Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BHIS/XgXk5YKVbiZlGfuKCpfyidaFJdM.mft
File: XgXk5YKVbiZlGfuKCpfyidaFJdM.mft (raw, json)
Hash identifier: 7DIQO9L/LdDVlHcbXFXQwr79wiaWQJwfEq1dimuATFY=
Subject key identifier: D7:07:02:60:63:18:F0:C8:EB:B2:42:E1:1B:85:D4:27:94:E8:65:28
Authority key identifier: 5E:05:E4:E5:82:95:6E:26:65:19:FB:8A:0A:97:F2:89:D6:85:25:D3
Certificate issuer: /CN=5E05E4E582956E266519FB8A0A97F289D68525D3
Certificate serial: E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XgXk5YKVbiZlGfuKCpfyidaFJdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/XgXk5YKVbiZlGfuKCpfyidaFJdM.mft
Manifest number: E3
Signing time: Mon 02 Mar 2026 04:53:22 +0000
Manifest this update: Mon 02 Mar 2026 04:53:22 +0000
Manifest next update: Mon 02 Mar 2026 10:53:22 +0000
Files and hashes: 1: Lz4bgSi9fFdr5nfUg6LA5UQVvcw.roa (hash: DAqSYMoWmgxcDkqDXV7YErOSh2azZKHeTThf2jitM3A=)
2: XgXk5YKVbiZlGfuKCpfyidaFJdM.crl (hash: qKKgK6cfcE++nZ+7SeAtfVFEceYt1I5fOTt8UqpRqN0=)
3: _WZmWSK4Ta_FWZDNtIRS18GjleE.roa (hash: PT6IszsOUMvDvjbd38ogqD5V8PW4FWdI/i4FYHDCs8s=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230 (0xe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5E05E4E582956E266519FB8A0A97F289D68525D3
Validity
Not Before: Mar 2 04:53:22 2026 GMT
Not After : Jan 12 15:30:19 2027 GMT
Subject: CN=D70702606318F0C8EBB242E11B85D42794E86528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d8:d0:60:71:9d:6c:1f:de:b4:ec:00:ad:1e:
07:c2:2d:91:92:b2:0c:e4:06:b0:2a:85:73:4e:96:
67:c8:a6:0d:89:a2:27:05:91:d6:21:99:bf:db:e5:
fc:af:e0:b6:4c:a0:03:67:52:62:fd:08:93:7f:0c:
85:dd:cb:e6:0c:6b:78:72:e7:7d:de:f5:92:ec:47:
fc:04:27:e4:84:2b:cc:7f:09:2d:b1:83:ca:53:29:
dc:ee:69:aa:2d:bd:ce:2b:b7:9c:f8:75:f3:6f:b0:
9a:47:84:95:e2:3b:1d:71:57:a0:ca:4a:e6:d9:62:
07:54:63:c9:01:17:ee:52:44:2b:ce:9e:48:d2:b5:
b2:84:88:a1:00:94:aa:fc:c0:fd:ae:91:29:89:db:
fc:34:1f:f8:c6:3e:f2:7b:e0:a0:22:b4:84:9c:eb:
bf:84:52:c9:5b:9b:64:4f:5d:c2:94:81:6f:73:d4:
a7:1a:79:39:f0:67:ad:fa:6c:b3:7e:e7:73:69:d9:
32:0f:02:ec:f9:78:f5:ba:59:88:e8:fa:dd:59:c7:
6d:e8:bb:10:9d:e6:9d:bc:a5:6d:87:2a:dc:a9:48:
e3:75:7a:c0:fb:3d:e7:b9:5d:65:06:ef:c4:94:77:
df:1f:6f:da:dc:38:49:04:4f:7e:48:21:1f:24:a6:
6f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:07:02:60:63:18:F0:C8:EB:B2:42:E1:1B:85:D4:27:94:E8:65:28
X509v3 Authority Key Identifier:
keyid:5E:05:E4:E5:82:95:6E:26:65:19:FB:8A:0A:97:F2:89:D6:85:25:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/XgXk5YKVbiZlGfuKCpfyidaFJdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XgXk5YKVbiZlGfuKCpfyidaFJdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BHIS/XgXk5YKVbiZlGfuKCpfyidaFJdM.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3e:6e:55:7f:10:f2:60:fd:8a:5b:a4:24:38:13:32:a1:e6:31:
6f:9e:91:62:40:a3:4d:0b:9a:0f:44:87:ed:c3:29:06:11:51:
c1:0b:5a:3e:cb:9e:2d:e6:98:f1:bb:c9:10:26:bd:5f:d8:4a:
58:16:94:11:da:b9:60:22:a6:c1:76:84:62:36:f1:16:18:c6:
bc:58:e6:9d:f8:a0:8f:35:e7:3c:9f:50:a4:59:e6:ab:f8:9c:
5f:8f:25:45:67:39:11:ca:d3:dc:60:83:99:47:21:f0:80:0d:
17:71:7d:ac:fe:15:bb:49:e6:94:d2:ff:a4:a7:f8:a6:51:a2:
a3:ce:f3:94:ef:08:b5:65:30:4c:3d:4d:fa:d6:0f:25:3b:dc:
30:da:ce:21:c3:03:62:fe:56:6d:93:79:9f:ea:40:c8:a4:55:
03:23:fc:1f:48:fc:86:5f:e3:e7:1d:24:30:5b:e0:58:3d:b3:
fb:e9:13:3f:79:b7:87:29:ff:a3:32:36:3b:d0:f0:93:ac:3f:
b1:57:b4:35:e4:94:7a:cf:0c:f6:45:5d:8e:91:5f:53:5f:ae:
39:12:9c:58:2f:fc:ad:ca:8c:85:27:26:b8:10:3f:e1:39:e8:
a2:49:ca:d9:5e:2e:73:64:2d:45:52:23:f2:b4:ed:08:49:25:
3f:cc:05:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:27:16 2026 by rpki-client