Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft
File: x1hCDPdi5IrXyqYOs53NYisftPY.mft (raw, json)
Hash identifier: nCyb8/n9+PFxwNa3V1+R0myziKFjbGS8DypE2hWSJH8=
Subject key identifier: 3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33
Authority key identifier: C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6
Certificate issuer: /CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6
Certificate serial: FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft
Manifest number: FA
Signing time: Sat 29 Mar 2025 05:34:34 +0000
Manifest this update: Sat 29 Mar 2025 05:34:34 +0000
Manifest next update: Mon 31 Mar 2025 05:34:34 +0000
Files and hashes: 1: YaQpCWAKC9tUppCHG9-rOfTu6bg.roa (hash: FMHp4ON7Uq3Fg/+iT+yTBDOUIs/Z7ZOuEXB1WvJ+5jM=)
2: x1hCDPdi5IrXyqYOs53NYisftPY.crl (hash: RKrgomWNS7nOZY86op8TCrvv8Thkmo+yK8nMqsW/iR0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 251 (0xfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6
Validity
Not Before: Mar 29 05:34:34 2025 GMT
Not After : Jan 10 15:30:20 2026 GMT
Subject: CN=3B2E1528E75A4B9A454579558F70254185675633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1c:1f:bc:16:1d:9c:c6:2f:56:f4:ff:ba:2b:
b1:61:05:0c:4e:14:c0:9c:13:62:be:3b:df:1a:59:
cb:cd:fd:61:c0:19:fb:93:ab:60:63:c7:76:cc:39:
d8:3a:0b:9a:a2:36:65:53:87:76:e5:66:ec:6a:14:
02:39:f0:02:2b:ce:80:59:ab:34:53:30:8f:90:74:
46:c6:98:c9:40:8d:c7:ef:66:f9:0a:ed:63:06:0d:
bc:a2:b8:ff:ce:72:47:4a:2a:b4:87:aa:50:c2:c0:
c7:b3:24:54:c7:dc:9f:85:94:77:8c:94:eb:f3:74:
00:bc:5f:1b:71:75:f4:3e:c1:3d:44:9a:e8:50:96:
6e:5f:e8:f8:fb:78:08:0f:4e:bb:ec:a8:d5:ec:5e:
d3:04:6f:f3:13:2e:55:7a:48:f1:42:df:6e:eb:c0:
35:87:5e:0e:53:c8:c1:52:27:0d:de:34:32:6a:66:
fb:9b:71:f2:98:b6:fa:97:39:b3:6e:ed:9a:4e:1f:
8d:b4:ed:d7:58:20:d0:98:49:39:6c:b5:92:b9:54:
0f:b2:5a:d8:00:96:3e:d5:62:81:8a:67:a3:f5:68:
c5:92:a5:cf:1a:dd:ee:5f:55:54:60:73:dc:6d:41:
09:c8:87:f3:e2:18:b5:55:42:38:20:97:12:c5:f9:
7b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33
X509v3 Authority Key Identifier:
keyid:C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d9:a3:c7:53:e0:ef:34:bf:46:85:f5:9e:7b:81:0f:4f:7c:58:
3b:ef:16:46:bc:7d:0c:2d:73:53:83:16:7c:3f:32:fd:2c:88:
a9:48:d1:06:98:01:34:16:f4:ae:33:d8:b7:29:b1:58:f7:25:
ff:24:f7:82:53:42:8f:56:80:56:1f:ec:b1:66:4e:36:e4:9b:
ee:67:88:9a:44:e5:4e:13:0e:7d:79:b7:03:d7:70:ca:b0:ef:
c0:1f:17:a4:ad:3d:c3:0c:95:dc:02:ff:5a:8d:d3:06:58:3a:
48:6b:5d:a8:9f:e9:bb:1e:18:12:81:a9:1b:ec:4a:45:ff:a4:
01:f3:a7:00:29:60:f8:42:2b:1d:7a:b0:7b:51:68:6b:b5:8f:
0a:4c:c6:82:00:86:f6:b8:97:6c:f2:62:9e:09:ba:13:76:48:
2b:89:42:63:2b:50:fd:9f:32:75:23:a0:cd:fd:71:a0:44:c9:
68:9b:cd:5d:22:75:11:72:46:13:5e:01:67:1e:5d:4c:aa:c5:
e7:7d:24:42:3b:98:3b:2c:d2:14:b1:32:0c:d3:73:79:12:28:
e6:3d:c9:5a:c1:2b:d9:af:8f:3d:d3:fd:07:43:12:d7:ac:6d:
74:a1:8b:bb:04:f0:68:5f:f1:97:b1:98:7b:c6:d6:28:3b:55:
93:12:0a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:07:41 2025 by rpki-client