Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
File:                     fhfZI6oLxrCgi1oYe-6crejVDq8.mft (raw, json)
Hash identifier:          HeOIuHK4Ct3exqirecJuk9NB3mE0dBFl3KZH08qBacg=
Subject key identifier:   8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Certificate issuer:       /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial:       03DA
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
Manifest number:          03B9
Signing time:             Sat 09 Aug 2025 22:10:35 +0000
Manifest this update:     Sat 09 Aug 2025 22:10:35 +0000
Manifest next update:     Mon 11 Aug 2025 22:10:35 +0000
Files and hashes:         1: -KVZdqfw1TN2i3nKOLqdm-ysA2M.roa (hash: W3vzqLxl+G2vFqFdjTKRgAjHgXzMOpK0YktXUFQmCa4=)
                          2: 3KvH1C10YjGR_CTiq0Paig8OeNA.roa (hash: jpMT0FBGX4b9lxXoNgglyy9sj59EWhuBhZq2UJaa1ec=)
                          3: _JKYKOMP8fAan4-aCND8lEV2y00.roa (hash: G512pV6KSHYqRDz0AOB6d945lCqdxHqUSGgqEMzWHNA=)
                          4: eeR-mAu1VZVCqx0Do0kWOfN1PGY.roa (hash: u9QfT1pYfOnpnVGdwzeDUB/6vx8Me97dZIKPWbDuGjI=)
                          5: fhfZI6oLxrCgi1oYe-6crejVDq8.crl (hash: greZoNGzho4pLUkByW1JOCnOx4v0WI9QSJoUV3YUQc4=)
                          6: jd0kF1vNgBYUjmPvxIAJhPf-jCc.roa (hash: FeRX4AVR2piyJdpYT+x7RHXTiaCulresY6GRiRbvQoY=)
Validation:               OK
Signature path:           rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 11 Aug 2025 14:41:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 986 (0x3da)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
        Validity
            Not Before: Aug  9 22:10:35 2025 GMT
            Not After : Aug 26 01:57:03 2025 GMT
        Subject: CN=8F2938B77D183341E78D0634733686AFC3EB0CE6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:bd:d5:fc:40:18:6f:d9:55:36:f2:f7:b3:9e:
                    f6:07:fb:50:4b:28:74:dc:2c:5d:cc:06:a6:36:f1:
                    fa:ed:3d:1d:3c:8a:57:57:5d:df:96:18:8d:1e:d0:
                    b2:57:60:65:65:00:b7:8f:51:d5:2b:df:db:5c:0b:
                    b5:9e:f8:45:58:da:2b:15:8a:2e:ef:0b:c1:69:ea:
                    4f:de:47:eb:f4:14:63:52:fc:bd:d0:6f:76:d9:9c:
                    01:94:50:df:fc:0c:d8:fc:18:53:63:9f:d4:99:d9:
                    47:52:1c:95:46:57:dc:eb:3a:e0:33:b4:ac:cd:8c:
                    e0:83:58:de:d9:b6:1f:0a:7c:7f:87:4d:d9:7c:2c:
                    9b:b7:69:6b:17:75:fd:fd:f4:a0:c5:a3:e9:85:0a:
                    93:f8:c0:3a:00:65:05:81:22:d7:3a:94:c1:8e:3d:
                    50:cb:62:84:24:69:5c:3d:ec:eb:52:37:4e:65:d5:
                    aa:e3:b1:38:2b:93:77:54:9d:89:50:f0:91:9a:44:
                    d7:27:8f:83:5f:ef:b2:54:af:b2:59:57:59:92:64:
                    d3:c4:17:7c:d4:b6:55:ae:78:8d:2f:f3:33:84:c8:
                    fe:b2:36:73:9d:41:01:ca:30:bb:02:87:58:b4:09:
                    c7:9c:09:22:5d:f5:bb:ed:ae:ba:e0:17:f9:df:d3:
                    c0:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6
            X509v3 Authority Key Identifier:
                keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:42:06:41:b6:ef:c4:bb:f6:a3:ef:aa:96:40:35:28:ef:c7:
         9b:fa:4c:85:2e:bb:92:04:4e:85:2b:34:d3:cf:33:eb:c5:58:
         65:f9:58:31:9d:84:b6:3a:17:49:fd:0b:3c:3b:1d:27:0d:7a:
         c6:96:a1:3d:52:df:37:2a:6a:d8:17:87:fe:44:31:96:ea:ac:
         c7:f5:4d:6b:f8:78:5b:75:ec:53:55:a2:d8:f2:b7:78:f3:e2:
         08:cc:81:87:9b:46:ac:0f:dd:1f:b4:d0:3d:96:56:52:e6:8b:
         ed:f1:a0:1b:ed:4e:53:ca:b1:45:58:6e:28:3e:b9:00:7c:27:
         5a:04:cc:90:a1:6f:93:dd:3d:23:f2:4e:1c:47:21:f6:14:e1:
         0b:f3:ba:33:28:0e:e3:b2:af:ba:ea:31:1e:33:ea:7f:8d:a4:
         53:ce:ae:b4:f9:03:7d:95:9b:46:63:e1:d9:89:82:35:64:51:
         32:6b:d0:55:16:9f:c8:d2:4d:8e:59:ea:3f:4b:9c:1a:8b:ea:
         52:d3:07:41:8d:21:d1:b3:33:5d:b7:d8:5b:35:ad:bd:42:4a:
         24:7b:93:ad:52:19:7b:5a:82:55:95:68:91:23:42:18:c9:5b:
         bc:04:71:10:07:5d:d3:6b:cf:36:72:15:1a:65:e0:8c:2d:ae:
         29:e0:04:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:58:38 2025 by rpki-client