Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/DjrlLg48orgFrsL_itmlf3IHWqo.mft
File: DjrlLg48orgFrsL_itmlf3IHWqo.mft (raw, json)
Hash identifier: gAtYgr3/DFzKsLBn55c5xEmKMNqf7xdWX7FnC1R7dBA=
Subject key identifier: 49:B0:44:9E:8C:30:4A:3A:E8:A0:6C:24:52:48:25:DB:74:2A:D4:0B
Authority key identifier: 0E:3A:E5:2E:0E:3C:A2:B8:05:AE:C2:FF:8A:D9:A5:7F:72:07:5A:AA
Certificate issuer: /CN=0E3AE52E0E3CA2B805AEC2FF8AD9A57F72075AAA
Certificate serial: 038F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DjrlLg48orgFrsL_itmlf3IHWqo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/DjrlLg48orgFrsL_itmlf3IHWqo.mft
Manifest number: 038F
Signing time: Fri 31 Jan 2025 17:37:36 +0000
Manifest this update: Fri 31 Jan 2025 17:37:36 +0000
Manifest next update: Fri 31 Jan 2025 23:37:36 +0000
Files and hashes: 1: DjrlLg48orgFrsL_itmlf3IHWqo.crl (hash: Vny9csalfIqDxGb/dMOuw5zV1ylj713FCYQ1JmL5Nnc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 911 (0x38f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E3AE52E0E3CA2B805AEC2FF8AD9A57F72075AAA
Validity
Not Before: Jan 31 17:37:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=49B0449E8C304A3AE8A06C24524825DB742AD40B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d5:eb:5b:22:ef:e0:c0:d5:3e:7e:82:f5:bc:
90:ed:56:ad:3f:91:8e:0a:e9:ef:db:e9:a1:8b:f4:
20:26:da:f6:29:c5:26:f3:ad:ff:ea:c0:2f:1b:44:
69:b8:08:ad:ea:05:77:01:d4:f9:10:48:82:47:60:
94:99:b0:ad:5e:1f:94:cb:42:ef:6e:ee:a0:a2:76:
73:79:b5:05:6c:92:2f:4e:ce:8e:d7:d4:bd:09:2f:
6c:5c:e1:db:8a:84:bd:8d:1c:af:cb:3c:e6:db:51:
61:1d:f9:f1:d2:17:42:58:a4:4e:4d:95:a2:f3:13:
b7:2e:48:e7:0b:92:a3:32:f9:d2:14:b8:95:7a:2e:
02:02:bf:6f:6b:2b:b8:fc:e8:10:86:cb:fd:af:f4:
ef:fe:18:fd:01:d9:7b:ad:5b:e4:aa:a1:0a:67:e5:
b8:28:b7:ba:ed:44:83:27:79:cd:4f:28:a0:08:a5:
00:01:7f:c8:d2:04:62:84:dc:9b:c1:67:5a:dc:bb:
fd:7c:5d:12:88:1f:83:32:cc:e7:78:3a:6b:a9:58:
a6:b1:aa:78:92:ef:90:d3:37:5a:88:f1:5e:f1:1b:
c4:32:23:f6:a8:56:97:a0:f2:c4:b1:de:f0:3d:14:
df:ad:28:61:fb:4f:7d:00:c5:be:77:e8:66:81:33:
2c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B0:44:9E:8C:30:4A:3A:E8:A0:6C:24:52:48:25:DB:74:2A:D4:0B
X509v3 Authority Key Identifier:
keyid:0E:3A:E5:2E:0E:3C:A2:B8:05:AE:C2:FF:8A:D9:A5:7F:72:07:5A:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/DjrlLg48orgFrsL_itmlf3IHWqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DjrlLg48orgFrsL_itmlf3IHWqo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/DjrlLg48orgFrsL_itmlf3IHWqo.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
76:0f:86:1c:9e:83:dd:21:3c:83:3a:f1:10:3d:94:2b:02:d4:
07:b2:cf:62:98:48:8b:fc:53:5f:48:f4:f0:54:ac:b4:f1:2e:
d8:88:dc:f9:df:91:03:4a:7c:42:15:0d:d6:4b:4d:49:7f:24:
bc:17:eb:3a:7f:a9:3b:79:9a:8f:bd:d6:eb:50:be:0d:d8:c6:
12:83:ad:61:7f:41:60:f4:23:b7:c6:f4:c4:9e:ff:51:5d:9a:
13:d6:4b:3c:c1:06:e8:ab:86:33:12:60:e9:34:03:5a:26:e0:
9a:43:a5:5a:c5:fe:af:a0:51:b4:55:a2:ea:0a:8e:51:af:ff:
6d:a5:92:61:8e:c0:80:65:e0:37:3e:d7:28:93:78:7a:4f:e1:
af:03:33:20:8e:d1:47:15:23:b8:24:34:09:68:9f:fa:a4:73:
8c:91:9c:7f:df:f9:3c:25:06:f3:8a:e9:0c:52:f2:95:de:59:
df:24:09:45:7a:44:02:e5:fc:2e:98:71:bd:f6:25:aa:67:04:
3f:54:b9:69:78:80:2b:6f:88:05:ef:83:4d:15:fa:62:02:18:
2c:df:ae:33:bc:bd:56:a2:e9:f8:83:34:7b:06:a9:77:8b:b4:
4b:ab:d4:05:4f:7b:01:e1:0f:cc:24:fe:91:e0:9c:fe:36:c8:
bb:c0:bc:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:26:26 2025 by rpki-client