Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft
File: 59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft (raw, json)
Hash identifier: oPMgcSViZELmnsaVSzG5dLBVEo/gk6Ikg444NKu6Xhw=
Subject key identifier: 66:58:57:ED:83:B9:21:75:6B:8E:60:BC:D7:A6:C1:A3:8F:A5:B0:10
Authority key identifier: 59:D9:8E:8C:BB:AB:DC:DF:7B:22:2D:A5:00:F5:CD:E6:3F:F2:DA:0C
Certificate issuer: /CN=59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C
Certificate serial: 40B0193D243DC6769D22C511753712088353B158
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft
Manifest number: 03
Signing time: Mon 11 May 2026 17:57:21 +0000
Manifest this update: Mon 11 May 2026 17:52:21 +0000
Manifest next update: Tue 12 May 2026 18:02:21 +0000
Files and hashes: 1: 3134342e37392e36362e302f32332d3234203d3e203138303433.roa (hash: I/nH3WfH4w3frC/mXwjMQ3leEpW2mw7DOz5WWS1+97M=)
2: 59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.crl (hash: uziS90kL2QN5R6ilr3d3zg1Yb9Ts3K0GbyMq+HCmCYI=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:b0:19:3d:24:3d:c6:76:9d:22:c5:11:75:37:12:08:83:53:b1:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C
Validity
Not Before: May 11 17:52:21 2026 GMT
Not After : May 12 18:02:21 2026 GMT
Subject: CN=665857ED83B921756B8E60BCD7A6C1A38FA5B010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:80:cc:ed:33:08:08:61:5c:5d:ad:1e:8d:cb:
9b:06:74:be:e8:b4:18:98:eb:8d:3e:a3:a8:dc:b6:
3a:0a:40:ab:a6:e1:f4:5d:4a:21:d9:c3:98:58:32:
2d:a9:7e:64:99:86:eb:e1:cd:52:ff:09:bd:d5:c2:
75:6b:07:49:64:5f:c3:bb:cb:9a:08:f7:f0:6e:ca:
aa:ba:57:a5:34:88:15:b3:38:58:1f:9e:34:54:e3:
4c:4d:7e:5f:9a:2e:93:01:3e:9d:49:c5:26:fd:7c:
24:18:7c:84:6d:00:76:17:4b:10:c6:10:7f:75:39:
c4:25:d5:50:39:89:1a:5c:a0:e1:9f:46:e3:be:44:
a6:11:79:f9:aa:1b:45:69:9b:bb:5c:e6:5e:73:91:
28:fa:c2:35:b2:fd:9f:21:f5:86:dc:69:cb:b4:e3:
f7:39:52:c2:e0:34:7d:57:cd:c1:82:29:31:2d:25:
00:26:3b:33:ed:0e:2d:b8:3b:4e:27:55:7b:af:f6:
c6:ff:6e:1d:8a:8f:6e:e0:3b:95:d3:69:1d:81:5c:
af:2c:31:26:52:59:b2:28:0c:83:fb:1d:6a:9d:7f:
de:e8:73:12:0a:f9:58:93:97:f9:99:be:b8:f4:6a:
a1:58:a0:5b:f0:69:49:12:58:1f:93:68:71:07:c5:
aa:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:58:57:ED:83:B9:21:75:6B:8E:60:BC:D7:A6:C1:A3:8F:A5:B0:10
X509v3 Authority Key Identifier:
keyid:59:D9:8E:8C:BB:AB:DC:DF:7B:22:2D:A5:00:F5:CD:E6:3F:F2:DA:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:99:6f:57:3e:95:a0:bd:51:39:46:25:a0:3e:45:92:12:59:
ba:29:f7:db:db:5c:70:d2:5c:5c:e4:a5:15:90:e6:1d:81:d6:
