Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/KTCFE/0/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.mft
File: 4703E44596DFB4A93F400A7B57126B31D5EC4CDA.mft (raw, json)
Hash identifier: c+ovy7BnNaWi3cYCbjbDlX3JjYY+bBfRplhQ5+f+e2k=
Subject key identifier: A1:D4:49:D4:5F:DD:28:C3:C9:79:6B:B9:2D:5B:F4:09:43:E8:DA:B3
Authority key identifier: 47:03:E4:45:96:DF:B4:A9:3F:40:0A:7B:57:12:6B:31:D5:EC:4C:DA
Certificate issuer: /CN=4703E44596DFB4A93F400A7B57126B31D5EC4CDA
Certificate serial: 724EF10AF82857EB5100457E8772118CFD3749D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/KTCFE/0/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.mft
Manifest number: 02
Signing time: Mon 11 May 2026 17:58:20 +0000
Manifest this update: Mon 11 May 2026 17:53:20 +0000
Manifest next update: Tue 12 May 2026 18:47:20 +0000
Files and hashes: 1: 3130332e35392e3232302e302f32332d3233203d3e20313331353935.roa (hash: ig0nyTBRvQZ8trj2POEoB3J8GO7jvHOYrg7pgT6kYDE=)
2: 4703E44596DFB4A93F400A7B57126B31D5EC4CDA.crl (hash: 5iKrsTiAqH/0umpdE/renB5Oe27hcv8GROV73RtbUw0=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:4e:f1:0a:f8:28:57:eb:51:00:45:7e:87:72:11:8c:fd:37:49:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4703E44596DFB4A93F400A7B57126B31D5EC4CDA
Validity
Not Before: May 11 17:53:20 2026 GMT
Not After : May 12 18:47:20 2026 GMT
Subject: CN=A1D449D45FDD28C3C9796BB92D5BF40943E8DAB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:27:47:56:f2:f3:d9:04:fe:a2:89:fe:2c:e2:
7a:8b:5e:41:74:e2:be:52:49:78:5f:50:3f:08:90:
3a:ec:a8:ce:78:ed:b3:6f:ff:2c:76:52:56:5e:e0:
40:57:04:d4:c2:1d:ce:1f:d7:60:59:a1:d7:5d:3d:
7e:9f:49:cf:84:56:6d:f2:ea:5e:9e:9d:c5:d5:3c:
16:51:14:19:91:9c:01:75:fd:ab:6a:52:c3:f1:85:
a5:06:3a:c6:bf:41:de:c6:24:79:bb:1d:9b:2a:03:
57:25:6b:eb:aa:84:c9:ac:df:2f:36:07:f1:54:30:
61:94:47:ed:7b:27:8d:ad:3d:18:d9:89:db:67:9c:
da:c9:40:23:d8:50:e4:5d:2b:ec:5a:df:da:0c:45:
77:25:d1:8c:d3:4f:6f:21:ad:62:db:64:e2:c7:71:
ad:6a:c6:5e:f8:3e:fc:75:37:7c:b0:0b:04:09:67:
ea:0f:37:be:f9:f4:50:46:e3:77:8e:c1:98:33:c2:
6e:a9:70:44:c9:a4:b2:dc:0f:ec:a5:e3:32:be:60:
6b:e1:d2:f3:03:41:72:85:e0:bf:16:e1:b4:3c:5e:
f6:17:fe:02:05:d8:73:bb:b7:d7:72:dd:59:5f:e9:
e3:11:00:d7:53:a2:2e:a6:d7:8d:d9:56:74:f6:c9:
ea:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D4:49:D4:5F:DD:28:C3:C9:79:6B:B9:2D:5B:F4:09:43:E8:DA:B3
X509v3 Authority Key Identifier:
keyid:47:03:E4:45:96:DF:B4:A9:3F:40:0A:7B:57:12:6B:31:D5:EC:4C:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/KTCFE/0/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KTCFE/0/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e4:e6:6d:11:8e:de:d6:89:41:51:4c:bc:99:07:28:ea:99:
