Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
File:                     Qi58ldh96a7rISoMTMsBdOZcpdA.mft (raw, json)
Hash identifier:          BflLuwWfA23+ArlJBUzVkaxv2MklsflOM6l/0Cb7T9Q=
Subject key identifier:   BD:78:EC:D8:CE:A1:D0:EC:64:85:14:D1:BB:92:8A:0C:C1:55:0E:11
Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0
Certificate issuer:       /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
Certificate serial:       0525
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
Manifest number:          051C
Signing time:             Fri 04 Jul 2025 22:03:09 +0000
Manifest this update:     Fri 04 Jul 2025 22:03:09 +0000
Manifest next update:     Sun 06 Jul 2025 22:03:09 +0000
Files and hashes:         1: -18l1uUyH6nqqiq_fnmcMI4pc68.roa (hash: 9dlGOBRps7HNtgR/QauuWHhFY3bbKeP7QQJlDErl/iY=)
                          2: O6VvY0wuqytgMzlHgkOITJ3kBXU.roa (hash: FhqRyRFSOfXjJ03c3VjYck3SYfz8WA0fiT+ZTvLnLEY=)
                          3: Qi58ldh96a7rISoMTMsBdOZcpdA.crl (hash: jOzI/ll0wu/64GyyR8rYwf5Ew31gKxyiPlJHF4tup4g=)
                          4: VOP-eRSsWEA2OkRD-zU-NQNgiIw.roa (hash: dmO0fcZn4SWYD10W7y/T8TWddm69sI2RfA62nbfXbEw=)
                          5: xfjFkkBPzAyUEcspnbwh0W9UvWY.roa (hash: EwwusAdzqu+9KZ3zwSn//pIOZD/Ic/ut/hDcDdczyLI=)
Validation:               OK
Signature path:           rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 05 Jul 2025 04:04:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1317 (0x525)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
        Validity
            Not Before: Jul  4 22:03:09 2025 GMT
            Not After : Aug 26 01:57:03 2025 GMT
        Subject: CN=BD78ECD8CEA1D0EC648514D1BB928A0CC1550E11
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:d7:42:47:0b:5a:68:6c:8c:27:93:dd:ed:dd:
                    4a:b2:d4:eb:00:26:24:26:e1:97:7a:87:90:16:95:
                    09:25:d1:5b:3b:4b:4c:0e:37:62:75:a7:65:30:94:
                    c8:80:57:e7:12:55:ce:dc:c9:44:d4:79:46:7b:7a:
                    12:d1:7a:14:69:19:58:78:db:0c:b4:48:38:d2:64:
                    0a:9b:aa:75:58:4b:83:62:91:a6:02:f2:b1:00:00:
                    70:8c:0a:74:e4:d6:b9:be:f4:1e:ce:35:4a:f6:ac:
                    c6:19:da:e8:8a:72:6a:6c:b9:d8:0e:de:ed:96:8b:
                    26:97:7b:6b:b3:5a:c5:d5:d7:39:83:52:75:6b:c1:
                    12:f8:88:c1:0a:69:b1:7c:77:a4:e6:56:a6:ca:45:
                    d0:69:c7:86:0f:d3:b2:f7:75:d4:62:06:fb:da:e0:
                    08:40:a3:a5:dc:6a:08:f7:73:4f:2a:f0:72:02:bc:
                    5a:ab:99:fa:b1:9e:94:38:de:6e:5d:00:c7:13:ab:
                    1a:5b:d0:2c:7b:fd:15:d6:ed:43:37:5c:74:5c:58:
                    de:68:a7:3f:32:f8:f6:5e:78:e2:69:fb:46:0f:91:
                    bf:53:f8:a8:5e:91:d7:aa:93:ca:c9:fc:2d:63:67:
                    c9:72:51:28:5d:ba:bd:f8:95:9b:87:83:49:ea:7c:
                    f2:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:78:EC:D8:CE:A1:D0:EC:64:85:14:D1:BB:92:8A:0C:C1:55:0E:11
            X509v3 Authority Key Identifier:
                keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:5e:de:81:03:80:5f:df:d4:09:0d:ed:89:f0:3e:20:de:1f:
         7a:b7:37:48:ae:5b:99:02:49:6c:88:6f:4d:e2:a5:20:c6:2d:
         c9:40:37:03:32:c2:88:8f:a4:e0:10:07:5c:23:33:aa:75:9e:
         4a:61:49:81:35:ea:a5:33:3c:02:42:2e:09:05:f2:11:bf:3e:
         be:5a:c9:ba:12:5b:7c:f6:5c:f7:1b:c0:24:ca:13:3f:0d:85:
         48:51:8f:a0:63:62:56:f5:23:dc:3e:f7:cf:bb:5e:12:a5:68:
         a7:50:ae:f7:05:52:9c:46:c5:12:17:c2:5d:4e:15:fa:87:d4:
         32:c9:6c:c4:d0:a2:ad:b5:06:20:fc:82:c8:47:5b:0b:05:29:
         8c:0c:c6:a8:63:a9:45:b4:d4:3d:b3:9f:a1:06:64:a7:59:0d:
         80:eb:e2:81:a8:bf:85:85:f7:ba:1b:f0:c3:76:26:06:4b:6f:
         3c:a4:2b:53:bf:25:ca:4c:3d:00:f4:f8:17:10:35:cd:b7:3d:
         51:49:66:1f:d0:e7:1f:d1:83:32:4a:8f:14:20:83:09:fc:d4:
         5f:51:c2:d2:68:02:0c:a0:c9:0b:d9:37:3f:56:32:53:ad:19:
         9e:1a:45:af:de:b2:55:f5:4e:c2:e7:bc:52:77:1c:e3:5e:a6:
         9a:42:2c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 03:25:26 2025 by rpki-client