Manifest
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3324/5YkdtdPXtHQRybPkcdIJS_vpE2Y.mft
File: 5YkdtdPXtHQRybPkcdIJS_vpE2Y.mft (raw, json)
Hash identifier: hyXtv4zioQFOX3dGLdAXZXEENsursuEDqTkivOjJON4=
Subject key identifier: 37:4E:6D:A2:15:F1:94:64:19:17:8E:FB:EB:B0:CF:09:CC:B6:56:47
Authority key identifier: E5:89:1D:B5:D3:D7:B4:74:11:C9:B3:E4:71:D2:09:4B:FB:E9:13:66
Certificate issuer: /CN=E5891DB5D3D7B47411C9B3E471D2094BFBE91366
Certificate serial: 03BB
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5YkdtdPXtHQRybPkcdIJS_vpE2Y.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3324/5YkdtdPXtHQRybPkcdIJS_vpE2Y.mft
Manifest number: 03BB
Signing time: Mon 28 Apr 2025 19:38:18 +0000
Manifest this update: Mon 28 Apr 2025 19:38:18 +0000
Manifest next update: Tue 29 Apr 2025 01:38:18 +0000
Files and hashes: 1: 5YkdtdPXtHQRybPkcdIJS_vpE2Y.crl (hash: X+WRASlrGgbgEhWRj+QPofzZfBCaTDx+/cuDVCwNhVY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 955 (0x3bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E5891DB5D3D7B47411C9B3E471D2094BFBE91366
Validity
Not Before: Apr 28 19:38:18 2025 GMT
Not After : Apr 3 08:00:09 2026 GMT
Subject: CN=374E6DA215F1946419178EFBEBB0CF09CCB65647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:10:ca:54:e7:4d:73:5a:ac:22:15:83:51:f6:
43:e8:dd:9a:c7:9f:fe:1f:a4:b0:fd:60:db:38:de:
23:ce:ed:f3:d0:2f:e1:da:2b:96:de:79:fe:8b:63:
a5:9f:a9:6b:d4:36:96:c6:4e:d9:9d:a3:cd:ee:35:
eb:36:0b:01:1c:fc:82:e0:39:ce:01:65:aa:66:28:
31:e6:19:f1:4e:5a:23:80:48:79:2d:7e:32:34:af:
6c:5e:cf:3d:63:eb:3d:4c:59:35:53:ca:1c:10:53:
4b:e7:64:e7:6f:21:ee:87:8b:4d:63:7f:3d:15:3d:
78:23:4a:9b:70:2d:8b:48:3d:77:20:d0:d9:44:25:
0e:a3:db:07:c4:29:27:fc:c0:c4:4c:83:86:f7:8d:
10:95:a8:55:0e:27:0f:88:15:69:fe:93:d1:da:67:
ec:55:1e:07:be:f7:93:03:9e:58:76:ae:5b:12:d0:
5d:08:60:d6:5b:0e:00:e1:6d:32:1d:ba:80:dc:47:
13:ca:5a:8f:63:f5:35:eb:6e:74:82:ed:87:76:93:
a0:e4:5d:65:d9:28:11:2f:e3:45:f1:5c:ef:8c:40:
1b:49:69:6f:d4:6b:f9:dd:2a:b9:7f:9a:75:f8:a4:
30:a7:44:03:21:61:7e:00:40:70:b4:36:0f:f2:3b:
da:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4E:6D:A2:15:F1:94:64:19:17:8E:FB:EB:B0:CF:09:CC:B6:56:47
X509v3 Authority Key Identifier:
keyid:E5:89:1D:B5:D3:D7:B4:74:11:C9:B3:E4:71:D2:09:4B:FB:E9:13:66
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3324/5YkdtdPXtHQRybPkcdIJS_vpE2Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5YkdtdPXtHQRybPkcdIJS_vpE2Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3324/5YkdtdPXtHQRybPkcdIJS_vpE2Y.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3f:2e:47:1e:f8:0e:81:32:88:f8:02:6a:06:37:66:42:e9:20:
d4:cf:e1:69:0f:a5:98:5b:4b:e5:95:3c:f5:29:2e:fc:44:9a:
d4:79:2b:88:19:04:a7:d5:c1:dc:50:2a:c7:31:b9:5b:76:3d:
4d:8d:3f:4e:a0:fd:28:ec:dd:c6:8d:73:20:77:ed:1b:d0:25:
21:bc:a9:af:26:d7:dd:00:9b:70:c4:25:96:26:16:c0:fd:16:
a6:44:9b:51:d7:53:bf:ee:69:c4:42:41:f2:36:cd:16:01:05:
35:95:56:53:a4:0c:cd:0e:73:ce:fc:0e:99:45:25:44:8f:89:
56:5f:a5:d3:7b:75:ca:65:ee:c7:3f:04:1f:35:9a:bf:4d:ab:
a5:1c:91:77:fe:66:a6:c7:97:00:b4:ca:c1:54:f4:ac:5f:ab:
71:4b:ab:a0:83:b1:34:0e:ce:30:8a:c2:81:ba:a7:b3:4e:e1:
f1:8d:fe:5b:81:fb:f6:4a:c1:5b:a2:e4:70:a9:de:65:00:d8:
ff:18:d3:1d:48:a6:13:1d:0f:57:c5:c8:63:79:8c:c0:ac:ef:
82:f7:0f:da:c1:91:f6:8d:56:56:fb:39:9f:31:a2:80:9e:ce:
e2:0b:80:ec:ef:18:0b:df:1a:16:41:95:a3:57:54:57:e0:66:
c4:d2:9f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:08:46 2025 by rpki-client on console.sobornost.net