Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft
File: 3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft (raw, json)
Hash identifier: 0mwCvPmbiGZsbgIpFIKQ8kdw0N4jowc7qsa/ZHHi3fo=
Subject key identifier: 14:0D:94:13:D8:96:A1:2C:05:A4:53:2F:32:C6:6F:65:F1:0D:B6:A9
Authority key identifier: DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF
Certificate issuer: /CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF
Certificate serial: 0123
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft
Manifest number: 0122
Signing time: Sun 24 Aug 2025 02:13:20 +0000
Manifest this update: Sun 24 Aug 2025 02:13:20 +0000
Manifest next update: Sun 24 Aug 2025 08:13:20 +0000
Files and hashes: 1: 3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl (hash: zPLGJKxSh5FD1O6pl3STSdXD3m4Rybk0taimY/T8Xvw=)
2: h3gM3umksJIYEAeAEiPCdJFIFto.roa (hash: P0RBcokTOeWzNU9SKVJvXJAAZk3Gv4yQBEr42Kf75Ew=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 291 (0x123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF
Validity
Not Before: Aug 24 02:13:20 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=140D9413D896A12C05A4532F32C66F65F10DB6A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ff:73:ee:5a:a6:e3:54:27:2b:18:34:ac:07:
9a:f9:21:e7:2e:7f:37:1f:4a:b7:05:b9:a0:ef:f3:
85:f7:6d:92:2e:9a:e9:57:b8:9a:f1:86:ea:5d:82:
6d:48:90:71:57:0b:2c:2a:06:4a:8c:aa:df:bd:ae:
9e:9b:78:1b:f1:d0:4f:c1:3a:24:50:d6:19:ed:5b:
8d:0b:0c:18:fe:f2:1e:9e:49:a5:c8:ce:fe:b1:4e:
7e:98:f6:a9:3f:6b:f2:4d:ee:9e:16:85:48:28:c3:
f8:6d:12:a4:7e:17:7d:33:2e:3f:0d:01:6f:4e:52:
f7:67:8c:17:1c:46:29:e3:91:6b:14:86:88:64:42:
75:7b:a0:47:b7:c6:1e:1c:96:c2:d4:b4:41:f2:73:
5a:7f:45:cb:8b:18:1b:ac:c2:51:7f:56:85:d8:3d:
b5:a6:dd:d6:94:47:6d:a3:36:c0:62:66:e8:67:27:
b8:18:f6:c7:89:51:62:7f:53:af:70:5b:b9:97:ca:
41:e0:4b:c1:d6:2a:b2:f2:66:ed:0a:2a:de:de:32:
01:d9:b1:e0:a8:7a:27:5a:82:82:ac:1d:dd:99:d8:
68:09:58:61:ed:cb:cf:17:de:a6:fc:31:36:be:bf:
cf:6f:2b:61:15:a7:cd:78:80:d6:76:26:c3:df:02:
e3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:0D:94:13:D8:96:A1:2C:05:A4:53:2F:32:C6:6F:65:F1:0D:B6:A9
X509v3 Authority Key Identifier:
keyid:DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c7:d5:11:cb:2a:8a:4d:07:52:3d:1d:48:82:68:c8:99:70:fe:
65:29:b1:c6:bb:b2:c8:22:89:42:bb:6a:53:ed:51:45:91:b6:
8a:80:c1:ed:26:c5:e2:69:cc:2b:9c:f2:50:43:01:80:b7:2c:
4c:ac:50:0a:7b:7c:04:f9:ae:f1:cc:96:75:5c:c7:8b:01:2e:
7a:e3:b7:76:75:39:7b:69:30:ad:77:91:d8:71:09:12:4f:3d:
67:d5:5e:88:3e:f8:d9:c1:31:2f:b9:01:02:77:5d:6c:2a:2d:
5b:c5:be:17:9b:45:2b:d8:5d:62:59:99:4c:8d:36:b0:91:35:
9e:14:5f:43:6f:8f:cc:ef:d4:56:c1:af:d3:83:de:49:d5:1d:
3d:2f:a3:f5:c1:68:73:84:6e:a9:4d:8e:ed:b8:ed:75:dc:57:
ad:68:a7:db:1a:6e:b5:18:4d:28:63:ce:47:a9:8f:04:22:50:
63:5b:56:c0:b5:a8:6f:c3:62:f4:4a:89:b6:73:37:a8:35:a2:
2f:9f:42:d3:11:43:60:9b:81:a1:b2:f2:5d:2a:84:b7:1a:08:
dc:8f:17:4f:e6:8e:24:92:d8:a2:87:c9:49:29:d9:5a:59:dc:
cf:91:0b:0d:f4:19:5a:89:f8:07:41:e3:9d:00:4a:53:3a:46:
b9:65:da:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:48:14 2025 by rpki-client