Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft
File: ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft (raw, json)
Hash identifier: 4nvNQVvByOU6kaM4Rxa+lkdCtD8eclGGfKPBxaSpyRs=
Subject key identifier: C4:93:19:11:3B:6E:1A:87:D5:87:DA:0E:05:0F:FB:ED:E7:F0:E1:0B
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 0A9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft
Manifest number: 0A74
Signing time: Mon 11 May 2026 09:09:23 +0000
Manifest this update: Mon 11 May 2026 09:09:23 +0000
Manifest next update: Wed 13 May 2026 09:09:23 +0000
Files and hashes: 1: 7VK53hYm7g5VkOPkeGES_54hVJI.roa (hash: k+OtCx1T1ouk+q8NbbCJvYUIt7orWPEyyny85aJVIzQ=)
2: YPrfDOvbaWwTBQh83FDQR4bljig.roa (hash: mdZ/pS667HT7nasTrAeRj0hweBDwP5zLS4KhdRCdXac=)
3: lj6DsilVinvpnvvZUxejuA78C_A.roa (hash: LjwB/DtkQZoPwU8SEFcd7nl8GoskZuUkWg4ABzzUwM0=)
4: m5ujHyJTb5O-0_KuO5n4cwDP7fM.roa (hash: lCYHImXXGM7H15knCuGW8+trMfcGbhHQaSf3x8ukTsM=)
5: ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl (hash: s7SAhfe/A4JtXyCd2GUhSoyeFMbB/dkKjlopfkx7H3U=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2716 (0xa9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: May 11 09:09:23 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=C49319113B6E1A87D587DA0E050FFBEDE7F0E10B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:12:26:23:7e:72:ac:59:ab:82:b7:b4:48:3c:
db:45:de:b1:97:2b:5f:e8:58:b2:e2:90:6a:30:a3:
ef:8a:13:46:5d:5e:4d:56:b3:ce:28:a1:1f:c5:1f:
d6:5d:d7:4f:1d:db:f0:e5:f5:f3:f6:a9:3f:bb:30:
a7:e0:32:0b:19:59:60:c8:c2:57:53:fc:04:4d:72:
0d:3f:22:a1:25:7d:e4:51:f9:f2:b2:36:93:c1:44:
5d:80:97:5d:48:e3:6f:4a:28:b5:d3:26:74:a0:2e:
92:92:15:9d:a6:90:41:21:1c:e3:b6:ce:15:8a:40:
40:a8:70:64:f0:d7:d5:f7:80:93:d3:73:05:af:2a:
84:22:d6:7c:60:65:1a:e5:2a:9c:95:ac:bc:55:9b:
dc:5f:c6:9a:f2:bc:bf:04:d3:f3:35:38:3e:9f:ba:
02:bc:7c:dd:83:63:9a:c5:c0:28:26:b5:9e:76:56:
07:bf:8f:8e:fd:c5:8b:99:2a:99:d9:dc:ef:68:45:
35:e8:4a:87:1c:11:5d:27:27:f3:f5:9b:1c:e0:91:
a8:80:42:51:17:c9:d6:85:d3:e1:13:d5:fe:8f:9b:
d7:2b:ce:31:ff:02:b4:0b:be:8d:dc:39:5c:f8:c7:
3d:62:b2:4b:41:fc:76:62:a0:cf:03:18:90:29:54:
b2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:93:19:11:3B:6E:1A:87:D5:87:DA:0E:05:0F:FB:ED:E7:F0:E1:0B
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7f:1e:41:2f:89:15:4c:da:48:ff:cd:88:58:4e:0a:eb:e7:8a:
bd:62:20:91:83:92:28:e0:59:c7:4b:50:a0:69:1d:61:00:4f:
5d:51:9b:ac:cf:7f:ac:93:15:66:1b:2a:94:62:e3:4d:d9:08:
1d:13:e4:bc:85:b8:cc:e2:1f:6c:fc:4b:de:5e:6d:58:84:59:
c3:51:9f:72:4d:ff:9e:f1:d2:c1:51:64:0b:a9:92:f3:2c:85:
38:bd:08:c6:68:af:d0:81:2f:67:76:99:ef:3a:78:82:fb:49:
e1:d9:56:bb:dd:4b:a4:3d:23:d6:d1:e9:cb:ce:85:2a:5f:34:
7b:c0:da:b9:92:c6:e0:2a:a0:f9:71:fa:21:a8:75:f3:fe:a7:
38:c1:70:b8:62:21:8e:86:56:ce:47:2d:06:59:ea:2e:c3:3c:
22:57:ff:7b:5f:a2:85:3d:31:ef:fc:b5:83:10:d2:c3:f4:7f:
a8:5d:83:5a:25:7b:a3:13:81:f4:fb:cf:29:ee:13:54:ca:8f:
02:e7:ac:99:24:f0:3e:70:b4:0e:a5:e3:17:c7:e8:6b:0a:e2:
fb:55:2c:e9:61:63:52:df:31:30:f4:86:fa:57:0d:33:d9:73:
9a:3a:d6:a7:11:c0:b9:46:07:04:ad:a5:9d:c6:32:90:54:71:
3c:5b:9b:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 14:22:43 2026 by rpki-client