Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft
File: D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft (raw, json)
Hash identifier: 528AuI8DxuLLCM+PubPEYisbGRm3N1DGGktaC0QCFAM=
Subject key identifier: C8:8F:C5:70:90:7D:EC:1F:5B:E8:6B:88:1E:6A:D5:19:A1:FB:2F:5F
Authority key identifier: 0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98
Certificate issuer: /CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198
Certificate serial: 0EBE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft
Manifest number: 0EB4
Signing time: Sat 23 Aug 2025 21:13:07 +0000
Manifest this update: Sat 23 Aug 2025 21:13:07 +0000
Manifest next update: Mon 25 Aug 2025 21:13:07 +0000
Files and hashes: 1: D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl (hash: oFrwUcgg9GkQniPUpbOQOa55BCZ7cPj7KtUeAdC+Ess=)
2: ky4sut692-O_-YJp6L76tR2r2TY.roa (hash: iaNsBxG57ix79G0EGOD5rHu5efh0DQkgE+K9V6t8Crg=)
3: vNP_I5PsMAFrbuL-fCVc_DAcuas.roa (hash: APgUUdWq9/Tb8VzeXKS6YF+F0jEJbFs8Sj9SdJqqO7s=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3774 (0xebe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198
Validity
Not Before: Aug 23 21:13:07 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=C88FC570907DEC1F5BE86B881E6AD519A1FB2F5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2f:e4:bb:14:01:65:91:ff:33:8b:56:65:74:
e6:20:32:88:12:20:83:5c:af:24:95:d8:60:86:53:
db:7b:8e:82:1f:4b:cf:0f:2b:cd:48:6c:fc:74:ff:
ad:a0:ed:75:bb:e5:0c:e7:92:96:a6:42:6d:fe:3a:
1c:78:bd:12:a4:46:86:51:cf:d8:17:49:90:c9:60:
88:16:5b:9a:77:d3:00:91:b5:e2:c7:3b:13:ad:0d:
e6:e9:36:09:84:13:c9:13:44:8d:51:91:13:b1:b4:
a2:c6:10:ab:37:87:38:46:e5:53:86:4b:76:6b:5f:
82:1a:a1:8d:a3:fb:1c:91:bf:9d:89:0e:cf:2f:44:
d2:5c:98:d3:f2:35:19:74:60:c8:99:07:a4:69:45:
ba:69:9e:27:e1:5c:f6:f5:81:39:0d:0a:8a:64:59:
fb:e9:70:9c:d3:f7:cc:16:1a:60:3a:fc:bd:38:29:
25:e6:00:8d:ef:09:7b:4f:53:e8:e5:77:87:5f:85:
b0:c4:10:5b:d1:25:38:b6:2d:4b:4c:80:3b:41:3d:
88:fe:70:8e:4f:68:05:68:45:3e:61:c8:72:b8:a9:
7f:ac:12:86:3e:c6:8b:e7:50:a3:da:59:95:92:dc:
73:81:98:12:5b:4e:f8:74:df:e5:dc:f8:b0:e8:c8:
50:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8F:C5:70:90:7D:EC:1F:5B:E8:6B:88:1E:6A:D5:19:A1:FB:2F:5F
X509v3 Authority Key Identifier:
keyid:0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
49:65:b6:2d:3f:4b:d7:c7:32:3c:e8:08:b3:e1:a5:6c:08:76:
dd:7d:ef:7a:a0:cf:d4:a9:b8:4c:b3:c0:cd:d8:9f:82:31:ae:
c6:aa:e9:a7:86:ba:aa:af:8d:fb:df:a5:38:3c:ea:cf:0f:62:
a1:13:1a:3a:fa:d6:0a:8b:44:06:68:99:5e:a5:d8:e5:e4:91:
62:66:f9:89:dd:4a:1c:b7:dc:f0:5c:34:6d:1b:8c:69:f9:28:
99:f2:ad:dc:12:8b:38:6b:cf:01:da:d7:24:57:af:b2:e5:04:
35:7e:d5:07:82:e9:8a:27:0f:0e:64:f5:8a:7a:7f:f2:56:af:
41:3a:5c:86:4d:a9:74:7c:35:b0:b5:b5:cc:02:59:38:19:f6:
62:1a:e4:3c:1c:0d:18:c0:fb:0c:4e:3b:bf:1f:14:06:26:6d:
78:ac:df:8d:d3:11:60:5e:ed:d2:6e:16:28:bb:b6:80:a2:6a:
ae:c4:74:56:06:40:a6:21:e4:88:ea:7b:66:35:db:aa:43:e2:
5c:5c:bf:d0:e4:8f:c6:b6:3f:0d:d2:fe:87:2b:0e:8b:a0:42:
f2:77:bf:18:1a:8e:ab:fa:b2:6a:9a:06:97:f9:9f:6a:22:fd:
58:15:8c:2e:f4:63:12:87:f6:d8:90:c2:1c:51:cd:04:dc:16:
d2:a5:8c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:35:08 2025 by rpki-client