Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft
File: 4hRiP9Epy5cnQNOR2vORlvKt8r0.mft (raw, json)
Hash identifier: uhtNTyCFQjQLvUztTPutwhnbRVcPNDDEKHxRc410Snc=
Subject key identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB
Authority key identifier: E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD
Certificate issuer: /CN=E214623FD129CB972740D391DAF39196F2ADF2BD
Certificate serial: FD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft
Manifest number: FA
Signing time: Sat 29 Mar 2025 09:06:41 +0000
Manifest this update: Sat 29 Mar 2025 09:06:41 +0000
Manifest next update: Mon 31 Mar 2025 09:06:41 +0000
Files and hashes: 1: 4hRiP9Epy5cnQNOR2vORlvKt8r0.crl (hash: xO7Jjp0qPZA/iTt0sWDGW7bc74N/W2V1Gf9lkbYui2c=)
2: vFNe51u904S3-M7htoYMKJ7ZwUw.roa (hash: M+gBWKxVU0r9iprZD9GVyq5DolhE47weX3yvCFfsIso=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253 (0xfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E214623FD129CB972740D391DAF39196F2ADF2BD
Validity
Not Before: Mar 29 09:06:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5F4E013E8588F20D7604DFEA79DAC4D64B88E9AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3b:a8:8c:da:a4:d9:95:81:48:9d:98:2f:23:
36:0a:90:d7:70:72:d0:66:3b:92:cc:47:d1:62:8a:
61:2c:f3:fe:e2:cc:00:9b:2c:62:ff:19:9f:43:0a:
49:75:35:66:ab:6b:2a:9c:c6:38:70:dd:11:a3:c8:
ed:c0:34:19:e9:f6:84:d1:18:53:59:fd:90:94:4a:
1f:75:c2:cb:4f:40:04:94:aa:04:17:48:7d:db:b3:
ba:94:c3:97:d1:b5:c7:a1:a1:fa:97:cd:48:b6:b9:
de:2f:2d:0d:97:e1:75:ba:6c:26:fd:a6:a6:3c:a5:
7e:e5:59:c2:5d:8a:3a:37:5a:ff:df:a2:2d:28:46:
8a:47:d6:e6:88:b8:d2:90:68:42:b2:40:76:b4:90:
0f:03:92:34:db:47:05:77:c8:95:eb:8d:b2:05:0e:
a8:c7:47:57:4a:7a:47:f4:44:89:27:b7:ae:0d:bb:
aa:c8:ff:14:93:de:ae:4c:e6:94:b5:e7:e7:7d:95:
0e:bd:b2:86:37:c0:03:26:fe:de:77:54:ff:99:08:
47:0d:74:88:b6:31:5a:1d:02:e0:13:89:c5:4b:0d:
13:ab:39:5a:f7:3d:b6:d1:a7:cb:e5:19:37:bf:18:
1b:34:58:ee:dd:33:56:ac:0b:83:53:d2:f6:dc:28:
fc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB
X509v3 Authority Key Identifier:
keyid:E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:6e:34:7b:05:8b:84:45:ed:78:a8:b3:dc:17:32:9e:77:12:
91:bb:c6:6a:02:dd:d2:60:23:0a:cb:a3:f3:fd:fb:bf:c9:11:
21:2d:e2:b3:5b:c2:74:cc:b5:5d:d0:d6:0a:c9:0a:f4:ea:f6:
a5:32:70:57:84:09:a7:85:5a:43:a0:3d:0e:3b:79:1e:c0:6c:
8e:f7:bf:7a:a3:b8:cb:53:05:24:21:2e:8a:19:9f:e1:af:2a:
6d:2e:26:9f:ca:88:52:cf:43:6a:fc:89:e6:6e:9a:b2:45:31:
7c:c7:7c:36:bd:d7:c2:ba:8d:a6:bf:64:f7:5f:ba:8d:f6:e2:
16:ca:70:df:2e:cc:be:8d:40:c1:28:91:a2:a7:10:6f:28:6d:
3e:82:48:25:cb:79:06:9b:76:89:e6:f0:6a:1f:82:25:1e:5b:
3a:c4:fd:22:5f:8b:3d:57:d6:b7:6b:04:81:dc:3a:e3:8a:f0:
57:18:e1:66:0f:93:b6:a9:30:98:af:78:c9:31:5b:12:e3:c2:
46:10:3e:9b:76:38:b6:38:09:09:86:49:33:7a:cb:95:fa:23:
f0:ea:44:2d:98:cd:82:0e:5f:c5:6f:73:e3:49:43:1e:d2:15:
bd:47:52:08:20:b4:b1:a9:d2:e2:04:b9:e1:f2:a5:86:62:73:
b9:77:72:42
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTIx
NDYyM0ZEMTI5Q0I5NzI3NDBEMzkxREFGMzkxOTZGMkFERjJCRDAeFw0yNTAzMjkw
OTA2NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGNEUwMTNFODU4OEYy
MEQ3NjA0REZFQTc5REFDNEQ2NEI4OEU5QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDWO6iM2qTZlYFInZgvIzYKkNdwctBmO5LMR9FiimEs8/7izACb
LGL/GZ9DCkl1NWarayqcxjhw3RGjyO3ANBnp9oTRGFNZ/ZCUSh91wstPQASUqgQX
SH3bs7qUw5fRtcehofqXzUi2ud4vLQ2X4XW6bCb9pqY8pX7lWcJdijo3Wv/foi0o
RopH1uaIuNKQaEKyQHa0kA8DkjTbRwV3yJXrjbIFDqjHR1dKekf0RIknt64Nu6rI
/xST3q5M5pS15+d9lQ69soY3wAMm/t53VP+ZCEcNdIi2MVodAuATicVLDROrOVr3
PbbRp8vlGTe/GBs0WO7dM1asC4NT0vbcKPx/AgMBAAGjggIDMIIB/zAdBgNVHQ4E
FgQUX04BPoWI8g12BN/qedrE1kuI6aswHwYDVR0jBBgwFoAU4hRiP9Epy5cnQNOR
2vORlvKt8r0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0pNRS80
aFJpUDlFcHk1Y25RTk9SMnZPUmx2S3Q4cjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRoUmlQOUVweTVjblFOT1Iydk9SbHZLdDhyMC5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0NKTUUvNGhSaVA5RXB5NWNuUU5PUjJ2T1Js
dkt0OHIwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH
AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJ1uNHsF
i4RF7Xios9wXMp53EpG7xmoC3dJgIwrLo/P9+7/JESEt4rNbwnTMtV3Q1grJCvTq
9qUycFeECaeFWkOgPQ47eR7AbI73v3qjuMtTBSQhLooZn+GvKm0uJp/KiFLPQ2r8
ieZumrJFMXzHfDa918K6jaa/ZPdfuo324hbKcN8uzL6NQMEokaKnEG8obT6CSCXL
eQabdonm8GofgiUeWzrE/SJfiz1X1rdrBIHcOuOK8FcY4WYPk7apMJiveMkxWxLj
wkYQPpt2OLY4CQmGSTN6y5X6I/DqRC2YzYIOX8Vvc+NJQx7SFb1HUgggtLGp0uIE
ueHypYZic7l3ckI=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:02:02 2025 by rpki-client