Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft
File:                     RXsQNypobj_3Nla-tc0968kyNxo.mft (raw, json)
Hash identifier:          AuXHTZZkwfpyIckoWHRO5AiEZ8hNCssfjyRM7IO9epU=
Subject key identifier:   F4:AF:DC:44:CE:1F:43:D4:72:81:BB:30:6C:1F:7F:3C:E6:5F:E2:D2
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Certificate issuer:       /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial:       1012
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft
Manifest number:          0E82
Signing time:             Sat 06 Sep 2025 09:17:21 +0000
Manifest this update:     Sat 06 Sep 2025 09:17:21 +0000
Manifest next update:     Mon 08 Sep 2025 09:17:21 +0000
Files and hashes:         1: 07vcUggfOhRzdvP6je7M0VW6DSU.roa (hash: l73O/MfcK8gJef4ZyWkFYASOyaDhiWhoKdjFPMS6MHg=)
                          2: 124-dgujcSfZi9iFE7nrSwcZU1E.roa (hash: PTqkaLiD7JlVtDIsU1ySyDbrfGcLbb3p2bBV8kE3G2c=)
                          3: 37-lYtxharFPHhtQwqWHSe4JwTA.roa (hash: FtylxqbpWXvGaJsNJk+BBRV7NdkF0g4ITM8C46RrToo=)
                          4: 4Au0bOHNvYsK2lFyh1wM_NhbPVY.roa (hash: XnMd+o6nrZ5uKMH+8Xj4lCBg7e5oLMljN98FhV31eMw=)
                          5: 4ZquMrDim6vEbY5v354ZmXcA9ww.roa (hash: bZB0RcCSq1agYtANJAQPWHSgxv+HxLCxTBNORZaz4Gs=)
                          6: 4gSWxEaEes_CZu9oIvaptfbskxs.roa (hash: TDCx14q7U+WiMDo8buv597gY7Ww9SDeBGkEegSf1xPM=)
                          7: 4lA6qeEfiAsQPhE5QQ1KGP1XMPM.roa (hash: kvAEAwn0oPlHsLYESMFvTbF/3KcxnB1eOAuUaz77IvU=)
                          8: 6TA4FvrJBM_c7ymc-y0LwFb3OeU.roa (hash: Vtpqm4GH3fn0d+w/H5Se95gROwBG3DPy+boDkYCD4Xc=)
                          9: 6ZAnqa3O-kXxw0fa8okj7HcplHQ.roa (hash: Wz3Dq8YMxowyhHXJl/L+IhQkJjjWaYZvpQg9VouDtD0=)
                          10: 80lhrL1SGxFoAGNIUNqwq9U45-Q.roa (hash: O1kERfmBimG+47pZ08hI42/rnN+GiqN17/v8Mn3GN9M=)
                          11: 8AuZrWW_CDXH0eIbjSmrlQhnKaU.roa (hash: Zl1VDXziGuPBOTSctZBW3mIDi9q+9lwVM0+pMER0Z8Y=)
                          12: 8zXNS7EDQ_krZRYvp-RWXJ9BSVg.roa (hash: ksXJYKwa4dbT+L/pfMQ6hpWqvohAw3aAz5XjNMEeyTE=)
                          13: AaqI9dLMB5PCljrHn7_m7KKB76I.roa (hash: 8S3WL4tHeP0lGUCL4k8cGHAlLVnCHokakNLJ6Vedpqg=)
                          14: EQA-4XdfIndRiU4iGUybSR35gN4.roa (hash: n8tpDQg4agsYD6iJfoRPVCfRvAYkipOPVZYfqyhvTfE=)
                          15: G1A53IcjA4h3ALkwTKNj7y49MsQ.roa (hash: PstHa8drSDvmRBNIM7qaKd+iWEsp3+4H4ddmQdQtStE=)
                          16: Gnjc6b-HGqdLq697Zg__8aQQnh0.roa (hash: cvzGriPI9YxBHCvbNTY37A4PsLdMYw4BrOUHXqUiE7Q=)
                          17: M9zQyZuCA4Kb5sgFW282VKbEnO4.roa (hash: qZJ7HBPPcRlnosch01wWCGxhkFwgL+NKT2B5d7WrM7A=)
                          18: O5xTCgFJC-eQnd3PKv33c2PUecU.roa (hash: I8ngLyb+KeMNu+RicCYR/STTAaBKzz/2oCx5OOH4MB8=)
                          19: RXsQNypobj_3Nla-tc0968kyNxo.crl (hash: N2hpgtELbp0VLCDY2SSJPeGCdnfpF9q7LRzfnddz9Bo=)
                          20: Rc4KGG_kj9e26YHrFLFiB4TSdjM.roa (hash: PAfzDFhiteLKMnsbuZmz5PPVca9REQo8S9PbmLKKWiI=)
