Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.mft
File: k460qwWoYWZ_0DVUrPuDaiz9yds.mft (raw, json)
Hash identifier: pcNZf44eNITp8f0nnv3GQWvmyxJVlqEY6e4v+Tw7rkQ=
Subject key identifier: 1C:18:46:14:AC:B2:2C:A0:B6:C5:B2:9C:D5:18:44:09:49:C7:48:B0
Authority key identifier: 93:8E:B4:AB:05:A8:61:66:7F:D0:35:54:AC:FB:83:6A:2C:FD:C9:DB
Certificate issuer: /CN=938EB4AB05A861667FD03554ACFB836A2CFDC9DB
Certificate serial: 01C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k460qwWoYWZ_0DVUrPuDaiz9yds.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.mft
Manifest number: 01BC
Signing time: Thu 17 Apr 2025 21:40:26 +0000
Manifest this update: Thu 17 Apr 2025 21:40:26 +0000
Manifest next update: Sat 19 Apr 2025 21:40:26 +0000
Files and hashes: 1: dkfU3iJQ1EU1HP3FEFK9bBJwMNw.roa (hash: MynGKcbU5FZQmZooynCoChZMUc95iauGKCVJ0M0VO+k=)
2: k460qwWoYWZ_0DVUrPuDaiz9yds.crl (hash: /861feammEv0ExoE8Y9C9t7tG8s/hOx8QbEenW9BO/Q=)
3: tT9ZcNNQVDhAkd5735Tn3ajDQ78.roa (hash: vqX1WUnRvWMnzsHOSf75rGgmzbFWNg9+EeqrBU2nsOw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 453 (0x1c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=938EB4AB05A861667FD03554ACFB836A2CFDC9DB
Validity
Not Before: Apr 17 21:40:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1C184614ACB22CA0B6C5B29CD518440949C748B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d6:99:cd:e8:d9:f1:7d:b3:04:16:8b:a6:99:
da:7e:a1:61:c9:b3:b8:8f:92:d6:a8:39:78:f6:54:
3b:b8:61:cd:9f:62:12:68:5f:8e:04:e2:8b:a6:62:
0a:2c:6a:99:13:1e:b0:d0:bd:46:5e:21:6f:49:43:
e7:7f:98:7b:ce:20:e8:4d:6b:6b:51:c0:7c:71:ed:
d2:96:13:1a:9c:9c:43:c4:3d:31:c7:c0:0b:cd:db:
e5:26:87:d2:c6:d3:a7:f6:7d:7f:35:41:4a:d4:a2:
e0:9a:2c:1b:aa:e6:12:42:b8:ef:79:65:9a:0e:cd:
6d:e6:f8:56:0a:db:d7:f7:23:2a:7b:5d:87:6a:b9:
53:3d:1b:1b:27:b1:ac:d1:34:e5:2e:86:39:e1:4c:
59:eb:f6:77:4e:bd:c4:52:73:bb:e5:3f:06:5f:1e:
80:2a:1d:02:04:4b:3c:e6:30:7f:19:a8:64:0d:43:
e8:d3:1a:2f:a5:b9:a5:ee:92:76:f9:6a:f2:21:f4:
c6:49:fa:18:4b:87:d2:61:ce:56:1e:dd:c3:e1:cc:
ae:4e:5e:dd:5b:85:03:38:00:0e:5a:e5:a4:08:d5:
90:86:8d:8c:4d:fa:c7:69:7e:aa:98:4b:e2:f3:cb:
bc:9c:d5:1c:62:06:d3:87:35:a9:c6:08:f4:9d:62:
39:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:18:46:14:AC:B2:2C:A0:B6:C5:B2:9C:D5:18:44:09:49:C7:48:B0
X509v3 Authority Key Identifier:
keyid:93:8E:B4:AB:05:A8:61:66:7F:D0:35:54:AC:FB:83:6A:2C:FD:C9:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k460qwWoYWZ_0DVUrPuDaiz9yds.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:72:c9:76:e7:18:e9:39:b8:7b:1a:d5:0a:5e:1e:4f:d9:53:
98:35:57:3d:66:25:44:83:f4:1a:19:64:f7:7d:61:8c:a4:6a:
74:51:ac:19:ea:bb:70:27:37:1e:2b:38:f5:b2:05:8c:50:72:
5c:84:be:42:f7:82:7a:d6:b5:df:2e:c7:d5:fa:14:ac:e9:9e:
0e:16:45:72:d4:98:84:44:24:e6:43:2c:52:71:b8:59:85:9e:
78:bc:62:6c:1d:60:70:e7:f6:c1:4d:94:17:6d:fd:fc:d1:6e:
e4:33:7f:37:22:79:98:07:9b:e3:5c:6d:d5:83:a0:a1:3d:0f:
1e:c1:bd:4a:8f:12:34:4d:97:25:6c:bf:c6:59:9d:fe:97:0f:
55:a1:4f:41:71:66:82:5b:8a:d6:9f:58:18:c8:40:f1:d1:27:
19:2c:02:02:38:25:97:11:24:37:32:e3:74:17:49:e9:0a:28:
3d:b1:f2:3e:56:28:ff:b7:c8:25:ea:7e:1d:0f:bc:b2:3d:cd:
26:20:29:e4:b2:8b:dc:69:d4:84:c8:3c:9c:be:b5:90:a0:9d:
33:17:53:d5:35:2e:1c:a3:c9:3c:db:dc:4c:ad:0c:36:15:7b:
ed:cb:a3:ba:b8:b8:e0:52:48:73:6e:62:c2:96:35:0e:b4:3b:
a6:73:09:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:55:36 2025 by rpki-client