Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft
File: -RPLekSlfQiT002P6dsed-_mqxw.mft (raw, json)
Hash identifier: LpbKkSRW8nHTlzYJC+LpCM6cQj5qUJD86oG5GlmNIdg=
Subject key identifier: 74:65:76:8B:F7:E0:8E:E5:AF:92:82:11:0A:62:C9:DC:1E:42:89:CD
Authority key identifier: F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C
Certificate issuer: /CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C
Certificate serial: 0328
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft
Manifest number: 0322
Signing time: Mon 02 Mar 2026 13:53:04 +0000
Manifest this update: Mon 02 Mar 2026 13:53:04 +0000
Manifest next update: Mon 02 Mar 2026 19:53:04 +0000
Files and hashes: 1: -RPLekSlfQiT002P6dsed-_mqxw.crl (hash: FcwQT9Esp1a1Yh32szd/Ies2/X37JDP5O9TIsPFo/fY=)
2: TLPQMipyQ9NUb6ERNQ9lDl_4bKg.roa (hash: jRcLodBDWvjVPz32Ne0Y/NYa05fdOEpQEYX3EaEWKh0=)
3: TnQzIrExeMXFGPVOTF_J6O5o5KM.roa (hash: z+K5Dzd8KNeuwGCEUeS6n0VWekGc1trje0UAX+K19qs=)
4: i7omx6o11gBFgGp3c0tO3ImxhE4.roa (hash: /ELE9O+keNY3c44Uw0aAEp0XObWlYsiYEqIrlONgjQY=)
5: jghrzwIHfbEOsomTcsyn4XAv74c.roa (hash: a77IBy4z00+E00HPSY5jCFxLXKxBWsGeBy8P7o0Jr20=)
6: pc8Xin7jncSOJfT1Riuj1WKUU-U.roa (hash: VRo+LO7Q6SUHDMFQQRj3eJUm72eOCrczYJ5fqDCc+ls=)
7: qmlk2d0xQ0X1kqwuG4QTD3u-OHA.roa (hash: 5Quxz30Ou3mZt4snPNir5fbylaf9sNQgLYGgGV0XghE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 808 (0x328)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C
Validity
Not Before: Mar 2 13:53:04 2026 GMT
Not After : Sep 25 15:30:20 2026 GMT
Subject: CN=7465768BF7E08EE5AF9282110A62C9DC1E4289CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ec:87:00:82:e3:e0:0d:0f:b4:65:8e:04:77:
45:55:f1:8b:3f:3e:4d:0e:83:0a:fd:72:b0:bf:1b:
7e:7f:41:b4:b0:5a:46:dd:88:a9:fb:db:f2:a6:2a:
0e:2f:fb:03:e6:c3:e2:af:7d:10:c9:c2:74:28:26:
81:de:1a:06:70:4b:66:96:a5:bc:bb:ba:2f:b5:8e:
2d:09:8d:ef:a9:0d:de:96:a8:f7:29:94:42:93:9e:
a4:90:40:f5:fe:48:09:a2:a8:77:91:ca:f0:36:4a:
72:2d:7d:6d:c6:38:99:e3:60:e2:10:46:7b:67:ce:
50:b3:2f:81:e9:92:d6:09:a2:f1:6f:04:68:8a:9a:
ea:e0:39:81:10:36:49:fa:8f:39:8d:4b:64:64:5b:
31:a9:83:33:78:b8:ca:65:c0:c5:35:19:80:fd:a7:
42:a5:53:eb:d1:e5:bb:3e:93:54:e5:a0:4c:36:a3:
a0:1a:0d:d4:ab:9d:cf:9e:ac:5c:8e:dc:cd:9c:eb:
f7:90:0e:0d:2b:b9:a1:80:7d:73:7a:20:4f:29:6e:
10:9e:af:5f:ac:8e:61:fa:d0:cc:9d:60:d1:ef:36:
5e:2d:50:35:10:01:be:21:39:c4:d5:c1:bf:a8:ee:
55:d7:62:27:0b:ad:11:5d:e9:00:22:54:7a:34:52:
d3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:65:76:8B:F7:E0:8E:E5:AF:92:82:11:0A:62:C9:DC:1E:42:89:CD
X509v3 Authority Key Identifier:
keyid:F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
89:00:f2:14:aa:f3:3a:57:43:2b:df:19:3e:b2:8d:cd:91:da:
dd:fd:18:da:4e:86:d9:ad:d1:21:61:b0:5a:df:15:38:18:5a:
9a:d0:e7:e0:09:c8:a5:17:ec:ec:f6:5c:26:3e:74:56:5e:12:
a5:b8:eb:21:11:4a:31:78:e0:75:ab:78:7b:71:16:d9:48:07:
29:8b:38:53:01:c9:6b:b3:41:49:8f:ef:8e:1d:bf:bc:89:87:
f5:d9:a5:ba:a3:f8:d9:97:69:51:ce:0a:60:f6:96:f3:b1:ef:
77:3e:70:9e:56:f2:25:13:c4:00:ea:fc:30:6d:54:84:df:55:
b2:2f:0a:42:a9:0f:d2:8a:b0:4f:68:80:94:06:59:2b:ff:79:
bf:23:25:88:dd:af:22:f7:7f:c6:be:af:ca:ad:81:f8:d5:a3:
a2:42:ea:ad:ab:92:66:f1:b8:77:88:8c:a8:65:d6:63:92:58:
83:a8:75:81:eb:73:0e:f4:87:37:08:bd:39:47:00:7d:e5:fc:
ff:82:ba:ce:e7:a8:a5:84:ee:6c:d6:1f:0f:f9:28:3a:40:9b:
fb:d7:84:96:65:cf:84:72:69:74:96:10:b7:4f:7f:55:15:a9:
a2:bf:44:a4:da:04:69:93:43:87:a3:6b:47:54:6c:63:50:64:
aa:65:be:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:55:54 2026 by rpki-client