                          21: T8grVSgCOVd9RlLOquTWnWZteWM.roa (hash: JdFJgdgJ3bH0879cnOADFivV54HW8aRE/2pH2wTgGnE=)
                          22: TBqHuahGb-yyswk33rZtWuf0R8w.roa (hash: nRpJ1s4jCyMiAaF0o59T2gpgjYq5nck+zW4oyUCorBw=)
                          23: U8PSOlHnj11iCtdWThsHPXy3NKQ.roa (hash: D1fOwuW6ap84NF8yh8KX+AqzrWrx7VnhS2TJzePzJzQ=)
                          24: V5G1e2ZF_6a71ikGHtCbI1HI2qc.roa (hash: wT7Iff+cp2WAm2lhXkBmJsE16yuudWbwAy/o+l5b1Cg=)
                          25: XdGou_W_p_3tHGn8K9kxDcaryOA.roa (hash: +Q1w6WHibwNrTlmgh2O9esMWPGaMomx1w1zKZhWIEuE=)
                          26: YMW9ZoePgAT8By822yn9Vo4cpxU.roa (hash: iZm/HStqt8+oRfagB9EUFyL1009RD3aX35KFby/pGJ4=)
                          27: ZBoD3voBPD6qPW_WBinDNbCdt2w.roa (hash: JqJZPt3JM9dwTIFTqDZ2EY3ExGuilfFuqC1asU6JlNs=)
                          28: ZmmuqSue9GzkbQyrve25xeyRRs0.roa (hash: PZwl3ODRhRitrbtWU7QCfSTVYNkXb8vJIX7X6I3Vpgc=)
                          29: _CZpU9Pa62g2IEWy1B_ZjsPiMdo.roa (hash: 1bDHPlvQrQ/gIImzobRjtEGxBIX0Rd+/voSs/Mncw/U=)
                          30: a_2YjzwzMKrJSxHOuqvqTl_ZHZ8.roa (hash: siDZyijVWW04qYXlz1B0ZejhJRSDshfSYJCU8YmhJGM=)
                          31: bATQpIqR0bbFj0vAfhjTqa8N_e4.roa (hash: YuVwDAqUTVHBgbS2qqVfxsPbFPD8mnquowZlFbOxOBQ=)
                          32: dhYV4Dq67AmzgTEfsVFvGZh6iY8.roa (hash: NALE21HugR2GyqyzbCTTKWgbvN82Fy8LeXax3d6+OrU=)
                          33: e9ztbKn32n0ypGfjgeEb0Ry-LK0.roa (hash: OR7ByThYT9j9dGf3uFwmStcD5zJsBhmGvc9Edog0E6c=)
                          34: fNiXZxDiBMEiKWsX4ylbbkQVO3Y.roa (hash: BOmglLNARwgsCN3WF4kB0yBfjRsddgxsc/2R54WShPM=)
                          35: hduL-GcwBEv-zE3cfjsU3pZFokE.roa (hash: TtVcyTISWTBLcvyGUxlMoAzMqlUsRL9yBdZKYSYMfWE=)
                          36: i3sqQPMLPXwMXiYiexg6awg8cQQ.roa (hash: BqZIrfo7IHps0NnuIytI3jd+kxNHcNbJsFGuazoK0Tg=)
                          37: ijieom_c1p0KsAAIxWeZaW7VIfk.roa (hash: p1vK+ZK7gZCYypb9EP3mk4lpcQ5GRL+CqqmdlriPLBI=)
                          38: iwW5LVmMj3k1cMpWLeLAQl7HxeM.roa (hash: nHKO6HQR2W7bF++PHDoslu69H8d2Ngr+YXouvidjk3k=)
                          39: jh3goPFnjTaJwwQgzURw22Ny1-0.roa (hash: uo5LDrgO+knr9j2+VwrN5K678mUacyITKVK9tqdXhyo=)
                          40: lPkzuUS7XQ-2ZVfgaUt8dnRvguw.roa (hash: y5VtucSA8cGGt8TuFgBbyce34HB6E68APILUVFLY6f8=)
                          41: mJBqscIg4eG8Tbz9Q0XWgAJHXNY.roa (hash: EA//zl5leG6otj907ssyAICblIvwjou/tnOlIfpFTRk=)
                          42: mUTuj6ZTgtgpXQazsdQQTTE3uqs.roa (hash: 6by9gqrr+X2+H9UUv+XFpSIysiRVFV3KjuytLCfrC2w=)
                          43: nkbmGfe7JcJRmB3RWPPtmVIxVTg.roa (hash: YuChHZZqzXgkLcfSkmIaAgxllyIATVQ40+DC45Hg+Y4=)
                          44: o_ILGP7QEWQWHooK5VhpU06V9rA.roa (hash: 6fFnrqS49hNGX0Ra5UJvKsm/ePi4y60mzY1qYm4NqDw=)
                          45: pePjoLg8fASsPdpaASipK35XmjM.roa (hash: 8h1l/GfP5gxnbkcTvV2FayKulM6DNoKQW/2YQlAtrQs=)
