Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft
File: cGQhJf35AjZbJAykAigCEy_cHBU.mft (raw, json)
Hash identifier: ji4NpzHdDcJZD1TEQ56SXK81vhC5tEVyyniBilS5jio=
Subject key identifier: 83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24
Authority key identifier: 70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15
Certificate issuer: /CN=70642125FDF902365B240CA4022802132FDC1C15
Certificate serial: 016E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft
Manifest number: 016A
Signing time: Wed 22 Apr 2026 00:34:22 +0000
Manifest this update: Wed 22 Apr 2026 00:34:21 +0000
Manifest next update: Wed 22 Apr 2026 06:34:21 +0000
Files and hashes: 1: -1XVPannxNhE0gN6nt3WaVnbJzY.roa (hash: HckFBq6bNh0Ty5m0qi4KgS81TTmfyriYDAa0HhLToXs=)
2: GWJGOfhpsfrJd0kw5QzE4IUzcYc.roa (hash: S/LrahTF1ecL3rlxDi1WrfdvhV+9F5uRIbwg43rBxkg=)
3: cGQhJf35AjZbJAykAigCEy_cHBU.crl (hash: 6UxXGZ7esw9fF27a2ARwfCc8riXAL6Etvjbjr3sUsDE=)
4: qiVREO8yx4XRDKb3jtJiGN7C9lU.roa (hash: 6+rIhtnl5zgQPi3KWYUxtuPLFfq5UCLqmQ3T0RLII/A=)
5: sIR8g5rQFVdHVOwJRmeSXyTm15M.roa (hash: bN4TXRPC8WF2qSqbM7O6KTJe4r3PiqwWhD78/z0GAj4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366 (0x16e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70642125FDF902365B240CA4022802132FDC1C15
Validity
Not Before: Apr 22 00:34:21 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=835127D7B908A0C8B51CCBC392DD2BE14C3C4424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:69:84:cc:fb:6a:46:8a:78:66:41:5a:0e:e0:
63:19:8d:37:40:e3:99:ed:d5:19:66:10:53:4f:27:
dd:19:5e:3a:65:79:74:d5:a5:0c:89:0a:e9:4e:0b:
61:0a:39:39:53:5a:82:c4:9b:74:a8:9b:30:1d:f1:
43:62:50:a0:c1:cd:1e:44:17:be:2e:31:25:45:e0:
98:56:c9:4e:97:2f:96:62:e6:46:2a:93:b5:43:aa:
55:2c:e3:85:c8:39:0b:12:de:ff:5a:6b:03:67:cb:
f4:85:2a:0c:13:8d:6d:70:db:1d:d1:55:9f:d6:a3:
3a:8f:81:14:0e:56:d9:fe:03:e9:78:21:1b:42:e9:
b9:36:25:32:fe:e0:5b:d5:fd:d2:70:8f:61:d3:5d:
95:fb:9c:3c:0e:e0:6c:a2:ea:42:e8:89:2e:e2:08:
91:51:16:05:8b:e0:1d:e7:5e:bb:cb:7e:ae:3e:ef:
a7:8e:b2:c5:fb:fc:34:b1:10:2d:4e:8a:15:38:88:
21:ea:2d:c4:02:40:57:a6:07:65:43:33:5f:3b:50:
78:8f:4d:28:61:25:bc:48:9e:aa:09:3a:7d:cb:1b:
37:f7:af:74:bd:da:29:22:bb:cf:8f:ad:00:91:40:
52:dd:5f:77:29:38:f5:ab:2c:f5:f7:10:bc:66:ca:
23:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24
X509v3 Authority Key Identifier:
