Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.mft
File: MpTnGQKkpcMbmHvWfQlK9YMKgW0.mft (raw, json)
Hash identifier: 0H1+s+nPlZxZTElgEksb0wyGu7/MqQ7Is9pBSl2xPvU=
Subject key identifier: 9F:0B:C5:76:CE:3F:0B:63:79:31:D6:0C:0D:F7:C8:06:52:C7:70:6E
Authority key identifier: 32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
Certificate issuer: /CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Certificate serial: 02A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.mft
Manifest number: 0295
Signing time: Thu 30 Jan 2025 20:37:10 +0000
Manifest this update: Thu 30 Jan 2025 20:37:10 +0000
Manifest next update: Sat 01 Feb 2025 20:37:10 +0000
Files and hashes: 1: 9fjWKVslQEtjFDcGwI9VAt198aI.roa (hash: SweuBdYZIqAxSTZJBLrwi5IxgjvYozvljY6u+R+4US8=)
2: MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl (hash: snbE+/yghkykgfAWeDQx9IBA+Cj6yMC75sHovAMF9zE=)
3: x7E2fEp_IAPpBAaNxt6Q11GeStc.roa (hash: JQWLf010NcX37vqya3X87j8Bt3Tfh5Nan3XV2kmK/Sw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 673 (0x2a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Validity
Not Before: Jan 30 20:37:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9F0BC576CE3F0B637931D60C0DF7C80652C7706E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:ba:c4:e0:cd:48:da:c3:9e:4f:ca:39:d8:
e5:85:86:81:23:8f:50:4e:a4:2e:ee:cb:1f:47:aa:
76:3a:a4:ae:69:4a:56:38:01:7d:5c:7d:60:ba:df:
76:7a:08:cf:80:6f:d9:fd:6e:b0:07:9a:83:ad:22:
33:12:38:33:ed:d5:1c:b2:7a:4c:25:55:61:00:1a:
0e:45:25:36:d7:7a:c2:07:e1:a8:1a:58:96:9d:50:
33:9f:9d:98:31:97:d7:cd:d9:78:06:f0:04:ce:fe:
8d:0e:ef:d3:30:0b:48:32:b5:fb:df:bc:4d:7a:19:
48:9f:61:e2:3f:26:b2:c7:40:c8:b2:0b:97:01:75:
4b:1a:d0:6d:7c:93:bd:22:67:9f:af:23:8f:3b:37:
78:ab:80:24:8a:72:01:33:12:8d:97:7d:0b:e3:97:
8d:59:8d:bd:f2:0c:b0:c6:01:5d:69:18:0f:c2:02:
e9:36:74:b9:25:ee:26:0e:a4:9e:63:05:95:36:fc:
5a:aa:79:5a:c6:a3:be:eb:4c:df:20:87:19:8d:5e:
3b:f8:05:6c:fa:1a:cc:7b:b1:a8:ae:4b:5f:9b:24:
d1:78:8c:fb:94:8d:5c:a4:ca:2c:9e:0f:28:13:69:
83:b8:0d:96:75:ab:29:95:ca:68:17:47:c9:bb:e4:
1b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0B:C5:76:CE:3F:0B:63:79:31:D6:0C:0D:F7:C8:06:52:C7:70:6E
X509v3 Authority Key Identifier:
keyid:32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2b:46:76:e0:d2:d8:0a:72:eb:e3:8e:52:43:70:a1:4d:ce:94:
3a:a5:44:d4:74:70:6f:3a:c1:ab:59:46:bd:22:40:d9:ec:d6:
30:f4:56:06:e3:b7:af:b2:86:d0:ca:26:3b:c3:b8:09:0e:27:
d5:6d:c4:67:ed:b3:4e:d1:bc:df:b5:b3:cd:bb:fe:0a:94:3b:
bf:3d:f3:4e:09:20:05:65:ad:ca:d0:de:66:e6:26:5a:ca:81:
aa:d7:fe:e0:e7:4c:bd:5c:7e:36:91:b1:3b:31:e5:ed:24:47:
c0:b9:33:41:30:f9:52:b0:b4:88:d0:65:cc:57:3e:50:88:01:
85:0c:cb:b9:ac:d7:6d:25:aa:56:7f:87:8b:0c:f5:35:fb:c7:
56:1a:f5:14:2e:a7:24:20:e0:9d:a6:f4:a5:26:02:1f:80:56:
c5:70:0c:f1:ee:d3:89:97:e8:90:6a:62:7d:5e:35:50:7c:c5:
e6:c3:be:b8:c3:68:ab:b1:f9:1d:f2:1b:2a:55:bc:08:01:d6:
ea:a1:25:29:64:41:32:c4:a2:19:1f:27:e1:12:92:d3:ba:63:
d2:72:b0:7e:cc:0d:fc:6e:1c:72:0f:8b:65:54:58:9e:d8:fd:
2d:73:99:84:27:f4:17:fe:c2:9d:11:7e:28:f6:af:3c:3e:52:
a1:1a:a2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:42:28 2025 by rpki-client