Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
File: aisTlsFC2mcRUYh16QxK7JCw9cQ.mft (raw, json)
Hash identifier: 5J2LWdtcwRBUR1hVlFSizrm3YOQ8+Fan4XrkKiLLl5o=
Subject key identifier: 9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8
Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Certificate serial: 030B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
Manifest number: 0306
Signing time: Sun 16 Feb 2025 13:55:28 +0000
Manifest this update: Sun 16 Feb 2025 13:55:28 +0000
Manifest next update: Sun 16 Feb 2025 19:55:28 +0000
Files and hashes: 1: WPCDryNAk5NkAWpGy7MQmm_WC1I.roa (hash: hXfnFDjGFgvVMa/VXwbJuZzPNTjNGozvF2aXMOz7Msk=)
2: aisTlsFC2mcRUYh16QxK7JCw9cQ.crl (hash: nPDz1lygU9zxLovgb//ZgMd6MtYBU2GizxeMVJLU+xs=)
3: z-H2E_TH0q2gzkcFxIBMZ9V7Wu8.roa (hash: kUEhDixYI/i3vdN+mSXb3mi/8wrHM8TPrKE2FwoBz5s=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 779 (0x30b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Validity
Not Before: Feb 16 13:55:28 2025 GMT
Not After : Sep 23 15:30:20 2025 GMT
Subject: CN=9F4734C3CD3594AB905D6D7839043EE0FA3205A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d4:c0:17:a9:80:f0:17:d6:5d:7b:06:2e:93:
f9:fe:04:dc:02:7f:1f:bf:f1:f6:a0:03:c6:e9:09:
bd:0f:e0:61:54:43:72:e7:64:30:ec:35:13:3f:ef:
38:5e:48:e2:18:e1:9c:de:af:a6:27:04:ca:24:e7:
99:db:51:e3:4b:d8:dc:74:83:3f:9a:7d:e3:5d:c0:
14:b5:61:8f:7c:33:69:59:33:a8:bd:c8:8e:6c:24:
bc:c2:1f:59:25:5d:ed:fd:8b:7a:01:75:13:e3:8e:
d2:7c:ad:13:d1:46:3c:ae:9b:55:bf:a0:63:a6:aa:
ca:bb:b1:c4:5c:f0:73:4c:b6:76:dd:3a:4b:dd:96:
30:9d:85:a9:b1:b2:a7:b3:5a:b6:19:ec:16:76:cf:
7a:dd:d1:64:4d:25:51:72:6d:f0:4e:53:2d:65:a0:
1c:9a:67:d3:97:65:83:9a:d6:07:a0:36:9a:9f:e2:
d1:88:77:c0:a9:9d:ed:90:a6:26:55:dd:9a:a1:ac:
9c:82:53:f8:b0:1f:db:4b:4a:4b:a2:f5:cc:93:43:
38:5e:d6:a5:32:d5:95:2f:bd:21:1d:2f:b0:15:70:
f0:d8:6d:96:b5:1e:f8:c3:3a:7c:38:1f:f1:78:a2:
5b:a5:83:98:0c:b2:c9:08:52:39:86:ed:f9:f7:b6:
23:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8
X509v3 Authority Key Identifier:
keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:60:ab:2e:24:dd:47:44:02:f5:db:a1:d7:16:68:f2:3c:34:
39:bd:36:9d:2c:75:76:cb:8d:64:5c:ae:a4:dd:56:d0:09:6a:
0f:7d:8e:27:15:f4:0d:c2:e2:1a:2a:97:b0:29:43:dd:35:92:
d4:47:95:60:7f:97:0d:24:99:75:71:f9:91:4d:a7:5e:d2:62:
ae:16:c8:11:b4:8b:63:55:0d:31:21:8d:55:ab:16:83:7c:70:
7a:cc:a9:d3:65:5a:cc:34:24:70:97:73:1b:2f:24:0a:5b:80:
73:7d:1d:ba:b3:dd:8a:c2:e9:88:b9:7e:65:30:4c:cd:bd:a3:
69:4d:c0:08:14:7c:66:9a:02:b6:f8:b8:a2:6f:0d:87:e9:32:
52:c6:85:eb:ee:8e:da:fb:ab:25:3d:94:a9:cf:6b:8a:5b:57:
e6:ce:5a:21:94:10:d4:c6:ba:a7:18:c6:22:eb:94:5e:69:b9:
90:01:9c:e6:2c:ab:8e:4a:84:ff:b3:43:1b:57:ac:ce:06:f0:
cc:9c:dc:98:ca:65:70:1f:86:cd:77:41:04:6d:28:38:87:d5:
4b:a2:2e:47:bc:f7:ae:82:eb:b4:4b:0e:c8:5d:ae:91:34:eb:
66:4e:27:3c:d4:39:8c:53:da:a3:8e:36:81:26:05:7a:79:38:
3c:5a:10:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:13 2025 by rpki-client