Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft
File: LXIEYXNU1wUjtvZaJwcStrGdgV4.mft (raw, json)
Hash identifier: YqmHz7JRGDb5fnFXBorzFdK3W/qJwoa+stmyot1vesE=
Subject key identifier: 8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 0DCD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft
Manifest number: 0D7F
Signing time: Sat 23 Aug 2025 21:12:56 +0000
Manifest this update: Sat 23 Aug 2025 21:12:56 +0000
Manifest next update: Mon 25 Aug 2025 21:12:56 +0000
Files and hashes: 1: 0Yo-A-NRvhxwfZMnNHKdkurBspY.roa (hash: RpbWtGY506zgMpKYDlfJZLVWfHe7LhJIfoSW1QYFHHM=)
2: 0rtrKc7d2DygJQGg2P035nk87YA.roa (hash: sS4dBmOMhTiLWLhPPAF0E3KJkpjq+UG2+r1wPdJiXHA=)
3: DomuL5VCR1CRD8kf4KD-ZvQl1Hk.roa (hash: M7DNC5f/ZNgNXYOcgP3RHvZDM8IuBzJhvvvGLFmDf0M=)
4: KvfHidfL35UNVHaj2OJ_aKbDFiA.roa (hash: u/tjCfTVMjj8elrABLjqRRjZGm8/5TsNdNsC8yCc/+8=)
5: LXIEYXNU1wUjtvZaJwcStrGdgV4.crl (hash: w9UWcXpJTzhaEG7LUftxo6gq5/DG4XpL9j8W6H92koQ=)
6: T68GOVLZPb3lZ-YNJ4VAZw4M1x4.roa (hash: mBTNLV9JvVgmuTksJH9h3fKt3M6AhXmmRl6pTEal/XI=)
7: lbTXhpc-PphvuF5T7_lIYOkb-58.roa (hash: JFJKz6OKwZtTyvKP6x64uAfNpsCJQdTvv9+MYDjLpsQ=)
8: oJfo7QV0M68if1-aOZ-TRNCtchI.roa (hash: PcOEtJmNd1qSbGFDEAY0sjoa1J9rcTfDRcdawkHbXnk=)
9: r2choGTJGYsSXHS-Xn5Qj76Y4IE.roa (hash: kP87ivg8MG8uJed5an9d3lP+8UPSLgD4yKsotvXusBc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3533 (0xdcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Aug 23 21:12:56 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=8FB24E0D840F960EB9E53763485237102DDB4637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:2f:a2:8e:26:81:03:aa:24:8f:e4:9f:7f:
81:98:f3:97:3c:da:8e:dc:ed:8f:03:07:1d:77:b1:
5a:49:c3:3d:f6:ef:84:88:f6:28:be:4c:43:e9:74:
29:fe:59:b0:99:b7:cc:21:76:35:21:ef:53:e0:4a:
30:6c:f6:e4:d4:44:e6:51:a9:22:17:c8:98:9d:d2:
87:9b:6f:fc:cf:be:23:a7:d1:97:b0:d7:fe:89:b7:
9b:54:a3:f5:56:00:58:23:71:00:41:67:8a:b5:1c:
d3:bc:97:ea:30:2f:20:a3:dc:ea:94:57:05:cd:87:
f1:49:35:69:a0:64:11:9c:b5:d4:09:25:22:a6:cf:
82:72:2a:b6:21:f1:75:01:80:0b:b2:12:0d:d6:55:
ca:f1:91:ac:80:bf:8d:bd:91:fa:d1:3c:8f:42:60:
e4:2c:05:f5:95:67:86:d7:85:a4:24:6d:9d:9a:f5:
fd:f5:90:c1:03:80:9a:33:8a:f6:ec:ba:d2:f5:62:
f9:24:e5:05:3e:f2:a9:ec:e7:5e:b9:30:d8:69:f1:
98:b3:30:4c:50:98:22:9c:78:ce:2f:0c:01:02:69:
68:f3:3a:47:47:ae:85:ed:d9:68:6f:ff:6f:ce:04:
ea:48:68:fd:a4:53:2c:fc:ba:fd:17:05:49:55:16:
32:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c1:6e:c2:ef:18:c5:6b:ea:b4:09:fb:7a:d4:57:10:3a:f8:
4c:34:61:7e:fa:3e:f9:05:15:99:15:52:58:c2:f7:26:79:01:
bf:47:3f:46:1b:bb:d8:72:20:f6:ba:99:f2:9d:dc:a7:a6:55:
99:8d:2a:a8:92:16:b5:e3:8b:26:d0:14:5b:16:40:76:04:02:
23:b2:b4:60:cd:ee:d9:6f:4b:62:b8:12:65:54:ef:34:04:ce:
c9:ad:5f:16:7e:9d:8b:99:0e:70:0a:29:61:b5:a9:6f:d8:14:
bc:ce:a7:3d:4e:5c:0b:41:0c:cb:b1:cf:ba:67:12:ee:8c:fc:
51:9c:86:3a:f9:e5:92:f8:cc:80:db:96:05:41:fe:ab:10:2c:
13:3a:04:3e:91:bd:c2:6d:23:dc:2a:a0:da:59:c1:64:fb:31:
df:b1:bc:a2:ea:1a:ec:ec:e9:70:7e:82:19:6a:4a:15:b5:ec:
80:7f:3f:22:ca:0a:60:87:e9:a6:2e:c5:1a:ea:04:e5:13:41:
7b:f7:33:7d:99:32:13:5d:de:13:6b:0f:19:eb:64:26:5b:b4:
59:37:3a:20:b2:3e:9b:0c:6f:26:bf:3e:68:17:83:27:36:a9:
f3:46:e0:9e:35:57:c0:3c:b0:b0:4b:5f:be:5a:cc:47:ce:33:
4a:46:43:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:42:09 2025 by rpki-client