Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft
File:                     u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft (raw, json)
Hash identifier:          vbet6NtONs0rAf9BamFBzJ2/qR4L5lwjD1D9qvON6zw=
Subject key identifier:   5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08
Authority key identifier: BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7
Certificate issuer:       /CN=BBF8E5352240971787806A3E53A8904859A9F0E7
Certificate serial:       018C
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft
Manifest number:          018A
Signing time:             Tue 12 Aug 2025 22:12:04 +0000
Manifest this update:     Tue 12 Aug 2025 22:12:04 +0000
Manifest next update:     Thu 14 Aug 2025 22:12:04 +0000
Files and hashes:         1: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl (hash: EPBmE/Y/0Jkx5LQjNfbVkdLD0Sd6/uhuiqyCWkPq5B0=)
                          2: w_KewT6KWsZuHTgvBMYnYFPhchY.roa (hash: vA7vcHpZZT9NqWFZlSoCmScIUZDx16ZMpEGvj2tJDZ0=)
Validation:               OK
Signature path:           rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 14 Aug 2025 00:11:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 396 (0x18c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BBF8E5352240971787806A3E53A8904859A9F0E7
        Validity
            Not Before: Aug 12 22:12:04 2025 GMT
            Not After : Jan  9 15:30:20 2026 GMT
        Subject: CN=5F2EA8F6BC2A32CE1819AD42C2E60E2DB6EDB008
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:0c:a3:25:d5:73:fe:23:56:af:9f:31:3d:98:
                    9c:39:b9:09:f9:35:63:31:52:3d:49:d4:d4:a8:e8:
                    4e:93:97:6f:59:a1:fc:73:d5:e2:fd:e7:17:f0:da:
                    95:a1:9c:24:cf:bb:13:2b:9e:52:3e:52:31:25:ea:
                    ce:28:a9:b3:20:9f:63:91:81:ae:e4:db:31:6a:ee:
                    83:db:1a:c0:08:c9:83:bd:78:f2:cc:9f:c1:98:57:
                    bc:64:9e:43:11:9b:4b:48:bf:f8:41:7e:af:15:b3:
                    18:c4:be:35:21:e7:68:9e:9d:ee:3c:6d:d5:3e:1d:
                    2e:ae:7a:48:9a:8d:b3:be:d6:05:9d:86:e2:83:48:
                    a6:e8:56:c6:04:6f:2f:25:9c:17:a1:f6:50:9a:29:
                    7c:35:13:d2:ad:b3:37:7d:e9:80:63:11:e4:fd:b0:
                    76:6a:3c:2e:9a:ba:d1:78:b0:7a:20:5f:83:37:64:
                    5b:51:de:28:73:e2:9d:2b:ae:56:9b:7f:89:a1:5a:
                    6d:05:ec:69:f7:01:eb:8d:b0:9a:37:ff:63:38:8e:
                    8b:e7:a8:8a:16:0f:84:c5:85:59:b6:a0:c6:94:c5:
                    41:5e:39:d6:26:28:ea:63:90:f9:4b:7b:f2:6b:f6:
                    81:9b:bf:f0:a7:c7:d2:3b:4e:6d:a6:9a:1c:11:93:
                    f1:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08
            X509v3 Authority Key Identifier:
                keyid:BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:10:de:cf:c0:2e:81:cc:2b:b7:62:cf:90:ba:37:9e:76:c1:
         99:8a:16:1a:83:43:3b:96:42:e3:56:c6:0c:5b:61:5b:06:61:
         ef:d6:8f:22:a1:dd:7c:bd:3e:bb:60:5a:6e:25:b2:d9:f7:71:
         01:58:dd:f3:99:90:7b:06:31:aa:3e:b4:15:68:38:67:00:7f:
         41:b8:bf:22:8b:95:0b:2a:75:59:37:92:46:d2:da:fc:08:d0:
         05:d6:21:f4:56:02:51:23:bf:59:36:b9:33:c6:a8:3b:56:18:
         51:66:93:f1:7c:06:03:20:49:6f:06:6f:df:a3:2d:77:e6:fe:
         17:19:6f:6d:ae:77:40:7c:e4:b6:81:16:96:c7:c8:82:12:cd:
         de:ae:a4:35:45:0e:5b:74:01:2f:93:15:69:a1:5e:62:9a:fd:
         65:01:d9:d9:85:4d:8d:95:56:db:9d:39:87:0a:17:25:a8:80:
         53:58:7d:b7:38:e4:e3:01:81:25:4a:65:22:48:b9:30:7b:b2:
         d2:cd:d3:5a:ec:ae:67:db:e1:a0:97:91:e1:36:37:5b:aa:55:
         93:ce:30:25:71:44:03:27:d4:4a:af:6b:4c:73:d6:2a:6c:a3:
         bb:24:08:ec:a9:7e:e0:44:07:83:c8:4d:66:41:e4:4b:73:68:
         1d:7d:e1:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 22:08:54 2025 by rpki-client