Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/aDMC32pZIOL4OsTvdmVt3OhA9ZM.mft
File: aDMC32pZIOL4OsTvdmVt3OhA9ZM.mft (raw, json)
Hash identifier: a2jvxTXXqLuK4EqMnZoIll6lX7rwkR3CVaz9D3k45Gg=
Subject key identifier: 8D:21:A4:B3:97:4B:0B:F7:AA:F6:C9:D1:3A:27:BC:B2:94:95:C0:67
Authority key identifier: 68:33:02:DF:6A:59:20:E2:F8:3A:C4:EF:76:65:6D:DC:E8:40:F5:93
Certificate issuer: /CN=683302DF6A5920E2F83AC4EF76656DDCE840F593
Certificate serial: AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aDMC32pZIOL4OsTvdmVt3OhA9ZM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/aDMC32pZIOL4OsTvdmVt3OhA9ZM.mft
Manifest number: AB
Signing time: Mon 02 Mar 2026 03:53:41 +0000
Manifest this update: Mon 02 Mar 2026 03:53:41 +0000
Manifest next update: Mon 02 Mar 2026 09:53:41 +0000
Files and hashes: 1: aDMC32pZIOL4OsTvdmVt3OhA9ZM.crl (hash: 73K8TbliKEsjthANlQvrhx3YSRDoFcsCclHeEGu3iBQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171 (0xab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683302DF6A5920E2F83AC4EF76656DDCE840F593
Validity
Not Before: Mar 2 03:53:41 2026 GMT
Not After : Jan 27 15:30:18 2027 GMT
Subject: CN=8D21A4B3974B0BF7AAF6C9D13A27BCB29495C067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:dc:64:98:41:09:03:a8:00:65:a2:f4:14:34:
a5:84:77:90:52:53:7a:0f:11:9d:79:01:da:67:f3:
d7:9e:45:8b:00:cf:1a:b5:38:11:e9:11:2d:c2:6e:
32:18:ee:b1:76:06:b1:50:e2:86:bd:fc:69:f9:b5:
46:42:e2:1e:0b:cb:1e:6a:97:96:1a:75:ff:80:99:
cd:f4:13:c4:b4:f9:d1:a6:2d:26:89:c9:76:f2:25:
e8:a7:2c:04:a7:32:cf:51:0e:c7:30:5b:98:8d:ce:
06:c9:c8:35:58:32:cb:25:49:47:47:33:32:96:c7:
88:67:71:17:dd:c6:93:51:2a:ef:a0:38:f6:06:65:
8d:60:aa:1b:e8:00:aa:a3:5b:03:49:70:f7:84:80:
53:9b:13:f5:70:86:b3:60:53:b5:6d:1e:c6:cc:b2:
bc:d9:b7:d7:a4:08:67:1f:79:35:d0:f2:6f:fb:83:
8e:2e:ba:6b:e8:60:69:2a:31:8e:19:fd:97:f0:4d:
02:3f:76:da:db:73:b0:f2:f4:e1:11:5d:96:3f:c8:
c2:03:be:d4:1f:3b:ae:a6:84:76:f7:d6:bb:fc:1b:
ae:81:44:24:28:6b:90:11:d5:b5:d3:df:8e:46:f4:
72:d7:2f:cb:b3:74:4e:0b:7a:3e:b2:5a:69:83:7f:
50:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:21:A4:B3:97:4B:0B:F7:AA:F6:C9:D1:3A:27:BC:B2:94:95:C0:67
X509v3 Authority Key Identifier:
keyid:68:33:02:DF:6A:59:20:E2:F8:3A:C4:EF:76:65:6D:DC:E8:40:F5:93
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/aDMC32pZIOL4OsTvdmVt3OhA9ZM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aDMC32pZIOL4OsTvdmVt3OhA9ZM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD_P/aDMC32pZIOL4OsTvdmVt3OhA9ZM.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:e7:23:3e:67:54:13:df:e3:ec:f7:18:58:96:98:d1:f7:8b:
03:4a:63:13:0d:01:3a:7e:b9:f7:2a:d5:ed:e0:c8:58:54:c6:
ab:8d:90:e1:42:2e:06:13:2c:f0:29:21:3a:2f:56:ea:cd:a1:
fd:b8:63:d2:b1:5d:9e:3d:5e:c9:50:c0:e3:26:88:20:7e:00:
19:e3:44:0d:71:a0:dc:1f:67:7c:58:64:cb:bc:aa:7d:de:a6:
18:f7:3d:8f:fe:17:aa:57:b8:9b:f6:ea:48:e5:cf:15:64:23:
63:39:e5:bf:fd:70:aa:b3:d5:53:de:b8:33:48:3d:02:3c:a4:
04:f6:79:8e:79:11:24:62:b3:d8:ff:5b:7b:f1:0a:78:4c:80:
9f:4f:1d:2c:b9:64:a8:06:2e:d7:f4:d1:42:cc:cb:40:b5:54:
25:b1:4b:b1:17:a5:86:86:16:d1:75:9a:84:aa:8d:cc:8a:3a:
40:c3:f7:79:d4:80:4d:25:09:0e:b3:0f:0f:e4:d5:b8:ab:8a:
41:cb:fd:3c:f0:9f:cc:59:60:37:91:4a:68:15:d3:1a:7f:f5:
05:70:76:7a:f0:47:0c:c1:e8:f9:cc:2b:8c:c8:cc:5b:da:fa:
c0:8a:1f:59:a3:7d:e3:9f:a7:61:ab:3a:d0:c4:e2:ff:fa:a6:
dc:96:bb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:59:43 2026 by rpki-client