                          46: tiTZ7ris6dqYoo38VoHN72mEYac.roa (hash: dM/WvZFdtig7QlMjVZ+v0b9Y2p4wgEAkagzJz4eGORI=)
                          47: tlqCQ5KxB-mpvox50MiGbeYTdv0.roa (hash: ejbkUYBgRIPIiw+aGJylEV7qQK3PhCSlLHTZO4V+aQ4=)
Validation:               OK
Signature path:           rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 08 Sep 2025 00:47:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4114 (0x1012)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
        Validity
            Not Before: Sep  6 09:17:21 2025 GMT
            Not After : Aug 22 08:14:28 2026 GMT
        Subject: CN=F4AFDC44CE1F43D47281BB306C1F7F3CE65FE2D2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:24:c4:78:01:25:42:66:e7:d5:e3:1a:12:b0:
                    28:a1:50:89:96:c6:c9:77:17:36:f3:4d:67:43:7f:
                    14:cc:30:28:70:2e:da:86:85:df:1d:58:19:bd:6f:
                    ca:9b:57:b0:5c:db:4c:93:0b:2c:5b:a0:1b:25:2e:
                    e6:b5:2d:cf:5a:bf:0b:64:7e:b3:8d:24:40:98:96:
                    58:34:02:06:8a:c1:c8:e1:c9:ad:1a:c0:e4:fc:dc:
                    87:67:b3:11:dd:92:db:42:3c:97:85:f0:b4:b7:ca:
                    64:78:d2:ac:e4:dd:c6:be:b0:5b:d4:fd:7b:14:4a:
                    a0:d7:be:f2:2c:3d:fc:51:fc:bb:28:b2:18:9f:f2:
                    bb:dc:11:b8:14:35:ba:8f:78:0f:34:37:fd:46:fa:
                    e6:32:21:02:0d:2e:40:42:e5:0c:14:60:a3:06:23:
                    e2:49:45:3f:7f:8e:9e:9e:95:c8:da:2e:86:7c:4c:
                    be:15:b8:f1:64:9e:68:d9:01:19:c6:d2:eb:dd:01:
                    28:96:84:fd:63:d6:f4:33:db:76:ee:35:7e:a3:c1:
                    87:42:f1:a7:d3:41:48:38:80:a1:b1:8a:a8:36:8e:
                    61:70:f2:e1:e0:aa:77:57:3f:23:83:c7:70:6c:a9:
                    f5:f2:00:0e:b8:ce:fb:d9:04:41:7b:29:3b:18:29:
                    5a:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:AF:DC:44:CE:1F:43:D4:72:81:BB:30:6C:1F:7F:3C:E6:5F:E2:D2
            X509v3 Authority Key Identifier:
                keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:43:67:12:aa:02:05:80:73:c5:ca:02:11:a2:bb:1d:0a:9a:
         ed:89:14:7a:ac:80:2b:33:7f:c0:33:9b:c0:44:bc:0b:d8:a0:
         ce:04:c7:43:e7:a3:08:af:3e:93:0c:4e:5b:0a:a6:1a:89:3b:
         42:55:8c:f5:40:59:b0:9b:9b:5d:59:88:22:57:b7:cb:c6:be:
         8c:9d:f0:df:e4:4f:a7:b4:97:55:d4:03:35:9b:a6:9e:c2:eb:
         13:df:1b:92:dd:52:b2:aa:a6:8e:77:62:78:de:50:fd:f5:e8:
         5f:96:8e:d4:dd:1a:31:0a:f6:eb:a7:31:39:e1:c0:72:31:52:
         64:68:1a:ae:71:2b:e5:0a:c2:4f:39:f8:78:19:b3:75:15:fe:
         f6:09:e6:2b:fc:7f:16:81:ef:8d:41:63:f8:08:72:09:a1:c7:
         ae:fc:35:5f:f6:8c:0d:93:05:b4:b9:d2:0e:ee:31:f3:90:dc:
         51:98:71:d8:d8:d8:d2:83:68:b6:f3:d1:fd:58:d1:5e:41:a4:
         41:96:63:74:e3:d6:e4:ac:a8:d1:8a:55:50:15:e9:78:3b:27:
         89:d3:90:b5:de:c3:8e:4f:0e:fd:fe:26:87:73:da:76:83:4e:
         37:d2:d7:b6:6e:e3:21:c8:7f:39:ed:f5:b6:75:e4:81:3e:71:
         70:a6:c7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----