Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft
File: ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft (raw, json)
Hash identifier: +jPpJhrn/KpPErSLTJ4CgaeLFm9OU8db0X66+tMxU5E=
Subject key identifier: C4:93:19:11:3B:6E:1A:87:D5:87:DA:0E:05:0F:FB:ED:E7:F0:E1:0B
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 099B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft
Manifest number: 0980
Signing time: Sun 01 Jun 2025 21:55:47 +0000
Manifest this update: Sun 01 Jun 2025 21:55:47 +0000
Manifest next update: Tue 03 Jun 2025 21:55:47 +0000
Files and hashes: 1: 50R5RMsMZFUvkqNthpiaBxuJkcc.roa (hash: Zpw5zWTlhuhrqpfyR8Vojt0B0WeVZmuM3TImlNDHd4I=)
2: Mr2C4yEpOwDPOmb5A8zSCNYoTng.roa (hash: N8bNc4zYOp2HDREzTj4yRlfzJ1dJrLHpg2tTyOdfzss=)
3: d6--kc_-LPc7njgWpOllWG1RVNI.roa (hash: pI7ZTp5Oouh19/M1FkjdCyoxYWUD2tDFtNeV/TnCfjI=)
4: e9i0JWFnQsx6KJXwFTaWN9yJMY4.roa (hash: q9O5wyceLR2RtxXgJNqnmFlEYYRBbqI5GAHrL23cm9s=)
5: ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl (hash: eU3/iHN9h4bNSUTwRCVx3s6dXEXqHZUqXuhJOg7VFNg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2459 (0x99b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Jun 1 21:55:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C49319113B6E1A87D587DA0E050FFBEDE7F0E10B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:12:26:23:7e:72:ac:59:ab:82:b7:b4:48:3c:
db:45:de:b1:97:2b:5f:e8:58:b2:e2:90:6a:30:a3:
ef:8a:13:46:5d:5e:4d:56:b3:ce:28:a1:1f:c5:1f:
d6:5d:d7:4f:1d:db:f0:e5:f5:f3:f6:a9:3f:bb:30:
a7:e0:32:0b:19:59:60:c8:c2:57:53:fc:04:4d:72:
0d:3f:22:a1:25:7d:e4:51:f9:f2:b2:36:93:c1:44:
5d:80:97:5d:48:e3:6f:4a:28:b5:d3:26:74:a0:2e:
92:92:15:9d:a6:90:41:21:1c:e3:b6:ce:15:8a:40:
40:a8:70:64:f0:d7:d5:f7:80:93:d3:73:05:af:2a:
84:22:d6:7c:60:65:1a:e5:2a:9c:95:ac:bc:55:9b:
dc:5f:c6:9a:f2:bc:bf:04:d3:f3:35:38:3e:9f:ba:
02:bc:7c:dd:83:63:9a:c5:c0:28:26:b5:9e:76:56:
07:bf:8f:8e:fd:c5:8b:99:2a:99:d9:dc:ef:68:45:
35:e8:4a:87:1c:11:5d:27:27:f3:f5:9b:1c:e0:91:
a8:80:42:51:17:c9:d6:85:d3:e1:13:d5:fe:8f:9b:
d7:2b:ce:31:ff:02:b4:0b:be:8d:dc:39:5c:f8:c7:
3d:62:b2:4b:41:fc:76:62:a0:cf:03:18:90:29:54:
b2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:93:19:11:3B:6E:1A:87:D5:87:DA:0E:05:0F:FB:ED:E7:F0:E1:0B
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b8:a6:14:dc:1b:9a:f2:47:05:32:02:58:14:f4:cb:a6:93:96:
47:9f:b9:b5:44:69:69:19:74:d1:1e:84:dd:ae:0c:1b:f3:60:
af:ac:d1:41:12:30:bb:b3:48:cb:9f:55:48:82:4e:0b:43:59:
33:68:ff:bb:07:54:1f:e5:ad:be:4c:d7:2f:4e:d3:dd:5a:93:
03:d0:9c:4f:ea:f8:ee:a4:dd:3b:18:c9:69:30:8e:6e:de:26:
5b:a2:26:d1:0d:16:0b:52:ca:76:14:47:d2:be:83:bd:8e:62:
29:c1:aa:ef:90:86:93:c0:5e:62:4e:de:d1:e3:34:8b:18:62:
ac:62:97:d4:fe:11:3b:a5:9a:0f:dd:90:df:e8:ed:52:9b:39:
68:f2:94:36:c6:6e:1c:5d:55:d7:a5:ab:b0:d2:39:3d:85:f5:
7a:c5:18:33:fd:61:f8:9f:18:74:97:5a:0b:88:84:d2:f4:7d:
00:c8:88:5a:4c:d2:3d:68:45:06:b1:2e:27:f1:04:64:58:d9:
c1:04:79:00:71:84:36:b7:81:f1:7e:b1:c2:21:f0:46:7a:c6:
80:08:91:df:90:9b:6e:ed:b8:38:38:a1:45:78:7d:c4:45:68:
9d:8b:8a:cf:ec:60:99:b6:d0:fe:3b:21:a1:d1:66:bc:3b:8c:
1a:eb:49:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 10:08:41 2025 by rpki-client