Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft
File:                     O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft (raw, json)
Hash identifier:          lz+jy+5c9fa8r1R/0cYfrDa1daY25fUWTGbEN4YlI+k=
Subject key identifier:   09:E3:94:D0:E0:D6:A4:CD:B8:E9:63:53:BF:A6:5E:0B:46:4C:7E:2A
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Certificate issuer:       /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial:       0EF9
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft
Manifest number:          0E2A
Signing time:             Thu 26 Mar 2026 10:58:55 +0000
Manifest this update:     Thu 26 Mar 2026 10:58:55 +0000
Manifest next update:     Sat 28 Mar 2026 10:58:55 +0000
Files and hashes:         1: 0RyBb2ZWl-JoRvwhm-aSGa4PhP0.roa (hash: kDVcdLKZ33TiF6qe2oThZ6b+hy94ppWeYcriObmSfJU=)
                          2: 5hf1unkjbLUs4dX5Nxv0Z_GUnSw.roa (hash: 7808o0ds4CjX1LscsajwepgJgYqRhjYKwgT6tS1RTOA=)
                          3: 7Gaf8ZKhWebZWVrmPJa-f2dChe0.roa (hash: vJsdtBYtiqcvSOwBX/Z+/UcAzPkGs5Xx8pZi1gwoIc0=)
                          4: AhPI1REtvXR-HmqhvrJRUTP3vZQ.roa (hash: p7ZON6VJFzxo/oXIY51nIP15JkA52qIdYX3MrvdhXx4=)
                          5: DBoZCS3rF3YHHHOmE1IkiYxYkoA.roa (hash: f24YR0ilE8LuBuSEpteE22b1N9/73MLeF6tcu10fdYA=)
                          6: Ek7kLtECOBnlPLpnVpsIX54XCWg.roa (hash: ePjHezmF6HgFCsKAR1O3NCgNeAD6NGH37vBlOJ45KHA=)
                          7: F9PJGTjnhUuaRsDFW6kGuIswr2Q.roa (hash: 5Csj3Msctv8AWFzq+4WwY3wNuBSGk30qiZW/qCo3GTo=)
                          8: Hqqjy1Qas9rd_wChrYgNjZWzf7s.roa (hash: GPAJPnge4rjc1r0M7RGQntiAQ/jxe+xIMUd/CxSw8Fs=)
                          9: IbRU5Gag8DihcJ-ip5oSfQpWga4.roa (hash: pM0H1ilfnzdKRVgQ9PnvaHmTrY4+V118Ij/Heg2DmHo=)
                          10: M1rXzKZZp8r8otYHw2z0DUPNIi8.roa (hash: ocaUhtktXgcCA+Wy3/W5hRDLojCYHW3nFsM+H9VTo5w=)
                          11: O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl (hash: K1g8ZHN2g+KnDaoFK5e8vVEuzym9EXvYurdtgnzyxrQ=)
                          12: OOTa8v2aWwMI94B_jT8q7CpaNjM.roa (hash: WHb3v3swGHiTZK6/A9tDpSR8bbgYwvskPbQfJi6l19Q=)
                          13: QBsr4KNmTCNzjy3AyEzFikZf97I.roa (hash: 0IWXLa/bVyhC2+OgfbHV/WuM0nYWjQe5lEk/Ls7WC1k=)
                          14: Rbn-MuYcpxL0L12nq5LyTMcPX-4.roa (hash: iumyYDnBQ7nor157htrzF570n/iQGqDt66pQofqiR6c=)
                          15: TjYEur3CAERf7tLr_Z0l1MJhvVo.roa (hash: mH23Newr0XkDwl+aD99ks7Pp0P+sAVEFQh/7+94ENSY=)
                          16: UbBFi0xMbPwr8J3vEj5FnH4CnMk.roa (hash: eLE8o4nq6N+wlAJcHbwOmsiS7qH4bN+gs7HMgz6gX3E=)
                          17: WSJnusQLlaYwRoEruj_xp-99KJw.roa (hash: fJhfw14J2Dcd40N6M55vgSQkyYpVFxUf++uh/s2RSXk=)
                          18: Z04Bgi7OiD-eaytqM9pXQRQ0ErU.roa (hash: wdJa2dSgEEOtCcBkBt3OsUNwguWDk0SP095/tS/kdYo=)
                          19: _ho6VpD9bk82PTf645psnvBJ1MY.roa (hash: kdzYzMXEgkNlszY83k/4jbH2hsZfk5UR5ZiVY2W6SE8=)
                          20: rO8VMSfGcZaBoLD-HlLzCAht7_g.roa (hash: uxP/Za77hSiigfbWu7mlAY2l3M7WrKTwfhNsCu76SHs=)
                          21: x8-tfOYZLubtMMD7-3gy5qRxqAg.roa (hash: PaYP5HuboHDvuLNxDiIu0GUo49PRZiTdLPpO2RJnPV4=)
                          22: xQ7A1P9nnDf-0CTo38PyTgpR65o.roa (hash: zWeiId2+wadXqaVwkxtRzCCqGfCilBm7eA7S3Fx0XbY=)
                          23: xrDWuf9zl28OxQMAfH8mGJ1VglU.roa (hash: FREdqzKCB05sxJ+YvS0PCgy1MwS957J9qFMQaFgYCkE=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3833 (0xef9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
        Validity
            Not Before: Mar 26 10:58:55 2026 GMT
            Not After : Aug 22 08:14:28 2026 GMT