6f:a1:25:26:4b:8d:67:99:d5:18:56:c2:ba:56:85:f8:cf:2a:
2d:5e:72:ff:e0:4f:47:f6:31:7c:86:4c:8d:6b:a7:5f:60:40:
bf:ce:2f:bd:49:94:19:b9:f3:f7:7a:d5:18:f4:27:1e:1e:4f:
93:09:40:7d:78:78:70:67:3f:9e:e7:2f:8f:a0:dc:82:36:c5:
92:c1:e5:bc:8e:24:da:53:7d:5a:14:75:42:61:7a:23:18:6d:
03:5b:1b:87:e5:ef:4a:e8:af:84:84:aa:08:4b:8b:35:28:a8:
fb:5c:54:b3:84:e5:05:32:fc:93:9b:01:e9:c9:38:70:2b:5d:
63:43:b1:3a:0c:38:ed:15:1a:79:f0:e0:f5:27:ab:c0:66:79:
1f:54:af:b1:25:87:ba:e7:38:28:99:0f:72:75:62:26:1d:5d:
86:cb:3e:7a:8b:aa:f3:a7:26:9a:55:8e:9f:5c:2c:20:fa:ca:
53:7b:42:6e:48:65:7b:12:ea:00:90:24:21:1b:18:fa:5c:a0:
38:af:27:a5:8d:53:3b:e8:5b:47:a5:3b:99:b7:84:26:af:1b:
c4:86:5d:0b
-----BEGIN CERTIFICATE-----
MIIE6jCCA9KgAwIBAgIUQLAZPSQ9xnadIsURdTcSCINTsVgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTlEOThFOENCQkFCRENERjdCMjIyREE1MDBGNUNERTYz
RkYyREEwQzAeFw0yNjA1MTExNzUyMjFaFw0yNjA1MTIxODAyMjFaMDMxMTAvBgNV
BAMTKDY2NTg1N0VEODNCOTIxNzU2QjhFNjBCQ0Q3QTZDMUEzOEZBNUIwMTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHgMztMwgIYVxdrR6Ny5sGdL7o
tBiY640+o6jctjoKQKum4fRdSiHZw5hYMi2pfmSZhuvhzVL/Cb3VwnVrB0lkX8O7
y5oI9/Buyqq6V6U0iBWzOFgfnjRU40xNfl+aLpMBPp1JxSb9fCQYfIRtAHYXSxDG
EH91OcQl1VA5iRpcoOGfRuO+RKYRefmqG0Vpm7tc5l5zkSj6wjWy/Z8h9Ybcacu0
4/c5UsLgNH1XzcGCKTEtJQAmOzPtDi24O04nVXuv9sb/bh2Kj27gO5XTaR2BXK8s
MSZSWbIoDIP7HWqdf97ocxIK+ViTl/mZvrj0aqFYoFvwaUkSWB+TaHEHxao1AgMB
AAGjggH0MIIB8DAdBgNVHQ4EFgQUZlhX7YO5IXVrjmC816bBo4+lsBAwHwYDVR0j
BBgwFoAUWdmOjLur3N97Ii2lAPXN5j/y2gwwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud
HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSENDR19I
Q0VCLzEvNTlEOThFOENCQkFCRENERjdCMjIyREE1MDBGNUNERTYzRkYyREEwQy5j
cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvMC81OUQ5OEU4Q0JCQUJEQ0RGN0IyMjJEQTUw
MEY1Q0RFNjNGRjJEQTBDLmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG
VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSENDR19IQ0VCLzEvNTlEOThF
OENCQkFCRENERjdCMjIyREE1MDBGNUNERTYzRkYyREEwQy5tZnQwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA
AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAACZ
b1c+laC9UTlGJaA+RZISWbop99vbXHDSXFzkpRWQ5h2B1m+hJSZLjWeZ1RhWwrpW
hfjPKi1ecv/gT0f2MXyGTI1rp19gQL/OL71JlBm58/d61Rj0Jx4eT5MJQH14eHBn
P57nL4+g3II2xZLB5byOJNpTfVoUdUJheiMYbQNbG4fl70ror4SEqghLizUoqPtc
VLOE5QUy/JObAenJOHArXWNDsToMOO0VGnnw4PUnq8BmeR9Ur7Elh7rnOCiZD3J1
YiYdXYbLPnqLqvOnJppVjp9cLCD6ylN7Qm5IZXsS6gCQJCEbGPpcoDivJ6WNUzvo
W0elO5m3hCavG8SGXQs=
-----END CERTIFICATE-----
Generated at Tue May 12 22:52:28 2026 by rpki-client