Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft
File: AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft (raw, json)
Hash identifier: aqT56kvylHyqex9sOnik0r4MFca0y2MVt+RmUJFTUWY=
Subject key identifier: E8:0B:E4:ED:62:7E:C7:DA:C2:99:5E:89:4F:73:B3:F8:A4:55:B0:D7
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: 022D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft
Manifest number: 0207
Signing time: Sat 05 Apr 2025 21:08:20 +0000
Manifest this update: Sat 05 Apr 2025 21:08:20 +0000
Manifest next update: Mon 07 Apr 2025 21:08:20 +0000
Files and hashes: 1: 1jJ0f3-vmf008g9D2ktpJxN3Nmw.roa (hash: QDVPENU0ePgpq5cvulRcURW0X3oKZrBmpJ5BggqgrSk=)
2: AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl (hash: qA4o5AjyivwN9eXI1B861H5/AqUNdnq8GLPmWL8cT4Y=)
3: EYJMHo1GDVa6AWmUIUgDSt6kHXc.roa (hash: XKhHh2f1OSUhUDxML/5vHcUrg6WjV1N8txmlQq+wTqo=)
4: Kml9gxp3jTxpeXOJ4wPjk-x-WJI.roa (hash: 6OmSylpKPvVh2bo0WitAzOcvqx8IG3QCbjYr6N+CND4=)
5: Y4f1YZuxq-BGu3rRZrOtu6VRLYM.roa (hash: GzvCRzDx4oyxKKkglNrY1SZrdazmAAyZrb8Ec4jdwPw=)
6: gYDBalL9mZBRlmeOIkHcttzUbSM.roa (hash: kG1UEOcugooE7cgZyxTPVRGwKFmz6S/KpPjTCNVTPrQ=)
7: ug2ewxKtJa3GO2zTODrw7Im0dGk.roa (hash: ApKKuZYFEhGIjW82Rv7jzVFB96OjxPf+56E7aMxTvu4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 557 (0x22d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Apr 5 21:08:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E80BE4ED627EC7DAC2995E894F73B3F8A455B0D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:16:cc:a8:2c:81:6d:6f:9b:be:6e:81:e6:85:
35:05:05:b0:fa:3c:e6:fa:2a:54:c3:43:2a:86:eb:
db:39:bd:12:25:4f:4b:9b:2f:9b:53:ce:05:e7:df:
eb:6a:fb:58:41:e5:cc:2c:25:c4:7e:96:97:fb:33:
87:8c:36:2b:d5:ed:1f:9d:c5:da:4c:03:6c:69:98:
c8:a1:b3:fe:10:38:60:6a:b1:2f:a4:f5:a6:ef:93:
02:8d:a6:57:56:9c:50:a0:1b:80:2a:89:58:7d:05:
61:8c:95:cc:47:92:8a:de:45:23:f8:45:ae:67:99:
4d:61:d3:9b:88:d7:de:1c:b2:a5:ea:3b:27:f2:90:
b0:4f:ba:a8:29:84:04:ea:0d:47:8d:64:96:0e:4c:
41:b3:2b:e6:14:34:cc:61:81:3f:97:54:72:f9:2c:
77:b5:76:44:61:d8:90:b7:13:82:1d:0c:a0:3c:77:
8c:4a:d0:81:13:78:f1:98:0d:1d:72:b5:83:87:33:
0a:c5:0b:b6:9f:d7:41:a5:a6:36:f1:63:50:07:a2:
13:fb:66:a4:9e:6b:56:8f:8c:8d:60:3a:cc:13:10:
a4:84:72:9f:dc:d7:c2:cc:78:bc:f5:4c:05:78:43:
78:43:58:7b:d3:95:43:c8:ad:32:ba:99:4f:0d:1a:
d5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:0B:E4:ED:62:7E:C7:DA:C2:99:5E:89:4F:73:B3:F8:A4:55:B0:D7
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:59:be:24:49:f3:07:4b:44:e0:c0:ab:1b:b7:cb:b3:d0:19:
8d:3e:2c:72:07:20:b4:01:d6:6b:fa:a4:4e:ba:f6:27:f2:eb:
7c:7c:c4:96:48:b4:07:b8:15:4c:7d:f7:b5:c6:09:76:8d:95:
9f:ed:ef:7d:f2:6e:42:f5:83:b1:2f:c3:ae:b2:5e:83:fc:2e:
cd:5f:7c:e2:c7:bc:03:63:41:f7:96:99:6c:65:05:22:dd:86:
22:05:5d:75:f8:a4:cb:2f:3e:9e:04:ba:6c:2d:d8:5b:9f:1d:
14:f8:64:11:40:fa:e5:f7:b1:6b:31:13:cf:c8:5f:73:4b:cd:
50:39:3a:f3:a6:66:06:9b:1f:cb:f0:f9:27:a2:7b:55:bb:b5:
94:c1:6e:68:c7:14:a8:1e:16:61:80:d1:33:f2:31:7f:59:9b:
95:23:19:77:db:68:67:8e:6f:b5:29:02:c4:b6:ac:9c:11:bb:
ea:b8:25:a7:32:10:81:e9:69:10:9e:32:bc:45:a1:ce:da:f6:
8c:22:a7:2f:9d:81:22:44:ee:ba:63:06:c1:f0:e9:0e:7b:d6:
db:4d:84:a0:8a:b8:38:54:11:98:35:62:66:c3:3d:1b:14:53:
8d:ff:40:67:65:f9:c3:23:22:8f:15:e9:2b:32:72:51:ee:5e:
6c:20:a8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:05:45 2025 by rpki-client