Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft
File: O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft (raw, json)
Hash identifier: e+YuNlmSP49C4L3fkPCRdYFjBFzhJjwhpm4ToAFaspU=
Subject key identifier: A1:5E:FD:94:FE:3E:5E:B8:DA:5C:47:9C:AA:3E:5C:15:DE:6B:F3:0F
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 0448
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft
Manifest number: 0423
Signing time: Sun 10 May 2026 11:07:56 +0000
Manifest this update: Sun 10 May 2026 11:07:56 +0000
Manifest next update: Tue 12 May 2026 11:07:56 +0000
Files and hashes: 1: GgEo2w9T_fXVha4PVN2E6dKjRJg.roa (hash: Xc/PD6ve9+6gF85azmsEeKYeLcGCQzz88booj8gOLug=)
2: O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl (hash: KJ6/SXyz+6Rit9dJYsmy0H+BEaFIvQrWz/DcW+NkMKs=)
3: QZN53ARWSHPoZybZituovHv2VMA.roa (hash: xpV2mADjKRF8dmb+rzuDG/kcLz+vEDvLmEfLcpG16fA=)
4: i8dKOZXv1vhIMXMiLXLxGftsai4.roa (hash: dCnmF49hVZrcW6hE5UyiIonjm5uD2CJYDBTlbJ/5LU8=)
5: rdynvpc7L5PxuXFZYLeP_1xMbhk.roa (hash: OlM+PcqVLvkOU0WnIl8F6nZSw+Ule3NLPBLVX57QAjE=)
6: tn_8c0Dou3ePetewxb4aCNtrpUk.roa (hash: qjjP4A30pUMfzrlKWDOKzR00Zluxja3jjQJz8743r4c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1096 (0x448)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: May 10 11:07:56 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=A15EFD94FE3E5EB8DA5C479CAA3E5C15DE6BF30F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0e:b2:57:be:31:50:22:c6:2b:24:5f:23:17:
0d:f8:fb:aa:e5:83:4b:64:8b:c9:60:45:ca:14:ce:
8f:da:c3:ec:84:6e:4b:34:3d:f8:7f:3e:ab:e3:36:
ad:dd:9e:13:68:21:cb:70:7c:00:d2:c7:54:b3:f1:
7c:c2:36:4c:d1:30:4b:aa:e2:cc:bb:85:25:b6:d1:
2a:14:99:1c:81:38:73:ba:a9:c5:9c:33:aa:5e:9c:
16:ea:c4:59:83:5e:e8:7b:3f:3f:42:a0:1a:fe:30:
d7:9e:b3:b5:52:3e:c0:44:2a:f7:bc:e8:36:79:c6:
fd:a7:a6:63:5b:f2:ae:b8:28:4d:53:71:1d:4f:24:
21:4d:a7:a8:6c:0d:66:3f:8c:ce:d5:5d:a2:13:c2:
ae:60:5a:a6:a3:6f:b1:86:1d:2a:fe:ce:b5:d5:b9:
9a:67:e8:03:54:fc:d3:5e:b9:48:66:c4:64:19:27:
13:ad:ac:b8:01:5d:ab:5d:f7:1e:c5:c8:92:36:0a:
24:0a:0f:79:5b:e6:f9:d0:b6:72:ee:94:d4:b6:8c:
7c:51:be:a8:ff:17:43:e1:88:60:a3:f7:87:02:9d:
7a:96:93:bb:ca:6e:22:88:90:5b:a7:2d:8b:0c:d3:
d7:85:8d:2c:d7:1d:6e:99:bc:0c:e5:9b:c3:9f:79:
38:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:5E:FD:94:FE:3E:5E:B8:DA:5C:47:9C:AA:3E:5C:15:DE:6B:F3:0F
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ce:e3:e5:8a:80:53:fe:1c:b3:f9:d5:e1:dd:24:b6:5d:3d:5b:
d6:c2:15:72:36:f3:8d:50:63:c4:e9:80:85:a8:88:0d:62:12:
22:03:1c:fd:37:8f:b8:43:4c:ef:b6:dd:d0:fb:dd:84:8e:d4:
6f:ee:e9:23:c2:f1:11:be:b6:e4:51:7d:20:9d:63:05:a4:3c:
05:6d:0d:e5:7a:d6:08:c9:af:49:ce:15:b0:e7:46:68:79:5a:
17:2e:6b:42:a5:00:76:65:88:c2:9e:a0:dd:ea:7c:83:2d:67:
cd:70:6c:9a:21:94:da:e2:6c:5d:6b:7d:98:9f:b6:30:46:be:
79:62:08:6c:08:b1:4c:de:71:d4:0e:cf:76:f6:8b:cd:73:ec:
05:c4:30:c8:76:2a:5d:f0:af:43:41:9c:72:3c:3c:00:bb:26:
6b:c7:1d:59:73:bf:6e:f9:08:8a:4a:55:24:24:34:fe:4f:e7:
b7:03:92:c0:0e:08:bc:aa:b4:b4:85:ee:d9:ea:b4:06:aa:f4:
31:b4:bd:79:60:48:39:60:6c:5c:43:9c:8d:59:55:dd:e4:7b:
e3:33:ba:65:0e:4b:58:99:f3:97:39:ec:32:a3:e4:19:1b:4d:
04:de:a8:8a:6c:26:ef:46:d0:13:e9:a5:24:16:f7:08:64:7d:
ec:8d:de:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 14:22:43 2026 by rpki-client