Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft
File: Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft (raw, json)
Hash identifier: kG6s9GOS2NEBQoxTEygvzTPd7IU+oEakV7iADbzhP4U=
Subject key identifier: 20:1D:7B:C2:8F:A7:DF:B7:19:29:5B:68:F0:DF:D7:92:6A:AE:4E:1C
Authority key identifier: 49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62
Certificate issuer: /CN=49FD819BDAC01662B73EAC9005088CD6A3B88762
Certificate serial: 0556
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft
Manifest number: 0551
Signing time: Sun 01 Mar 2026 19:24:14 +0000
Manifest this update: Sun 01 Mar 2026 19:24:14 +0000
Manifest next update: Mon 02 Mar 2026 01:24:14 +0000
Files and hashes: 1: BTB03Fjy8KSHm8tBwvGU0kAAUUw.roa (hash: 6S/046Q/gSy74n6LwEE7B9ZdH7esJBgwf4CXzeCHLPk=)
2: Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl (hash: JIf3K5+12oFUcFF9PzNnBY6ULy8R1L1UiRUyMM6D4eY=)
3: aMR2DRj0Z54X3ubzFeDHeHI1Vyg.roa (hash: lFq4fs3TGjBKbtdnmDZmt74WmFZVzfzyQSiARAA3R8E=)
4: urHrOYdWdooldqGvcVOkbHMGnRA.roa (hash: aNnnj85R/WrhRMtrpBjZNY4oytOW9gN4mRF6VHdjWU0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1366 (0x556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49FD819BDAC01662B73EAC9005088CD6A3B88762
Validity
Not Before: Mar 1 19:24:14 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=201D7BC28FA7DFB719295B68F0DFD7926AAE4E1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:56:73:59:2d:b8:86:04:e8:1c:0b:0b:82:88:
3c:b9:4e:d2:4b:c2:cd:c9:d6:9a:11:63:a5:ed:94:
34:93:47:d1:47:14:e9:bb:a9:30:99:55:f2:16:78:
72:60:5b:33:f4:b8:88:75:4c:78:68:86:e9:e6:c6:
c4:9c:32:e4:91:f5:7a:4f:ea:48:c4:bf:86:1c:ec:
b3:41:1a:b7:05:ee:0d:fd:5c:51:4d:a3:33:c6:0b:
f0:c2:e5:c9:80:de:79:d8:dd:e8:e5:4b:d6:e8:07:
58:34:b6:e0:6a:78:04:56:91:ef:4d:32:cd:b3:43:
35:7b:ae:1b:a9:7e:a9:6e:c1:2f:e2:ac:46:7a:6f:
7a:4e:93:85:c7:19:2f:ce:d5:b8:ee:ac:c0:36:48:
b9:d0:ac:8f:96:c5:55:d6:c6:22:c0:6c:d6:e3:6f:
d4:cc:a4:d1:7e:cc:bb:be:b9:f0:f0:84:1b:59:b5:
42:f2:02:38:5b:c9:9c:43:5e:e6:76:97:16:13:ee:
df:3a:be:11:ea:4b:7e:2b:c6:99:bc:e3:90:75:e5:
66:09:7c:77:1d:2b:1d:48:b6:69:58:10:2d:e6:c5:
5b:28:d2:97:f0:e7:d2:bc:69:c4:73:65:42:79:bf:
2d:26:af:ce:40:c2:c7:92:5c:c4:9c:b3:de:b6:61:
f8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1D:7B:C2:8F:A7:DF:B7:19:29:5B:68:F0:DF:D7:92:6A:AE:4E:1C
X509v3 Authority Key Identifier:
keyid:49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b7:3a:1d:e0:3b:2e:e0:c1:aa:81:5a:45:be:31:51:6f:67:f8:
cc:6f:8f:da:8c:b0:56:a8:f2:cd:23:d2:f3:c0:1f:50:71:34:
ad:66:97:b2:26:7c:ee:4c:83:98:6c:b5:c5:2a:1b:63:6c:15:
ae:c8:e5:06:61:87:64:ac:fe:c3:0a:cc:df:89:37:d0:92:cb:
7e:f4:ea:36:75:5b:e5:e1:aa:e9:10:6c:41:97:22:2c:4b:a8:
e8:98:3f:a7:eb:41:e1:0d:c9:bd:0d:b7:9d:af:30:c8:db:90:
7b:c5:b6:2e:ce:87:fa:04:2c:34:ee:60:32:b5:f4:85:24:eb:
4f:2c:fe:de:e5:a9:9f:5b:4a:03:f8:55:fa:d9:0f:1d:b5:03:
f7:d8:5d:b0:43:00:8f:3c:cd:8a:85:c4:92:4b:8d:56:8d:0b:
22:df:42:14:d3:b6:6c:39:96:9e:5e:ca:8b:61:a4:dc:43:7a:
93:d1:0d:bc:32:c1:40:d2:53:9f:4e:8f:fc:45:27:80:ce:fa:
55:5f:4c:31:d8:15:33:74:37:05:7d:1e:c0:ad:17:a6:f0:a4:
23:14:22:f9:48:2b:de:da:95:cf:99:2e:26:19:d5:ff:da:64:
e2:d3:06:7a:08:b1:9f:9c:96:ca:46:8a:bd:2f:41:2b:d6:6b:
68:a2:8b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:33:40 2026 by rpki-client