Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft
File: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft (raw, json)
Hash identifier: cpMv7nflI9pGnWcisYmZaQRjA/lyukhvtmZQJ2Jhmn4=
Subject key identifier: 7D:59:8C:2E:E8:40:29:74:BE:16:37:EC:5D:9F:8C:4A:3D:02:06:5D
Authority key identifier: 4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5
Certificate issuer: /CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5
Certificate serial: 6EA65C020DC6BE09065006B1DC62C174359336E4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft
Manifest number: 02
Signing time: Mon 11 May 2026 17:32:12 +0000
Manifest this update: Mon 11 May 2026 17:27:12 +0000
Manifest next update: Tue 12 May 2026 17:53:12 +0000
Files and hashes: 1: 3130332e362e3132362e302f32332d3332203d3e20313331313439.roa (hash: lHrkC3JHZwSMosCVLrge69PjEFVk3qgvY9qe4jsf15s=)
2: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl (hash: hAxlCj2jqf/qWu7poQ4diHRZ2wdfYq3u+YRlBAjk1aA=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:a6:5c:02:0d:c6:be:09:06:50:06:b1:dc:62:c1:74:35:93:36:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5
Validity
Not Before: May 11 17:27:12 2026 GMT
Not After : May 12 17:53:12 2026 GMT
Subject: CN=7D598C2EE8402974BE1637EC5D9F8C4A3D02065D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:df:23:e2:c4:42:fd:59:7e:85:61:01:d3:
8e:33:0e:fc:6c:19:f0:95:0b:b6:a9:34:00:bc:36:
2f:d7:84:96:b3:89:01:4d:2a:d1:a3:7e:84:4f:4e:
b3:f5:76:f3:59:d7:67:1b:b8:46:40:e5:e5:1c:fd:
9e:fc:57:28:cf:43:14:17:ca:2c:05:19:61:fc:9c:
9d:aa:fa:0d:f0:51:eb:55:f4:7d:32:00:1f:bb:5e:
34:a7:7c:90:f0:a4:c8:8f:ac:34:a5:2d:5a:49:2a:
5c:79:ea:3a:ad:7e:2f:e4:75:ec:cc:22:70:42:1a:
ec:dc:66:bf:6f:ce:70:f1:c8:6a:67:4a:89:80:f1:
df:e6:92:1b:44:27:fb:b8:ca:c0:5e:e2:fa:26:88:
a4:84:22:55:86:9c:1f:29:ba:36:4f:3e:b7:90:d4:
a8:93:2e:12:08:b9:80:42:6b:32:4c:2b:df:a5:dc:
05:7a:8b:e9:54:4d:b1:63:77:32:15:71:41:09:74:
c0:ae:60:39:e9:e4:fe:92:83:3d:16:bd:f4:8c:4f:
05:0d:4e:8c:03:9c:a7:7d:5b:95:cf:50:e5:a9:f9:
71:f0:f7:f9:00:f1:78:0c:5b:e5:c3:52:10:90:ce:
9b:0f:e3:41:f0:12:53:df:d9:a3:81:5e:cc:7f:93:
43:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:59:8C:2E:E8:40:29:74:BE:16:37:EC:5D:9F:8C:4A:3D:02:06:5D
X509v3 Authority Key Identifier:
keyid:4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:fb:de:ce:80:41:81:49:dd:c1:5e:7d:e6:7a:67:81:fb:0d:
a6:00:a8:3d:fe:f2:08:65:91:cf:57:db:30:df:89:06:a6:e1:
53:81:ac:78:65:c0:71:44:c7:1d:91:55:b6:28:71:89:7b:48:
1f:a6:eb:4c:dd:2b:18:11:2d:0c:8a:c4:c1:fb:bb:6b:79:e0:
41:8f:25:6e:cf:d4:18:6d:fe:db:31:17:17:13:be:e3:80:bc:
be:37:88:e4:96:8a:06:77:63:4d:27:83:11:1d:cc:c9:9e:87:
f7:39:d7:d8:88:7a:11:da:ec:29:7f:79:54:d2:52:89:d2:6c:
60:e6:c5:b7:3f:6b:b3:4f:c1:73:b5:5f:2b:e7:9e:c6:ac:18:
04:10:d5:45:a7:c7:b0:f4:44:09:0c:4e:27:b4:9a:9b:1e:5d:
77:19:80:e6:f0:da:8e:44:6e:94:81:e5:69:17:a0:37:1c:56:
06:7a:13:9a:f4:6a:4c:31:2e:ee:b0:9b:f0:8f:de:80:46:d9:
d0:14:23:7e:0e:98:dc:47:71:69:3b:67:2c:7c:9b:a7:24:be:
89:6d:36:9c:93:6d:68:7d:f1:d7:98:ed:54:4e:35:5e:28:d1:
c7:c3:13:63:b3:d6:6c:bf:f8:d4:b8:16:db:0f:10:6b:8d:69:
1b:63:1a:7f
-----BEGIN CERTIFICATE-----
MIIE6jCCA9KgAwIBAgIUbqZcAg3GvgkGUAax3GLBdDWTNuQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3
NzM2NDNENTAeFw0yNjA1MTExNzI3MTJaFw0yNjA1MTIxNzUzMTJaMDMxMTAvBgNV
BAMTKDdENTk4QzJFRTg0MDI5NzRCRTE2MzdFQzVEOUY4QzRBM0QwMjA2NUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0/t8j4sRC/Vl+hWEB044zDvxs
GfCVC7apNAC8Ni/XhJaziQFNKtGjfoRPTrP1dvNZ12cbuEZA5eUc/Z78VyjPQxQX
yiwFGWH8nJ2q+g3wUetV9H0yAB+7XjSnfJDwpMiPrDSlLVpJKlx56jqtfi/kdezM
InBCGuzcZr9vznDxyGpnSomA8d/mkhtEJ/u4ysBe4vomiKSEIlWGnB8pujZPPreQ
1KiTLhIIuYBCazJMK9+l3AV6i+lUTbFjdzIVcUEJdMCuYDnp5P6Sgz0WvfSMTwUN
TowDnKd9W5XPUOWp+XHw9/kA8XgMW+XDUhCQzpsP40HwElPf2aOBXsx/k0ONAgMB
AAGjggH0MIIB8DAdBgNVHQ4EFgQUfVmMLuhAKXS+FjfsXZ+MSj0CBl0wHwYDVR0j
BBgwFoAUT7RZXYaX/Rq30hbeB566WXc2Q9UwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud
HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJB
U0lTLzAvNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5j
cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvMS80RkI0NTk1RDg2OTdGRDFBQjdEMjE2REUw
NzlFQkE1OTc3MzY0M0Q1LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG
VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJBU0lTLzAvNEZCNDU5
NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5tZnQwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA
AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBABX7
3s6AQYFJ3cFefeZ6Z4H7DaYAqD3+8ghlkc9X2zDfiQam4VOBrHhlwHFExx2RVbYo
cYl7SB+m60zdKxgRLQyKxMH7u2t54EGPJW7P1Bht/tsxFxcTvuOAvL43iOSWigZ3
Y00ngxEdzMmeh/c519iIehHa7Cl/eVTSUonSbGDmxbc/a7NPwXO1XyvnnsasGAQQ
1UWnx7D0RAkMTie0mpseXXcZgObw2o5EbpSB5WkXoDccVgZ6E5r0akwxLu6wm/CP
3oBG2dAUI34OmNxHcWk7Zyx8m6ckvoltNpyTbWh98deY7VRONV4o0cfDE2Oz1my/
+NS4FtsPEGuNaRtjGn8=
-----END CERTIFICATE-----
Generated at Tue May 12 23:55:04 2026 by rpki-client