Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
File: aisTlsFC2mcRUYh16QxK7JCw9cQ.mft (raw, json)
Hash identifier: kM538+wHJD7S0qzO51AeLlwvHSCgoYLAHd6dPtgu/lA=
Subject key identifier: 9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8
Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Certificate serial: 0388
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
Manifest number: 0383
Signing time: Sat 26 Apr 2025 21:18:27 +0000
Manifest this update: Sat 26 Apr 2025 21:18:27 +0000
Manifest next update: Mon 28 Apr 2025 21:18:27 +0000
Files and hashes: 1: WPCDryNAk5NkAWpGy7MQmm_WC1I.roa (hash: hXfnFDjGFgvVMa/VXwbJuZzPNTjNGozvF2aXMOz7Msk=)
2: aisTlsFC2mcRUYh16QxK7JCw9cQ.crl (hash: q+DKCoJ04UfOnNCzO8udc6VF9d7FLMlGCqvAryikBoE=)
3: z-H2E_TH0q2gzkcFxIBMZ9V7Wu8.roa (hash: kUEhDixYI/i3vdN+mSXb3mi/8wrHM8TPrKE2FwoBz5s=)
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Apr 2025 06:19:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 904 (0x388)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Validity
Not Before: Apr 26 21:18:27 2025 GMT
Not After : Sep 23 15:30:20 2025 GMT
Subject: CN=9F4734C3CD3594AB905D6D7839043EE0FA3205A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d4:c0:17:a9:80:f0:17:d6:5d:7b:06:2e:93:
f9:fe:04:dc:02:7f:1f:bf:f1:f6:a0:03:c6:e9:09:
bd:0f:e0:61:54:43:72:e7:64:30:ec:35:13:3f:ef:
38:5e:48:e2:18:e1:9c:de:af:a6:27:04:ca:24:e7:
99:db:51:e3:4b:d8:dc:74:83:3f:9a:7d:e3:5d:c0:
14:b5:61:8f:7c:33:69:59:33:a8:bd:c8:8e:6c:24:
bc:c2:1f:59:25:5d:ed:fd:8b:7a:01:75:13:e3:8e:
d2:7c:ad:13:d1:46:3c:ae:9b:55:bf:a0:63:a6:aa:
ca:bb:b1:c4:5c:f0:73:4c:b6:76:dd:3a:4b:dd:96:
30:9d:85:a9:b1:b2:a7:b3:5a:b6:19:ec:16:76:cf:
7a:dd:d1:64:4d:25:51:72:6d:f0:4e:53:2d:65:a0:
1c:9a:67:d3:97:65:83:9a:d6:07:a0:36:9a:9f:e2:
d1:88:77:c0:a9:9d:ed:90:a6:26:55:dd:9a:a1:ac:
9c:82:53:f8:b0:1f:db:4b:4a:4b:a2:f5:cc:93:43:
38:5e:d6:a5:32:d5:95:2f:bd:21:1d:2f:b0:15:70:
f0:d8:6d:96:b5:1e:f8:c3:3a:7c:38:1f:f1:78:a2:
5b:a5:83:98:0c:b2:c9:08:52:39:86:ed:f9:f7:b6:
23:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8
X509v3 Authority Key Identifier:
keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5e:93:a2:56:47:cd:98:17:29:9a:5e:f0:a5:31:ae:66:b9:de:
cb:ae:81:38:9e:35:b3:ac:05:92:a3:e6:9f:25:44:dc:bd:ac:
e7:e1:a4:d6:73:34:a3:3b:98:01:d6:a5:e5:5f:88:05:12:c8:
fe:18:8c:0e:9b:3f:4d:fe:76:37:70:e0:95:a8:72:67:68:88:
ff:e3:f8:06:f4:6e:0b:eb:88:33:a5:36:fc:da:3c:1a:3c:90:
69:eb:a1:4f:85:4b:24:c4:28:0e:8c:44:44:51:a2:df:2b:a4:
11:be:a0:27:27:02:b3:43:24:eb:a0:28:b0:b3:f3:66:d7:32:
c3:ab:84:39:ca:d8:8f:29:70:ba:5b:54:23:cc:94:b7:c9:79:
af:bf:98:43:be:54:d4:56:3e:b1:41:95:16:b1:27:18:b3:ad:
d1:55:52:a4:66:d4:0b:21:20:3f:68:39:3a:f1:fe:9c:b2:ef:
7b:34:a8:d2:8c:1b:dc:e2:e0:2d:87:5a:f2:e6:4f:dc:39:63:
72:53:d7:89:8a:96:3b:c7:79:ea:95:15:24:70:17:68:77:54:
3c:ff:29:9c:62:ac:5f:8b:86:4b:81:99:f5:fe:ec:fb:22:e0:
de:b7:e3:08:10:28:ba:71:77:e3:56:e9:62:ca:e3:6e:63:af:
55:54:c5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 02:30:38 2025 by rpki-client