Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft
File: Y0AKpubGixPd3JwAuCWGEkJz-ps.mft (raw, json)
Hash identifier: S0eswaseQAh8hnydWzYuHyyL2ZEiD/oSoaOueQi94qQ=
Subject key identifier: 62:94:72:0F:4E:18:10:A7:6D:17:B0:40:5B:05:1E:B2:8C:55:A5:5F
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0D38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft
Manifest number: 0D13
Signing time: Sun 13 Apr 2025 09:37:28 +0000
Manifest this update: Sun 13 Apr 2025 09:37:28 +0000
Manifest next update: Tue 15 Apr 2025 09:37:28 +0000
Files and hashes: 1: 1jVPYO4nGs8FZGioNVr39CX7VWs.roa (hash: 71vpUyDTb8dNL28rQg96jkRHu46hvy7XBAPwWpMEfI4=)
2: BbVZgADSSKhOjhU4gn9RbbRngr4.roa (hash: 3ZUbardbp/7BUjqG6dErb/uLdr6iuPIkme1mosEWvY8=)
3: IyrCpz_VyKMD5KCGnGmtbqx-jNQ.roa (hash: kvqyvSsAj6Zct9jVX31wGfoHFyeej5xK34Dg8pXqStY=)
4: Y0AKpubGixPd3JwAuCWGEkJz-ps.crl (hash: RkQbSU0f9tCcft020bXHz5+txGjbtEsbIm5msS9Ahe8=)
5: mLVsoewU7rIWBGX08zzaLYzjhjg.roa (hash: dgb+jhHMqjlYpdqKGY+wENPRNKLrt+sIT7tlDI+zFuo=)
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 20:38:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3384 (0xd38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Apr 13 09:37:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6294720F4E1810A76D17B0405B051EB28C55A55F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4a:0f:a8:66:d8:c9:34:70:51:46:ce:ab:63:
b7:35:fc:b3:8f:1c:08:f9:e2:04:f4:06:9a:25:71:
f7:25:58:37:a3:15:8b:8e:f9:51:79:b7:40:41:32:
02:89:90:0c:20:f7:90:5b:54:92:53:6f:73:fa:bf:
00:a0:d0:af:c9:3b:bf:84:64:a8:f7:45:cd:61:6d:
20:b5:1e:19:b1:e9:ae:90:b9:fa:5f:0e:33:ca:cf:
9b:30:51:09:d0:75:e5:25:d5:dc:40:d2:14:1b:a9:
ec:92:dd:e5:c5:65:ed:7f:16:09:44:4d:3f:7a:67:
89:d6:c4:be:ef:cb:ed:6c:1b:28:a6:94:ae:26:24:
59:f7:37:71:89:11:de:d2:62:f2:92:83:3c:c0:15:
24:fc:69:9d:d0:24:ba:07:5c:fc:ab:fb:72:c5:6a:
0c:a5:a3:f5:fb:0b:4d:4f:ee:b1:a5:ff:6c:99:3c:
62:ba:cc:28:06:04:3f:84:46:dd:28:4a:60:3b:fc:
c3:38:76:90:ae:1b:a2:fa:ec:1b:a4:9b:36:49:23:
fb:dc:3a:55:62:56:07:4f:b5:00:2e:de:8a:05:ab:
e3:29:be:9c:20:bc:fb:f9:e7:98:22:e0:5c:df:7e:
d4:8f:5c:a3:c2:81:db:eb:0f:06:b1:0d:d1:e5:a6:
bf:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:94:72:0F:4E:18:10:A7:6D:17:B0:40:5B:05:1E:B2:8C:55:A5:5F
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
08:57:c7:16:91:9b:b3:71:d6:22:7e:fb:9d:b9:cd:09:84:b6:
fd:4b:65:48:86:55:f6:1c:c6:3a:75:a1:a6:57:2f:1c:ff:f6:
c7:94:e3:43:f6:86:98:2a:fe:81:db:1e:65:3a:60:9e:71:de:
76:b3:f6:20:3d:b6:94:8d:50:50:1f:9f:ac:c8:20:0c:af:45:
0b:d0:51:5d:6e:f8:89:a9:b7:28:9d:8a:07:7b:20:cd:b3:df:
ee:c7:de:df:0a:95:b8:5a:65:d4:4d:e6:77:e1:40:04:46:e7:
d1:fb:bf:4f:a8:da:76:d7:58:dc:82:5f:86:16:2c:64:64:fa:
85:6d:1f:20:55:9d:e8:61:5f:88:05:f8:58:f0:50:de:d2:a9:
2d:16:e8:e5:eb:e9:3c:d1:0d:43:c7:7b:a9:53:ad:55:17:2c:
6d:bd:bd:94:38:27:af:65:6c:8e:9d:51:be:28:f5:9c:1e:cd:
e3:f2:17:cf:6c:0d:b8:d5:15:f1:61:81:e9:f6:30:c6:1e:b7:
cd:82:12:74:80:65:40:7f:7b:38:47:94:a6:6c:96:e2:6e:b9:
3f:6c:ff:07:7b:e9:75:b0:1c:f4:24:8f:2a:78:27:a8:30:9e:
80:5b:7a:75:c9:69:2c:4c:23:6a:39:a0:73:58:b9:e3:28:70:
53:92:b6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:35:40 2025 by rpki-client