Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft
File: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft (raw, json)
Hash identifier: vG0EIx5YO6ymbYVMXdv3/CotjdnUBOrVOjVflSZu1N8=
Subject key identifier: CA:9E:4F:1F:D7:21:18:3F:AB:7D:F8:DE:9F:6C:6C:E5:1D:0B:1E:2F
Authority key identifier: 43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8
Certificate issuer: /CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8
Certificate serial: 130C4AA5A1D1F4744AA500843C26DE8B81254B93
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft
Manifest number: 05
Signing time: Mon 11 May 2026 17:57:04 +0000
Manifest this update: Mon 11 May 2026 17:52:04 +0000
Manifest next update: Tue 12 May 2026 21:41:04 +0000
Files and hashes: 1: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl (hash: C9GSu2CPq6yi6uVEtUpRyXnotdHQLwWwwwpmnID8iN4=)
2: 3130332e3133382e3139342e302f32332d3234203d3e2037343833.roa (hash: zbX9ASNL5w9sJWWX7Nf2PDDJj816BJvv/iDAe1HP1Zg=)
3: 3231312e37392e39382e302f32332d3234203d3e203231383539.roa (hash: I1jX/SnnFc+gmcZStVqiSrnNdoqyaCZ0ExujTfgAaX0=)
4: 3231312e37392e39382e302f32332d3234203d3e20313530323838.roa (hash: hyBqf6CtEwkG2N35ylu9mRRCVoEzfqPS3BAfelnzHEQ=)
5: 3231312e37392e39382e302f32332d3234203d3e2037343833.roa (hash: CV931fhtw0I4Ug+ZdjJ2kNYqIh93pZBX4rG+jxT2d9s=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:0c:4a:a5:a1:d1:f4:74:4a:a5:00:84:3c:26:de:8b:81:25:4b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8
Validity
Not Before: May 11 17:52:04 2026 GMT
Not After : May 12 21:41:04 2026 GMT
Subject: CN=CA9E4F1FD721183FAB7DF8DE9F6C6CE51D0B1E2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:98:a6:03:19:cd:4e:fc:90:76:fa:47:fd:ec:
90:f6:a1:7f:f3:42:4c:88:e5:47:e9:4a:77:3e:97:
e2:75:84:f0:da:d5:3f:f0:d3:51:62:2c:25:48:5f:
0f:a0:1d:8a:4d:73:68:d6:40:17:16:75:68:a1:07:
d4:f4:81:3b:70:28:0a:9e:9b:c8:ef:c7:f1:a5:c9:
90:e9:8d:d3:03:83:2c:8b:b4:1a:f9:ba:e6:98:9b:
c3:99:c6:6b:5f:19:ea:94:f0:e3:25:47:77:d3:08:
8c:f6:c5:b3:78:ac:cd:3e:44:04:b2:67:c2:35:5a:
fd:ef:04:7e:c0:30:7d:44:28:e9:e8:27:d0:28:f3:
5a:50:ec:3b:cc:9c:a3:9f:01:e2:f9:52:b6:f6:38:
85:49:04:06:4d:30:5e:1f:24:f6:ea:74:ac:d4:e1:
7e:41:4f:f8:6a:5b:aa:27:b0:87:27:12:2c:00:e2:
2b:ea:7e:8c:78:41:fe:59:d1:3a:7b:7e:8f:1a:f2:
23:56:e1:ea:03:a8:ef:53:17:bf:88:79:75:9c:59:
71:90:1f:65:5a:cf:93:fd:2a:5e:f3:f9:e6:4a:0c:
30:54:93:e3:36:b2:5e:9a:54:48:57:d5:c0:65:e0:
c9:bb:c7:03:20:bf:cc:5c:3c:bb:26:af:3e:26:1c:
5e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9E:4F:1F:D7:21:18:3F:AB:7D:F8:DE:9F:6C:6C:E5:1D:0B:1E:2F
X509v3 Authority Key Identifier:
