Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft
File: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft (raw, json)
Hash identifier: KQ1jSVPlRcA+mjm/4FC4PNDHiLsa7qRAdHXU1NDbZh0=
Subject key identifier: D4:78:A3:3B:1B:57:4F:3A:ED:45:3D:85:CD:FA:99:EF:0C:48:DF:FC
Authority key identifier: BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0
Certificate issuer: /CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0
Certificate serial: 51D6A3D5374330F6D01AF7103060707A9195746E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft
Manifest number: 07
Signing time: Mon 11 May 2026 17:56:59 +0000
Manifest this update: Mon 11 May 2026 17:51:59 +0000
Manifest next update: Tue 12 May 2026 21:05:59 +0000
Files and hashes: 1: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl (hash: +WsraUL/kzoW6Jgqz21CsQ5nk8OJOoz03o02NULhH68=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:d6:a3:d5:37:43:30:f6:d0:1a:f7:10:30:60:70:7a:91:95:74:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0
Validity
Not Before: May 11 17:51:59 2026 GMT
Not After : May 12 21:05:59 2026 GMT
Subject: CN=D478A33B1B574F3AED453D85CDFA99EF0C48DFFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:8c:cd:f4:d7:8d:96:4a:6d:a8:a0:e7:9b:
60:d0:5f:f2:99:99:a9:3b:00:e9:58:4b:b2:0e:1b:
f5:dc:a0:cb:01:51:4f:e1:e6:23:e0:47:3e:41:b8:
da:0d:a4:c2:c3:c5:f4:65:49:b4:9e:76:78:97:53:
66:9a:11:b9:a0:54:9d:fe:8c:07:5c:51:7d:27:59:
9a:61:11:4c:e8:a3:30:84:cb:e9:51:5c:7d:f5:fd:
cc:c0:25:58:f6:bb:6d:97:e4:93:e4:11:59:1d:0c:
6d:26:97:b0:64:25:6a:3e:d6:22:60:a1:b4:e1:4b:
f8:8c:1e:e4:94:c1:fa:e1:6a:81:ca:5a:ee:65:dd:
69:3c:9e:18:c7:19:3d:0f:21:c6:03:90:f4:5a:a6:
7a:33:1e:74:c9:86:ca:72:10:52:e8:26:76:77:91:
c7:32:3b:50:fc:ee:db:a5:e5:3c:35:05:ba:d6:22:
9b:d0:4d:2a:4b:bd:01:c3:f1:01:ac:c6:6a:4c:81:
a7:da:de:c5:8a:da:3c:34:a6:71:6c:9e:74:fb:ab:
65:06:3e:d7:be:ca:7d:23:8a:5a:3e:9e:b8:94:f8:
e7:b1:4d:a3:cd:30:76:4c:4b:6f:63:91:ca:2b:27:
0b:1a:3f:62:91:62:16:aa:56:27:52:bf:87:2e:26:
88:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:78:A3:3B:1B:57:4F:3A:ED:45:3D:85:CD:FA:99:EF:0C:48:DF:FC
X509v3 Authority Key Identifier:
keyid:BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:c1:20:c9:e8:b4:52:83:c8:a5:32:8d:3d:85:10:fa:30:e7:
86:3e:c2:22:4c:86:15:37:74:ed:1d:16:a9:80:50:44:3f:dd:
62:19:9a:3f:ca:60:65:97:4b:c6:d8:61:0c:51:3d:47:05:ab:
a0:a5:17:e5:af:35:9b:bd:a2:9f:ea:1b:c5:58:4c:d3:70:11:
d4:ff:65:0c:2d:e0:e0:ed:df:88:f7:d8:c7:6a:f5:25:5c:7f:
e2:82:db:ae:c0:83:69:d8:c4:4c:a8:e7:c2:4d:e7:92:8a:af:
83:b3:fb:d3:0a:76:c4:64:7c:7a:8b:a7:da:13:82:2d:92:b8:
d1:e2:bb:12:f3:55:d5:c7:93:29:60:9d:49:53:01:70:d3:f8:
2b:cc:2d:4f:59:22:db:ca:96:07:6b:b6:55:a1:23:79:0b:9b:
a4:03:59:89:17:1e:0e:61:9b:0a:c1:37:05:4d:ac:14:67:8e:
b6:74:e5:17:2d:1f:24:9c:50:bc:2b:8b:7b:c5:4c:28:c8:e3:
28:7b:ff:bc:7f:39:72:0f:36:96:33:ee:df:7e:eb:c8:73:ad:
a6:d2:44:37:c3:48:dd:58:d1:b8:47:68:fe:fe:f5:0d:79:82:
43:f6:f8:07:2d:91:d9:8b:9f:88:a0:11:e1:39:fc:27:3f:81:
f8:82:46:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:13:45 2026 by rpki-client