Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCORE/iaQWkeV56utiReCvcK9sL-LsHRk.mft
File: iaQWkeV56utiReCvcK9sL-LsHRk.mft (raw, json)
Hash identifier: wk3XBPtpw3nKkgyXrLItBFUbvN4o15L1X8X5TXyBfIY=
Subject key identifier: 0C:F6:81:E1:54:C9:38:2C:DA:D2:2F:B3:2D:D3:2C:D9:9D:9B:E6:91
Authority key identifier: 89:A4:16:91:E5:79:EA:EB:62:45:E0:AF:70:AF:6C:2F:E2:EC:1D:19
Certificate issuer: /CN=89A41691E579EAEB6245E0AF70AF6C2FE2EC1D19
Certificate serial: 0225
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iaQWkeV56utiReCvcK9sL-LsHRk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCORE/iaQWkeV56utiReCvcK9sL-LsHRk.mft
Manifest number: 0225
Signing time: Thu 30 Jan 2025 16:08:04 +0000
Manifest this update: Thu 30 Jan 2025 16:08:04 +0000
Manifest next update: Sat 01 Feb 2025 16:08:04 +0000
Files and hashes: 1: iaQWkeV56utiReCvcK9sL-LsHRk.crl (hash: Fj0SCFIZa6q7voaSEF03l6kfPewds2p0kX4u841H85c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 549 (0x225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89A41691E579EAEB6245E0AF70AF6C2FE2EC1D19
Validity
Not Before: Jan 30 16:08:04 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0CF681E154C9382CDAD22FB32DD32CD99D9BE691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:37:ba:53:00:a3:c6:97:17:5e:20:96:f4:
de:2a:5a:7d:1c:ee:5c:65:55:dd:5f:25:e6:43:4e:
fe:cd:c6:a9:cc:b8:c7:35:48:17:c3:3e:1f:ac:ba:
58:6a:43:02:c8:f7:85:03:7a:48:65:b3:b3:96:27:
bd:f7:10:ee:45:27:cc:34:b0:ab:32:da:c3:ac:da:
59:dd:37:64:ca:ed:5d:78:5b:f7:3c:5f:08:77:33:
03:1c:06:52:4b:e3:9d:50:e1:83:59:9e:a9:30:f3:
55:f1:de:f9:ae:32:ed:8d:97:69:19:b3:13:7b:10:
b2:a3:de:5c:74:ca:62:46:89:62:76:d9:ae:b7:6b:
3c:6b:55:24:d0:4b:e2:dd:02:b2:f8:1e:2f:60:ce:
93:b8:ee:9d:13:40:72:70:1c:2a:2d:11:91:2c:c2:
bc:06:4e:43:25:06:9e:ae:80:98:ff:40:32:26:84:
62:13:45:70:ee:b3:64:e7:da:6f:09:fc:b4:80:6b:
ea:84:95:3b:2b:04:9a:a7:15:e6:d7:06:f5:9b:8e:
07:c1:86:45:11:84:8d:4c:98:aa:91:ef:7a:3a:6e:
59:6d:1f:97:e0:32:72:fe:aa:88:de:a0:de:b9:23:
cf:87:e3:84:96:d0:c6:c5:b0:e5:3c:8e:99:36:cc:
69:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F6:81:E1:54:C9:38:2C:DA:D2:2F:B3:2D:D3:2C:D9:9D:9B:E6:91
X509v3 Authority Key Identifier:
keyid:89:A4:16:91:E5:79:EA:EB:62:45:E0:AF:70:AF:6C:2F:E2:EC:1D:19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCORE/iaQWkeV56utiReCvcK9sL-LsHRk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iaQWkeV56utiReCvcK9sL-LsHRk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCORE/iaQWkeV56utiReCvcK9sL-LsHRk.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bc:5b:e2:6a:6d:a0:26:eb:1d:0c:08:f0:60:16:94:b9:8d:92:
a2:fd:f1:48:77:74:be:a7:f7:71:4e:8a:12:44:1e:ad:13:09:
c7:2b:c9:cd:18:d9:81:a2:05:c6:e2:69:50:33:2f:b3:1c:86:
33:33:f5:9b:c0:ba:56:63:c9:42:ad:66:81:7e:b4:d2:cc:fe:
b9:47:dc:52:04:54:5a:7e:05:33:a3:04:64:8c:c4:9f:57:fa:
37:a3:c0:cf:8d:19:53:73:5e:cc:7e:a4:48:7a:41:5a:83:54:
89:3b:ed:f0:de:f0:e4:6a:a2:bd:df:ff:cf:54:3a:f3:8f:fb:
73:56:2e:e1:13:06:e1:ba:89:2b:15:5e:b6:5f:11:36:c2:43:
72:53:3a:84:98:92:7f:27:b5:f2:40:8c:82:bf:f7:c1:0b:05:
34:af:62:71:95:12:1a:dc:78:c3:60:10:9d:8b:fc:ef:bb:e2:
42:d2:35:e7:1d:3f:d7:f2:44:e6:12:d8:76:62:3d:7f:f9:ef:
dc:16:0a:07:04:af:fd:bd:b8:f1:43:06:14:ce:ea:ff:1a:50:
3d:2c:e9:41:83:a9:15:6e:64:04:bc:27:7b:db:d8:f5:eb:78:
ac:85:6c:8f:a6:ae:59:43:73:dd:af:9d:dc:eb:c8:0b:81:c9:
69:22:34:c8
-----BEGIN CERTIFICATE-----
MIIE6zCCA9OgAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODlB
NDE2OTFFNTc5RUFFQjYyNDVFMEFGNzBBRjZDMkZFMkVDMUQxOTAeFw0yNTAxMzAx
NjA4MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBDRjY4MUUxNTRDOTM4
MkNEQUQyMkZCMzJERDMyQ0Q5OUQ5QkU2OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+DTe6UwCjxpcXXiCW9N4qWn0c7lxlVd1fJeZDTv7NxqnMuMc1
SBfDPh+sulhqQwLI94UDekhls7OWJ733EO5FJ8w0sKsy2sOs2lndN2TK7V14W/c8
Xwh3MwMcBlJL451Q4YNZnqkw81Xx3vmuMu2Nl2kZsxN7ELKj3lx0ymJGiWJ22a63
azxrVSTQS+LdArL4Hi9gzpO47p0TQHJwHCotEZEswrwGTkMlBp6ugJj/QDImhGIT
RXDus2Tn2m8J/LSAa+qElTsrBJqnFebXBvWbjgfBhkURhI1MmKqR73o6blltH5fg
MnL+qojeoN65I8+H44SW0MbFsOU8jpk2zGkZAgMBAAGjggIHMIICAzAdBgNVHQ4E
FgQUDPaB4VTJOCza0i+zLdMs2Z2b5pEwHwYDVR0jBBgwFoAUiaQWkeV56utiReCv
cK9sL+LsHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDT1JF
L2lhUVdrZVY1NnV0aVJlQ3ZjSzlzTC1Mc0hSay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvaWFRV2tlVjU2dXRpUmVDdmNLOXNMLUxzSFJrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDT1JFL2lhUVdrZVY1NnV0aVJlQ3Zj
SzlzTC1Mc0hSay5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQC8
W+JqbaAm6x0MCPBgFpS5jZKi/fFId3S+p/dxTooSRB6tEwnHK8nNGNmBogXG4mlQ
My+zHIYzM/WbwLpWY8lCrWaBfrTSzP65R9xSBFRafgUzowRkjMSfV/o3o8DPjRlT
c17MfqRIekFag1SJO+3w3vDkaqK93//PVDrzj/tzVi7hEwbhuokrFV62XxE2wkNy
UzqEmJJ/J7XyQIyCv/fBCwU0r2JxlRIa3HjDYBCdi/zvu+JC0jXnHT/X8kTmEth2
Yj1/+e/cFgoHBK/9vbjxQwYUzur/GlA9LOlBg6kVbmQEvCd729j163ishWyPpq5Z
Q3Pdr53c68gLgclpIjTI
-----END CERTIFICATE-----
Generated at Mon Apr 28 09:36:56 2025 by rpki-client