Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft
File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft (raw, json)
Hash identifier: 1CQVFmCxTTQTXbNTfz2DFIUR3fSA5AhZ3E7WL9cCggc=
Subject key identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40
Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Certificate serial: 0252
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft
Manifest number: 0244
Signing time: Fri 06 Mar 2026 22:24:53 +0000
Manifest this update: Fri 06 Mar 2026 22:24:53 +0000
Manifest next update: Sun 08 Mar 2026 22:24:53 +0000
Files and hashes: 1: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl (hash: axfj0UkwqeDOO3yqoHsN8IsL/BCtgM1X6hlI6UzVKVM=)
2: Cg7tohmMh5saCNIzU2ngrmhS4hQ.roa (hash: xLFhUUQSzCZzSuN6C34hcq+pSFhdqgsCF6lBLi1RME0=)
3: UKiAu9DBouIS6MzSfFnTOhCKjk8.roa (hash: HUOCS7o68Oz0egV5TPUT3GtLtUMosl436IdLe3HoVt8=)
4: j7K_nCeKsBMYe9_jdu8NKQ1vn1Y.roa (hash: oP7Q5gapANp1URfuC5e25xUXVnEBjFJWyMYVybOusro=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 594 (0x252)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5
Validity
Not Before: Mar 6 22:24:53 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=721BD71397601F82691E128A2782C35B4FC3AC40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:85:dd:8e:40:a6:72:e5:c1:f7:b8:37:1b:68:
c8:64:1b:d0:2a:24:ac:4d:57:74:67:03:07:e8:a4:
6b:2b:d7:0b:62:1b:78:1f:73:05:95:f3:23:86:27:
5f:9b:ab:4a:67:34:ea:8a:1d:12:78:76:b0:df:78:
86:eb:a3:a8:31:65:3c:48:08:da:6c:06:fe:5c:6a:
59:16:be:af:39:2d:60:6a:ad:be:7e:15:e4:0c:81:
cf:e8:05:89:05:3e:cd:f7:7d:9a:9b:c0:02:55:4c:
f1:4a:ef:73:ff:0d:d8:16:f2:58:b4:a5:b7:5f:d3:
f6:a1:18:77:ce:48:4a:7c:ee:bf:cf:a8:34:82:a8:
b5:a0:d3:1f:6d:86:8b:9c:b2:0b:2e:4d:f0:60:4f:
3f:b7:c4:91:cb:07:70:f1:dd:82:da:5d:b8:a5:21:
1a:9f:5e:7c:87:30:4a:0a:a2:c7:4f:61:d0:b7:43:
de:db:c8:20:05:7d:e6:ce:b8:17:3f:85:cd:b9:0f:
de:cf:7c:ce:63:7a:25:28:3e:81:5d:85:cf:eb:7d:
48:e1:44:22:52:cb:32:95:aa:70:a3:42:df:98:23:
4d:ca:fe:70:4c:d0:9a:24:ff:b9:23:f4:6c:7c:b4:
42:39:a5:82:b2:11:58:a7:e7:6c:3c:c8:ad:1d:24:
c7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40
X509v3 Authority Key Identifier:
keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:9d:a7:b4:33:8d:02:42:a7:a7:35:f3:26:d1:ba:f1:5b:6d:
2c:6f:58:43:a1:8e:44:7e:b0:a5:63:c5:1d:8f:f8:ed:cc:24:
30:03:5e:9c:c0:0b:fb:43:aa:93:88:3e:a7:cd:ec:8d:1e:38:
43:22:64:e1:43:b8:0f:44:0a:36:98:fd:0f:63:52:42:eb:44:
ca:73:31:bf:79:8c:bb:9b:54:fc:94:08:64:9b:c1:b8:2e:f0:
72:f0:50:c2:17:27:74:d9:0d:7b:cc:9c:0c:4d:de:ec:50:1f:
e0:52:7c:b8:d2:7b:0e:da:52:a6:99:73:f2:f4:f3:67:cb:37:
48:76:94:c3:69:b7:c8:f8:40:ca:7e:7f:e5:7e:1d:95:16:ed:
43:d1:f5:08:0d:a5:12:e5:6a:45:ba:66:42:fc:96:2b:8c:8f:
c8:88:fb:3e:08:15:b0:a8:60:89:67:bd:8c:e3:f7:44:91:f1:
d8:7c:5e:b1:af:e0:cc:86:be:c8:df:de:98:1f:15:21:41:9c:
9d:e6:a7:9a:43:ae:09:94:52:9d:60:a7:28:36:2f:ff:cf:f8:
36:7e:70:03:34:ed:41:76:35:39:61:2f:92:25:3c:22:c2:68:
d3:82:61:75:9a:01:35:3f:66:3d:27:a1:b2:ac:69:47:63:6f:
8b:a6:be:a1
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDk2
NkI1NTkwOTMyNDE4MEE4OEE0NUUxRjY4M0NGNEQyRUQ5QkNBNTAeFw0yNjAzMDYy
MjI0NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcyMUJENzEzOTc2MDFG
ODI2OTFFMTI4QTI3ODJDMzVCNEZDM0FDNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCdhd2OQKZy5cH3uDcbaMhkG9AqJKxNV3RnAwfopGsr1wtiG3gf
cwWV8yOGJ1+bq0pnNOqKHRJ4drDfeIbro6gxZTxICNpsBv5calkWvq85LWBqrb5+
FeQMgc/oBYkFPs33fZqbwAJVTPFK73P/DdgW8li0pbdf0/ahGHfOSEp87r/PqDSC
qLWg0x9thoucsgsuTfBgTz+3xJHLB3Dx3YLaXbilIRqfXnyHMEoKosdPYdC3Q97b
yCAFfebOuBc/hc25D97PfM5jeiUoPoFdhc/rfUjhRCJSyzKVqnCjQt+YI03K/nBM
0Jok/7kj9Gx8tEI5pYKyEVin52w8yK0dJMenAgMBAAGjggIFMIICATAdBgNVHQ4E
FgQUchvXE5dgH4JpHhKKJ4LDW0/DrEAwHwYDVR0jBBgwFoAU2Wa1WQkyQYCoikXh
9oPPTS7ZvKUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v
MldhMVdRa3lRWUNvaWtYaDlvUFBUUzdadktVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8yV2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8yV2ExV1FreVFZQ29pa1hoOW9Q
UFRTN1p2S1UubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH
AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ52n
tDONAkKnpzXzJtG68VttLG9YQ6GORH6wpWPFHY/47cwkMANenMAL+0Oqk4g+p83s
jR44QyJk4UO4D0QKNpj9D2NSQutEynMxv3mMu5tU/JQIZJvBuC7wcvBQwhcndNkN
e8ycDE3e7FAf4FJ8uNJ7DtpSpplz8vTzZ8s3SHaUw2m3yPhAyn5/5X4dlRbtQ9H1
CA2lEuVqRbpmQvyWK4yPyIj7PggVsKhgiWe9jOP3RJHx2Hxesa/gzIa+yN/emB8V
IUGcneanmkOuCZRSnWCnKDYv/8/4Nn5wAzTtQXY1OWEvkiU8IsJo04JhdZoBNT9m
PSehsqxpR2Nvi6a+oQ==
-----END CERTIFICATE-----
Generated at Sat Mar 7 22:29:58 2026 by rpki-client