Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft
File: csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft (raw, json)
Hash identifier: FpJVcf8dCCrkOmh4lJU26gU0TzgPteKM5Z54fF40fKg=
Subject key identifier: F3:91:F4:65:C8:CB:21:77:FC:08:73:98:16:F6:43:F8:C7:28:A5:BD
Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Certificate serial: 02DD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft
Manifest number: 02C8
Signing time: Sun 10 May 2026 12:38:10 +0000
Manifest this update: Sun 10 May 2026 12:38:10 +0000
Manifest next update: Tue 12 May 2026 12:38:10 +0000
Files and hashes: 1: 0IPQOd93kD2kNOW5B2eNgJYsD54.roa (hash: KLYZPgwyxXuSMmommOv0Du/CrtAQFimGoYtBuKC+acY=)
2: V2-e3j-C2M3f-IPF48ND24nzbIA.roa (hash: hFVoewVj78NZRFxiWLt4Uyz69EdAufx67waMMJXCdog=)
3: aVgvYuH5mqDNAknvRRG8QJRB_fo.roa (hash: HZBCn7rlmkjdYKYwq31T1rqQc9gvODFhzjrSpTbz+tA=)
4: csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl (hash: sOdwdXHP0zdy35KOSyXDPA5Pdk8XcWqeUwUej1jddk4=)
5: uu5G7HGxzW5ia56tt4mJl8N--5g.roa (hash: PsvjgyT4iOLRHHYzlHQE2uNnieAJwEovjNKBvdJpGu0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 733 (0x2dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Validity
Not Before: May 10 12:38:10 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=F391F465C8CB2177FC08739816F643F8C728A5BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b1:98:d2:0c:b8:66:38:9d:f1:d0:d9:06:52:
f1:32:4e:de:a5:0d:6c:90:58:85:27:b4:e4:69:d4:
94:2b:67:9d:7f:ad:a5:0e:b1:5a:f3:47:be:71:5c:
17:34:92:50:e4:9a:d6:10:6e:d4:47:87:03:ff:75:
ff:d9:1b:ac:2d:3c:b3:bc:44:f4:1c:75:f0:ee:39:
f3:5b:39:2b:6d:78:06:1b:dd:ec:34:58:df:4e:f9:
1d:03:e0:e1:3d:e7:7d:e2:c2:63:aa:c4:dc:17:75:
dc:d4:8a:37:36:d1:4e:31:af:3d:d2:0d:bf:8f:3c:
4c:4f:81:5e:c1:6f:6b:3a:77:99:28:0d:f2:ec:61:
24:8b:e6:54:42:c0:e3:6e:4e:73:03:ff:24:98:31:
27:27:aa:13:d7:ae:4a:2e:2d:e6:32:01:0b:81:24:
54:eb:c4:7f:cd:49:ae:b4:e5:d7:89:87:17:1e:ba:
a0:9c:07:51:6f:8e:44:c0:df:1d:72:fd:d4:1c:8f:
13:6f:61:3b:77:a4:bc:2c:e3:e6:bc:05:80:08:18:
49:dc:5c:9c:24:46:b7:90:31:b7:ee:45:2b:7c:59:
b1:b5:16:b7:12:21:14:5b:18:90:89:57:5e:44:43:
7a:c7:7f:c1:80:d3:05:88:1e:26:1f:6e:db:74:76:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:91:F4:65:C8:CB:21:77:FC:08:73:98:16:F6:43:F8:C7:28:A5:BD
X509v3 Authority Key Identifier:
keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
82:99:ba:8d:cf:26:22:10:3e:e5:f2:4d:ec:17:84:8e:a1:4c:
b5:90:27:73:0c:8e:e0:03:72:b5:29:3d:fe:e9:42:21:cb:18:
7d:2e:94:45:ab:44:f5:17:16:a8:de:ea:e7:14:c7:a4:ec:4a:
bb:89:3a:c3:f2:ea:28:42:23:97:94:16:24:ba:e1:0a:7c:fd:
ae:bc:b2:83:46:c1:d3:79:88:8a:00:aa:36:ee:5d:ee:da:4f:
7e:f1:00:45:27:60:84:d5:56:48:34:d3:56:da:30:c1:5e:e1:
e3:bd:4d:33:aa:e6:a2:9e:31:6a:e5:f1:21:53:79:aa:be:45:
fd:c0:49:16:59:2e:83:1e:71:49:1b:48:65:2d:c8:43:4f:aa:
bb:d8:4b:c8:3e:5c:9e:ac:9c:b7:bd:b6:dc:cc:a7:2f:39:26:
0e:47:4a:c8:cf:23:41:6c:f9:56:34:9a:1c:58:80:c9:aa:29:
4c:bf:98:1d:c1:fe:29:71:26:ab:42:f7:c4:ca:6d:e9:1a:9b:
ba:01:8b:e2:e9:8e:d4:d7:67:a6:7d:ab:d9:a6:41:8d:34:67:
df:3f:b8:d6:f9:a5:a2:68:23:ee:92:95:8a:25:62:8a:53:81:
d0:40:18:b4:60:58:76:bc:3b:b5:35:ba:1a:29:6b:23:f1:f8:
1b:7a:4a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 14:23:53 2026 by rpki-client