Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft
File: UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft (raw, json)
Hash identifier: C5Iz3NoLCDfh6kxAakqdaVjvyWYsLbpcUQCVtVcl4c0=
Subject key identifier: EF:E6:B7:BE:95:BF:C8:8D:48:DE:06:3C:6F:83:94:6B:4D:16:3A:22
Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90
Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990
Certificate serial: 02F8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft
Manifest number: 02EF
Signing time: Sun 13 Apr 2025 09:07:21 +0000
Manifest this update: Sun 13 Apr 2025 09:07:21 +0000
Manifest next update: Tue 15 Apr 2025 09:07:21 +0000
Files and hashes: 1: 2E_1DhdgHhK60wsJ76yqfKxAzyE.roa (hash: PwAsDZMMHxBexgsoulbx2oPmiHPkrjz5HWZGix+rMb4=)
2: Le5Nsz9BGcOUJgtf2irGzpKAuC8.roa (hash: R9mLT+81nuJ4kxeqsIAavXgR87wIPfWUTb98vhKuVME=)
3: R8gaY7de0XFBlkhAgnTGvLRkrgc.roa (hash: C6kKNBP8wOaAz4rcHQqPY/GsyJs4qtwvAKcgGEjPCFE=)
4: UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl (hash: eFB/1Vy+b/bksFO0w44nU8VsM1tH8kIheZhJ/GKntxE=)
5: kmHUxkMGXApzr5n-GYFL4wOfbUc.roa (hash: BB3L0SZQR2g5bpxLdOCsB/NPCLJ880QrSWw3P96XgKM=)
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 20:38:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 760 (0x2f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990
Validity
Not Before: Apr 13 09:07:21 2025 GMT
Not After : Oct 14 15:30:32 2025 GMT
Subject: CN=EFE6B7BE95BFC88D48DE063C6F83946B4D163A22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:91:6b:48:27:a0:e7:c3:2c:f4:20:42:d2:80:
22:4d:f5:e2:27:60:d2:01:69:2e:88:69:9a:d9:4d:
15:64:fc:58:04:6e:69:c3:24:e9:24:d0:dc:e6:c2:
6e:97:1d:2a:69:a7:bd:ff:55:1a:d1:da:97:11:35:
d6:2f:7c:69:82:63:e3:54:be:c1:39:8a:40:cd:39:
ae:66:61:d5:6c:65:26:d9:e1:9c:00:ab:cd:a0:e0:
be:a9:2c:c5:13:31:83:a8:0b:30:4a:73:66:34:80:
68:7b:7d:f3:6f:8f:79:db:44:5a:38:6f:1c:a9:23:
75:f5:e2:19:2c:70:16:b1:22:c1:e9:56:a2:b8:ad:
ac:3c:94:a7:b0:15:32:13:f8:af:07:c1:ed:5e:0e:
d2:ee:ed:a6:e5:3a:6c:34:ef:b3:68:d0:ae:7a:ea:
81:f9:1a:ef:fe:93:29:b6:f6:1d:e3:94:da:8c:92:
9e:fd:cc:8b:da:dc:37:11:e1:8a:06:48:26:b2:f1:
5a:7b:12:bc:d2:37:bd:72:b8:26:ac:ac:7f:c3:26:
88:d5:15:f4:50:42:31:86:af:e8:6f:d2:33:85:23:
40:43:5d:d6:4d:a8:d3:80:bb:c3:45:6b:39:f1:c3:
5f:50:5a:9b:8a:67:63:cc:a6:58:db:0e:4d:43:d7:
7f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E6:B7:BE:95:BF:C8:8D:48:DE:06:3C:6F:83:94:6B:4D:16:3A:22
X509v3 Authority Key Identifier:
keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d3:1f:97:eb:8c:8d:85:5b:e6:6b:6c:f6:0f:ae:1d:03:00:46:
ba:99:23:8c:3b:c8:17:16:50:b5:72:97:90:e4:2a:f6:62:da:
7f:74:5a:b0:19:d7:e4:4e:94:8d:e7:37:ca:6b:9a:fc:2a:9d:
ff:06:49:d7:0a:d6:d0:1c:31:95:a3:18:e7:1f:4e:19:ab:fc:
da:e3:87:ed:55:aa:ee:49:d3:37:f6:9b:55:2e:fb:6b:2e:de:
7d:6c:1c:41:fb:0c:1f:e0:5c:13:7d:01:6f:9f:10:dd:a6:9e:
d0:42:3e:bb:3e:c0:f2:96:a3:49:c7:33:16:63:3a:27:0f:dd:
8b:e3:a6:12:43:3c:cb:0b:2e:05:7b:6f:6c:d4:0a:c1:c2:19:
65:ab:85:8c:d1:48:2a:64:6b:cd:04:f6:c9:cc:a7:fc:1e:86:
46:f0:ff:62:08:48:db:67:03:d5:63:04:b5:3b:37:b6:cc:1a:
d3:7e:50:9f:e1:22:2e:7c:ca:d0:91:1b:9c:80:60:62:5b:04:
e7:3e:6e:48:d0:ed:de:fe:8f:f8:91:01:35:23:a2:31:98:8d:
52:a3:1f:16:d2:6f:93:42:d8:4c:31:51:47:b3:74:1c:f8:71:
ad:40:46:a8:05:38:68:58:4f:fe:95:32:76:31:4c:b4:df:ac:
c6:c7:a9:ba
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgICAvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTMy
MkU2MUFFOEM4REQ4OTUzRTFFNkJEQzk2QUU0ODI3QUZDRjk5MDAeFw0yNTA0MTMw
OTA3MjFaFw0yNTEwMTQxNTMwMzJaMDMxMTAvBgNVBAMTKEVGRTZCN0JFOTVCRkM4
OEQ0OERFMDYzQzZGODM5NDZCNEQxNjNBMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDqkWtIJ6Dnwyz0IELSgCJN9eInYNIBaS6IaZrZTRVk/FgEbmnD
JOkk0Nzmwm6XHSppp73/VRrR2pcRNdYvfGmCY+NUvsE5ikDNOa5mYdVsZSbZ4ZwA
q82g4L6pLMUTMYOoCzBKc2Y0gGh7ffNvj3nbRFo4bxypI3X14hkscBaxIsHpVqK4
raw8lKewFTIT+K8Hwe1eDtLu7ablOmw077No0K566oH5Gu/+kym29h3jlNqMkp79
zIva3DcR4YoGSCay8Vp7ErzSN71yuCasrH/DJojVFfRQQjGGr+hv0jOFI0BDXdZN
qNOAu8NFaznxw19QWpuKZ2PMpljbDk1D13+hAgMBAAGjggIFMIICATAdBgNVHQ4E
FgQU7+a3vpW/yI1I3gY8b4OUa00WOiIwHwYDVR0jBBgwFoAUUyLmGujI3YlT4ea9
yWrkgnr8+ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v
VXlMbUd1akkzWWxUNGVhOXlXcmtnbnI4LVpBLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9VeUxtR3VqSTNZbFQ0ZWE5eVdya2ducjgtWkEuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9VeUxtR3VqSTNZbFQ0ZWE5eVdy
a2ducjgtWkEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH
AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0x+X
64yNhVvma2z2D64dAwBGupkjjDvIFxZQtXKXkOQq9mLaf3RasBnX5E6Ujec3ymua
/Cqd/wZJ1wrW0BwxlaMY5x9OGav82uOH7VWq7knTN/abVS77ay7efWwcQfsMH+Bc
E30Bb58Q3aae0EI+uz7A8pajScczFmM6Jw/di+OmEkM8ywsuBXtvbNQKwcIZZauF
jNFIKmRrzQT2ycyn/B6GRvD/YghI22cD1WMEtTs3tswa035Qn+EiLnzK0JEbnIBg
YlsE5z5uSNDt3v6P+JEBNSOiMZiNUqMfFtJvk0LYTDFRR7N0HPhxrUBGqAU4aFhP
/pUydjFMtN+sxsepug==
-----END CERTIFICATE-----
Generated at Mon Apr 14 17:57:21 2025 by rpki-client