Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft
File: J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft (raw, json)
Hash identifier: KU+3s4a5QEOj7bdDQ0ua6cRn85cbvhL+60a2XMriUAs=
Subject key identifier: FA:E8:D9:1B:1D:31:8D:21:6E:C5:FF:97:B9:AC:20:17:CA:58:DE:27
Authority key identifier: 27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2
Certificate issuer: /CN=277895E64BE41B7182664E1345CD57E5D36A1AF2
Certificate serial: 035F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft
Manifest number: 034D
Signing time: Sun 10 May 2026 11:39:13 +0000
Manifest this update: Sun 10 May 2026 11:39:13 +0000
Manifest next update: Tue 12 May 2026 11:39:13 +0000
Files and hashes: 1: J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl (hash: funxWzS/1qLH/jhj4sX4PYOZ8wny0/BKJmhRTJ6BcPU=)
2: Ybm49pMKyKpG8z47ALbdnS-I39Q.roa (hash: 0UAmxP2EO94jC5IkOAAFcTOgnudeO4X3lYtyTw+N2L8=)
3: jR5XOBJt72et5TLWZjaUB6MjtT0.roa (hash: aRtR8WtXn6/I8iEaFHymVWC8/RRKC0MRiYkaIfbtlFw=)
4: tQsDTEBBZ1F_n_B9q-DgdEqL2bo.roa (hash: oDqEDsWQAduDrmllywzYRJrI5/FS5eroEVEVtEQo4Rg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 863 (0x35f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=277895E64BE41B7182664E1345CD57E5D36A1AF2
Validity
Not Before: May 10 11:39:13 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=FAE8D91B1D318D216EC5FF97B9AC2017CA58DE27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:b7:18:ff:f9:6f:7d:7d:07:e1:8b:27:3b:
b2:cf:e1:74:c3:ec:ac:3e:ab:70:d4:8b:08:8e:29:
f8:49:be:73:a7:cf:69:fb:54:d1:60:7e:a8:41:0c:
56:d9:4d:9f:eb:a8:20:67:b8:31:e3:0b:c0:a3:a7:
c8:f3:f9:5c:a0:c6:8c:96:ac:d7:1a:c0:90:8f:19:
dd:a7:88:4d:fe:d7:44:58:2d:95:89:98:b9:0e:54:
03:f9:7e:c7:8c:92:57:97:b7:49:ac:94:87:4a:c2:
dd:33:25:18:a6:b9:8d:9d:73:14:04:ec:df:72:41:
92:c7:4d:3f:ea:ec:a1:49:e8:c2:56:25:c6:be:fa:
77:37:29:eb:7b:69:e0:22:78:6d:9d:34:df:9b:b8:
d9:d3:62:52:95:d3:88:60:9d:71:43:79:81:2f:d8:
1d:81:f4:ad:a4:9c:ef:7e:20:f9:ac:02:f0:a9:d9:
b5:0f:53:da:c7:3a:cb:3c:af:c0:b2:40:67:d7:18:
27:47:18:a6:46:66:1e:db:39:c1:d8:29:b6:5b:37:
e9:bb:b1:42:03:14:62:38:2c:9e:ef:15:52:9b:dc:
88:36:ae:cf:fb:21:ba:19:74:58:c5:4a:36:82:7b:
f2:90:7f:db:72:a6:c4:5e:80:77:e4:9c:7b:1d:19:
18:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E8:D9:1B:1D:31:8D:21:6E:C5:FF:97:B9:AC:20:17:CA:58:DE:27
X509v3 Authority Key Identifier:
keyid:27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3d:68:63:15:e0:35:95:85:8a:cf:60:6f:0a:db:10:57:05:12:
b4:42:2e:b2:a0:2f:76:81:36:11:33:00:33:2a:aa:62:4f:98:
b5:5e:3e:b5:1d:10:94:51:f2:93:eb:0d:d0:fd:3c:4c:25:97:
c7:9b:5b:e7:8b:8a:f0:e0:bd:e7:67:a5:e8:6f:35:25:f7:62:
b7:04:52:d2:8d:e6:1e:f1:b3:d4:27:d5:01:a8:3c:08:f5:81:
09:18:56:5e:36:8e:b9:8a:50:51:62:9c:c8:e3:73:fc:14:14:
5c:7a:e3:06:dd:21:5c:75:1d:d5:4b:e7:71:b9:3c:e5:3d:43:
0d:5e:60:b0:6a:fe:75:d4:9e:77:55:62:65:60:bd:d6:59:e5:
f4:60:b7:b5:cb:3f:7c:0f:cf:cd:77:44:89:ed:f6:79:d3:ce:
d9:5a:fa:a1:77:db:48:cb:7b:08:9d:46:f0:05:c1:a2:ef:37:
ae:ca:04:5b:51:ba:8a:6d:a9:c0:6d:5a:15:5d:4a:39:08:b8:
61:7c:ea:9e:c2:92:06:9c:c0:c7:1b:26:84:9c:5c:f1:c0:8a:
e8:a5:cd:ca:d0:8d:c3:d8:ad:10:47:8f:41:f3:14:62:77:4f:
e9:5f:2e:25:05:f8:ac:dd:59:c0:12:97:5a:e4:a8:1f:7a:82:
e0:84:ab:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 14:20:59 2026 by rpki-client