Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft
File: cJhPAIyij2R120JjU7_RxDPYvBo.mft (raw, json)
Hash identifier: GvYkXY+f8njA0p2yPOiiPDNS3CJ4eNyimhF6l3PLUWU=
Subject key identifier: E9:C6:02:C2:C3:AB:88:79:C8:2F:5A:CD:6A:4B:0E:AC:A0:20:AA:66
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0DB6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft
Manifest number: 0D78
Signing time: Sat 23 Aug 2025 21:16:14 +0000
Manifest this update: Sat 23 Aug 2025 21:16:14 +0000
Manifest next update: Mon 25 Aug 2025 21:16:14 +0000
Files and hashes: 1: 0OPgjIQxyYaAlziY8aBRSapHceA.roa (hash: m1++edt1JXnMWpOMnABjJ0QBv2fTrt4qLr2hnc9qIIM=)
2: 3i9iKBeZv8ngHVcHxCYns2T8TMs.roa (hash: O/Cnu+z4Iybw2FTRPIx0OBJoOUBN2JkbXTyJM9r/J7g=)
3: 413N6uhzZCahA0siz5yQ-lFMQaI.roa (hash: W4rMqGma4dGUP809W+VjFoukSTcghTiqNG/pwkjsqiw=)
4: ASdLkizlDzFMaIeqeFgUMGL5pA4.roa (hash: PrABBi3He4t0rtANEcMbtGvbtrGQYrsKauzwVYValiY=)
5: GRDhvttAK_nsVjb0wuOu792ljFM.roa (hash: yfrSa/AGfxcAyohh3uwnQcUrSWrXFyv3IhKlKO3WdwA=)
6: I-3wj0xS0sz4_kUuqGYbyUZPGuA.roa (hash: dbmAAFrpg6OQk55wqHeW93p1GMEP6F5tP1+OSiBqt6w=)
7: cJhPAIyij2R120JjU7_RxDPYvBo.crl (hash: cX9q/8KbDK9xaCu4y9Ht8aMsKz1q8GspHJFSiVTAtIk=)
8: db9yaVJSl1lOYeTn0PZiAYCGsWY.roa (hash: 5CWWsS3UmcTyC4bIwmHjQ8YVzavwuAT5O5zIdHnbrxw=)
9: f0LS-dXXQKjkcRZLMVuP9g3OkH4.roa (hash: TDDsd1oMj9nc0RE/KQmB03zOUIPZDBv4q9CB0VBHIOI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3510 (0xdb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Aug 23 21:16:14 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=E9C602C2C3AB8879C82F5ACD6A4B0EACA020AA66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:96:4a:e6:25:b3:c9:a8:72:89:ad:c7:e8:56:
3c:86:b4:8d:a9:ce:31:78:73:63:8c:c0:5a:40:91:
71:02:e9:57:06:67:78:de:2b:fe:e2:fb:d5:0e:8e:
b2:a0:ec:68:64:cf:ac:dc:7e:4c:d7:de:9a:e5:e9:
f2:cb:23:50:2e:01:3b:53:2e:83:33:ef:99:70:f9:
b6:64:e8:67:bc:04:c8:e3:c2:19:57:1a:f0:c6:44:
1f:e7:18:6f:e3:cc:e9:57:c0:8a:a6:d4:ca:46:ef:
89:49:09:3e:0c:77:de:08:05:16:58:6a:7d:df:cf:
47:b1:df:75:97:7c:2f:16:a2:e2:bc:9b:dc:07:8a:
40:f6:83:a0:47:ce:ac:6b:d8:26:8a:b2:77:19:6c:
9d:3e:4e:af:14:ae:9f:73:ec:d3:66:9c:e2:7c:29:
d5:18:b0:f8:d5:c0:25:11:0d:37:ef:44:0f:3e:c1:
e1:77:56:47:fa:79:3c:bd:82:c7:a8:72:e4:46:e1:
16:02:f0:03:98:ea:d5:46:a3:2b:85:d0:36:21:e6:
ab:c0:58:c3:35:b6:4f:76:ee:76:bf:89:34:b0:f8:
6a:ac:73:98:89:85:1c:a8:e2:bd:42:29:fa:a5:ac:
98:95:fa:aa:ae:22:25:1b:31:cd:b9:75:f1:b0:a0:
1a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C6:02:C2:C3:AB:88:79:C8:2F:5A:CD:6A:4B:0E:AC:A0:20:AA:66
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0c:6c:0b:05:f5:e3:ab:6c:29:86:c3:aa:ad:4d:4f:3e:53:b5:
d6:39:8e:92:2b:e5:71:22:54:ed:b3:b0:d5:d9:30:cd:5a:ee:
f3:88:70:67:96:40:62:9a:ba:7b:4f:50:b6:51:94:28:26:5e:
16:66:3e:ec:93:78:da:70:41:20:d9:0a:31:31:41:73:db:4c:
f0:a9:70:5f:bf:7b:4d:68:04:92:5d:a3:a3:c8:24:4c:ba:26:
8a:71:37:00:5d:10:99:c7:df:ee:76:7c:bc:0e:15:8f:d1:9c:
40:e0:18:fc:8c:15:86:4b:f2:fe:be:c7:6d:ab:f7:45:26:3f:
45:2c:24:76:e8:66:48:f6:ab:8d:35:43:b9:07:30:72:36:30:
aa:19:a4:0c:59:6c:50:49:f8:a5:ab:eb:f9:d6:47:de:6c:7d:
db:1a:95:79:bc:2d:ba:37:66:ae:35:8d:33:ee:f3:5b:19:c9:
77:98:9c:1b:b5:7f:52:e5:a4:fb:58:2b:be:45:51:fa:16:9b:
32:e2:80:c4:dd:e3:d6:5a:8a:af:3f:48:7a:d6:5c:3e:23:8a:
aa:1b:8f:19:90:c7:d1:40:e4:71:f5:fe:e7:37:91:8f:61:d4:
23:f8:f9:b6:19:47:03:64:50:d2:36:a9:fa:17:a4:10:62:09:
68:cd:57:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:43:03 2025 by rpki-client