keyid:70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1c:22:54:e4:3a:b1:b4:6e:8b:34:90:00:cc:f0:d3:ca:e6:92:
5d:a2:5d:85:06:67:65:5e:65:a1:64:66:43:f1:c0:19:5f:61:
1c:18:0c:87:83:3d:62:71:9d:9c:a8:e8:16:bc:70:60:c6:ea:
08:df:8e:bd:fc:43:1d:f9:6c:e0:a0:3c:8b:ce:38:67:fb:20:
60:3a:73:5f:76:cc:4f:2f:08:dc:d9:69:3b:39:ae:fd:ac:c4:
64:a2:ad:39:a7:d0:22:01:9d:31:ae:4c:4a:ba:eb:00:d9:0d:
54:51:98:ec:01:65:53:23:23:11:7b:8f:05:89:c0:a1:b6:3c:
7a:f0:5b:28:7f:d5:2d:5b:df:18:d1:53:94:34:2f:a8:dd:9f:
c4:66:9b:42:15:e6:06:90:f9:8d:43:45:ab:0a:9b:28:85:55:
68:03:ee:98:da:5a:98:d2:ce:df:fb:38:43:83:0c:1a:ad:cb:
e1:41:7c:e2:70:3e:61:e2:1e:06:ed:89:40:a5:3e:78:11:80:
46:a7:ca:b8:24:a0:c2:6b:c5:f9:26:4b:28:b3:2c:bd:b5:35:
89:b5:fa:f8:c0:fe:9e:f1:6b:56:78:4c:fd:37:b3:0f:9c:b0:
49:23:a1:da:e4:0c:6e:a6:16:c1:20:3c:f3:bc:47:55:15:db:
4a:c9:ce:61
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA2
NDIxMjVGREY5MDIzNjVCMjQwQ0E0MDIyODAyMTMyRkRDMUMxNTAeFw0yNjA0MjIw
MDM0MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgzNTEyN0Q3QjkwOEEw
QzhCNTFDQ0JDMzkyREQyQkUxNEMzQzQ0MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMaYTM+2pGinhmQVoO4GMZjTdA45nt1RlmEFNPJ90ZXjpleXTV
pQyJCulOC2EKOTlTWoLEm3SomzAd8UNiUKDBzR5EF74uMSVF4JhWyU6XL5Zi5kYq
k7VDqlUs44XIOQsS3v9aawNny/SFKgwTjW1w2x3RVZ/WozqPgRQOVtn+A+l4IRtC
6bk2JTL+4FvV/dJwj2HTXZX7nDwO4Gyi6kLoiS7iCJFRFgWL4B3nXrvLfq4+76eO
ssX7/DSxEC1OihU4iCHqLcQCQFemB2VDM187UHiPTShhJbxInqoJOn3LGzf3r3S9
2ikiu8+PrQCRQFLdX3cpOPWrLPX3ELxmyiNPAgMBAAGjggINMIICCTAdBgNVHQ4E
FgQUg1En17kIoMi1HMvDkt0r4Uw8RCQwHwYDVR0jBBgwFoAUcGQhJf35AjZbJAyk
AigCEy/cHBUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURC
QVNFL2NHUWhKZjM1QWpaYkpBeWtBaWdDRXlfY0hCVS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvY0dRaEpmMzVBalpiSkF5a0FpZ0NFeV9jSEJVLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURCQVNFL2NHUWhKZjM1QWpa
YkpBeWtBaWdDRXlfY0hCVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh
BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA
A4IBAQAcIlTkOrG0bos0kADM8NPK5pJdol2FBmdlXmWhZGZD8cAZX2EcGAyHgz1i
cZ2cqOgWvHBgxuoI3469/EMd+WzgoDyLzjhn+yBgOnNfdsxPLwjc2Wk7Oa79rMRk
oq05p9AiAZ0xrkxKuusA2Q1UUZjsAWVTIyMRe48FicChtjx68Fsof9UtW98Y0VOU
NC+o3Z/EZptCFeYGkPmNQ0WrCpsohVVoA+6Y2lqY0s7f+zhDgwwarcvhQXzicD5h
4h4G7YlApT54EYBGp8q4JKDCa8X5Jksosyy9tTWJtfr4wP6e8WtWeEz9N7MPnLBJ
I6Ha5AxuphbBIDzzvEdVFdtKyc5h
-----END CERTIFICATE-----
Generated at Wed Apr 22 05:18:36 2026 by rpki-client