7c:80:ca:44:1e:b1:15:b2:04:57:83:bb:09:5c:70:5a:6e:01:
d3:15:4c:d8:b0:cd:85:68:41:f8:ae:1f:3c:95:75:5a:8d:72:
59:33:28:27:8d:55:d5:be:08:61:61:c1:52:f8:9b:47:b3:c9:
c2:e4:92:dd:66:44:f3:2e:e0:0b:7f:28:e2:96:eb:12:4b:fc:
e9:86:d6:75:ca:2a:99:61:f7:14:2b:a8:cb:24:ef:0a:66:43:
d2:c5:21:21:76:f7:02:bb:94:09:49:93:ad:66:02:76:19:23:
80:3a:01:7b:4d:c3:9e:a8:24:b6:91:33:66:a6:ff:0f:dc:7a:
84:24:4e:49:95:9b:fb:7d:4e:49:9f:ba:be:1d:75:e5:ec:33:
53:ad:d0:4c:4c:28:c9:7a:7a:41:c9:d6:3f:78:c7:7a:2f:ba:
eb:47:40:45:9b:da:8e:ef:55:5a:49:fc:4b:08:1c:01:de:6f:
f4:4a:bf:40:ff:3c:30:89:d4:a0:47:39:a2:7a:cd:30:ca:ef:
76:1b:a0:b6:e5:73:11:c1:38:8f:6e:41:44:83:07:f4:e0:de:
0e:52:b8:e0:32:84:f2:2a:7c:e6:a3:53:79:3d:be:63:27:7b:
c3:2d:c9:ad
-----BEGIN CERTIFICATE-----
MIIE4jCCA8qgAwIBAgIUck7xCvgoV+tRAEV+h3IRjP03SdEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDcwM0U0NDU5NkRGQjRBOTNGNDAwQTdCNTcxMjZCMzFE
NUVDNENEQTAeFw0yNjA1MTExNzUzMjBaFw0yNjA1MTIxODQ3MjBaMDMxMTAvBgNV
BAMTKEExRDQ0OUQ0NUZERDI4QzNDOTc5NkJCOTJENUJGNDA5NDNFOERBQjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAJ0dW8vPZBP6iif4s4nqLXkF0
4r5SSXhfUD8IkDrsqM547bNv/yx2UlZe4EBXBNTCHc4f12BZodddPX6fSc+EVm3y
6l6encXVPBZRFBmRnAF1/atqUsPxhaUGOsa/Qd7GJHm7HZsqA1cla+uqhMms3y82
B/FUMGGUR+17J42tPRjZidtnnNrJQCPYUORdK+xa39oMRXcl0YzTT28hrWLbZOLH
ca1qxl74Pvx1N3ywCwQJZ+oPN7759FBG43eOwZgzwm6pcETJpLLcD+yl4zK+YGvh
0vMDQXKF4L8W4bQ8XvYX/gIF2HO7t9dy3Vlf6eMRANdToi6m143ZVnT2yeobAgMB
AAGjggHsMIIB6DAdBgNVHQ4EFgQUodRJ1F/dKMPJeWu5LVv0CUPo2rMwHwYDVR0j
BBgwFoAURwPkRZbftKk/QAp7VxJrMdXsTNowDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS1RDRkUv
MC80NzAzRTQ0NTk2REZCNEE5M0Y0MDBBN0I1NzEyNkIzMUQ1RUM0Q0RBLmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xLzQ3MDNFNDQ1OTZERkI0QTkzRjQwMEE3QjU3MTI2
QjMxRDVFQzRDREEuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9LVENGRS8wLzQ3MDNFNDQ1OTZERkI0
QTkzRjQwMEE3QjU3MTI2QjMxRDVFQzRDREEubWZ0MBgGA1UdIAEB/wQOMAwwCgYI
KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr
BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBf5OZtEY7e1olB
UUy8mQco6pl8gMpEHrEVsgRXg7sJXHBabgHTFUzYsM2FaEH4rh88lXVajXJZMygn
jVXVvghhYcFS+JtHs8nC5JLdZkTzLuALfyjilusSS/zphtZ1yiqZYfcUK6jLJO8K
ZkPSxSEhdvcCu5QJSZOtZgJ2GSOAOgF7TcOeqCS2kTNmpv8P3HqEJE5JlZv7fU5J
n7q+HXXl7DNTrdBMTCjJenpBydY/eMd6L7rrR0BFm9qO71VaSfxLCBwB3m/0Sr9A
/zwwidSgRzmies0wyu92G6C25XMRwTiPbkFEgwf04N4OUrjgMoTyKnzmo1N5Pb5j
J3vDLcmt
-----END CERTIFICATE-----
Generated at Tue May 12 23:10:35 2026 by rpki-client