Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft
File: 9aRLXgeIZbrvk1E2nZYda6JVbUc.mft (raw, json)
Hash identifier: v45/N5n2seDC3p/IYwxgK/oTNpw2buGfPvEjcVKm6UA=
Subject key identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C
Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Certificate serial: 0263
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft
Manifest number: 0255
Signing time: Fri 11 Apr 2025 20:37:29 +0000
Manifest this update: Fri 11 Apr 2025 20:37:29 +0000
Manifest next update: Sun 13 Apr 2025 20:37:29 +0000
Files and hashes: 1: 9aRLXgeIZbrvk1E2nZYda6JVbUc.crl (hash: 056yWp+dyJ0ATsh7WkD39GbVUYhEf6W5XCk20KaF2ZI=)
2: NY5wzuJxuVmMFi_IwIxTNP4saek.roa (hash: xQ4d6x7zo55ES5KNqL32EwVPPnbwgna7L+N3Lksa0zY=)
3: WsgN_xKfukmQhWxbg9-JwMoPmmY.roa (hash: 3TM0yfRdg6Wy/SOcYgYDK4CwMu53s+7ClRK6A8imPMw=)
4: cHwrVBpkzhU0BMJWAgCeMMcVDq4.roa (hash: MRbSBzjrJIEl4FUSKBgsZ+2gFsZlWT2y0TzPf5wpW/0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 611 (0x263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Validity
Not Before: Apr 11 20:37:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=78C626456BAE94BA36466BD1EDB2D798BFFF017C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d2:a1:96:40:32:ef:af:64:da:c6:70:cd:e5:
42:ce:86:f9:47:4a:20:bb:49:3a:e0:39:71:3a:e3:
82:0d:d6:09:bf:c6:fa:b6:6e:89:79:fc:ee:b7:0f:
73:6b:5b:e8:3e:1e:c6:f9:03:f5:e5:59:ba:8b:2b:
b0:13:41:63:52:26:bf:34:d4:ed:13:62:42:8e:9c:
0a:ab:de:43:8b:df:92:61:a3:6a:7a:10:02:56:8f:
87:27:ca:b9:16:e7:5a:77:c1:89:3b:6f:fa:3c:ab:
25:47:5c:ed:7a:86:a0:f0:d4:23:e4:e9:ce:b9:b3:
1f:82:98:57:6d:05:51:1a:d9:48:17:79:e7:82:f2:
8e:b1:37:76:d4:ad:dd:40:19:0d:fc:8e:ed:2a:a6:
37:bb:2b:a8:72:f5:e4:0a:b4:0a:7e:07:12:2b:5c:
cb:d7:90:6b:21:4f:73:12:64:dd:ec:40:84:c8:5f:
ca:a0:a7:49:09:36:02:ba:d5:d8:67:f8:48:e2:00:
54:dc:b8:c1:34:db:01:17:58:a8:8d:03:d2:78:78:
06:f8:0f:1a:2b:07:4c:18:23:43:c8:05:89:43:d2:
a9:fb:06:3d:35:71:ec:8b:8a:e6:37:7b:bd:52:81:
83:3c:e4:39:8f:2f:97:b3:8a:d1:3b:f1:b8:82:76:
f3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C
X509v3 Authority Key Identifier:
keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c4:dd:29:1e:6b:9a:a4:24:f7:ee:d2:83:e4:f9:c1:a9:43:40:
47:af:c7:55:c3:21:41:bb:40:3e:87:84:da:51:eb:c4:e5:87:
d1:c5:e2:8d:d5:c8:9b:1b:34:a5:87:ef:f1:9a:73:54:06:f7:
13:9d:72:18:f8:13:37:7f:1a:ce:c3:af:ec:81:94:a7:19:52:
73:3a:14:82:27:3f:12:9d:49:a1:53:9e:b6:31:2b:55:d9:22:
75:6b:aa:b8:93:f0:bb:1e:70:ec:c3:e0:0b:93:07:6f:c5:c1:
87:df:5a:ca:20:6c:d3:e0:ca:17:94:cc:43:e2:50:ef:f5:d7:
1f:85:b5:0f:55:6f:07:a1:fd:fc:ad:84:30:1d:ec:17:f9:6a:
c5:4d:ca:89:fd:21:41:db:bb:a3:dc:06:d8:ca:34:cc:5d:27:
b2:c4:f9:2b:09:03:3d:bc:fa:c2:5a:6a:4e:4b:4e:9c:4d:cc:
20:83:ee:2f:b3:18:bf:49:36:4d:3f:04:29:c5:a3:e9:9f:79:
83:ae:6c:8f:7f:ad:16:d9:7c:ac:13:b6:24:6c:fa:6e:97:78:
f1:29:33:60:63:5a:be:b0:b1:07:cb:15:2c:7a:77:70:05:25:
45:e8:20:e8:92:62:2e:3e:0e:76:bf:3e:f9:52:22:3e:ef:02:
e4:b9:7d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:25:07 2025 by rpki-client