Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft
File: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft (raw, json)
Hash identifier: I1I8R8sTSCi2ina0CHSbAISN7ljONyIvsnMMAaGEriQ=
Subject key identifier: E4:09:F4:1D:F3:F8:D7:2A:00:C4:4C:D3:16:75:CE:65:F9:B6:50:85
Authority key identifier: A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB
Certificate issuer: /CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB
Certificate serial: 4798E105ECE470BB807B0C476A7BC0BFB9753BA5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft
Manifest number: 02
Signing time: Mon 11 May 2026 17:31:55 +0000
Manifest this update: Mon 11 May 2026 17:26:55 +0000
Manifest next update: Tue 12 May 2026 20:19:55 +0000
Files and hashes: 1: 3130332e3131382e3134382e302f32332d3332203d3e20313331313439.roa (hash: 37E46pfPxEq9A4RxL1D37D3fAAtA0Gnx6vMhsNaTo4A=)
2: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl (hash: sVf0SBS14jmL+btb7Jeac17WCUNKKB5KXt80zPdZijQ=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:98:e1:05:ec:e4:70:bb:80:7b:0c:47:6a:7b:c0:bf:b9:75:3b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB
Validity
Not Before: May 11 17:26:55 2026 GMT
Not After : May 12 20:19:55 2026 GMT
Subject: CN=E409F41DF3F8D72A00C44CD31675CE65F9B65085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ed:c6:a8:05:6f:2e:1d:14:b5:90:fb:ab:42:
6e:78:94:bb:e5:df:f0:ce:51:ac:00:fa:3c:de:4e:
17:92:f8:23:56:0e:59:72:32:91:31:d8:ec:7e:8a:
59:2c:23:1f:42:09:c7:0b:34:53:bd:d0:c9:c8:7b:
da:8f:2f:a9:13:79:fd:7f:68:79:04:c3:e2:63:75:
f3:dd:b3:c0:29:26:b8:9e:d0:98:aa:79:73:d1:64:
fc:57:4b:25:3c:7e:c9:05:d1:b3:11:f0:25:30:d9:
1d:79:72:16:6d:e6:ca:6f:d1:17:c7:81:f4:6d:8f:
b2:fa:16:0a:91:e5:b8:e6:bc:62:d0:74:f3:45:93:
64:71:48:59:74:84:2c:c0:4c:47:30:e7:64:77:77:
de:bf:bf:a9:6e:5a:59:fd:9e:1c:14:dd:a1:2b:af:
8f:f4:e4:80:b5:aa:7b:6f:4c:41:cc:39:ca:22:7c:
51:b5:be:89:a2:17:47:c0:3d:54:9e:39:2a:e0:a0:
5a:cc:68:fb:fa:4a:e8:d1:0b:d5:f6:d5:d3:57:e7:
19:2a:29:ed:e6:ca:08:ea:55:35:86:02:23:47:a5:
3e:c9:f0:4d:bd:50:84:b7:a6:a0:a8:5b:23:08:b5:
af:84:eb:27:83:f4:f3:08:65:be:c2:43:4c:76:d4:
a0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:09:F4:1D:F3:F8:D7:2A:00:C4:4C:D3:16:75:CE:65:F9:B6:50:85
X509v3 Authority Key Identifier:
keyid:A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a3:1e:e6:ef:27:4c:7f:b8:a3:ed:6c:fe:e7:a2:a0:bf:f5:
a8:64:02:6b:1b:dc:0b:25:e8:bf:6e:83:b8:a5:f1:ee:b9:ce:
60:e8:d8:2f:05:06:24:5a:34:c9:0e:9f:b7:3e:dc:fa:ab:d5:
ad:6a:ee:c6:47:d0:cd:18:3e:64:87:dc:e3:f4:44:0d:a8:48:
42:91:e4:41:da:f3:b0:7b:47:76:13:f9:4d:d4:41:fd:04:bd:
83:5b:03:85:9f:5b:08:f1:9f:79:0c:91:6d:33:06:c0:91:e3:
47:6b:0d:b6:27:bb:40:d3:6e:32:44:7e:d4:4e:79:65:25:f4:
89:84:b4:ec:8b:e4:65:66:7d:97:e5:1c:d6:d0:41:66:9b:0c:
3f:b8:32:67:0a:62:fd:7f:a7:da:fe:88:65:14:69:1b:e6:d9:
ac:42:35:48:99:ba:21:99:c6:c2:e0:97:86:ce:5e:de:cf:67:
ad:0c:db:ce:77:6b:45:16:01:fd:d6:b1:59:07:a8:10:6c:13:
85:54:cd:67:31:bc:f7:bd:94:91:ce:f7:82:f8:75:3f:96:64:
0a:56:2a:cd:f7:d1:c9:3a:65:97:8e:a9:ec:32:7a:b2:59:0c:
37:48:aa:40:e9:1e:9c:3a:ec:8a:2b:71:8c:03:9a:b2:e1:fe:
74:ad:c6:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:46:12 2026 by rpki-client