Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft
File: g0159BJr-encCzK4Z2Tn1gJRTgE.mft (raw, json)
Hash identifier: B7Rn5+nmM0qMVy6YhB9PwWeNYCw+A61eZPTE28gQBio=
Subject key identifier: 8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12
Authority key identifier: 83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01
Certificate issuer: /CN=834D79F4126BF9E9DC0B32B86764E7D602514E01
Certificate serial: 034D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft
Manifest number: 0345
Signing time: Sun 16 Feb 2025 13:55:38 +0000
Manifest this update: Sun 16 Feb 2025 13:55:38 +0000
Manifest next update: Sun 16 Feb 2025 19:55:38 +0000
Files and hashes: 1: 0dSQamXTjS5EC4opGylg1CLQReI.roa (hash: AUCWhAyZUnzgqPvVuGWCc+NEDapb/1BXA4KNBm599ss=)
2: g0159BJr-encCzK4Z2Tn1gJRTgE.crl (hash: rfcUkjHXKicaDfAyqzCNXgs/2rs1hP6Zw5nSn5xjghw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 845 (0x34d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=834D79F4126BF9E9DC0B32B86764E7D602514E01
Validity
Not Before: Feb 16 13:55:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8DFD7A22673B1B3DC7028FF13499E5786B9F0B12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0c:4a:98:2a:6f:e1:bc:b1:f9:37:00:09:28:
64:c1:83:03:97:c2:e3:ed:62:73:2e:38:7a:79:de:
7c:2e:1a:f4:40:f2:f9:8c:c2:f1:7e:13:1c:a7:b3:
a4:1e:82:f6:ac:b3:22:59:ac:7e:ba:22:a1:d1:9a:
7a:be:40:5b:b5:8a:34:b8:32:48:51:45:20:36:47:
76:71:d3:a4:22:70:ff:78:fb:fd:af:c7:e8:e1:9b:
29:1b:83:ad:4d:e9:2c:dc:29:58:30:a4:fb:68:65:
6e:81:31:d0:08:a4:32:6a:7f:73:a1:b1:9c:b4:50:
5e:0f:34:46:c2:72:27:77:c2:84:89:57:26:b6:5d:
c9:9b:f3:f1:3e:b6:e2:91:90:1a:e7:01:26:df:13:
2d:b6:9b:2a:90:23:12:28:2f:10:7f:f9:cb:fa:27:
44:1b:6f:7a:e2:48:a9:e9:c2:86:f4:f4:3d:ac:29:
47:2a:81:ac:93:1a:64:7f:c5:db:e6:76:5f:8c:2f:
86:81:c3:fa:ee:5a:c3:c8:79:f6:4a:ef:86:92:d4:
ea:3f:8a:6e:4f:98:e3:a1:88:5f:08:40:92:51:87:
ca:ad:b4:24:be:3b:14:6d:69:31:29:ad:f3:87:8e:
46:db:4a:b6:af:40:6c:3c:ff:85:5a:e5:18:52:48:
1b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12
X509v3 Authority Key Identifier:
keyid:83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
52:b6:5e:f7:34:b1:33:f4:01:62:cf:22:4c:e9:7c:c0:99:40:
13:63:d9:d9:06:22:0e:36:2c:91:6c:db:4f:de:85:1a:b8:a8:
a9:98:d8:5c:9d:31:c2:16:d0:ee:79:f6:00:f2:77:03:55:af:
e7:a3:e8:8e:c1:03:f9:fa:57:18:d5:95:bf:69:29:33:27:4f:
4a:59:72:cf:d3:f0:9a:c9:d4:61:2a:13:3b:9b:10:62:6f:13:
07:95:84:13:9f:24:b5:c8:de:08:82:f5:eb:9e:26:04:2b:f6:
70:76:50:6f:10:d1:6b:db:0f:90:84:1c:cc:45:59:ee:1b:e8:
81:bf:6c:ef:04:9d:2e:b0:b5:e7:1e:6c:8a:ff:ec:fe:11:2d:
cb:8b:1e:d5:ee:3e:21:6e:08:4c:f1:97:64:7c:a5:cc:f2:f2:
cc:1f:a3:0e:40:71:3d:b1:3f:f9:64:da:e9:1c:58:b8:52:51:
cb:49:5d:7f:d3:97:74:ec:6b:2a:9a:7e:22:d3:79:60:e1:3e:
3d:72:45:1e:cc:f4:29:a5:73:74:47:6c:12:cf:ec:c8:f8:e2:
05:ea:9f:d2:2c:f2:31:bf:54:15:24:8b:77:0c:81:63:ad:1c:
bd:6b:68:96:5e:47:8a:36:64:da:ea:1e:63:25:b4:ad:f3:78:
7e:20:8c:e3
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgICA00wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODM0
RDc5RjQxMjZCRjlFOURDMEIzMkI4Njc2NEU3RDYwMjUxNEUwMTAeFw0yNTAyMTYx
MzU1MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhERkQ3QTIyNjczQjFC
M0RDNzAyOEZGMTM0OTlFNTc4NkI5RjBCMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmDEqYKm/hvLH5NwAJKGTBgwOXwuPtYnMuOHp53nwuGvRA8vmM
wvF+Exyns6QegvassyJZrH66IqHRmnq+QFu1ijS4MkhRRSA2R3Zx06QicP94+/2v
x+jhmykbg61N6SzcKVgwpPtoZW6BMdAIpDJqf3OhsZy0UF4PNEbCcid3woSJVya2
Xcmb8/E+tuKRkBrnASbfEy22myqQIxIoLxB/+cv6J0Qbb3riSKnpwob09D2sKUcq
gayTGmR/xdvmdl+ML4aBw/ruWsPIefZK74aS1Oo/im5PmOOhiF8IQJJRh8qttCS+
OxRtaTEprfOHjkbbSravQGw8/4Va5RhSSBsTAgMBAAGjggINMIICCTAdBgNVHQ4E
FgQUjf16Imc7Gz3HAo/xNJnleGufCxIwHwYDVR0jBBgwFoAUg0159BJr+encCzK4
Z2Tn1gJRTgEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURO
T0RFL2cwMTU5QkpyLWVuY0N6SzRaMlRuMWdKUlRnRS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvZzAxNTlCSnItZW5jQ3pLNFoyVG4xZ0pSVGdFLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVUROT0RFL2cwMTU5QkpyLWVu
Y0N6SzRaMlRuMWdKUlRnRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh
BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA
A4IBAQBStl73NLEz9AFizyJM6XzAmUATY9nZBiIONiyRbNtP3oUauKipmNhcnTHC
FtDuefYA8ncDVa/no+iOwQP5+lcY1ZW/aSkzJ09KWXLP0/CaydRhKhM7mxBibxMH
lYQTnyS1yN4IgvXrniYEK/ZwdlBvENFr2w+QhBzMRVnuG+iBv2zvBJ0usLXnHmyK
/+z+ES3Lix7V7j4hbghM8ZdkfKXM8vLMH6MOQHE9sT/5ZNrpHFi4UlHLSV1/05d0
7Gsqmn4i03lg4T49ckUezPQppXN0R2wSz+zI+OIF6p/SLPIxv1QVJIt3DIFjrRy9
a2iWXkeKNmTa6h5jJbSt83h+IIzj
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:04 2025 by rpki-client