Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft
File: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft (raw, json)
Hash identifier: y9NaIvstBkORRtQH6IxsgvZkhFqVgsXZ51ZkuXPLQfY=
Subject key identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A
Authority key identifier: D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7
Certificate issuer: /CN=D330BC4E137B1512E2E4506806B870A4EAA860D7
Certificate serial: 02F9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft
Manifest number: 02F0
Signing time: Sun 05 Apr 2026 22:01:35 +0000
Manifest this update: Sun 05 Apr 2026 22:01:35 +0000
Manifest next update: Tue 07 Apr 2026 22:01:35 +0000
Files and hashes: 1: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl (hash: 1i6dIgLZsb5Fx64qqje9FtuH1qNxFG+ztfLoIJObBw0=)
2: P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa (hash: 1vRlxS13uFPFd7r4WDxgL7pRnrmfLKWCBZB3Vu33Hnc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 761 (0x2f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D330BC4E137B1512E2E4506806B870A4EAA860D7
Validity
Not Before: Apr 5 22:01:35 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=770707B2FDD87DCEE7497AC682964243F898389A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:28:b9:82:cf:c5:d4:72:69:c6:f5:70:48:14:
0a:c1:74:e9:f2:9a:34:17:2b:3b:04:30:4a:0c:da:
27:91:c6:e5:6f:35:35:03:da:31:3c:e1:53:24:31:
c5:97:ee:50:f9:02:71:04:88:08:11:9c:6e:b8:e8:
d9:e6:8c:93:54:a2:d9:0a:3e:ed:37:ca:07:85:14:
3a:90:de:5b:6a:0f:21:d3:f8:a0:22:02:51:c5:58:
f2:35:7a:16:0f:b0:c3:4d:ed:2f:41:9b:ec:b0:30:
47:14:ad:f6:0f:ac:97:42:6f:f7:6c:c0:60:56:2b:
7a:0b:91:e0:a2:6f:82:6d:4d:59:02:59:88:01:50:
b2:28:e5:97:cd:a3:8c:09:68:0d:84:d7:b4:30:2b:
82:3b:68:5e:13:3d:c9:6f:6d:bd:c3:8c:0d:3e:6f:
bd:61:6c:7e:97:65:0a:5e:01:7d:66:47:26:37:af:
1a:44:61:0c:43:93:00:e2:38:1f:c5:d6:37:42:49:
a9:cd:bb:30:1e:a8:1c:b5:3a:f7:96:bb:e2:07:fc:
a9:0b:e0:01:de:9f:e3:51:dd:57:71:bd:15:81:71:
da:60:5b:a7:2e:0e:e5:2d:04:60:d7:c6:39:44:95:
84:a1:47:85:7c:dd:08:2c:5c:9d:93:45:78:7e:e1:
2e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A
X509v3 Authority Key Identifier:
keyid:D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bc:24:15:09:99:5a:45:2e:d1:9c:78:94:87:b9:d6:00:dd:31:
5d:2c:54:64:7e:43:93:fb:3e:4f:0a:2a:5a:12:2c:4c:0e:52:
27:c4:e3:af:0e:15:9a:ad:7d:be:dd:81:fb:f6:00:dc:2a:7d:
90:5a:df:6a:20:f7:45:ef:45:04:c2:cd:f2:35:e6:e0:44:e4:
cd:f9:89:51:43:c8:7d:22:47:49:c3:82:56:fe:d0:47:60:ee:
58:f2:98:45:1e:fc:05:4e:ce:ab:1e:08:d7:71:3e:37:c3:3e:
f8:22:18:cc:e4:3a:58:52:2a:31:59:04:a0:57:09:74:1e:ad:
61:2b:9d:96:ab:3a:33:b1:29:57:aa:24:c1:aa:97:a9:df:88:
31:66:e7:1e:36:3e:54:2b:d0:2d:3c:1e:9a:86:3f:2b:30:ca:
84:24:23:51:ff:fe:50:d6:70:c1:73:a2:a0:92:d9:64:b2:8f:
19:be:ea:84:39:c0:52:58:40:88:3c:a0:a7:e2:25:9e:15:72:
3b:e2:ef:76:a4:84:53:e9:09:de:37:31:c9:20:ff:ca:e7:8e:
44:6e:13:74:8d:17:da:74:b1:4c:9f:b9:66:c1:6d:29:c1:87:
30:00:76:bd:35:69:50:fa:60:fe:c9:1c:ac:ce:42:f6:62:f2:
b0:c9:b4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 7 12:20:27 2026 by rpki-client