$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft File: V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft (raw, json) Hash identifier: WRt4K68b3Jl05xBE9+QqY0rnfJbY4alOmA37obTuBYE= Subject key identifier: 00:51:DA:18:39:1A:E4:0B:13:6B:79:4F:92:1E:52:EA:A0:C6:4A:D8 Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Certificate serial: 0380 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft Manifest number: 0373 Signing time: Thu 17 Apr 2025 21:07:52 +0000 Manifest this update: Thu 17 Apr 2025 21:07:52 +0000 Manifest next update: Sat 19 Apr 2025 21:07:52 +0000 Files and hashes: 1: V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl (hash: BoRxQdatkQyyJs21ltNgd35ZE5lTs71br1uNrsnB6g8=) 2: nB9DPaSAl4WWARVMno0IFv4VL0o.roa (hash: FtnXWQ45J4Kdz4ELabJLuKUuZAnWW9qzClU0cpxTd8s=) 3: y3oP7rnzSDHbvaCd6s1aqAIJBJs.roa (hash: Udr7ihlAgoDMlgUSFmNc2j7ibIPgZKQ5bvhGfjXw988=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Validity Not Before: Apr 17 21:07:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0051DA18391AE40B136B794F921E52EAA0C64AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:b4:84:75:82:c3:a5:fd:38:af:34:1d:b9: ec:59:c3:17:53:57:b5:a1:a5:05:0b:93:57:17:97: 2e:16:92:fd:20:d4:9d:36:4f:59:0a:18:70:b4:f3: ba:42:4e:cb:07:e7:4c:d0:76:8a:95:6b:5e:12:4b: 54:d2:cb:de:65:c9:a7:44:6e:75:08:da:bf:ac:f5: 63:83:5f:0c:22:01:8d:af:dc:18:8c:25:59:b4:2f: b3:1d:f0:cc:8f:e5:08:16:5e:a5:0c:16:33:d4:92: 07:a1:be:df:d0:ad:8f:95:22:55:fc:52:93:41:c1: 4a:da:0a:06:71:ae:9f:b5:76:6a:3a:aa:1e:76:c5: 7b:f5:dd:78:9e:49:a5:d0:2d:f7:f3:b5:4e:11:5a: 82:25:18:31:39:9f:b7:4a:37:4e:b2:6e:21:5b:b4: e9:4d:83:d4:36:d8:b0:bb:a6:ba:24:7e:d9:e6:a6: 85:13:27:87:ea:26:63:63:91:50:5e:4f:e4:14:e4: 23:62:95:03:61:42:3c:11:86:05:ea:d3:70:50:66: 11:55:a5:ed:dc:d7:8b:27:4a:06:86:86:bd:07:fd: 34:ec:5d:ad:39:c5:39:a1:04:cf:81:a2:a2:d4:ac: 1c:78:b0:a9:87:f1:5e:41:44:a2:99:70:4e:d9:54: 0d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:51:DA:18:39:1A:E4:0B:13:6B:79:4F:92:1E:52:EA:A0:C6:4A:D8 X509v3 Authority Key Identifier: keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:9b:3e:c3:53:fd:8c:6e:08:13:ec:28:6e:22:10:a5:7c:7d: be:e1:2b:6d:3a:c6:b3:8f:a5:31:d6:1c:ea:70:d0:d4:c3:0b: e1:75:00:68:28:72:a7:4e:da:c0:b5:6a:fe:ff:eb:00:57:f3: 2b:6e:f3:f8:3b:93:25:60:55:07:b3:83:4f:d3:d2:d5:80:63: cf:20:35:23:bd:72:13:f4:42:5f:31:53:8c:04:c3:b8:cd:1c: 71:1a:f3:0e:2c:fb:d8:6c:2d:d5:e9:ba:47:df:c3:af:93:26: e0:20:e2:46:50:44:91:3d:ac:3b:13:a0:d6:2b:36:c0:f9:73: a6:6e:af:b2:e7:cf:8f:d7:b9:4c:77:fd:be:47:58:9c:7f:50: ba:40:56:98:8e:db:df:9d:50:f0:a5:a0:c5:7f:8a:55:a3:4c: 61:5a:54:d7:4e:28:51:38:4d:23:6e:91:cd:13:26:52:df:ea: 11:b6:04:88:90:4d:50:48:11:ff:8d:cb:4a:55:30:8a:d3:27: 23:2b:cb:8d:c8:44:14:c4:0c:26:da:e6:2c:6e:4d:ec:48:42: 45:52:bd:1c:77:ec:3b:c0:70:ce:00:b9:94:49:2b:0f:89:bb: 0e:ac:0a:13:4a:ba:11:0c:11:b1:06:b3:03:f4:8e:30:74:13: e0:e7:ed:56 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc4 MTgzQTBGRTVEQTRBMEYzQzA1NDZGQjZFQzI2Q0JEMTIzMkY5OTAeFw0yNTA0MTcy MTA3NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAwNTFEQTE4MzkxQUU0 MEIxMzZCNzk0RjkyMUU1MkVBQTBDNjRBRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPQLSEdYLDpf04rzQduexZwxdTV7WhpQULk1cXly4Wkv0g1J02 T1kKGHC087pCTssH50zQdoqVa14SS1TSy95lyadEbnUI2r+s9WODXwwiAY2v3BiM JVm0L7Md8MyP5QgWXqUMFjPUkgehvt/QrY+VIlX8UpNBwUraCgZxrp+1dmo6qh52 xXv13XieSaXQLffztU4RWoIlGDE5n7dKN06ybiFbtOlNg9Q22LC7prokftnmpoUT J4fqJmNjkVBeT+QU5CNilQNhQjwRhgXq03BQZhFVpe3c14snSgaGhr0H/TTsXa05 xTmhBM+BoqLUrBx4sKmH8V5BRKKZcE7ZVA0BAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUAFHaGDka5AsTa3lPkh5S6qDGStgwHwYDVR0jBBgwFoAUV4GDoP5dpKDzwFRv tuwmy9EjL5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NQMTEz ODQ3MC9WNEdEb1A1ZHBLRHp3RlJ2dHV3bXk5RWpMNWsuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1Y0R0RvUDVkcEtEendGUnZ0dXdteTlFakw1ay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NDUDExMzg0NzAvVjRHRG9QNWRw S0R6d0ZSdnR1d215OUVqTDVrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHSbPsNT/YxuCBPsKG4iEKV8fb7hK206xrOPpTHWHOpw0NTDC+F1AGgo cqdO2sC1av7/6wBX8ytu8/g7kyVgVQezg0/T0tWAY88gNSO9chP0Ql8xU4wEw7jN HHEa8w4s+9hsLdXpukffw6+TJuAg4kZQRJE9rDsToNYrNsD5c6Zur7Lnz4/XuUx3 /b5HWJx/ULpAVpiO29+dUPCloMV/ilWjTGFaVNdOKFE4TSNukc0TJlLf6hG2BIiQ TVBIEf+Ny0pVMIrTJyMry43IRBTEDCba5ixuTexIQkVSvRx37DvAcM4AuZRJKw+J uw6sChNKuhEMEbEGswP0jjB0E+Dn7VY= -----END CERTIFICATE-----Generated at Fri Apr 18 21:20:16 2025 by rpki-client