Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft
File: OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft (raw, json)
Hash identifier: 4j775qSTQqczdsCGoUdfl+tIbMp/PA4dgIVEep0vYfA=
Subject key identifier: 47:3B:B5:F3:F7:69:A0:EA:0C:96:E3:67:3D:14:3F:8C:37:D9:68:D0
Authority key identifier: 38:BF:B3:0C:72:CA:95:48:F7:96:CC:3D:4F:B6:00:6B:88:3E:27:01
Certificate issuer: /CN=38BFB30C72CA9548F796CC3D4FB6006B883E2701
Certificate serial: 0363
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft
Manifest number: 0360
Signing time: Fri 17 Apr 2026 06:32:37 +0000
Manifest this update: Fri 17 Apr 2026 06:32:37 +0000
Manifest next update: Fri 17 Apr 2026 12:32:37 +0000
Files and hashes: 1: EGKl5CYR7Wo7MTVry6m0RiGIszQ.roa (hash: N1oxQKaruPhZdubEt3F+SP4Er0o2oeS8aWzvn/bDc9s=)
2: OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl (hash: UnGDI9698szvkzwIkQU15y2DwgP98j+p32HF6Fo0SHw=)
3: SLabTJZUnd9dxEvzHYFFrWea9UU.roa (hash: c8h/LrBIXQYnRPMFpRWKge88DSjxLRkfZbFW0lzmsog=)
4: y0It2rSVIUtpZCaFm-g0FOIFWKE.roa (hash: hT1m3KE7RGg7+zcFGlXdugL1MYYVOxzwx6SEZ/67da0=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 867 (0x363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38BFB30C72CA9548F796CC3D4FB6006B883E2701
Validity
Not Before: Apr 17 06:32:37 2026 GMT
Not After : Oct 30 15:30:19 2026 GMT
Subject: CN=473BB5F3F769A0EA0C96E3673D143F8C37D968D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:80:14:a1:8c:fc:46:61:77:08:c2:73:d3:3f:
9e:39:53:fe:5a:dc:d5:ca:28:e9:9a:e1:46:63:da:
4d:43:d7:dc:6c:66:f1:7c:c5:4b:b5:e8:3c:a8:49:
66:3f:8e:13:9c:dd:99:dd:8e:ca:00:74:c4:03:91:
ba:6a:66:19:6e:8b:42:93:77:b5:08:d6:0c:bc:73:
a8:21:02:98:ed:1b:9a:db:3a:3f:66:cb:a5:2c:9d:
46:ce:a2:9d:0c:38:e3:a2:2c:80:91:e0:92:9a:5e:
b6:39:08:08:aa:a9:b4:ca:bf:88:01:e8:65:42:95:
df:cb:e3:94:02:23:d9:eb:0f:f8:96:b7:29:4a:58:
94:ba:18:86:77:30:4d:31:d6:90:49:d6:e3:d7:3b:
bb:1f:68:84:3b:69:9c:fe:ea:36:59:0f:f0:02:6c:
33:1f:9c:97:f5:16:18:fb:90:12:e6:05:4d:31:6c:
41:1b:7f:35:4f:75:e5:b9:29:97:c5:ea:1f:65:12:
4b:31:39:a6:6d:b2:4e:9a:ed:34:7e:d2:06:2d:df:
79:a7:d8:ee:97:d2:46:3d:38:f8:a8:a9:bf:f1:b2:
5b:2a:71:48:b2:82:01:4b:69:0e:1b:49:b2:22:53:
dd:7a:ec:83:63:26:1e:ea:c9:86:5c:6f:96:47:41:
24:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3B:B5:F3:F7:69:A0:EA:0C:96:E3:67:3D:14:3F:8C:37:D9:68:D0
X509v3 Authority Key Identifier:
keyid:38:BF:B3:0C:72:CA:95:48:F7:96:CC:3D:4F:B6:00:6B:88:3E:27:01
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
67:56:fb:3f:fa:1b:1a:3e:80:da:d7:c0:59:95:e6:58:17:7f:
f1:e0:4e:11:0c:f3:98:85:d2:cd:58:02:28:79:b1:3e:57:e4:
a7:b6:c7:96:84:d9:c6:bd:db:41:78:39:d5:38:5c:48:83:e8:
b8:fb:88:9e:72:83:20:44:f2:e3:4e:f2:38:ea:92:78:89:f0:
0a:c8:f9:54:03:3c:9c:6b:a6:0c:c0:59:35:0e:eb:92:a6:fa:
2a:50:2a:30:60:71:fc:90:ad:18:30:d6:f3:3b:ec:2f:c1:35:
ea:8c:26:90:8f:61:30:1f:7c:ef:4f:1c:13:2e:1c:b0:64:08:
8c:bb:35:68:41:7c:b4:45:03:83:4d:26:11:f0:9e:a8:08:69:
6c:4b:75:20:af:b7:60:f4:46:08:85:bb:ff:1a:54:0e:f4:4e:
06:44:e4:f8:3e:aa:97:ca:ef:e5:51:4a:ec:3f:a7:e8:57:ba:
91:a6:7c:b7:7a:e7:fc:cd:6f:70:f1:6a:42:fb:c3:b3:41:75:
f0:cc:ac:2f:76:2d:b1:1a:8a:d5:74:97:0f:63:f4:eb:22:75:
2d:68:54:04:e8:bb:bb:f9:82:59:c4:5b:eb:c7:fa:9d:c8:73:
98:dd:15:b2:e8:40:f6:e5:5e:9a:ee:34:94:df:23:e7:73:08:
62:48:1f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:36:07 2026 by rpki-client