Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft
File: LXIEYXNU1wUjtvZaJwcStrGdgV4.mft (raw, json)
Hash identifier: am+Xswx0Qe4SC64j11YKzVNRv9ak8AFllbxvm0i1Uhs=
Subject key identifier: 8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 0CCA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft
Manifest number: 0C8C
Signing time: Thu 30 Jan 2025 20:37:09 +0000
Manifest this update: Thu 30 Jan 2025 20:37:09 +0000
Manifest next update: Sat 01 Feb 2025 20:37:09 +0000
Files and hashes: 1: 3QjKBJJloJmWm8ujilwpXML3tRI.roa (hash: el5DSZyOlFFZZO23/jDA9Ix+cjMPUM4Ii24K31ssI8Q=)
2: 67fI6_uBM_Da3bMaXyK8Yttm_3o.roa (hash: nl4ZusLSEZQ+r3yg5BLCrUU+Mb9X/TXeGQjujeHEpqE=)
3: LXIEYXNU1wUjtvZaJwcStrGdgV4.crl (hash: nONeZQ0dVOVRkF01t04sGbCRMipoqVUylVB44TzyFps=)
4: OmdASh_dKW8oRD92SCGLcywyX_8.roa (hash: VrqA6H/tsLKr3fLXrdIgD+7L6WAozfwbD2DTXprYTzo=)
5: c_eTt3M5AJdzz4nd2DxxgP_uId8.roa (hash: hEj9EQbLNXtUwRC2sEpwaW2/gRpt7271kTlZWX4gJ7o=)
6: dx_gHYVTQqvl321cd3KcxULrv7M.roa (hash: d7lm5Qyy6ceG6vRO6g+2v6K362TeBORi1EZ7UF9UzGc=)
7: oZd82siWv-A4-MgCBO8u6JX9v3U.roa (hash: 66qd4xHlRDmIIv49fcUdPfF6z6L3ZsxwA+bUxOUfFBY=)
8: opqsMlfox4AqcCgNt4KijB6o_r4.roa (hash: RCwoGDqpjCPRGSX93tQjmS9rha0E5FY1iUChMNag+4w=)
9: wPoYX9RHsUsMk4PGTjoy9cPrHzg.roa (hash: 1noYCAGTfKfimS4L8PcXBeqqcncCz2J2i7bubNaXJV0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3274 (0xcca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Jan 30 20:37:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8FB24E0D840F960EB9E53763485237102DDB4637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:2f:a2:8e:26:81:03:aa:24:8f:e4:9f:7f:
81:98:f3:97:3c:da:8e:dc:ed:8f:03:07:1d:77:b1:
5a:49:c3:3d:f6:ef:84:88:f6:28:be:4c:43:e9:74:
29:fe:59:b0:99:b7:cc:21:76:35:21:ef:53:e0:4a:
30:6c:f6:e4:d4:44:e6:51:a9:22:17:c8:98:9d:d2:
87:9b:6f:fc:cf:be:23:a7:d1:97:b0:d7:fe:89:b7:
9b:54:a3:f5:56:00:58:23:71:00:41:67:8a:b5:1c:
d3:bc:97:ea:30:2f:20:a3:dc:ea:94:57:05:cd:87:
f1:49:35:69:a0:64:11:9c:b5:d4:09:25:22:a6:cf:
82:72:2a:b6:21:f1:75:01:80:0b:b2:12:0d:d6:55:
ca:f1:91:ac:80:bf:8d:bd:91:fa:d1:3c:8f:42:60:
e4:2c:05:f5:95:67:86:d7:85:a4:24:6d:9d:9a:f5:
fd:f5:90:c1:03:80:9a:33:8a:f6:ec:ba:d2:f5:62:
f9:24:e5:05:3e:f2:a9:ec:e7:5e:b9:30:d8:69:f1:
98:b3:30:4c:50:98:22:9c:78:ce:2f:0c:01:02:69:
68:f3:3a:47:47:ae:85:ed:d9:68:6f:ff:6f:ce:04:
ea:48:68:fd:a4:53:2c:fc:ba:fd:17:05:49:55:16:
32:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:b6:58:95:e4:ee:33:a7:92:3d:ce:73:cb:c9:03:5b:ad:74:
a0:18:c8:c4:20:09:50:66:49:74:5f:7c:ec:41:d0:80:29:74:
e1:0f:5b:c1:0d:7a:51:3a:c6:af:02:c5:58:d8:2b:a2:54:81:
1e:27:ce:5c:3a:5f:84:fc:ac:8a:bb:ad:03:fa:2e:eb:f4:41:
fd:7f:b4:53:03:0d:16:3a:7f:5e:17:32:ff:75:c8:08:20:7d:
73:9f:89:c9:7d:c0:09:5d:6f:3d:9c:31:ff:6e:8e:5c:cf:8a:
13:f7:cf:1d:a8:64:d0:e8:e7:fb:83:6e:15:76:4e:d4:09:05:
08:3a:e6:f3:56:31:68:15:cb:eb:b4:7d:3c:db:50:84:73:09:
0b:c4:22:8a:af:82:4f:8e:83:4f:71:20:c0:ce:44:3b:a8:4f:
e4:f5:59:46:09:ce:d4:cc:a0:be:81:8d:8f:4e:33:17:13:f0:
6a:63:a6:f6:7c:29:a6:e2:13:ea:a5:bf:3c:01:1f:9a:84:be:
ef:61:58:c0:d4:82:19:8f:8f:a8:d0:a1:f1:87:12:94:46:f6:
35:5b:b4:cc:12:47:19:06:bf:ed:d7:40:20:05:99:87:d5:0a:
ad:2f:84:e5:fb:d3:85:85:c5:b3:e6:22:46:f9:a9:7b:89:f4:
c6:b3:e1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:18:18 2025 by rpki-client