Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft
File: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft (raw, json)
Hash identifier: coAe+Rb4qvHEi1TduMH3bS4Lpz4LSY44eATtfyDv3Pg=
Subject key identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69
Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7
Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7
Certificate serial: 0134
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft
Manifest number: 0130
Signing time: Sat 29 Mar 2025 09:34:21 +0000
Manifest this update: Sat 29 Mar 2025 09:34:21 +0000
Manifest next update: Mon 31 Mar 2025 09:34:21 +0000
Files and hashes: 1: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl (hash: MLDH2vODlChnuxtEJvVngDxJWcZtq6i3VForz32sTnQ=)
2: fEH3PIH7RUd9nJzW8JfLOhdpLNI.roa (hash: muFD/lFtctqWF861xVW+D8Zvxbe/Y7pk++Wrh0btEN0=)
3: p3N5Ghgzf-DT-hecBbNcXZ-TmnQ.roa (hash: Zn8Ujm7IAAM1HS6xnfKm69dBkYRCG07vcUNy+amrapM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308 (0x134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7
Validity
Not Before: Mar 29 09:34:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EAF2BE883EF8ED0C1C90C3D05D111B8539F37A69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b5:3e:8b:b8:23:d0:67:20:07:ec:8a:ac:1d:
e4:82:63:90:b5:bd:e0:39:64:00:a9:a4:04:a5:e8:
32:34:38:0f:ad:0b:f1:dd:bf:6d:52:4d:5e:98:cd:
bd:83:9d:40:9a:ae:40:0e:c6:e6:df:2f:ca:36:02:
96:ba:a1:3d:b3:d1:66:f9:3c:2e:63:d4:3a:95:c4:
4d:b9:cc:57:07:4c:72:12:e1:15:50:6c:14:72:41:
58:79:2d:09:03:55:e3:f8:65:8b:9f:28:9a:09:80:
6b:ef:6b:4c:4d:2d:cc:9c:3b:39:00:3f:99:35:00:
f9:2a:92:95:51:e8:42:56:64:12:94:d2:43:f5:60:
79:65:56:27:e6:20:8d:0f:30:0c:92:fe:6c:2e:f4:
1f:09:0f:ab:9c:22:2d:e2:73:ef:dd:09:97:d3:35:
83:ef:81:75:33:60:63:83:81:2b:91:1c:55:f8:8c:
48:7e:db:af:79:b6:82:ba:65:79:cd:98:36:a9:b4:
dd:28:ef:8d:bd:e7:46:d5:da:79:d5:30:58:89:5c:
58:95:a8:1b:d0:57:e1:7e:d7:ce:1d:80:99:ee:ae:
00:20:12:45:a5:f3:37:69:71:b6:27:45:32:46:55:
8c:f9:ea:86:77:07:bd:c9:68:9c:15:29:02:f2:d5:
df:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69
X509v3 Authority Key Identifier:
keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7b:f7:fd:76:15:11:0f:5e:bb:47:6d:0f:84:27:f1:7b:34:88:
99:b8:93:0a:4b:f3:01:35:df:d0:11:c4:7b:7b:93:e5:1c:8f:
c2:7b:19:2d:26:d5:63:25:41:0d:9a:57:18:07:1c:75:1e:67:
bb:e2:cd:42:13:cf:ea:94:f5:36:ac:db:b7:61:ce:09:c0:11:
43:b5:9f:95:a0:46:fc:8f:2a:49:63:a3:f7:7a:e0:d0:2a:ac:
64:22:27:91:1c:67:58:e8:82:75:62:c8:f7:77:dd:90:5a:01:
0b:77:10:68:d8:86:42:ce:38:3c:bf:1d:df:68:ab:f0:e1:bb:
4e:51:30:db:88:ad:4c:3c:f6:1e:dc:40:58:5b:59:4d:17:3f:
fc:0d:8c:6f:b0:f7:6b:9a:ed:4c:44:5e:9f:2a:52:4f:56:de:
96:ef:7a:c6:4c:ad:4e:99:bc:42:a1:68:5c:bd:c6:76:67:b0:
80:fa:a8:27:6c:d5:70:19:df:04:78:6d:cf:90:58:83:ff:33:
7d:0c:53:09:5c:b8:ce:b6:cc:e5:85:68:cc:35:c5:7f:47:cf:
e1:c1:c0:2e:6a:87:14:af:60:e7:65:6b:23:d2:b6:51:10:1a:
fd:ec:1c:67:90:52:d5:d9:50:26:96:5f:f5:95:b4:b3:1c:f6:
a6:9e:d1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:08:36 2025 by rpki-client