Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
File: Qi58ldh96a7rISoMTMsBdOZcpdA.mft (raw, json)
Hash identifier: 2YFOb92lrbjTkyqeDKVB8WIkEGQepqqJyV3SawlJiOU=
Subject key identifier: BD:78:EC:D8:CE:A1:D0:EC:64:85:14:D1:BB:92:8A:0C:C1:55:0E:11
Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0
Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
Certificate serial: 04EE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
Manifest number: 04E5
Signing time: Sun 13 Apr 2025 09:06:48 +0000
Manifest this update: Sun 13 Apr 2025 09:06:48 +0000
Manifest next update: Tue 15 Apr 2025 09:06:48 +0000
Files and hashes: 1: -18l1uUyH6nqqiq_fnmcMI4pc68.roa (hash: 9dlGOBRps7HNtgR/QauuWHhFY3bbKeP7QQJlDErl/iY=)
2: O6VvY0wuqytgMzlHgkOITJ3kBXU.roa (hash: FhqRyRFSOfXjJ03c3VjYck3SYfz8WA0fiT+ZTvLnLEY=)
3: Qi58ldh96a7rISoMTMsBdOZcpdA.crl (hash: g0Jy0cEI4/OZ5oboWTw/xp6ryQIVFZv6lmzpmDT470o=)
4: VOP-eRSsWEA2OkRD-zU-NQNgiIw.roa (hash: dmO0fcZn4SWYD10W7y/T8TWddm69sI2RfA62nbfXbEw=)
5: xfjFkkBPzAyUEcspnbwh0W9UvWY.roa (hash: EwwusAdzqu+9KZ3zwSn//pIOZD/Ic/ut/hDcDdczyLI=)
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 16:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1262 (0x4ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
Validity
Not Before: Apr 13 09:06:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BD78ECD8CEA1D0EC648514D1BB928A0CC1550E11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:42:47:0b:5a:68:6c:8c:27:93:dd:ed:dd:
4a:b2:d4:eb:00:26:24:26:e1:97:7a:87:90:16:95:
09:25:d1:5b:3b:4b:4c:0e:37:62:75:a7:65:30:94:
c8:80:57:e7:12:55:ce:dc:c9:44:d4:79:46:7b:7a:
12:d1:7a:14:69:19:58:78:db:0c:b4:48:38:d2:64:
0a:9b:aa:75:58:4b:83:62:91:a6:02:f2:b1:00:00:
70:8c:0a:74:e4:d6:b9:be:f4:1e:ce:35:4a:f6:ac:
c6:19:da:e8:8a:72:6a:6c:b9:d8:0e:de:ed:96:8b:
26:97:7b:6b:b3:5a:c5:d5:d7:39:83:52:75:6b:c1:
12:f8:88:c1:0a:69:b1:7c:77:a4:e6:56:a6:ca:45:
d0:69:c7:86:0f:d3:b2:f7:75:d4:62:06:fb:da:e0:
08:40:a3:a5:dc:6a:08:f7:73:4f:2a:f0:72:02:bc:
5a:ab:99:fa:b1:9e:94:38:de:6e:5d:00:c7:13:ab:
1a:5b:d0:2c:7b:fd:15:d6:ed:43:37:5c:74:5c:58:
de:68:a7:3f:32:f8:f6:5e:78:e2:69:fb:46:0f:91:
bf:53:f8:a8:5e:91:d7:aa:93:ca:c9:fc:2d:63:67:
c9:72:51:28:5d:ba:bd:f8:95:9b:87:83:49:ea:7c:
f2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:78:EC:D8:CE:A1:D0:EC:64:85:14:D1:BB:92:8A:0C:C1:55:0E:11
X509v3 Authority Key Identifier:
keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
92:7e:09:dd:ab:b6:b0:f8:3f:d9:40:b9:c1:98:36:f6:22:88:
09:f0:c4:ee:00:a6:d0:51:fa:69:75:9c:58:7c:b4:f4:94:7c:
d7:f2:50:64:9b:f0:ed:0a:8f:4c:e1:29:a7:02:ea:31:b0:d0:
a2:0e:ce:75:b4:82:f0:21:b1:07:aa:5c:ce:80:d5:4d:cc:95:
1c:7b:7c:09:3e:ff:2a:a5:ca:2d:b3:d2:77:92:db:12:99:0b:
a1:b0:5d:88:48:6b:c8:c2:87:63:ac:a0:59:82:71:f7:3d:06:
e1:7b:96:c8:d7:77:7a:89:81:91:f3:b0:db:2e:4a:1d:06:f2:
fe:c1:f7:de:d6:e1:15:17:2f:4b:15:9d:f2:be:e4:51:5d:a9:
07:da:1d:81:d0:cf:2f:f5:5c:d5:f3:21:5f:d4:0a:95:56:bc:
8b:9d:8a:ea:eb:9b:00:82:3d:af:2e:cb:17:34:2f:69:ee:78:
ad:2d:81:a4:90:4d:48:80:10:fa:92:53:a8:ca:e7:f6:f6:7f:
ef:39:bc:6d:b0:e8:3c:c4:bc:90:e8:d2:0f:07:43:f0:f6:d7:
1f:ed:79:30:96:72:79:70:eb:6a:6a:51:92:a4:b1:9b:ee:77:
91:12:77:16:83:3a:fb:eb:85:10:f9:ac:d5:71:e1:0c:48:a2:
67:e6:af:52
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDIy
RTdDOTVEODdERTlBRUVCMjEyQTBDNENDQjAxNzRFNjVDQTVEMDAeFw0yNTA0MTMw
OTA2NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJENzhFQ0Q4Q0VBMUQw
RUM2NDg1MTREMUJCOTI4QTBDQzE1NTBFMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC110JHC1pobIwnk93t3Uqy1OsAJiQm4Zd6h5AWlQkl0Vs7S0wO
N2J1p2UwlMiAV+cSVc7cyUTUeUZ7ehLRehRpGVh42wy0SDjSZAqbqnVYS4NikaYC
8rEAAHCMCnTk1rm+9B7ONUr2rMYZ2uiKcmpsudgO3u2WiyaXe2uzWsXV1zmDUnVr
wRL4iMEKabF8d6TmVqbKRdBpx4YP07L3ddRiBvva4AhAo6Xcagj3c08q8HICvFqr
mfqxnpQ43m5dAMcTqxpb0Cx7/RXW7UM3XHRcWN5opz8y+PZeeOJp+0YPkb9T+Khe
kdeqk8rJ/C1jZ8lyUShdur34lZuHg0nqfPLHAgMBAAGjggILMIICBzAdBgNVHQ4E
FgQUvXjs2M6h0OxkhRTRu5KKDMFVDhEwHwYDVR0jBBgwFoAUQi58ldh96a7rISoM
TMsBdOZcpdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tJUFRF
Q0gvUWk1OGxkaDk2YTdySVNvTVRNc0JkT1pjcGRBLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9RaTU4bGRoOTZhN3JJU29NVE1zQmRPWmNwZEEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS0lQVEVDSC9RaTU4bGRoOTZhN3JJ
U29NVE1zQmRPWmNwZEEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAkn4J3au2sPg/2UC5wZg29iKICfDE7gCm0FH6aXWcWHy09JR81/JQZJvw7QqP
TOEppwLqMbDQog7OdbSC8CGxB6pczoDVTcyVHHt8CT7/KqXKLbPSd5LbEpkLobBd
iEhryMKHY6ygWYJx9z0G4XuWyNd3eomBkfOw2y5KHQby/sH33tbhFRcvSxWd8r7k
UV2pB9odgdDPL/Vc1fMhX9QKlVa8i52K6uubAII9ry7LFzQvae54rS2BpJBNSIAQ
+pJTqMrn9vZ/7zm8bbDoPMS8kOjSDwdD8PbXH+15MJZyeXDrampRkqSxm+53kRJ3
FoM6++uFEPms1XHhDEiiZ+avUg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 15:38:22 2025 by rpki-client