Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft
File: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft (raw, json)
Hash identifier: 0hzSB5H4rv5jWXllRpAYIPZYfhmRhlWPMJxuPITooIg=
Subject key identifier: 7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD
Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95
Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595
Certificate serial: 0229
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft
Manifest number: 0211
Signing time: Mon 05 May 2025 21:52:34 +0000
Manifest this update: Mon 05 May 2025 21:52:34 +0000
Manifest next update: Wed 07 May 2025 21:52:34 +0000
Files and hashes: 1: 0Rck18Sn5SS8SfyvJLkkZlZ1ASA.roa (hash: BFUUdTK/ExzNrZ0gWJD6fh1807QOfq333o+RUVRfbtk=)
2: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl (hash: UntzkqjDms2OZTGR8dY/zRsr7wu5m4a4VLT+8f2vS58=)
3: c4LoAVmfNvmmHmA5v26pvti8j0Y.roa (hash: F3QCsAdSCr76uq3OirACN7UfXUUV4dvPsA+GMj9iouk=)
4: wpX6wsavNL7YONNZwWtAT8-rF-o.roa (hash: 1TUgAazdDTIvfIn9ZyxuxyOSZgD0MUQEFLj1S7+g9QY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 553 (0x229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595
Validity
Not Before: May 5 21:52:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7E05F3B79DC4FB26D97F93AE0ED83AD0C6ED6FCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:04:6f:7d:4c:d5:ab:35:eb:5c:6f:b2:6e:ae:
99:99:39:ad:76:b7:c8:aa:5d:e1:0f:0c:11:e4:da:
45:9d:db:f9:d3:c3:fc:05:21:d6:74:52:57:93:44:
54:30:37:b8:63:62:90:b4:15:88:82:ae:9d:4c:12:
52:09:66:7d:56:4e:bc:eb:78:85:b9:12:59:32:27:
65:08:14:0b:2a:95:69:59:e3:5a:e7:c3:8b:40:b9:
59:53:af:24:ca:2f:4f:2a:93:ae:1f:4e:89:70:57:
bc:e1:99:90:9c:e4:7a:e5:a4:1b:37:28:bb:43:1d:
e4:5c:e2:7f:3b:dc:65:cd:79:cb:44:c0:64:59:43:
88:bb:94:25:91:c6:5e:29:45:40:cd:11:d8:39:56:
f7:a8:fd:f0:94:9d:0c:3c:1f:f8:70:29:4b:57:80:
4a:76:5f:63:fc:8f:66:e2:4a:72:e7:20:0c:8d:d0:
dd:b5:23:9e:f4:04:1a:cd:6a:2c:73:d7:6f:70:b8:
1c:0d:8b:0b:60:d0:f5:bd:c5:7e:6b:1e:48:ce:c7:
ff:76:66:83:8d:9b:3c:a2:ca:dc:64:cd:97:52:1f:
ba:f0:90:27:33:c6:4c:bd:5c:97:90:8e:83:94:a6:
6e:6e:30:6d:ef:df:e2:e7:5f:ef:16:fb:85:98:18:
03:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD
X509v3 Authority Key Identifier:
keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
28:07:dc:ba:de:4c:e9:b5:c8:24:33:95:d3:7a:ce:bc:00:0a:
84:4b:9f:1c:d2:7b:c2:12:86:52:b1:66:d2:67:da:8a:c4:d8:
76:dd:23:06:cc:bb:ea:b8:9f:07:70:44:3b:ed:c9:d8:a1:ef:
4e:09:cf:c0:d4:f9:e1:7a:ef:27:55:f9:14:0c:f6:ac:dd:77:
dd:be:9a:a7:a0:dc:f2:22:1c:31:3b:92:2d:4f:e0:10:90:7a:
bd:89:de:bb:44:88:2b:e6:3d:f5:d1:00:54:a2:e4:46:f7:e1:
6b:24:f8:96:75:52:59:d1:fb:3f:cd:a6:8a:f3:a1:de:11:c1:
d9:e3:71:b1:14:72:c7:bd:36:c9:3b:60:7d:6e:00:a0:34:26:
74:83:cb:4a:25:7e:25:49:dd:92:39:a7:50:4d:bf:32:aa:fb:
a1:5a:32:43:26:90:25:16:8f:86:ee:df:a6:1a:24:27:6b:40:
79:3f:fe:4f:9a:a6:e4:ac:42:ee:54:c4:aa:38:a8:ba:73:e2:
a2:bc:55:d4:15:5a:77:2c:5c:34:15:c6:b5:ef:a7:b8:a1:3d:
5c:76:35:e2:f3:75:82:74:f4:6b:69:12:68:d3:20:63:f6:54:
5f:dd:cd:4f:41:4b:ce:83:91:dd:f5:ef:25:aa:f7:19:33:da:
82:0e:d3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 03:07:45 2025 by rpki-client