Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.mft
File: 21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.mft (raw, json)
Hash identifier: +bM0nTFYweXqS9YIgxmVvmqnhUtR4EnyZPT+dTwn+lI=
Subject key identifier: 3B:D9:F4:0D:B7:DB:8C:E7:CB:87:10:B7:C1:B1:02:6E:75:7D:D6:67
Authority key identifier: 21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3
Certificate issuer: /CN=21B62D60E1AB53803B229CCF83C179FD3FCFB5B3
Certificate serial: 0E214539F3028D24AC0CFB5C7B198C1291233834
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.mft
Manifest number: 05
Signing time: Mon 11 May 2026 17:57:19 +0000
Manifest this update: Mon 11 May 2026 17:52:19 +0000
Manifest next update: Tue 12 May 2026 20:38:19 +0000
Files and hashes: 1: 3130332e3131372e3133322e302f32332d3234203d3e2037353336.roa (hash: AS3qH/RjBUke7M3rlCKwKKx7OXc4/iKqzu9OBdcpsSg=)
2: 3130332e3131372e3133322e302f32332d3234203d3e203231383539.roa (hash: V7xrPLp5f+XdiNXnNwOKJbYVBx4iv5pqsU5W1y0I9ac=)
3: 3130332e3131372e3133322e302f32332d3234203d3e2039363737.roa (hash: L4VMPfmAF+ujWD/W3Q/uT3gBZ3GdNZkDF1QTrHGw11I=)
4: 3130332e3131372e3133322e302f32332d3234203d3e203133333335.roa (hash: yNF0rjdZhiThfjXcp9q9ny7hpelDoujpqo41tWTYbEo=)
5: 21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.crl (hash: NI/mLGblwFBouCLBtNOsTxC/1AC3I8LaS55BbJSiKCY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:21:45:39:f3:02:8d:24:ac:0c:fb:5c:7b:19:8c:12:91:23:38:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21B62D60E1AB53803B229CCF83C179FD3FCFB5B3
Validity
Not Before: May 11 17:52:19 2026 GMT
Not After : May 12 20:38:19 2026 GMT
Subject: CN=3BD9F40DB7DB8CE7CB8710B7C1B1026E757DD667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ae:ab:dd:a6:b6:dc:17:e4:f4:a6:2c:ca:5a:
ff:ee:52:14:60:f9:b0:a7:4e:fb:34:51:f9:09:02:
3f:f8:6c:24:c3:e1:9a:b9:d2:9c:d1:d5:17:ca:c8:
2b:44:28:fd:05:0b:7e:42:08:7f:e7:e6:4b:d2:ba:
a1:21:23:cf:1d:17:84:c0:e3:d6:d6:28:4c:94:62:
91:50:28:24:8f:7c:4c:62:25:f9:52:42:d1:e1:d5:
6e:75:eb:d1:4c:40:9c:5f:51:c9:5c:cb:d0:99:e5:
05:2d:bd:d8:e4:a2:66:7a:54:eb:59:f7:44:41:ce:
04:29:6f:cc:cf:f2:97:22:62:26:9a:a3:eb:6a:e1:
54:e9:bf:f7:39:6d:a7:d5:fc:a2:00:6f:f3:f9:d1:
65:69:87:ea:17:6e:42:03:ae:dd:b3:8d:e4:8f:49:
17:ed:90:2a:2f:75:c9:ed:fc:a4:be:f0:b1:76:4b:
5e:cf:18:dd:83:95:f9:50:2a:07:fb:92:3c:6b:02:
e8:9b:a8:5f:2e:a2:71:40:67:a7:e5:d7:0c:e2:a3:
d9:f5:6c:a7:66:c8:c5:58:d0:4a:fc:9c:07:be:ad:
81:1d:be:04:99:4a:c2:bd:71:50:4d:be:f0:dd:cf:
b4:a1:4b:8f:d4:cb:2a:d3:3e:48:04:6b:62:2b:54:
43:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D9:F4:0D:B7:DB:8C:E7:CB:87:10:B7:C1:B1:02:6E:75:7D:D6:67
X509v3 Authority Key Identifier:
keyid:21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:4b:70:dc:34:b8:0c:bd:7b:32:24:9d:7b:79:16:ec:a1:bb:
2f:91:6f:61:8a:ed:7c:44:3d:20:41:5a:f8:4d:2f:39:a3:73:
1c:83:bc:18:08:26:fa:de:48:f3:0e:ea:03:e6:05:10:1e:1e:
43:e5:fb:3e:c9:b0:75:dd:8a:35:1f:1b:4f:cf:4d:c2:48:bd:
a2:7b:3f:31:ee:c7:35:44:04:24:4c:2f:55:be:71:85:b8:4e:
99:a7:35:8e:69:5b:9a:3d:46:0d:5c:8d:9f:6d:85:f8:64:2a:
9d:b6:ee:5c:be:f6:c0:49:76:d0:72:42:20:cd:23:30:2b:5c:
39:81:85:bd:25:2b:b8:e8:62:c5:25:55:8e:27:be:39:c7:09:
c2:9a:a6:05:95:bf:09:51:67:56:ea:1a:79:97:f1:de:77:58:
d3:f3:1b:f9:d3:64:74:0d:ca:7c:a6:89:17:31:0d:2c:0d:40:
76:48:c3:41:66:a0:80:2a:3b:22:5b:f5:03:db:af:9c:61:98:
51:0d:f8:33:05:fe:d3:53:c5:00:d6:25:90:45:a2:fe:c9:57:
cb:9f:74:c6:d6:7f:04:6c:5a:0c:53:09:6c:83:d0:35:ad:2f:
5a:77:5b:22:90:33:bb:0e:89:30:01:14:a5:7b:83:6b:27:86:
9b:c6:2c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:13:37 2026 by rpki-client