Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.mft
File: nUQardI5rZJgEK_E2yBFTvLEsME.mft (raw, json)
Hash identifier: /0IteOgsmxYsYzOsqJ8sffX/ihx+tPeNaBra+40w9fY=
Subject key identifier: 01:25:9E:C8:F3:24:14:A5:F2:80:DB:DA:54:9D:F1:6C:0F:13:C9:22
Authority key identifier: 9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
Certificate issuer: /CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Certificate serial: 0C32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.mft
Manifest number: 0C23
Signing time: Fri 13 Sep 2024 05:48:34 +0000
Manifest this update: Fri 13 Sep 2024 05:48:34 +0000
Manifest next update: Sun 15 Sep 2024 05:48:34 +0000
Files and hashes: 1: CJl79NAAby0hwrOGBgzhx4rCZRs.roa (hash: wuC001/b4d9UcpoJkPm8EUTCjhXl4RS34WiP8B0ZV2Q=)
2: m--XTl6ODQna1y2GDkzIokNNgMg.roa (hash: bJSGzBvM3DP1aL5VrOhy0VwGKk0F4h/0rlV81Vgh67I=)
3: nUQardI5rZJgEK_E2yBFTvLEsME.crl (hash: qLtjpM3SOJohexVyJljDmq1ekCeEG+s+K8r1UVZWkug=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3122 (0xc32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Validity
Not Before: Sep 13 05:48:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=01259EC8F32414A5F280DBDA549DF16C0F13C922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:04:71:d5:4f:ae:e9:72:e7:f3:24:3b:75:14:
85:e3:64:05:ca:a8:61:02:db:10:07:ad:68:3e:b1:
8d:de:0a:78:34:02:30:b8:ce:be:66:6c:82:a0:25:
fc:3f:bc:cd:93:21:c0:36:79:95:48:ab:fb:8c:39:
3f:19:e4:06:f0:ee:a4:1c:ca:65:7e:d3:53:6f:99:
b7:48:af:68:b7:bd:84:42:82:62:41:e9:c4:09:a7:
ea:e7:56:38:f6:47:52:ba:4d:34:80:3f:ff:fd:9e:
9d:ad:3b:58:62:3a:db:6b:42:af:55:f9:17:0c:41:
f5:47:80:f0:6f:81:c5:8b:96:0b:7b:ab:4d:fc:49:
5a:c7:34:6a:96:bc:90:b3:1b:13:d6:fe:7a:7a:84:
66:b1:d4:18:cf:04:91:73:20:f9:e5:7e:8d:10:db:
6f:68:57:18:9e:b2:28:18:00:3f:77:e1:26:e9:bc:
fc:7c:75:2d:4a:d0:9b:e4:31:60:0f:ad:34:87:bc:
27:40:67:67:5e:50:94:34:ea:b1:71:01:a5:1b:8f:
e7:25:94:9f:24:b7:78:46:1d:39:87:93:b7:88:29:
b9:d8:ca:42:43:d3:17:3b:36:2b:78:8b:d6:fc:cd:
16:0e:6d:5e:e9:c0:48:ae:9f:2f:42:ed:57:f3:f9:
92:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:25:9E:C8:F3:24:14:A5:F2:80:DB:DA:54:9D:F1:6C:0F:13:C9:22
X509v3 Authority Key Identifier:
keyid:9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
15:fd:c9:5b:85:04:4d:30:4c:e6:8a:4a:d4:74:d0:b5:0e:02:
eb:e1:83:02:db:c6:e3:1c:5b:96:b0:2b:26:90:1f:d5:63:ea:
a3:6f:09:60:13:ac:88:05:73:aa:c1:bf:ed:65:31:4a:91:c8:
77:5c:6e:fa:9e:da:43:82:dc:f1:dc:be:2c:ca:fd:1a:a8:63:
00:d3:e7:79:d8:60:53:9a:76:3b:5e:9b:b4:28:71:d9:a7:4e:
21:70:9e:59:0b:8d:dd:fc:ae:43:41:c0:c2:da:90:41:50:51:
f6:98:60:da:bc:a4:18:9c:f4:3c:9c:ce:77:cb:88:5e:93:2c:
8b:4c:27:06:75:c8:55:29:b2:c3:14:2f:05:d9:ff:3f:66:48:
ee:83:6c:a7:7d:ab:8b:7c:51:27:d2:bf:3a:b5:72:b8:61:5e:
98:8f:4e:2e:93:7a:b4:2c:74:84:68:fb:00:5f:7e:e4:ef:6b:
d8:f8:da:a2:74:1e:ef:22:15:ff:13:4f:8d:8e:93:3a:34:f0:
13:e2:84:2f:cc:43:b9:3c:13:d5:52:a1:2e:a3:29:13:f8:ca:
9d:f7:6b:b7:2c:64:78:90:7d:ec:58:e5:38:4f:a0:b4:b0:2b:
5f:1d:2b:2d:8c:5f:5c:8d:95:76:b8:8d:ce:04:c8:2e:9d:10:
f1:75:8a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 10:35:15 2024 by rpki-client on console-fra.rpki-client.org