Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft
File: 3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft (raw, json)
Hash identifier: R1Nsp9PrC044ILs2+ifoNGA94/mClydkPuOi7CGxPLU=
Subject key identifier: F8:9E:72:69:04:F4:FE:C8:71:96:AB:C5:68:BA:BB:C8:78:CF:56:FC
Authority key identifier: 3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA
Certificate issuer: /CN=3E0AB786AB86C4D25A7BE864DDD140760CC02EEA
Certificate serial: 71912E0A0A1CA0DEA3CF386BED7B53371FA42F19
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft
Manifest number: 02
Signing time: Mon 11 May 2026 17:04:26 +0000
Manifest this update: Mon 11 May 2026 16:59:26 +0000
Manifest next update: Tue 12 May 2026 17:23:26 +0000
Files and hashes: 1: 3130332e3130302e3136342e302f32322d3232203d3e20313331363131.roa (hash: LqxzSENA6MQT2gEkGTBGcnDvqFZoJ6iXojpLB0vT1ng=)
2: 3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl (hash: wjNuXQep6udLMcGpCYMtfcMajalUGI6QWKBmTFEYWm0=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:91:2e:0a:0a:1c:a0:de:a3:cf:38:6b:ed:7b:53:37:1f:a4:2f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E0AB786AB86C4D25A7BE864DDD140760CC02EEA
Validity
Not Before: May 11 16:59:26 2026 GMT
Not After : May 12 17:23:26 2026 GMT
Subject: CN=F89E726904F4FEC87196ABC568BABBC878CF56FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:85:c0:cc:a3:63:ba:1e:5e:20:24:7e:c3:ea:
6a:4c:6d:3a:37:d3:53:9d:89:d4:38:c0:17:c6:d6:
bb:fd:f4:3e:e7:72:a2:12:02:f0:b4:4c:6c:8a:8a:
af:d1:0f:ac:a4:61:c4:c8:db:73:f0:43:62:14:32:
60:b6:3d:f5:78:e7:69:88:dd:f4:63:99:72:8a:b7:
b4:3b:f7:f6:1c:9d:2f:77:54:e7:0c:41:85:96:ae:
09:48:f7:a8:88:ab:a9:74:af:c5:f5:f6:92:cf:a7:
46:f0:a3:86:fc:c8:a9:a1:06:04:f0:8a:a7:9f:16:
a9:0f:91:55:f3:3d:e2:a5:03:6d:df:b7:ed:7c:5f:
7d:b0:e0:6a:39:8e:db:3e:e3:b0:b5:90:c5:7e:11:
7e:02:44:e8:69:f5:be:bd:c6:78:ca:20:d6:55:64:
92:44:cf:2a:3d:e7:f8:b3:91:8d:dc:e8:27:86:71:
32:e2:92:63:28:b5:74:6a:78:7b:4e:2f:29:bd:89:
db:98:df:58:65:0a:67:a8:c9:bd:2a:d3:3a:14:7e:
6e:3a:f9:a6:65:2a:6d:48:33:7d:9e:96:d8:d4:dc:
9a:8c:ec:5b:58:b5:b2:ff:af:2b:1a:d2:a4:84:c1:
a6:e0:72:4a:21:2f:ae:03:b0:90:5f:5a:e9:d0:88:
3b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9E:72:69:04:F4:FE:C8:71:96:AB:C5:68:BA:BB:C8:78:CF:56:FC
X509v3 Authority Key Identifier:
keyid:3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:4b:c4:ca:81:fb:3f:21:64:77:1c:76:37:06:e9:8e:1b:b4:
5f:e9:ff:ca:84:33:8c:a8:52:ff:58:b9:f3:22:b6:a0:b0:9f:
24:cf:4e:dc:94:88:a7:8b:2d:53:83:de:5b:69:02:67:2b:32:
30:99:d7:da:e8:94:31:fb:75:aa:6f:a2:02:38:32:25:2e:ae:
09:a7:f4:c4:8a:0a:7a:10:1b:d0:09:66:78:2f:78:3b:55:33:
cb:df:bd:12:df:b7:85:5e:61:df:6e:26:3e:bc:b2:a0:f1:77:
a2:54:32:65:a4:2f:c0:c1:d8:52:d8:1a:0f:bd:f3:f9:f0:bb:
dd:d5:a3:07:dd:ac:65:24:20:00:51:69:e9:49:31:d4:32:bb:
df:d5:06:c5:48:4d:d3:8e:22:29:8d:9c:8d:39:dd:25:f3:0b:
b2:19:10:60:61:37:04:ab:a8:f2:f2:85:f0:1b:99:05:eb:b6:
37:6b:80:82:6a:7a:6c:a8:4e:df:4d:7d:ea:f7:5a:ec:76:c6:
37:0d:ef:0e:3d:15:93:83:87:58:6c:56:23:78:b8:9b:be:06:
f9:bc:29:d1:94:38:23:a8:aa:1a:41:90:d6:49:45:53:0b:82:
65:56:8f:5e:30:0a:e2:e6:36:12:9d:72:18:e1:33:c2:18:ad:
2d:dd:2c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:13:49 2026 by rpki-client