Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/Rjqvnfn2VYxg5IFtoCSFYvaQBQc.mft
File: Rjqvnfn2VYxg5IFtoCSFYvaQBQc.mft (raw, json)
Hash identifier: aPtSKcIbdvmRTqgQLZ75YalEIxZyQGQeSN+VPIFsQUk=
Subject key identifier: 3E:91:C8:32:C1:A0:B7:FD:FA:E6:CC:51:A2:5A:5D:22:91:43:62:79
Authority key identifier: 46:3A:AF:9D:F9:F6:55:8C:60:E4:81:6D:A0:24:85:62:F6:90:05:07
Certificate issuer: /CN=463AAF9DF9F6558C60E4816DA0248562F6900507
Certificate serial: DD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Rjqvnfn2VYxg5IFtoCSFYvaQBQc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/Rjqvnfn2VYxg5IFtoCSFYvaQBQc.mft
Manifest number: DC
Signing time: Mon 02 Mar 2026 03:53:27 +0000
Manifest this update: Mon 02 Mar 2026 03:53:27 +0000
Manifest next update: Mon 02 Mar 2026 09:53:27 +0000
Files and hashes: 1: Rjqvnfn2VYxg5IFtoCSFYvaQBQc.crl (hash: xyPKFxkJCxCRK/5uRZ8EkZwmuhdwzAriFAVa9pDqAAM=)
2: rPdWtUsi2UAHVk-l8KJCbvrCOD8.roa (hash: oTS/FYxx55v1DjeUunKoD2Yztyue5p9rzC+R5qtA5ek=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221 (0xdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463AAF9DF9F6558C60E4816DA0248562F6900507
Validity
Not Before: Mar 2 03:53:27 2026 GMT
Not After : Jan 15 15:30:19 2027 GMT
Subject: CN=3E91C832C1A0B7FDFAE6CC51A25A5D2291436279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c9:f1:ec:9f:17:01:a4:cd:e1:b8:ac:d8:66:
c5:09:3d:cb:c0:5e:b7:22:ae:46:46:92:3e:18:90:
64:6f:48:f7:42:51:7f:d2:21:55:8f:63:f3:13:b6:
f1:0b:bd:ae:ec:4e:77:68:a3:6b:44:33:20:83:fc:
43:d6:3e:fb:f9:f0:d0:57:92:c3:b3:e4:da:d1:cd:
0a:21:31:fb:11:e3:31:1d:96:a9:6f:2c:8f:62:8b:
7e:78:6e:0d:f9:df:93:b8:84:17:43:c7:02:81:a2:
05:83:48:fd:69:12:76:0f:de:12:bb:54:c9:a3:ea:
2e:d7:31:de:24:e9:da:0a:b0:78:eb:55:09:37:de:
a7:c3:d5:f0:53:f8:07:46:d2:57:3f:26:70:14:ac:
e6:86:f5:6c:a0:fc:74:50:8d:2e:5e:20:b6:43:f5:
68:71:7c:0e:06:aa:66:b3:10:2a:f4:13:f1:7c:8f:
d8:9f:a6:88:71:d8:37:a3:8c:8a:dd:0e:46:eb:df:
29:92:77:75:24:a7:56:5d:47:fb:bd:3d:38:2b:33:
b6:3d:e2:38:a1:fe:cb:a1:d0:ee:2d:63:bd:3b:f1:
9e:1d:f4:8f:df:08:8a:4a:30:fa:67:6d:b6:38:6d:
ef:70:b4:9c:4d:8d:dd:29:8a:27:1c:33:e9:43:8a:
59:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:91:C8:32:C1:A0:B7:FD:FA:E6:CC:51:A2:5A:5D:22:91:43:62:79
X509v3 Authority Key Identifier:
keyid:46:3A:AF:9D:F9:F6:55:8C:60:E4:81:6D:A0:24:85:62:F6:90:05:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/Rjqvnfn2VYxg5IFtoCSFYvaQBQc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Rjqvnfn2VYxg5IFtoCSFYvaQBQc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KANRAYS/Rjqvnfn2VYxg5IFtoCSFYvaQBQc.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
52:ef:d5:4d:6d:a9:10:02:41:f5:6f:21:9d:08:c2:31:7a:ee:
ef:4e:28:69:4b:82:d1:0b:07:ac:83:ff:c6:b6:44:3b:11:c8:
7b:4e:6d:a3:42:38:ab:57:98:50:79:92:5d:23:18:7a:b0:b7:
82:3c:ab:bc:2f:31:c7:a3:36:bd:c1:95:c7:f0:51:69:9e:d6:
ca:6a:98:63:55:2f:76:6d:7b:9e:b5:f2:ec:30:13:f1:3f:c3:
88:f8:38:a1:81:1c:7b:22:bf:bf:cd:aa:cf:60:19:da:7a:4b:
6d:f6:c2:3a:73:90:1e:63:bb:96:f1:04:92:d5:8e:eb:7a:64:
4d:92:36:2e:19:c3:8f:c5:e9:f2:14:fc:ea:9c:6a:bf:1e:2a:
7e:a2:a8:8c:f7:cb:03:a7:32:88:5d:e1:27:13:ac:c6:95:e4:
cc:cb:b8:1a:8f:1e:99:4c:a5:de:2d:e2:ef:b6:7b:0c:99:f1:
37:d4:3e:12:bc:4c:c9:09:9a:50:9b:95:dc:a2:95:06:27:3f:
40:0d:06:94:86:aa:94:a7:b1:32:b6:8e:08:d3:28:40:f4:b6:
d9:80:f2:84:65:44:85:da:c5:87:aa:d6:b3:26:e5:16:c0:64:
ab:c0:2f:0f:f3:cc:14:69:49:66:84:ab:44:c9:5a:ad:09:b6:
16:da:72:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:06:43 2026 by rpki-client