Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKH/3YdEbUFQ0UU8ShQqSeuhB9pdGZk.mft
File: 3YdEbUFQ0UU8ShQqSeuhB9pdGZk.mft (raw, json)
Hash identifier: dFNRK00h4bRCD9gLScV9/r4Va5OsDPkIyKLEfVfb0Nw=
Subject key identifier: C5:F8:D2:DE:44:75:18:16:47:59:D8:47:AF:45:70:F9:D6:22:90:BE
Authority key identifier: DD:87:44:6D:41:50:D1:45:3C:4A:14:2A:49:EB:A1:07:DA:5D:19:99
Certificate issuer: /CN=DD87446D4150D1453C4A142A49EBA107DA5D1999
Certificate serial: 73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3YdEbUFQ0UU8ShQqSeuhB9pdGZk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/3YdEbUFQ0UU8ShQqSeuhB9pdGZk.mft
Manifest number: 72
Signing time: Fri 31 Jan 2025 16:38:48 +0000
Manifest this update: Fri 31 Jan 2025 16:38:48 +0000
Manifest next update: Fri 31 Jan 2025 22:38:48 +0000
Files and hashes: 1: 3YdEbUFQ0UU8ShQqSeuhB9pdGZk.crl (hash: w5UH8dlmjAasbMzKywGNaRIDqBA/DSX7mAgbJdcxurk=)
2: Tew26Xv4XvGLbN7Qy0jSbpu0oLc.roa (hash: tBC9RGuTZNwk4sHfgNtnjMoxNn/XRY/vkxTu5J3ZlNg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115 (0x73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD87446D4150D1453C4A142A49EBA107DA5D1999
Validity
Not Before: Jan 31 16:38:48 2025 GMT
Not After : Jan 9 15:30:20 2026 GMT
Subject: CN=C5F8D2DE447518164759D847AF4570F9D62290BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3d:73:96:ca:2f:0f:76:4b:e2:ba:f7:0b:30:
3b:b8:b0:97:21:cf:80:24:6d:54:3a:e0:3e:98:04:
66:62:70:48:c5:8d:52:7c:b4:db:9f:a9:a1:07:af:
ef:5a:6f:50:b3:54:7d:ee:0f:13:71:b0:dc:a4:bb:
b8:63:33:75:aa:65:62:0a:c0:4c:82:58:9c:2d:8b:
2b:ab:50:67:2b:f5:0d:8c:0e:86:20:bd:17:fc:51:
7b:8b:7b:13:f3:8b:c9:36:b7:4b:db:0f:35:66:41:
68:ca:79:49:b9:46:47:18:fb:fe:12:76:6d:53:13:
a7:0c:11:20:08:25:7f:42:34:d2:08:75:31:27:0f:
8b:1c:25:bd:26:29:c6:21:ed:6b:d9:55:c0:79:e6:
86:f5:6c:c6:ac:e0:92:3f:c9:d2:45:f2:3d:ce:8d:
99:3c:9b:cc:c8:61:58:19:36:fc:9d:38:c5:ee:3e:
cc:0b:6c:50:09:9c:3c:ee:87:73:50:c7:c6:b8:19:
75:4e:dc:d9:65:6f:8b:e5:84:fc:32:e7:8d:58:e7:
b7:8c:fb:2a:55:36:10:a4:a3:fe:c5:32:1d:86:da:
e3:9f:21:0c:3a:8a:65:3f:62:87:44:a6:f4:36:da:
f8:6b:19:c9:ab:98:ee:fb:76:16:4e:0a:dc:63:d5:
33:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F8:D2:DE:44:75:18:16:47:59:D8:47:AF:45:70:F9:D6:22:90:BE
X509v3 Authority Key Identifier:
keyid:DD:87:44:6D:41:50:D1:45:3C:4A:14:2A:49:EB:A1:07:DA:5D:19:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/3YdEbUFQ0UU8ShQqSeuhB9pdGZk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3YdEbUFQ0UU8ShQqSeuhB9pdGZk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/3YdEbUFQ0UU8ShQqSeuhB9pdGZk.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:f0:58:6a:df:e9:6a:96:d7:ee:06:7e:6a:1a:4d:92:d2:eb:
00:11:39:f6:c2:1e:7e:f1:aa:1d:11:d7:86:1b:fb:c2:0a:95:
66:d7:2e:00:e4:00:7f:f4:de:d5:14:15:93:bf:80:33:7c:e8:
c7:14:b0:2d:60:c3:80:64:a2:c2:68:db:7d:3b:8c:cf:80:6b:
e3:06:f3:2e:f4:e0:94:11:64:fb:17:fc:97:f2:c6:9c:2d:6d:
24:6b:cb:b4:4d:20:84:1e:76:86:91:9d:fe:ca:b2:fa:be:08:
c0:86:5b:4f:2d:3f:1c:1b:1c:61:fb:34:de:38:ae:b4:36:04:
a1:f0:55:70:08:82:7b:64:eb:46:56:49:c9:3f:8a:bf:4a:fc:
40:99:f9:1a:ad:3e:36:04:4c:30:0b:04:74:65:78:46:d2:7b:
28:4e:71:a1:d4:41:2e:6c:36:65:69:fa:c8:dd:4d:c5:8a:b0:
77:16:59:c6:ef:54:6c:78:e9:13:f5:f0:37:f9:1c:86:e2:d2:
bb:bc:80:54:a7:72:60:c3:65:63:af:f3:90:55:72:df:72:ba:
08:32:2e:7b:58:91:20:35:e4:96:aa:10:a2:bb:2f:93:9a:da:
b3:59:09:92:26:5d:2f:d9:46:ec:f7:80:e9:d6:fb:17:16:b4:
1c:0f:8c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 03:04:33 2025 by rpki-client