Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft
File: ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft (raw, json)
Hash identifier: nM/5dHoK+RdgNETZNnTpj/qCgcpTdSSTlOkHKEdA/1o=
Subject key identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23
Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B
Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B
Certificate serial: 0162
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft
Manifest number: 015C
Signing time: Sat 29 Mar 2025 09:34:22 +0000
Manifest this update: Sat 29 Mar 2025 09:34:22 +0000
Manifest next update: Mon 31 Mar 2025 09:34:22 +0000
Files and hashes: 1: 0rdgKAjmxYY2AW027kv5gMm8enk.roa (hash: NkTPH1npFNvgYGmSAtSoUGBXixQ+qHrsBq9cNff96aA=)
2: ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl (hash: z7S4gc+2lw5zOCtBbbdJZpJZQwCusEP/1D5X92CrTY4=)
3: nGGt_1FXjW212J1NlW4LWF04FtM.roa (hash: JU/uHW0qqtU6y2jTJrIN3YLok0mOFKez9GuKFHuWAL0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354 (0x162)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B
Validity
Not Before: Mar 29 09:34:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E47FBCD40D235E41A478A43BF6B373538DDCE923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:22:3e:e5:3f:8b:43:f4:34:70:bd:ba:23:7f:
64:b0:7f:cf:5a:be:ce:6f:d4:ca:b5:de:ca:a1:8e:
76:10:37:cd:f4:dc:0a:66:d0:c1:df:eb:31:a6:bd:
93:37:6f:4c:e7:99:ac:cb:4f:54:67:96:7e:f2:a0:
60:00:67:ee:22:ce:14:e7:5f:36:07:d2:51:30:0d:
14:3c:f4:aa:f9:31:2b:17:ab:a8:2d:63:97:ca:8a:
90:1b:81:3f:28:ea:03:bb:a0:00:66:f6:e3:de:02:
a8:4d:60:95:8f:68:5c:42:4c:d5:32:79:66:94:d0:
0c:2c:8d:31:01:e6:b1:76:4e:08:cf:e3:42:36:eb:
07:bb:49:d5:80:b2:ac:0c:a0:ed:0d:09:dc:31:bf:
b4:8f:7e:e5:6e:5b:b5:f1:f9:4c:44:0e:01:ed:05:
bc:e6:de:de:d6:00:2d:09:8a:96:74:24:bf:5b:98:
38:6f:b2:8b:50:23:3f:7f:b0:02:7e:05:03:fe:e0:
b0:8e:b9:90:98:d4:8a:9b:b0:05:6d:b6:22:86:66:
52:b8:73:5d:c6:a1:59:e0:e4:5a:1a:9c:83:0a:41:
05:e6:ee:f1:49:76:10:e0:a3:0d:69:88:7f:36:70:
83:d5:bc:b6:0f:94:92:34:58:ad:80:63:d0:ee:b3:
45:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23
X509v3 Authority Key Identifier:
keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
47:c6:72:a8:cd:42:45:c7:84:5a:e1:6e:a3:0b:29:53:e5:7e:
a7:99:b3:85:08:3c:a6:ae:82:ca:9d:bd:17:c6:5b:73:16:19:
93:2f:7a:82:28:c3:96:a1:ce:93:04:8e:b1:fc:6b:67:37:39:
f7:82:1a:a0:4b:8b:ca:4b:11:de:39:12:2e:fc:4f:23:d9:b3:
b0:f1:7e:ed:17:df:10:83:fc:af:1e:95:11:3c:c7:93:83:83:
31:60:27:c2:2e:4f:35:33:24:87:df:17:68:f6:d5:ed:45:75:
d4:bd:dc:b3:4d:48:15:fa:73:aa:8c:18:8f:f2:2d:35:34:95:
a3:f6:39:52:72:b8:9a:a0:84:f1:b9:3f:8f:57:38:29:f3:6f:
94:05:df:32:2c:40:07:4a:45:c5:3a:bd:8c:17:bd:df:aa:40:
0d:86:05:19:30:1c:79:f5:33:47:ca:0f:a5:34:85:90:ee:a1:
c2:d2:60:cc:5c:56:92:f4:3e:9a:32:f9:a8:d7:c3:b9:fc:9d:
a2:fe:16:f8:7c:b8:80:88:cf:98:3e:d6:ef:7d:57:3d:73:50:
ed:80:27:f0:72:3d:1b:a9:bf:2a:8c:46:44:9f:b3:a2:dc:b9:
09:7c:2d:df:d2:86:7b:af:7f:3c:f9:1a:7a:7c:dd:09:30:f7:
8c:f1:a9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:32 2025 by rpki-client