Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft
File:                     41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft (raw, json)
Hash identifier:          kfz2y7UnmwS2udJVSzpq715ehaw1DT1fPYCa49dA4g8=
Subject key identifier:   60:90:9D:86:56:A9:63:00:C8:E0:E4:89:3D:66:F7:90:B9:CA:BA:84
Authority key identifier: 41:BE:B6:56:68:E1:64:9E:DE:97:28:E4:FF:48:59:1F:A0:C5:82:BA
Certificate issuer:       /CN=41BEB65668E1649EDE9728E4FF48591FA0C582BA
Certificate serial:       097E476DE1D07F5DB80ED308EF867318E0F65AB6
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/1/41BEB65668E1649EDE9728E4FF48591FA0C582BA.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft
Manifest number:          05
Signing time:             Mon 11 May 2026 17:58:21 +0000
Manifest this update:     Mon 11 May 2026 17:53:21 +0000
Manifest next update:     Tue 12 May 2026 18:51:21 +0000
Files and hashes:         1: 3130332e3137332e39342e302f32342d3234203d3e2039393230.roa (hash: LLLHTnX1lDVfIT/USPcy8uRSK7AEjVy8r3OHlXaKRtA=)
                          2: 41BEB65668E1649EDE9728E4FF48591FA0C582BA.crl (hash: IjFpIAZQ+oILMHi+42sNdUn0GOH8gANd2zJl7QML2U8=)
                          3: 3130332e3137332e39342e302f32332d3234203d3e20313532363134.roa (hash: DFwmEzDSWwn1n/LKb3VnZN0eid9zGs6vXBGXUYxrvVE=)
                          4: 3130332e3137332e39352e302f32342d3234203d3e2039393230.roa (hash: GRWZ7hnM+/dWxb1R4FqblAJoXVc3WKwBr5Lvm8NY3Iw=)
                          5: 323430373a653463303a3a2f34382d3438203d3e20313532363134.roa (hash: vgzFcwGEYe/SuHzv/bradPPbtlCxt1g9+kfxNVcgqL0=)
Validation:               Failed, CRL has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:7e:47:6d:e1:d0:7f:5d:b8:0e:d3:08:ef:86:73:18:e0:f6:5a:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=41BEB65668E1649EDE9728E4FF48591FA0C582BA
        Validity
            Not Before: May 11 17:53:21 2026 GMT
            Not After : May 12 18:51:21 2026 GMT
        Subject: CN=60909D8656A96300C8E0E4893D66F790B9CABA84
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:9c:4c:2a:20:23:57:34:46:a7:75:ff:26:c6:
                    d3:85:b0:34:2a:5f:65:94:5e:15:6d:aa:2e:e4:3f:
                    59:51:eb:fc:58:32:ac:8c:6a:36:49:3f:2d:50:16:
                    f6:14:8a:cd:93:55:51:07:6d:c4:39:4a:64:a8:f3:
                    c3:2e:3b:b2:cd:65:f8:48:c3:bf:2b:33:50:94:2e:
                    47:47:26:79:4a:50:59:52:f5:a2:90:30:2d:55:15:
                    01:5d:d5:36:7d:43:7e:d0:1e:1c:fc:4b:5f:84:16:
                    25:97:fa:71:e7:4e:cd:c7:eb:8b:a0:4c:e7:91:08:
                    65:f5:96:08:9a:c3:77:c5:93:48:25:46:3a:2a:3a:
                    1b:a5:dc:2b:56:fb:c1:97:47:99:7e:0a:4c:0f:35:
                    f5:c5:1c:c7:ac:d8:fa:5f:22:c9:ac:01:cf:65:09:
                    9f:2a:1a:17:ba:3f:a3:e4:c5:a7:58:e7:6a:ed:f4:
                    a8:bc:b4:32:84:97:d6:e1:cd:58:59:66:cc:40:da:
                    cd:52:0c:b0:08:e6:09:ac:1f:f2:6f:2c:9b:c5:2e:
                    bc:5e:7a:4e:b8:7a:54:28:48:c8:07:3c:3d:3a:97:
                    14:a8:f6:9a:dd:5e:18:be:b0:e2:f3:8f:a3:63:5d:
                    9f:3b:48:9c:67:af:c6:33:47:3e:e6:19:e6:f6:6c:
                    ad:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:90:9D:86:56:A9:63:00:C8:E0:E4:89:3D:66:F7:90:B9:CA:BA:84
            X509v3 Authority Key Identifier:
                keyid:41:BE:B6:56:68:E1:64:9E:DE:97:28:E4:FF:48:59:1F:A0:C5:82:BA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/41BEB65668E1649EDE9728E4FF48591FA0C582BA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:bc:31:2e:c2:bd:bf:95:2c:e1:68:41:e3:4d:e7:19:7c:30:
         04:81:ec:24:55:9a:67:a1:79:a7:95:45:31:09:4c:0c:f0:40:
         7a:60:ad:22:3a:e1:74:a6:99:44:fa:c0:8c:1c:db:28:00:c6:
         69:87:5b:16:b6:ef:c3:43:51:9b:d4:e4:f5:a8:40:23:23:03:
         d7:9c:0f:fd:1b:21:a4:45:f9:e2:c8:1e:6b:fc:ff:2f:f3:73:
         28:3d:3d:70:60:7a:90:d0:07:46:e4:d3:87:0b:5b:49:97:1d:
         ef:91:8f:d7:a2:20:e5:b5:fb:d3:77:87:d7:78:f1:cf:51:6f:
         9c:74:2e:6d:3c:64:8a:61:3a:ae:40:3c:d4:e8:8d:75:e6:ec:
         d4:ec:43:8d:ec:87:17:96:ba:ab:68:6c:89:f7:84:d6:09:82:
         20:cb:70:30:d0:7b:5f:24:3d:6c:29:1a:8d:82:4b:51:a7:eb:
         82:5a:bc:e9:af:40:00:b8:6e:7b:9c:00:c3:b1:7f:37:92:41:
         b0:29:47:72:ab:43:42:4c:39:15:04:98:79:88:eb:d5:ea:a9:
         86:63:06:7f:f5:f9:cf:2c:92:68:f5:0a:58:1b:b3:ba:9c:e3:
         24:71:c2:d2:b5:ef:d1:1e:bb:97:98:a3:66:d8:89:b1:28:29:
         37:df:ca:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----