keyid:43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4e:6e:4c:25:ac:95:f7:c1:87:aa:b7:a4:b4:4e:ab:49:b3:
81:3a:a9:54:41:4b:a9:c2:f3:2c:e2:34:4f:01:55:f5:1d:20:
0a:4c:24:24:51:2f:e3:fd:c5:77:01:70:de:68:41:f6:d0:95:
c2:9f:1d:75:bf:8a:c9:71:98:e5:b0:71:ba:d6:48:b1:60:f7:
9d:18:68:4c:44:1e:18:dc:95:d1:a4:91:6b:6c:e2:af:f7:ec:
0e:0a:f4:97:8d:05:33:ef:3e:15:76:fc:6e:86:94:c7:13:22:
2b:74:42:94:7f:9d:f2:d7:a1:58:f1:f2:3b:4d:2f:53:1b:65:
b9:28:51:3a:c0:fd:e0:cd:3b:a1:e4:ad:e0:9c:4f:dc:48:0b:
ee:25:b6:82:ad:3f:76:6c:17:3d:b6:70:fa:eb:be:97:c9:fb:
97:0e:5d:6c:4b:ef:bb:ae:c7:48:c2:64:1e:a5:e8:61:39:08:
ac:23:8f:5b:fd:fd:9a:e6:d0:3f:72:ea:b7:cb:56:a8:61:9f:
20:4f:04:3e:76:29:23:55:43:e2:c3:2e:d6:d2:13:de:15:41:
56:7d:7b:d8:33:ac:ed:51:99:0d:42:25:46:24:16:72:64:87:
08:18:23:c1:2c:65:03:92:df:ae:28:98:f4:9b:18:22:f9:c4:
af:27:a5:73
-----BEGIN CERTIFICATE-----
MIIE5jCCA86gAwIBAgIUEwxKpaHR9HRKpQCEPCbei4ElS5MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThDNjJBRkM1
MzMzQTJBODAeFw0yNjA1MTExNzUyMDRaFw0yNjA1MTIyMTQxMDRaMDMxMTAvBgNV
BAMTKENBOUU0RjFGRDcyMTE4M0ZBQjdERjhERTlGNkM2Q0U1MUQwQjFFMkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVmKYDGc1O/JB2+kf97JD2oX/z
QkyI5UfpSnc+l+J1hPDa1T/w01FiLCVIXw+gHYpNc2jWQBcWdWihB9T0gTtwKAqe
m8jvx/GlyZDpjdMDgyyLtBr5uuaYm8OZxmtfGeqU8OMlR3fTCIz2xbN4rM0+RASy
Z8I1Wv3vBH7AMH1EKOnoJ9Ao81pQ7DvMnKOfAeL5Urb2OIVJBAZNMF4fJPbqdKzU
4X5BT/hqW6onsIcnEiwA4ivqfox4Qf5Z0Tp7fo8a8iNW4eoDqO9TF7+IeXWcWXGQ
H2Vaz5P9Kl7z+eZKDDBUk+M2sl6aVEhX1cBl4Mm7xwMgv8xcPLsmrz4mHF5nAgMB
AAGjggHwMIIB7DAdBgNVHQ4EFgQUyp5PH9chGD+rffjen2xs5R0LHi8wHwYDVR0j
BBgwFoAUQycW7gVM69xi/ALd6MYq/FMzoqgwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud
HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTk9SREFU
Vy8wLzQzMjcxNkVFMDU0Q0VCREM2MkZDMDJEREU4QzYyQUZDNTMzM0EyQTguY3Js
MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu
aWMudHcvcnBraS9UV05JQ0NBLzEvNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThD
NjJBRkM1MzMzQTJBOC5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy
c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05PUkRBVFcvMC80MzI3MTZFRTA1
NENFQkRDNjJGQzAyRERFOEM2MkFGQzUzMzNBMkE4Lm1mdDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcU5uTCWs
lffBh6q3pLROq0mzgTqpVEFLqcLzLOI0TwFV9R0gCkwkJFEv4/3FdwFw3mhB9tCV
wp8ddb+KyXGY5bBxutZIsWD3nRhoTEQeGNyV0aSRa2zir/fsDgr0l40FM+8+FXb8
boaUxxMiK3RClH+d8tehWPHyO00vUxtluShROsD94M07oeSt4JxP3EgL7iW2gq0/
dmwXPbZw+uu+l8n7lw5dbEvvu67HSMJkHqXoYTkIrCOPW/39mubQP3Lqt8tWqGGf
IE8EPnYpI1VD4sMu1tIT3hVBVn172DOs7VGZDUIlRiQWcmSHCBgjwSxlA5LfriiY
9JsYIvnEryelcw==
-----END CERTIFICATE-----
Generated at Wed May 13 01:40:47 2026 by rpki-client