Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft
File: O-iWz_LAFpeEhFDat_IaHhSk8IY.mft (raw, json)
Hash identifier: /YvEXpd8ePnIIF33jIQywci4PVvvvwlF1iTpH9MQbQA=
Subject key identifier: E0:A5:01:66:7A:13:08:4F:F4:32:4A:30:C4:7F:0A:37:60:F8:74:83
Authority key identifier: 3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86
Certificate issuer: /CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086
Certificate serial: 8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft
Manifest number: 85
Signing time: Thu 26 Mar 2026 17:58:17 +0000
Manifest this update: Thu 26 Mar 2026 17:58:17 +0000
Manifest next update: Thu 26 Mar 2026 23:58:17 +0000
Files and hashes: 1: 09d502GqBlO6UFO__wIHIFyjhgI.roa (hash: zyr7C8qbHHFmR/n5OUbqGTyrJATI+n7mgzriRst5agE=)
2: GceKaS9g56vHe4-DWtVp9VFNRbs.roa (hash: IADfD7dKHx58hJaUGz9Tj2JOjhdoDF2pk5p9WgPp2FA=)
3: Mm5QnjlCbD6JSnEDpdQND2hWSmU.roa (hash: eniA0BdI4FyR8WrUJnDAn0O8u1X4txhXxkKq+zHyiqc=)
4: NQU0pAKssuJOBCwSQVQOoXK4O5w.roa (hash: NwabWRN2eLMl2+XcmwshBr7FOAgGwc4On1Tomt6cJwc=)
5: O-iWz_LAFpeEhFDat_IaHhSk8IY.crl (hash: JD/nKptE8dkgNd9TbGOSh7v8yi9nx4d3X04SxHn6pLU=)
6: Ra0L6udvSwDXP1V7qelnfXRirI4.roa (hash: w5I0taoY/8Sfi8/8DgzCehHrZJwECkB2rlozlasrkj0=)
7: rUYs0iTQAKoyh6qLZ6k7FH3bDbQ.roa (hash: gE3yOxnBAx9u7VyCzB06YIxi4KXeqtUTVrppiefmZ2U=)
8: v40XBXqfd3t5DHYPrbNNGVx46mM.roa (hash: VonTp+3WmJGa85ebTKpA0St4xfZW6QoaDyConcZ2xKU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142 (0x8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE896CFF2C01697848450DAB7F21A1E14A4F086
Validity
Not Before: Mar 26 17:58:17 2026 GMT
Not After : Feb 24 15:30:19 2027 GMT
Subject: CN=E0A501667A13084FF4324A30C47F0A3760F87483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2f:21:c7:95:00:2d:cb:d9:c7:9d:f3:a1:73:
ca:61:79:ce:54:6e:ac:0e:dc:19:4f:9d:68:71:a3:
5f:a8:84:c7:f7:c3:74:f1:26:86:84:6c:e0:6c:f4:
19:07:4f:9d:9d:0e:10:76:19:7a:a0:ba:3b:6e:f9:
88:d0:a9:f4:00:f7:6e:fa:69:f2:da:f4:36:59:47:
a2:c3:8c:51:c3:12:e6:62:da:1f:8e:1f:d5:6d:f3:
60:a1:d3:19:96:30:ba:f2:f4:7d:ce:bf:7f:e9:ff:
0f:0b:8e:ae:c6:29:95:dd:6e:d0:bd:97:e0:2b:68:
49:dc:fa:c4:c0:ec:e2:b5:53:a8:21:00:fb:bd:88:
e2:ad:47:e3:00:97:09:2e:1c:4a:06:17:ce:df:7e:
25:de:eb:5f:24:b6:c6:bf:fc:12:45:27:1c:e6:8a:
23:3b:12:10:cb:18:41:6a:9f:dd:cf:d2:95:70:81:
66:f2:ce:5c:74:b7:23:07:89:0a:7e:73:e7:49:54:
f6:d7:cd:4a:18:ad:32:4d:b9:03:71:95:cb:1d:93:
58:e1:8d:4e:b3:87:5e:7d:52:e4:1a:67:7f:da:aa:
c3:e2:97:2b:71:ea:3c:e3:83:63:c1:15:a1:83:52:
ca:4c:6d:80:33:19:83:37:e6:d0:f4:fd:6b:96:f5:
7e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A5:01:66:7A:13:08:4F:F4:32:4A:30:C4:7F:0A:37:60:F8:74:83
X509v3 Authority Key Identifier:
keyid:3B:E8:96:CF:F2:C0:16:97:84:84:50:DA:B7:F2:1A:1E:14:A4:F0:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-iWz_LAFpeEhFDat_IaHhSk8IY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LAZCO/O-iWz_LAFpeEhFDat_IaHhSk8IY.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8f:6b:11:f1:f5:9a:cf:3d:3a:76:a6:fc:20:d4:07:d5:11:d8:
41:1d:0c:68:43:a6:fc:91:a0:41:72:cf:58:96:32:80:c1:4f:
31:6e:c0:3a:c4:94:f5:5a:b9:bb:68:c7:f0:40:51:1d:c4:6e:
b8:77:68:08:89:57:d1:5d:cc:21:38:65:c6:e6:fb:b1:ad:c6:
e6:46:69:aa:08:24:65:f6:23:df:29:8f:6a:10:de:2b:b6:fd:
3f:13:2b:37:b7:f7:d4:37:5f:7d:c8:8b:9e:a0:7d:60:16:e8:
a1:eb:18:2d:b4:0e:ac:7c:ab:d3:80:1e:07:b1:f9:ee:d5:69:
8a:37:eb:26:f4:cf:da:8e:bd:14:48:fa:f8:9c:51:af:d4:85:
34:7c:97:36:ea:88:bc:7e:2f:17:78:e3:b6:de:ee:54:9d:cc:
f0:75:43:9f:74:b7:c5:eb:5a:58:87:a7:88:00:ee:a3:84:a5:
c1:7b:dd:cd:b4:99:9f:f7:41:ae:2e:c6:66:06:86:20:fd:9c:
58:a7:90:bf:31:91:b4:fb:4e:e0:b0:c2:64:97:07:7c:42:ae:
6b:b5:05:25:ef:09:71:da:2a:12:99:ab:7b:b5:cc:a3:ae:8a:
7d:9c:09:6a:9c:71:51:80:34:b4:da:87:fb:c5:02:5f:10:d0:
da:02:51:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:06:56 2026 by rpki-client