Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft
File: wo9XMk52a8Xp-pnE161MQNOVj8Y.mft (raw, json)
Hash identifier: S2iVqHVkoX/Hz+BhuWVpIZuADIVPCHvr+8BEIw3nToE=
Subject key identifier: DA:D3:44:CD:0E:9A:53:7B:02:43:E5:50:CC:80:DA:FC:E8:70:11:19
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0DD4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft
Manifest number: 0D9F
Signing time: Mon 02 Mar 2026 10:24:06 +0000
Manifest this update: Mon 02 Mar 2026 10:24:06 +0000
Manifest next update: Wed 04 Mar 2026 10:24:06 +0000
Files and hashes: 1: 0I_EK12y05qQKc6gXdEO_Vh5_u0.roa (hash: qiD5FegzUvboYAm0zGyj5aWWHyraonD3e6CpVVD8G4c=)
2: D74v__A_3T--3vmJYIJ5RI2UMYc.roa (hash: aJwOlL4IH5jqfcLW3YBYHCAtZDUF2aY4X0U0ljhyCR4=)
3: GtanH2pbo7Zosh_oaZeL8Dy8PHo.roa (hash: KZNVWpKdL6u5VGo0vOnoQN2sYayMKnwo3OaHdq3Evgk=)
4: NwLdPXb7O2jdLea5-uucfn3xtlM.roa (hash: nyiTnh0Hs5Q4JqZc9fdFlAInCK/uXvS0qANIfW2m1yM=)
5: Z4b3y92hso2msh8Kr0eUIxiMNaE.roa (hash: Ko731AzhCAa9SNebREyRSdRoFV2NRetTIzIiuP4OcbQ=)
6: _LlHPaoCeUCA8aVSzo9wqaaJa74.roa (hash: Skhq/b9XxVAF4D6Duy1KdHyp4qh+J0gqtGUvVrAQLCs=)
7: wo9XMk52a8Xp-pnE161MQNOVj8Y.crl (hash: niExU8gMsRcWxPOGxgd83l6cCz6Sm8dCBGuzkrLTkH0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3540 (0xdd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Mar 2 10:24:06 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=DAD344CD0E9A537B0243E550CC80DAFCE8701119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2f:b8:8c:42:40:5c:32:ed:11:5c:66:61:a7:
10:aa:d5:88:6d:76:41:89:8a:b9:42:da:f0:00:41:
e1:18:37:76:24:95:d4:88:a5:70:c4:82:80:ba:40:
6b:cf:1a:6d:c0:49:7f:fd:6b:53:56:86:bd:26:0a:
4e:3a:af:9e:ca:dc:3e:b3:20:15:ac:60:00:93:bf:
b9:14:63:97:57:ea:cf:7f:3e:4b:f9:8c:10:c0:ed:
4b:7e:19:05:1a:98:83:8f:10:de:84:6f:3e:0a:84:
51:ef:11:d1:5d:d8:8b:4e:4e:2d:50:89:2c:35:b6:
24:95:06:64:21:f4:e4:19:e3:22:4a:0e:a4:b3:46:
b4:e3:7d:69:4f:db:7c:88:fe:b4:a4:dd:01:a5:1d:
73:cc:ee:37:a2:d6:46:35:6d:23:7b:b8:6c:6c:19:
18:c0:f6:da:4b:e2:9a:56:01:61:26:11:5a:19:5c:
3c:1c:d0:ae:b6:d7:b9:3f:11:86:22:f3:51:d8:65:
74:5d:a5:2b:a0:f7:4a:51:37:d8:74:13:fb:cb:e3:
46:d0:3e:8b:3b:56:1e:b3:d8:05:b7:eb:67:42:09:
45:9e:55:f0:3d:54:37:6a:17:d6:36:dc:84:7f:74:
f4:43:5d:4f:c2:af:0b:37:63:1b:af:3f:2c:0d:8a:
c3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D3:44:CD:0E:9A:53:7B:02:43:E5:50:CC:80:DA:FC:E8:70:11:19
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4a:03:b0:39:61:ae:a1:74:ab:40:c9:e8:75:a6:f6:7d:cc:1a:
37:72:2f:a5:5b:a1:5b:ab:df:9c:ec:70:ba:5e:dd:4e:12:0a:
95:8a:a5:24:44:d8:c1:02:93:5a:3f:dd:ba:3e:dc:e7:59:81:
20:9b:2b:91:31:52:e8:8a:18:73:1a:5e:cb:06:2f:0b:b7:5a:
44:c7:0b:6a:ee:88:9e:f4:3c:35:f2:c9:d2:f5:80:1b:70:d8:
9f:d5:fe:77:09:6e:86:69:98:a7:e1:e6:74:f0:e7:d6:ba:17:
bc:ec:57:d9:86:61:66:22:ef:25:c1:8f:9d:90:64:55:de:78:
30:bb:df:09:98:d0:89:53:41:15:c8:f9:a6:50:7b:8a:11:34:
23:d8:50:97:4a:1f:31:a4:f5:e9:a5:84:c0:be:60:2f:c8:0a:
79:69:c2:52:a7:1f:62:38:b7:45:c2:90:cb:b5:b7:6c:3f:34:
fc:44:a6:e2:e9:86:44:e2:62:f9:3e:11:8c:04:d1:d4:0a:5d:
de:b7:53:63:83:55:3d:8f:ee:ab:0e:96:49:6e:de:9b:92:c6:
81:fd:58:1c:6c:e2:eb:37:e8:ed:3e:40:f6:60:ff:1b:00:68:
f8:fa:67:5b:34:22:6d:bc:a5:c2:ff:97:e7:cb:d1:77:0e:bc:
ac:10:79:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:34:38 2026 by rpki-client