Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.mft
File: LYTKJpMg4lYhai3uLqOBowRSarQ.mft (raw, json)
Hash identifier: Q1Qx1HNIrs92+5zTPzrNT98cAjZ72zZMAOEklvDDFXs=
Subject key identifier: 27:A1:7F:D0:38:AE:0B:33:0E:E5:B4:71:D7:06:5D:1E:B0:EA:5C:4E
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 0B88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.mft
Manifest number: 0B75
Signing time: Mon 08 Jan 2024 11:37:12 +0000
Manifest this update: Mon 08 Jan 2024 11:37:12 +0000
Manifest next update: Wed 10 Jan 2024 11:37:12 +0000
Files and hashes: 1: -0qZX9hUjDl9gCfs11Nf0Sm0efQ.roa (hash: ydIO6KrQwzaMkFS1WB6kYnuMM1x7UsqT0CieZsTP1DE=)
2: Aj2WUd_GHeUPJ0by1slWpaEdwxo.roa (hash: NC191Krd5dbUvTgpwipLhkExaWSpmTte9GUNLMvnDPE=)
3: LYTKJpMg4lYhai3uLqOBowRSarQ.crl (hash: ejidbCOOHIyUJ49AfhYmenUDFaJCqJH9JJg+o1meuw0=)
4: oX0Z-z6YB6FHY1PbCy01UMlVuNA.roa (hash: XuRSPfdzYeECHiahleXAfYFspYfWz0InEHP3e8S/n3g=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2952 (0xb88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Jan 8 11:37:12 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=27A17FD038AE0B330EE5B471D7065D1EB0EA5C4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c6:81:19:02:93:1b:2f:f8:5e:4b:8e:8e:93:
2a:1c:74:6a:de:23:77:9d:9f:be:d0:d7:30:78:4f:
de:b0:f4:e4:88:96:8e:c5:dd:bf:7f:c0:10:39:75:
dd:3a:7b:c9:4b:e1:5d:dd:94:6f:bb:8e:83:73:31:
52:69:73:9d:7c:4e:13:90:23:f5:5e:b5:b2:fe:24:
9c:fe:ff:ae:8d:d4:64:0f:94:7a:2f:81:3b:45:aa:
f0:74:cc:ac:fd:1f:f5:a9:32:76:fe:86:08:ba:0b:
5b:77:7a:90:0c:14:fa:2e:4f:cb:56:94:39:b3:7f:
22:98:84:fd:c0:cf:f3:a1:d2:71:c4:89:de:81:02:
a1:0b:15:16:37:77:c2:22:64:72:b4:2e:87:37:c9:
ab:78:e1:e8:99:dc:95:c1:1c:f5:b9:49:fd:1d:09:
b7:64:9b:f9:71:19:59:87:f9:00:0c:48:7f:6d:c9:
43:ff:a0:5f:4a:17:3a:b0:3a:aa:01:2b:2e:22:4d:
90:ba:36:29:45:53:2e:73:b3:74:3f:7a:f7:fb:0d:
86:7d:3d:72:1b:45:67:17:9c:06:16:54:1f:49:e0:
0c:5d:02:dd:2a:fc:4a:6f:c8:ed:c3:bf:dd:10:84:
a9:99:cb:a2:4b:8a:da:80:7c:ae:98:ef:0e:70:b4:
01:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A1:7F:D0:38:AE:0B:33:0E:E5:B4:71:D7:06:5D:1E:B0:EA:5C:4E
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:66:30:60:9b:c3:cd:45:ac:d1:f8:f9:2d:09:77:cc:08:6f:
f3:df:4f:00:5a:08:68:ea:7e:a7:e0:be:62:39:60:09:81:d1:
d7:e7:1a:8f:8d:e2:7b:09:3c:7a:63:60:cd:9e:7c:ab:c3:c8:
d9:2b:23:c4:3b:df:ed:18:4b:be:ba:c3:4e:d1:18:7b:ba:46:
bc:7f:4e:c6:d5:a9:ce:4e:23:e5:48:f2:83:ce:fe:38:75:95:
70:12:0e:57:d4:f5:c5:dc:f3:18:6b:b5:43:aa:dd:38:d2:87:
7f:c2:7e:23:9f:40:b0:c9:a3:fb:63:4a:97:71:8a:59:a0:72:
b8:77:2f:15:cd:d1:51:87:81:d9:9e:b4:eb:ec:7a:aa:9f:3b:
ba:a5:44:1d:be:22:56:1e:ef:48:4f:30:8b:3e:e4:38:c6:81:
56:63:64:8e:9d:cf:67:85:2e:94:f3:c6:51:ae:ca:a4:a4:67:
90:86:6f:f6:18:e7:85:a7:99:14:b7:e1:d9:d5:79:2b:27:ca:
0e:ed:ea:c0:38:79:79:d4:72:0a:19:e5:e3:54:20:3e:e0:03:
c0:f1:41:ff:43:73:72:bd:fb:08:d6:30:9d:b0:5e:9e:60:10:
19:f9:16:6a:25:a7:62:b4:3d:3e:fd:93:93:a1:5a:91:8a:b5:
33:39:40:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 01:01:50 2024 by rpki-client on console.sobornost.net