60:82:4d:4f:1b:a8:6e:d0:dd:57:c6:9d:
6e:bd:cc:71:0d:d3:7f:8e:8b:39:ba:28:d7:d7:41:37:6d:ac:
6b:6a:bf:57
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkEy
MjY3QURFMEVEODY0QkU5RjY4MkMzQTVFREFBMTUxQkJBODY2NDAeFw0yNTA0Mjgx
OTM5MjBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDlEQjhCMzFENzBBMDlE
NTAxNDE0Nzk3MTJCNzRDODI5Qzc1OTYxODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDr/vS0/BQGI6/CfxQNOAz6j6Gf+JAtUJg8NuJ6ngeYDOzjS7B8
9mIRBGkbKzkHTVYyj3hcUzXrsSTRzXQ/HDPsDrUc8uokAmUpVJogAY4lp5CgHdxs
nLVx/a/PB90OXRPRe81d8NWqZ4KO2zPAsplqk1Pk2n4spVsFlDhR/JZ8K2/JOp6V
Be+QnRPeRzETz9zduwKh9GqTqGc72gW6a+W3CVTIEASAWRE5vvvZUc/VtLseOvSN
ugJ7namTbo3tqfPcl++sF63gF74iJLgKYOeM+eCrWM++s/3ItwSL3zsmv355eOD9
9uD7ee6IUtyqIxxT8oOgqXvKEAAaW3LpCRMVAgMBAAGjggIMMIICCDAdBgNVHQ4E
FgQUnbizHXCgnVAUFHlxK3TIKcdZYYkwHwYDVR0jBBgwFoAUKiJnreDthkvp9oLD
pe2qFRu6hmQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2
OS9LaUpucmVEdGhrdnA5b0xEcGUycUZSdTZobVEuY3JsMGMGCCsGAQUFBwEBBFcw
VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF
M0QwMDAwL0tpSm5yZUR0aGt2cDlvTERwZTJxRlJ1NmhtUS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y
cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjkvS2lKbnJlRHRoa3Zw
OW9MRHBlMnFGUnU2aG1RLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu
bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG
CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD
ggEBACcCiMa9XKs7wh6VMVBjLg73dZL4RvOLz2Jgx+TwHVKOEQ1DuXJ/fFU6x+9O
1DkncovjcbuV17nlwDBEABYEIH/umdxq4bdJrFFnDFCulwyAX5P6P7cXqilmFgTy
aCla3orJrBrD1Bad47UpGYNRr2bihwPH+ax5+B1rFHyvNkzdxKy7ApOhZQyGdv2Y
9k0RSwQOqMLYwKOLjPqHz2wOLwhYTH+tE6bWEQy35/yX2ayqqG+mVdtU6YAA99OK
MBEY9Na6j16OtERamk/2iauefannsAQe/Zj7ribsfAqtC2CCTU8bqG7Q3VfGnW69
zHEN03+Oizm6KNfXQTdtrGtqv1c=
-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:45 2025 by rpki-client on console.sobornost.net