Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft
File:                     G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft (raw, json)
Hash identifier:          ij7G01E48og+bGh1wzzqK8c07W3m1HNGkOgI6jcT0ZY=
Subject key identifier:   16:17:8A:25:82:1E:C4:D4:E1:05:C7:17:EF:00:4F:21:04:94:0F:16
Authority key identifier: 1B:E9:F3:7C:3E:52:48:AC:B7:CD:E3:78:B0:49:EC:0D:7F:17:20:C5
Certificate issuer:       /CN=1BE9F37C3E5248ACB7CDE378B049EC0D7F1720C5
Certificate serial:       0D16
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/G-nzfD5SSKy3zeN4sEnsDX8XIMU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft
Manifest number:          0D16
Signing time:             Fri 25 Jul 2025 22:08:03 +0000
Manifest this update:     Fri 25 Jul 2025 22:08:03 +0000
Manifest next update:     Sun 27 Jul 2025 22:08:03 +0000
Files and hashes:         1: G-nzfD5SSKy3zeN4sEnsDX8XIMU.crl (hash: mqUMPtOruZAt/SVMAMq/Xt9Px/QWQIiNzDLx6iEMqI8=)
Validation:               OK
Signature path:           rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/G-nzfD5SSKy3zeN4sEnsDX8XIMU.cer
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 26 Jul 2025 02:37:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3350 (0xd16)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BE9F37C3E5248ACB7CDE378B049EC0D7F1720C5
        Validity
            Not Before: Jul 25 22:08:03 2025 GMT
            Not After : Aug 26 01:57:03 2025 GMT
        Subject: CN=16178A25821EC4D4E105C717EF004F2104940F16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:4b:92:02:b7:63:10:1b:fb:ff:4a:b7:8f:ee:
                    d3:e2:fd:3e:87:28:a5:52:11:44:1b:33:f6:0f:8f:
                    ba:e4:a3:92:81:e1:be:6c:c2:ef:be:9c:fa:08:18:
                    46:7f:61:ee:78:31:31:04:9d:75:0d:54:50:60:61:
                    4a:48:ac:b8:c3:67:40:22:db:71:6e:d9:88:35:7d:
                    24:90:cb:a0:ea:68:95:f3:07:10:3f:e9:45:82:1a:
                    5e:a3:49:5c:fc:94:ed:c3:a5:36:57:ec:13:df:fa:
                    58:f9:1b:22:02:6c:ae:ad:fa:0c:21:a0:8f:ab:b0:
                    2c:ac:f3:5d:02:e9:95:b6:d1:a4:5a:de:8c:c5:ad:
                    9e:70:c9:66:0e:0e:ab:4f:25:0f:1b:61:3f:7a:7e:
                    b8:52:42:d5:2c:51:7c:49:03:45:9e:9c:f3:96:04:
                    ae:39:ef:42:c0:a1:d1:59:49:15:84:83:1b:b7:3b:
                    86:5e:87:23:f4:5a:a3:bc:8f:84:b4:18:ae:26:bd:
                    a2:cd:cd:a7:18:6f:06:4c:5d:0c:7e:ef:a3:52:e2:
                    5b:e2:77:ab:ab:e0:e2:0b:c4:d1:24:2a:07:45:3e:
                    45:24:54:35:2d:58:41:38:3d:07:5a:dd:e1:75:81:
                    26:e4:d1:f2:e5:c5:67:27:de:5d:4a:c2:65:08:33:
                    f3:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:17:8A:25:82:1E:C4:D4:E1:05:C7:17:EF:00:4F:21:04:94:0F:16
            X509v3 Authority Key Identifier:
                keyid:1B:E9:F3:7C:3E:52:48:AC:B7:CD:E3:78:B0:49:EC:0D:7F:17:20:C5

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/G-nzfD5SSKy3zeN4sEnsDX8XIMU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:6d:62:78:98:89:65:15:96:02:80:10:86:f1:79:18:fc:80:
         ab:63:d1:44:f2:8a:9d:de:0f:4c:46:6f:2b:03:14:26:d8:4c:
         1b:44:58:ba:1c:23:81:67:c1:43:7f:1a:57:49:14:1b:75:4d:
         55:0c:cd:96:bc:5a:9e:a1:40:dc:9d:94:03:fa:13:7f:53:b9:
         c7:79:28:df:27:57:86:4d:3b:8b:ce:d3:17:e2:92:f5:59:20:
         73:05:da:02:e0:9e:01:d0:35:62:57:c4:bd:a5:22:90:d9:5a:
         f4:46:63:8d:4a:28:6a:8f:c1:00:65:95:59:c3:4e:84:6d:b4:
         72:46:84:ab:ab:f9:87:15:6e:6a:d8:cb:05:c2:28:61:41:50:
         35:d0:32:e0:2d:b0:d3:c7:a8:6f:58:cf:25:09:08:a0:45:7e:
         84:8f:28:ce:7b:82:56:49:f7:cc:cf:0f:3c:17:d9:54:39:91:
         a0:d5:3e:a1:86:12:44:db:84:c6:50:ff:cd:e2:f2:b0:ab:68:
         d5:9d:90:17:52:aa:a4:5b:cf:a4:ab:5d:97:88:77:94:78:04:
         e1:dc:8f:13:85:de:fe:76:09:47:65:d8:1c:b5:f9:d6:f9:2b:
         28:4e:1b:5b:fe:85:e8:a5:10:0f:7b:ec:41:c9:a2:53:5e:6a:
         0e:f2:c9:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 02:00:54 2025 by rpki-client