        Subject: CN=09E394D0E0D6A4CDB8E96353BFA65E0B464C7E2A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:68:21:ff:2f:7f:7e:0a:f0:22:fb:b4:01:88:
                    dd:dc:76:b5:be:28:fc:86:b9:f8:4e:62:4e:3f:41:
                    47:c6:6c:01:dd:22:5a:51:ef:cc:dc:41:b3:14:c8:
                    f4:4b:1b:6d:db:dd:10:ac:c0:12:9c:5b:de:48:ec:
                    19:b4:b4:ed:19:18:34:70:35:aa:93:27:63:1b:4a:
                    ad:59:3f:6e:66:f5:44:5c:c3:4d:d2:7b:c6:38:08:
                    99:67:6b:fa:ac:56:fc:b1:d0:c3:9c:f7:87:86:ed:
                    5c:ed:7f:a4:56:1a:28:03:78:7d:3a:f6:bc:91:49:
                    ae:fa:bd:b5:46:1d:16:bf:f0:43:89:37:fb:03:60:
                    83:c8:8d:4e:8b:ac:ac:99:55:9c:d3:26:3d:cf:79:
                    d3:8c:c5:38:3f:86:d4:29:06:cf:a7:e4:1a:45:9c:
                    a2:ea:4e:25:ab:0c:d4:f0:79:89:c8:0a:46:f5:43:
                    79:e8:96:4c:25:ca:54:e5:ec:ec:a2:24:11:0e:fd:
                    50:d6:9e:60:67:70:01:a5:13:fc:45:2f:b5:8e:1e:
                    2e:8b:3f:98:98:18:86:3d:53:c5:05:f4:ee:3c:55:
                    46:d8:14:a9:b3:d7:fe:d8:c0:5f:b9:df:3d:f2:34:
                    a5:1a:a6:98:45:30:7b:a3:3d:f7:7b:d9:de:18:f4:
                    bf:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:E3:94:D0:E0:D6:A4:CD:B8:E9:63:53:BF:A6:5E:0B:46:4C:7E:2A
            X509v3 Authority Key Identifier:
                keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:02:b7:0b:6f:88:69:91:65:57:32:71:aa:73:0b:14:0f:3e:
         61:14:2a:10:e3:d1:37:71:e6:e7:d9:07:b1:bc:f8:cb:68:52:
         9b:72:79:63:81:54:8a:31:d7:45:a0:20:c5:bb:25:65:a5:0d:
         f2:c7:9f:b2:23:0c:92:02:6e:fb:7a:4d:eb:59:1c:6e:3e:5b:
         4a:c2:8c:c0:27:25:40:1a:af:5b:9d:d1:0a:f8:a3:2f:19:8a:
         58:4d:82:75:18:c9:b7:c4:e7:79:be:4c:77:91:25:fc:3b:26:
         a8:07:42:fa:59:40:a2:52:f0:4f:d8:ce:21:cc:b3:56:f3:00:
         8a:23:8d:43:07:89:62:88:de:0f:21:ef:c4:d6:22:cb:dd:46:
         59:35:fc:ae:30:47:d1:e7:fe:05:8f:b7:59:f7:d3:71:ae:8d:
         23:18:c7:b0:5b:23:80:d2:c5:2a:52:81:65:d0:26:29:a0:3e:
         25:a1:0c:31:e2:5b:75:4a:34:1a:7f:ba:d3:cb:0d:37:3c:4a:
         0d:09:76:db:49:a5:fc:a6:25:3b:86:61:78:b3:89:12:da:5b:
         8a:09:97:c1:9b:44:bb:30:c6:40:e7:f3:07:2e:67:30:69:51:
         d4:39:c4:e4:74:07:05:d1:12:b6:29:f6:c8:af:e6:aa:09:2f:
         59:f1:bf:70
-----BEGIN CERTIFICATE-----
MIIE6TCCA9GgAwIBAgICDvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNjAzMjYx
MDU4NTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA5RTM5NEQwRTBENkE0
Q0RCOEU5NjM1M0JGQTY1RTBCNDY0QzdFMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqaCH/L39+CvAi+7QBiN3cdrW+KPyGufhOYk4/QUfGbAHdIlpR
78zcQbMUyPRLG23b3RCswBKcW95I7Bm0tO0ZGDRwNaqTJ2MbSq1ZP25m9URcw03S
e8Y4CJlna/qsVvyx0MOc94eG7Vztf6RWGigDeH069ryRSa76vbVGHRa/8EOJN/sD
YIPIjU6LrKyZVZzTJj3PedOMxTg/htQpBs+n5BpFnKLqTiWrDNTweYnICkb1Q3no
lkwlylTl7OyiJBEO/VDWnmBncAGlE/xFL7WOHi6LP5iYGIY9U8UF9O48VUbYFKmz
1/7YwF+53z3yNKUapphFMHujPfd72d4Y9L+LAgMBAAGjggIFMIICATAdBgNVHQ4E
FgQUCeOU0ODWpM246WNTv6ZeC0ZMfiowHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9PLWJHVVRVT2o2SDhmUW8tcTgt
WS1Cc3hHZE0ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH
AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFQK3
C2+IaZFlVzJxqnMLFA8+YRQqEOPRN3Hm59kHsbz4y2hSm3J5Y4FUijHXRaAgxbsl
ZaUN8sefsiMMkgJu+3pN61kcbj5bSsKMwCclQBqvW53RCvijLxmKWE2CdRjJt8Tn
eb5Md5El/DsmqAdC+llAolLwT9jOIcyzVvMAiiONQweJYojeDyHvxNYiy91GWTX8
rjBH0ef+BY+3WffTca6NIxjHsFsjgNLFKlKBZdAmKaA+JaEMMeJbdUo0Gn+608sN
NzxKDQl220ml/KYlO4ZheLOJEtpbigmXwZtEuzDGQOfzBy5nMGlR1DnE5HQHBdES
tin2yK/mqgkvWfG/cA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:54:30 2026 by rpki-client