Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft
File: B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft (raw, json)
Hash identifier: jGggaBMR92QJrS1MDlUVhWycnjoDLCJe765G/mpeJV0=
Subject key identifier: 2C:50:7E:10:C9:72:DD:D4:CA:DF:1C:39:42:A2:EC:FA:A7:9B:B0:E8
Authority key identifier: 07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C
Certificate issuer: /CN=07D3E73EC5EB3D704863889E221845B7695D409C
Certificate serial: 017D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft
Manifest number: 0174
Signing time: Sat 29 Mar 2025 09:03:52 +0000
Manifest this update: Sat 29 Mar 2025 09:03:52 +0000
Manifest next update: Mon 31 Mar 2025 09:03:52 +0000
Files and hashes: 1: 274k7LNadfEbvQV089QaMsEO_GE.roa (hash: uS7sifgv2DMagHBPRl3xO6tttVCl7Bb2Dpu45p1LBXI=)
2: B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl (hash: ypKV2YyQg6SfEsfTxtW/HCSvbWgr9ISzpScWbuYLE3M=)
3: du4lgNZNcU-9k1UU7JcsqBof2jM.roa (hash: hpFpvs5Rx6NoESD8s4evZu6YhXJotHyoLqjRcpkK7rQ=)
4: tgotXJFOeo_ezXmLjgc5hOeqaTI.roa (hash: hkl4WK1kG3aiFzIaoKEluEavcpoWwgZJ3M6RXoUPMVI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 381 (0x17d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07D3E73EC5EB3D704863889E221845B7695D409C
Validity
Not Before: Mar 29 09:03:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2C507E10C972DDD4CADF1C3942A2ECFAA79BB0E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:33:ce:77:71:d4:55:fe:b0:40:06:c3:96:17:
a0:00:3e:48:6b:d9:cf:21:aa:c2:21:9a:74:95:c8:
0e:67:a9:5e:d4:3e:85:9f:02:85:91:0b:e1:8f:78:
49:2f:5d:be:31:c7:3d:96:86:2d:04:d5:88:c4:26:
a8:30:a0:66:a9:16:e0:61:e5:e3:d9:29:6c:ff:7f:
a2:00:0f:7a:2c:65:0b:14:65:b8:51:8d:b8:8f:72:
e1:be:f7:fd:e4:d8:d2:6d:4c:f0:94:7d:98:79:e3:
6e:27:3c:ab:81:7d:55:d2:1a:17:a4:99:1f:1b:6f:
7d:30:7a:89:29:a4:3b:a4:ea:f6:17:ab:f4:25:36:
b4:33:dc:49:b4:34:c8:49:2d:89:38:1d:97:1a:ab:
01:49:06:89:28:4b:eb:37:90:88:41:7b:e6:16:28:
fc:23:77:e0:03:d2:92:d0:68:59:8d:5e:4f:f5:66:
de:08:17:6b:f6:3d:41:73:1e:66:03:8d:3e:3d:e0:
77:38:10:0a:3f:91:2e:91:76:cf:80:21:f3:78:70:
97:aa:2a:95:fd:a5:b2:36:d2:3e:cd:ed:e5:b6:ee:
7d:8b:9d:14:90:8a:84:78:bc:2f:ca:55:56:a5:b3:
75:4b:26:1b:70:b0:c7:c4:56:9b:f5:b6:d7:e6:41:
63:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:50:7E:10:C9:72:DD:D4:CA:DF:1C:39:42:A2:EC:FA:A7:9B:B0:E8
X509v3 Authority Key Identifier:
keyid:07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
21:9a:1c:dc:11:f0:5d:67:ae:ab:d4:ae:6d:0d:48:37:cf:35:
b6:89:f5:ba:7c:26:3c:d5:5a:27:37:dc:ab:f1:79:ed:a9:84:
75:7d:18:57:f5:e1:28:cf:75:a2:c3:39:b4:04:0a:3d:99:63:
0e:8c:51:21:0b:69:08:76:61:bc:97:a3:c3:c0:e3:2f:3a:f2:
b8:22:fb:4c:9e:43:36:d5:43:ea:0c:77:7c:08:ea:5e:fa:e5:
fa:6c:4b:24:c0:47:59:b1:15:4d:01:2d:78:07:f4:ad:02:a7:
4b:e8:b5:0b:3a:ec:6c:72:98:2f:0e:67:20:48:dd:6d:99:66:
af:40:1d:aa:67:e7:8f:1a:01:d2:3e:60:1b:33:c3:8b:94:c5:
a2:64:fc:ff:ab:32:c7:36:49:aa:55:4d:e0:c2:ea:75:53:6a:
a2:d2:5d:70:28:5c:2d:f4:79:78:e4:0e:eb:d7:54:64:28:6b:
24:6c:b0:3e:24:bb:ec:0f:c3:f9:e0:b1:ab:e4:a0:95:c4:1b:
77:f6:a7:18:4e:04:f5:9e:40:3a:18:d7:0d:0c:d0:6d:c6:80:
b1:62:f5:ee:18:ac:20:f3:58:87:1b:4f:d3:f6:2e:a4:32:79:
a9:c7:c8:f0:5e:a9:75:87:06:7b:57:f0:a6:36:08:0c:f6:ba:
ff:00:62:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:55:20 2025 by rpki-client