Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft
File: zLVFQVOszs6FINM5B9VOVsXKmks.mft (raw, json)
Hash identifier: hU/A4rQDWwOgyn83ctJI1ByNKrmqtNW6yjbhyI0/zSc=
Subject key identifier: 9F:76:E0:19:DB:14:62:7E:DD:F8:6F:6D:2E:AA:E9:BD:0E:B9:D8:8C
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0DA5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft
Manifest number: 0D22
Signing time: Sat 29 Mar 2025 09:04:15 +0000
Manifest this update: Sat 29 Mar 2025 09:04:15 +0000
Manifest next update: Mon 31 Mar 2025 09:04:15 +0000
Files and hashes: 1: -9vGmeeNefwndf0Q0x8_kteaypg.roa (hash: up6xWUJHdV8qrNym8bM0KEnsJ0dOWDa8t/NW2uUCVLk=)
2: -Rd4V0z7RlwN07cKvn6NEOfdjwc.roa (hash: 4Epb75+fuR5FXLC+ZcDjsj6KQf48N2Gl2xjwF+PDGK0=)
3: 1UxhNGMmFgbjoQaVjCjMQYdjBYE.roa (hash: Pnwt/0AUvScTQsmZ5xT4Q741teN+n9ewYhy8oteAKQA=)
4: 6kbiqvrYxUogDnQnZMUvinRP7L8.roa (hash: 0Dz+quZWiEOug0Y9QbCvDZ+r7vqIZ0ivxnA3815GG/0=)
5: B3GjKJE5AhmntybizLFgxZ_Bi3M.roa (hash: 4oCMGhxaQEjkIRHxNa3zupIixqOqo4oRg7PbvAQp0y4=)
6: DcYI8ZmW1CxsHAxy75pwx3S1cSU.roa (hash: TQC8N28nCNGyA7IfnnCNvinZsBDe/CyFjWZXwdlqIbQ=)
7: EbUgtp4aNF6BaBdDvQkD8VnhAeM.roa (hash: 0e0jm5o5TQOYXswIy8UIf0jAUGWSP0Q4b3zLzt2G6Cs=)
8: H7qYF6C8jVnB7SaqOAbuJSK_E6k.roa (hash: jxynmVc0Q2m6rTeAA3MnMkMSqev4FeT2BHYyAOXsPR4=)
9: O1NjRs3K4AAlX_Fhr8nGXrlfwew.roa (hash: jni2dHhHRKS9DRpcXUElX3TsdO5mNzs7tobvLPTz9f8=)
10: O9CSpgTWnkI9wZDqdyS0VAH_UZQ.roa (hash: k3SeCE8mNkmJm6OqQbfxH3OvHU8yhgSVc7lBM87vtps=)
11: O9rIUW2j-iTzzHYEAijZry7OZts.roa (hash: VFvisbotMqdFyIi+krSLGb9KsqUkmSXozEV0sG11wac=)
12: OeQl39Pnm2bAGUR-6yCw28ZxhfI.roa (hash: 5Tob5UPFLKFP3rD7LWYlzJbgJ6u+uFE7ybttQ6TO0iY=)
13: S0k8PtJ9J6XkLIUF45vLx6-bMmo.roa (hash: 8IReq7H2i46QG+ucAJHY+ioiy/kieOw1z868CXHP6/Q=)
14: Vjdc9nbqWAYl1xJTPGI-odXFcgw.roa (hash: w0FzivTeHOkQhju4cV70BF/rtkGwMBmlVyTdVxvFplk=)
15: XsJ0qIf386p-ntEcBzAbyjl0vuE.roa (hash: wnhayTVHwyNH7eJrY/lkbbpgLDyHL0iaeOYkwuARY28=)
16: eJzLNLjQ6DxAzr2rQtEOHBKsms8.roa (hash: ypTmrfGZfByBMN9isAPlTCJEeF0kVzPQ8dme6ieuoGU=)
17: eL_Wyl7GGWxGSGGyL8PKZGhHteU.roa (hash: f2p7cwTC3/GVzfLMoKPhHBCBFuChEDYtCchgetGy/NY=)
18: i46ldYhHdWHXzdZIpvg49yWwJLA.roa (hash: lyTT2mO5fpbZnoSVWhmKQSYykjt5qgbAr94dP2/CGHo=)
19: mgJrv8mZitz_bDQJylHrfyYmubY.roa (hash: HMnXmGPnBHBDvtSyqPWLvSYQxDm0zIVXqJlaLnBziT4=)
20: n0z-7gw9P02Q1_udeWLPVppNBt0.roa (hash: TO7npdkWXVhjIRYg2GRj4OkY0OpzW8h6N0e9LezxyBY=)
21: niyGTm_HncgZQl8eznfbE9h-FF8.roa (hash: Dnrp1sco/YFm86a+9EyLYrnPOeydObPrXqa1wKu7pd8=)
22: rk9UUd2KbIG9cE72lihL7qRvT8o.roa (hash: nX02OfpJ48UMomu9p7buOmcpiGzoK977mUt1QPhjeA8=)
23: zLVFQVOszs6FINM5B9VOVsXKmks.crl (hash: Ks36TkeJL7RBXnvfo/p3CdJp73ITn+XnHYD9pvj+3xo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3493 (0xda5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Mar 29 09:04:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9F76E019DB14627EDDF86F6D2EAAE9BD0EB9D88C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:99:36:6f:0a:b2:8a:95:22:aa:15:c7:66:54:
03:8e:a7:06:b5:49:08:1a:f1:47:9b:e2:3e:df:65:
7f:3f:12:ea:c3:84:47:3f:b2:41:b6:1a:22:66:66:
20:59:5d:7f:10:f7:ec:9a:6d:9b:c0:10:fd:4a:a1:
bc:cd:f3:8f:a1:5e:44:69:3b:26:1f:80:e7:c8:19:
db:d2:03:dd:8f:9b:cf:6d:f8:d9:a3:2b:7c:ff:bc:
6d:cb:12:89:93:28:33:34:8f:ed:4f:7b:6c:53:24:
38:0b:30:1f:b1:13:5b:a8:a5:13:c2:20:43:98:e6:
12:b1:17:e1:9b:19:93:c0:45:86:36:fb:cb:f6:07:
b2:c7:82:6a:08:7e:71:4b:da:ba:c6:e7:af:18:e9:
d7:b9:4f:33:f9:93:9e:98:76:9d:b6:ba:a8:49:41:
bb:41:98:28:b0:90:c4:a3:c2:dd:2d:92:34:b1:6f:
b4:93:f5:11:a2:12:e1:86:3e:27:6c:6b:93:d1:00:
90:69:fa:2f:a9:a5:2c:be:88:9c:ed:28:fc:28:85:
a1:8e:ab:45:36:3f:d5:50:57:00:d9:52:03:04:c6:
95:c2:76:a8:a6:a4:1a:49:bd:44:f2:e2:a9:6a:3c:
ac:ab:81:aa:3f:f3:48:b7:e6:e8:a8:ee:f9:9d:03:
d7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:76:E0:19:DB:14:62:7E:DD:F8:6F:6D:2E:AA:E9:BD:0E:B9:D8:8C
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6c:63:58:1b:c6:ed:98:d0:ff:53:fe:66:1d:c5:0d:28:09:da:
20:5d:18:c2:31:7d:a4:0f:76:35:19:61:cd:6c:1a:70:3c:f6:
1f:08:00:31:fe:cc:b0:c2:76:0a:4f:0f:22:f7:5b:59:a4:51:
7d:2e:90:b0:be:b8:cd:a9:56:4c:d5:bc:24:a7:a8:12:79:da:
4c:e0:56:f7:8f:70:b2:11:f4:4e:00:39:0a:b7:72:27:23:c5:
9f:04:30:ac:3d:4e:0c:6f:ab:0d:15:c8:95:ed:37:9f:2a:17:
08:21:7e:55:d2:e9:ea:c4:97:99:88:ec:9a:61:c3:4d:54:b4:
7c:82:ac:32:2c:3a:0d:0e:31:0f:86:1d:53:e5:a6:ab:cb:bb:
aa:86:ab:ae:e8:28:a7:05:8c:5c:c5:b3:f2:0f:0d:44:e5:06:
d2:5f:a4:7c:99:02:ce:be:4f:a3:a7:8c:4a:02:2d:64:26:71:
30:8f:d4:69:5e:42:9a:e1:ad:31:18:85:70:33:c7:37:16:fb:
28:76:43:3d:0a:ec:7c:86:f6:b4:e1:29:df:a4:1e:07:cd:ba:
df:9c:35:a7:9f:2f:bb:ae:85:f0:d0:84:ca:7a:84:a2:aa:90:
4a:da:49:d5:b9:37:72:ef:9c:30:33:02:06:7d:fa:b9:4c:f0:
d8:a9:18:90
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgICDaUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC
NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTAzMjkw
OTA0MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlGNzZFMDE5REIxNDYy
N0VEREY4NkY2RDJFQUFFOUJEMEVCOUQ4OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCimTZvCrKKlSKqFcdmVAOOpwa1SQga8Ueb4j7fZX8/EurDhEc/
skG2GiJmZiBZXX8Q9+yabZvAEP1KobzN84+hXkRpOyYfgOfIGdvSA92Pm89t+Nmj
K3z/vG3LEomTKDM0j+1Pe2xTJDgLMB+xE1uopRPCIEOY5hKxF+GbGZPARYY2+8v2
B7LHgmoIfnFL2rrG568Y6de5TzP5k56Ydp22uqhJQbtBmCiwkMSjwt0tkjSxb7ST
9RGiEuGGPidsa5PRAJBp+i+ppSy+iJztKPwohaGOq0U2P9VQVwDZUgMExpXCdqim
pBpJvUTy4qlqPKyrgao/80i35uio7vmdA9fXAgMBAAGjggIFMIICATAdBgNVHQ4E
FgQUn3bgGdsUYn7d+G9tLqrpvQ652IwwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5
B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv
ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC96TFZGUVZPc3pzNkZJTk01QjlW
T1ZzWEtta3MubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH
AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbGNY
G8btmND/U/5mHcUNKAnaIF0YwjF9pA92NRlhzWwacDz2HwgAMf7MsMJ2Ck8PIvdb
WaRRfS6QsL64zalWTNW8JKeoEnnaTOBW949wshH0TgA5CrdyJyPFnwQwrD1ODG+r
DRXIle03nyoXCCF+VdLp6sSXmYjsmmHDTVS0fIKsMiw6DQ4xD4YdU+Wmq8u7qoar
rugopwWMXMWz8g8NROUG0l+kfJkCzr5Po6eMSgItZCZxMI/UaV5CmuGtMRiFcDPH
Nxb7KHZDPQrsfIb2tOEp36QeB82635w1p58vu66F8NCEynqEoqqQStpJ1bk3cu+c
MDMCBn36uUzw2KkYkA==
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:17 2025 by rpki-client