Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft
File: paasOO5ow2TPeRiPBkJ-nHZtTBo.mft (raw, json)
Hash identifier: Gc4l5waF5dGh1j+1YFnc0grnbqfujwzn67JVhPw/jMM=
Subject key identifier: 33:32:3B:FC:44:4C:8F:10:31:AF:8A:F5:A8:65:57:05:2A:54:31:3D
Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Certificate serial: 03CA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft
Manifest number: 03B4
Signing time: Sun 10 May 2026 08:38:56 +0000
Manifest this update: Sun 10 May 2026 08:38:56 +0000
Manifest next update: Tue 12 May 2026 08:38:56 +0000
Files and hashes: 1: Qt9atZ3GcC-y3iBsCuaMHsUopwI.roa (hash: LUMGOFfqaa3HagbagohUH6ixJDCnZTF4hbvYcOb/iu4=)
2: Z6ycjfuTcBGPJZzYsGzXqbfpoRo.roa (hash: KzPOBIDBX88MEw59F18toZ52VsgESFMtcMEmagXtMcA=)
3: bXWQ0rXcaoaHeNvxC-BHcAoiLxY.roa (hash: QRsF3kucUP+OXMuqwL3AiP/lc97FNfrCz9ZSRSQBvSw=)
4: jqtTJhcdV-81ChC3Gbo1Af4A6fs.roa (hash: zC3ANtNrrUq/EYkMZgwbMolrgVeo1/t8ESla62SW+so=)
5: paasOO5ow2TPeRiPBkJ-nHZtTBo.crl (hash: fs94rmWD9iXrFcL+ZXCE9nUmvNS4LfWX5f641BJONy0=)
6: xxdB5TOoAzsa1oSkjoxT3mZ7aWs.roa (hash: UPiW5YYI1M/2XeF4T9kswVLihQKqmykSfxSuMCGaeFc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 970 (0x3ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Validity
Not Before: May 10 08:38:56 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=33323BFC444C8F1031AF8AF5A86557052A54313D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e1:25:7e:e6:d6:f7:02:0e:63:5d:5c:72:3e:
23:11:dc:ee:cf:d2:be:cc:e4:52:09:90:ce:13:51:
50:df:b1:6d:d7:2c:8d:a5:6a:82:57:5b:f4:f3:99:
80:32:17:48:2f:13:55:cf:55:d3:fd:34:18:f2:21:
a5:cf:ff:c3:01:dc:46:db:71:d1:89:77:6d:b8:ba:
85:cc:a2:6d:d5:b9:29:e3:19:a8:78:72:16:2e:dd:
46:42:96:21:f2:05:14:5d:71:73:18:76:d9:eb:7d:
21:60:fd:86:c6:3f:51:8a:49:d2:46:86:9a:13:cd:
cd:10:43:98:d0:cb:bc:30:32:31:6b:99:a0:fd:1c:
c0:de:3b:a4:85:10:58:c5:76:a4:5a:cd:f2:11:e7:
15:69:92:68:a8:91:35:95:bf:af:5b:51:d7:2c:cf:
cb:9c:5f:2b:b0:06:98:b2:70:f9:ef:86:9d:70:2a:
dc:e5:ae:66:ac:0d:a1:e9:2b:7d:da:cf:2a:39:8f:
60:53:3c:75:8c:ce:b6:ca:52:11:af:1d:9b:70:54:
98:8e:72:4b:0b:8c:bc:bb:e5:c4:ca:e3:39:35:7e:
3b:d5:e0:39:b1:ea:40:40:0e:c8:fb:d4:0b:7a:b5:
fe:42:5e:b0:73:a8:af:8d:84:58:71:1b:65:79:3b:
6b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:32:3B:FC:44:4C:8F:10:31:AF:8A:F5:A8:65:57:05:2A:54:31:3D
X509v3 Authority Key Identifier:
keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
75:23:6c:43:2e:57:22:1a:09:7a:ab:da:c5:b2:78:90:66:b4:
58:d4:d2:52:70:23:4c:71:d6:02:b5:78:dc:33:59:d2:f6:37:
c2:56:63:de:10:a6:d8:17:0d:a8:4d:e6:50:cf:63:ad:d1:fb:
c7:28:41:45:17:6c:04:cd:f0:b8:04:d7:57:50:62:fc:99:b2:
e8:d0:26:c0:65:09:ed:84:26:b7:ec:7c:44:7f:40:5b:4b:09:
ec:e3:dd:f4:c7:f0:da:f1:4c:ef:7f:b7:6f:a9:9c:5c:a0:da:
cf:2e:4d:f2:f7:e7:ae:0c:d6:b2:28:9b:df:2d:43:e9:8e:c8:
bc:64:16:23:8b:fc:8a:a9:70:fc:3b:95:05:67:29:1d:c4:94:
b3:d2:1e:49:20:fb:bd:16:e8:cd:b0:3d:96:a9:70:61:92:f4:
70:b5:90:f5:38:62:e6:23:06:f8:2f:ac:74:8f:74:cc:6b:b4:
78:0e:5a:4b:2e:76:9b:a6:f6:e0:4e:ce:a1:8d:35:43:f6:cb:
db:eb:dc:7d:62:87:6d:46:f8:57:2c:57:45:3e:96:3d:c8:63:
f3:d8:48:d1:00:ee:1e:59:8b:36:fd:74:1d:f6:7b:67:51:c1:
c3:7c:2b:d4:b7:70:a1:f0:92:e3:16:df:34:1d:5a:99:a5:20:
9a:14:a7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 14:26:34 2026 by rpki-client