Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
File: aisTlsFC2mcRUYh16QxK7JCw9cQ.mft (raw, json)
Hash identifier: GgOY9EVuuv1eIxPOklJT/5EgMu8lurg3nMmrPkNtRdc=
Subject key identifier: 9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8
Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Certificate serial: 045C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
Manifest number: 0456
Signing time: Sat 07 Mar 2026 04:53:45 +0000
Manifest this update: Sat 07 Mar 2026 04:53:45 +0000
Manifest next update: Mon 09 Mar 2026 04:53:45 +0000
Files and hashes: 1: HG50Z4mnylO2rBaAVQEO35v5iD0.roa (hash: qGoiUCLURpyrfS7ud7SynCARbDJ6QoAovz+p+U5aqNs=)
2: aisTlsFC2mcRUYh16QxK7JCw9cQ.crl (hash: 5Rp49RTrxAd3NTYrHIONv1DzvzhDkzcgwwcVGB0057c=)
3: cgzqrp99TG0Rtm3l52EMUxDNdk0.roa (hash: 3gHKkREtYGQ5jTwcVCkLwsVjRndJl4KD3UhNSxFPkbM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116 (0x45c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4
Validity
Not Before: Mar 7 04:53:45 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=9F4734C3CD3594AB905D6D7839043EE0FA3205A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d4:c0:17:a9:80:f0:17:d6:5d:7b:06:2e:93:
f9:fe:04:dc:02:7f:1f:bf:f1:f6:a0:03:c6:e9:09:
bd:0f:e0:61:54:43:72:e7:64:30:ec:35:13:3f:ef:
38:5e:48:e2:18:e1:9c:de:af:a6:27:04:ca:24:e7:
99:db:51:e3:4b:d8:dc:74:83:3f:9a:7d:e3:5d:c0:
14:b5:61:8f:7c:33:69:59:33:a8:bd:c8:8e:6c:24:
bc:c2:1f:59:25:5d:ed:fd:8b:7a:01:75:13:e3:8e:
d2:7c:ad:13:d1:46:3c:ae:9b:55:bf:a0:63:a6:aa:
ca:bb:b1:c4:5c:f0:73:4c:b6:76:dd:3a:4b:dd:96:
30:9d:85:a9:b1:b2:a7:b3:5a:b6:19:ec:16:76:cf:
7a:dd:d1:64:4d:25:51:72:6d:f0:4e:53:2d:65:a0:
1c:9a:67:d3:97:65:83:9a:d6:07:a0:36:9a:9f:e2:
d1:88:77:c0:a9:9d:ed:90:a6:26:55:dd:9a:a1:ac:
9c:82:53:f8:b0:1f:db:4b:4a:4b:a2:f5:cc:93:43:
38:5e:d6:a5:32:d5:95:2f:bd:21:1d:2f:b0:15:70:
f0:d8:6d:96:b5:1e:f8:c3:3a:7c:38:1f:f1:78:a2:
5b:a5:83:98:0c:b2:c9:08:52:39:86:ed:f9:f7:b6:
23:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8
X509v3 Authority Key Identifier:
keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:5c:51:4e:b9:95:58:b5:23:ce:fe:e3:08:8b:9f:ea:c1:dd:
f1:40:e7:fd:37:4f:6b:03:92:56:94:3e:f5:39:36:15:cc:1b:
96:dd:90:11:e2:51:29:7e:39:40:07:34:35:c5:25:ed:c0:ff:
99:2e:0b:9f:f2:11:7b:52:98:1d:79:d8:85:27:59:17:e2:d9:
7d:5a:54:00:65:53:4b:bb:f7:04:c7:17:25:d0:c8:95:1c:41:
f0:63:22:f8:1b:cb:75:b7:01:bb:49:84:23:56:6b:e9:e8:5e:
a2:8a:01:51:c1:11:88:1d:c4:c6:75:aa:44:26:c8:21:31:c0:
c1:f2:ab:c4:7d:e7:96:ce:f1:f4:26:0b:2e:c5:b8:46:cf:ea:
a8:6c:9e:82:2e:f1:75:3a:0b:07:21:c3:64:7a:bb:f7:fc:50:
39:72:eb:6b:b8:75:46:64:09:1f:22:f5:fe:65:21:8e:bc:29:
d5:8b:11:25:8f:2b:f0:8e:b4:8a:39:95:70:d7:f0:4c:d0:20:
df:b4:da:0b:a6:eb:4f:83:39:79:7d:ff:2a:fa:db:f4:a0:0e:
c5:46:d1:e5:0c:af:40:d4:96:62:69:9d:05:9f:f7:07:19:be:
ad:06:00:9b:53:22:fc:b1:ee:38:e5:fb:8f:f9:66:37:11:24:
c3:45:65:6f
-----BEGIN CERTIFICATE-----
MIIE8zCCA9ugAwIBAgICBFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEy
QjEzOTZDMTQyREE2NzExNTE4ODc1RTkwQzRBRUM5MEIwRjVDNDAeFw0yNjAzMDcw
NDUzNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlGNDczNEMzQ0QzNTk0
QUI5MDVENkQ3ODM5MDQzRUUwRkEzMjA1QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCq1MAXqYDwF9ZdewYuk/n+BNwCfx+/8fagA8bpCb0P4GFUQ3Ln
ZDDsNRM/7zheSOIY4Zzer6YnBMok55nbUeNL2Nx0gz+afeNdwBS1YY98M2lZM6i9
yI5sJLzCH1klXe39i3oBdRPjjtJ8rRPRRjyum1W/oGOmqsq7scRc8HNMtnbdOkvd
ljCdhamxsqezWrYZ7BZ2z3rd0WRNJVFybfBOUy1loByaZ9OXZYOa1gegNpqf4tGI
d8Cpne2QpiZV3ZqhrJyCU/iwH9tLSkui9cyTQzhe1qUy1ZUvvSEdL7AVcPDYbZa1
HvjDOnw4H/F4olulg5gMsskIUjmG7fn3tiMzAgMBAAGjggIPMIICCzAdBgNVHQ4E
FgQUn0c0w801lKuQXW14OQQ+4PoyBagwHwYDVR0jBBgwFoAUaisTlsFC2mcRUYh1
6QxK7JCw9cQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9UX1RG
Tl9DTy9haXNUbHNGQzJtY1JVWWgxNlF4SzdKQ3c5Y1EuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL2Fpc1Rsc0ZDMm1jUlVZaDE2UXhLN0pDdzljUS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PVF9URk5fQ08vYWlzVGxzRkMy
bWNSVVloMTZReEs3SkN3OWNRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBAJtcUU65lVi1I87+4wiLn+rB3fFA5/03T2sDklaUPvU5NhXMG5bdkBHi
USl+OUAHNDXFJe3A/5kuC5/yEXtSmB152IUnWRfi2X1aVABlU0u79wTHFyXQyJUc
QfBjIvgby3W3AbtJhCNWa+noXqKKAVHBEYgdxMZ1qkQmyCExwMHyq8R955bO8fQm
Cy7FuEbP6qhsnoIu8XU6Cwchw2R6u/f8UDly62u4dUZkCR8i9f5lIY68KdWLESWP
K/COtIo5lXDX8EzQIN+02gum60+DOXl9/yr62/SgDsVG0eUMr0DUlmJpnQWf9wcZ
vq0GAJtTIvyx7jjl+4/5ZjcRJMNFZW8=
-----END CERTIFICATE-----
Generated at Sat Mar 7 22:28:27 2026 by rpki-client