Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft
File: 2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft (raw, json)
Hash identifier: hwRkDVMhu18DuBD6R5VHeHlw27l+N67PNtCLHgbOXDM=
Subject key identifier: 10:18:12:6B:53:B1:BA:50:16:CE:56:C1:D7:62:6C:00:33:C9:55:7A
Authority key identifier: 2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22
Certificate issuer: /CN=2D58FB0AD6CB4CFDF7364791D1435AD48C675D22
Certificate serial: 24FFE1C26DA9B83D972E229D42984770A9CEA451
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft
Manifest number: 03
Signing time: Mon 11 May 2026 17:37:28 +0000
Manifest this update: Mon 11 May 2026 17:32:28 +0000
Manifest next update: Tue 12 May 2026 19:53:28 +0000
Files and hashes: 1: 2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl (hash: bcbPiatHwr4Ti+yTFWM/txbd0cn33kS1szT17s5hif4=)
2: 3130332e3134302e3233332e302f32342d3234203d3e203332323432.roa (hash: dWqlZ57qGRFx6N79EQLtYosKEY+TDhYs9JMAewBJPsQ=)
3: 3130332e3134302e3233322e302f32342d3234203d3e203332323432.roa (hash: q7dF1jX4ROfIjFDlO5sVW9hRX9k2oXkr8fjwFlVtFmE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:ff:e1:c2:6d:a9:b8:3d:97:2e:22:9d:42:98:47:70:a9:ce:a4:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D58FB0AD6CB4CFDF7364791D1435AD48C675D22
Validity
Not Before: May 11 17:32:28 2026 GMT
Not After : May 12 19:53:28 2026 GMT
Subject: CN=1018126B53B1BA5016CE56C1D7626C0033C9557A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:03:2e:ac:1e:6f:c1:61:28:83:49:29:8d:d6:
7c:6c:95:1e:3c:92:a5:0c:e6:c3:4f:15:c0:e3:67:
87:57:4b:a4:a3:de:04:69:d2:05:f8:f0:f9:47:70:
f1:ae:c5:fd:78:49:18:55:09:23:f8:56:36:1e:99:
88:b1:33:6f:67:f6:78:92:08:ab:d4:af:6c:21:fe:
4a:3a:98:16:dd:15:32:e6:27:af:1a:67:b4:9b:72:
21:fe:d8:07:0e:17:0a:7a:3d:f9:e3:ef:9e:88:48:
37:46:b0:f3:9c:b4:28:b2:92:3e:e8:29:fc:52:2a:
d4:08:72:1d:48:06:df:cf:7b:be:2a:d7:46:c0:c4:
00:52:b5:f4:6e:7b:db:fc:dc:0c:37:b4:5d:93:8a:
bc:5f:99:e9:e3:bc:23:a7:d4:18:4f:c0:b9:9a:8f:
dd:ac:f8:f6:7f:8d:f9:f7:24:d1:94:c7:f2:c3:28:
c1:3f:3b:74:65:5e:11:5f:47:e4:3b:6f:5c:d2:d7:
3f:bc:6b:43:0a:96:ec:5f:6d:08:e3:dd:8c:41:a2:
7a:3c:b4:dd:c3:3f:e8:82:57:cb:0a:64:e7:d3:69:
13:a7:7d:ad:55:eb:12:51:12:7a:68:d3:db:91:be:
ea:17:50:e2:3b:50:c1:62:2f:c8:7c:ae:cd:7c:af:
e5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:18:12:6B:53:B1:BA:50:16:CE:56:C1:D7:62:6C:00:33:C9:55:7A
X509v3 Authority Key Identifier:
keyid:2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:b8:9d:5a:e1:06:49:18:73:4b:c1:32:2f:5b:b9:04:df:02:
e4:27:81:67:f8:68:2b:08:ce:ab:1d:01:ba:93:f0:d0:ee:5c:
aa:22:8f:dc:ef:6a:a6:cd:48:30:ac:1b:72:21:17:51:6b:63:
8a:6d:b1:4c:7a:06:5e:0f:73:89:d0:15:ef:4d:07:ed:74:64:
22:57:4e:7e:6f:27:a7:12:99:34:5d:9c:59:1c:47:7b:4c:bb:
f7:41:39:c2:9d:ac:10:b7:49:4f:6b:34:d7:42:f3:05:37:c5:
16:45:99:c2:60:c3:f1:22:35:08:07:07:ec:3a:41:41:bb:e7:
5d:86:bb:34:e3:11:af:a3:b1:7b:e1:da:3f:ce:60:b5:a1:60:
d4:00:15:a3:56:01:f1:e6:35:9d:c9:4d:b8:34:23:29:20:15:
f1:12:0b:f8:46:7f:34:0a:e6:6e:ff:5b:3f:d8:c9:62:d5:b2:
f7:13:d3:4a:07:dd:dc:d5:9f:c8:fc:68:0b:4b:49:8d:55:47:
af:01:61:55:d2:dd:5c:91:a0:48:38:92:08:6f:dd:96:cd:8a:
f6:60:e3:49:5a:81:dd:7a:ca:31:a9:4b:a9:97:ce:81:35:ec:
01:f6:6d:93:d8:ea:38:c6:14:9b:9a:dc:96:6d:13:0e:78:d4:
9b:52:ed:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:13:48 2026 by rpki-client