$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft File: _E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft (raw, json) Hash identifier: k2gq8Fy37TsKCV3v/lIPRrQOS7QVQ64ZT66Bk+kWB7s= Subject key identifier: 43:4D:FC:4B:07:1D:51:02:6F:2A:B1:E4:9F:FB:DA:8C:E4:DE:03:A1 Authority key identifier: FC:4F:89:8B:A4:80:D8:0D:04:A4:8A:6C:7E:39:A7:21:CA:AB:4B:47 Certificate issuer: /CN=FC4F898BA480D80D04A48A6C7E39A721CAAB4B47 Certificate serial: 0A70 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft Manifest number: 0A70 Signing time: Thu 17 Apr 2025 21:39:14 +0000 Manifest this update: Thu 17 Apr 2025 21:39:14 +0000 Manifest next update: Sat 19 Apr 2025 21:39:14 +0000 Files and hashes: 1: _E-Ji6SA2A0EpIpsfjmnIcqrS0c.crl (hash: lwKGq7g6Zk+LZx7PEVRxNV7fLcKxvjWzC/4iT54ynLE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2672 (0xa70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4F898BA480D80D04A48A6C7E39A721CAAB4B47 Validity Not Before: Apr 17 21:39:14 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=434DFC4B071D51026F2AB1E49FFBDA8CE4DE03A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:1b:70:17:cd:31:d5:7e:04:bd:7e:bf:cb: c9:dc:92:b0:12:9c:dd:d1:25:7f:8b:55:a4:da:82: 65:fe:81:d6:7d:92:4f:ae:9c:99:69:99:32:bf:a6: 85:15:6a:43:a9:94:79:99:d6:fc:f3:c2:5b:f7:5c: 6e:b8:71:4d:fa:b2:2d:65:ab:00:66:2f:6e:77:d1: 75:64:88:c0:f5:70:57:d2:fc:fe:87:d8:2b:93:e1: 26:e7:ad:96:65:f7:46:cb:9c:f9:4b:21:e5:6f:f3: 9b:3f:b8:aa:fb:ec:f7:55:ec:b2:b3:54:de:a4:fe: 12:e0:ae:c1:2d:a9:06:e5:ae:c9:74:a5:94:2e:1e: 2c:a7:6e:4f:95:53:89:83:52:7d:2a:f3:9a:1b:f9: 45:f8:9b:f9:49:c9:b8:d9:d7:20:8c:c9:7d:21:8a: 65:ab:3a:05:54:7b:ab:4a:db:a6:33:f9:b5:35:da: 86:aa:e0:60:79:67:d8:3b:d2:fd:29:b4:11:e8:18: 25:d4:01:f7:31:59:ff:30:cc:73:73:97:79:a9:5b: 9c:73:46:f7:2a:5e:8a:b6:84:27:19:5f:f9:f3:3d: 5c:69:35:90:da:be:cf:9a:34:20:8e:67:2f:d4:92: 86:e4:93:9f:f6:b1:bf:74:d6:94:8a:5c:d9:32:a0: 17:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4D:FC:4B:07:1D:51:02:6F:2A:B1:E4:9F:FB:DA:8C:E4:DE:03:A1 X509v3 Authority Key Identifier: keyid:FC:4F:89:8B:A4:80:D8:0D:04:A4:8A:6C:7E:39:A7:21:CA:AB:4B:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:cf:83:56:49:9f:9d:82:3e:a2:f8:62:85:e7:96:6d:fd:f9: 76:6b:47:87:ad:84:54:85:98:f6:f6:54:da:16:31:11:ab:72: 45:0d:f9:ea:28:c7:8c:b5:cf:31:f7:fb:b8:1e:36:28:e8:3c: 9b:73:92:19:2f:5f:c6:3f:cc:7d:ed:35:81:ad:b7:d9:ae:95: e9:eb:5b:88:58:21:9e:6b:14:40:b1:53:b3:f4:54:59:62:6f: 91:0b:83:aa:5e:67:7e:e1:01:d4:f8:69:e9:f7:d0:c6:dd:a7: f9:b7:28:11:cd:d4:23:9a:e5:d7:a2:e9:27:09:6e:e1:ea:05: a7:67:06:40:d9:00:fc:f2:62:c7:27:b1:5a:72:91:fa:74:53: 9a:a6:9a:a7:d2:15:e0:97:bf:3d:e4:fa:c1:73:b9:38:12:03: 62:de:05:b5:df:96:85:48:5c:35:9c:a2:47:ee:49:64:e6:20: 5a:05:0d:c3:73:a5:d5:ef:4d:e1:1f:68:80:b2:11:6e:86:70: c3:06:43:f1:1c:5d:d3:d6:43:a1:7c:1e:3a:e6:f6:9b:be:2b: ad:44:47:91:ed:e2:45:e9:25:b8:26:31:e6:82:c6:a0:b8:b3: 6a:b5:5c:e7:4a:b8:54:13:61:af:73:70:72:4b:d3:72:89:e6: 1f:4b:d7:5c -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM0 Rjg5OEJBNDgwRDgwRDA0QTQ4QTZDN0UzOUE3MjFDQUFCNEI0NzAeFw0yNTA0MTcy MTM5MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzNERGQzRCMDcxRDUx MDI2RjJBQjFFNDlGRkJEQThDRTRERTAzQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC86xtwF80x1X4EvX6/y8nckrASnN3RJX+LVaTagmX+gdZ9kk+u nJlpmTK/poUVakOplHmZ1vzzwlv3XG64cU36si1lqwBmL2530XVkiMD1cFfS/P6H 2CuT4SbnrZZl90bLnPlLIeVv85s/uKr77PdV7LKzVN6k/hLgrsEtqQblrsl0pZQu Hiynbk+VU4mDUn0q85ob+UX4m/lJybjZ1yCMyX0himWrOgVUe6tK26Yz+bU12oaq 4GB5Z9g70v0ptBHoGCXUAfcxWf8wzHNzl3mpW5xzRvcqXoq2hCcZX/nzPVxpNZDa vs+aNCCOZy/Ukobkk5/2sb901pSKXNkyoBc7AgMBAAGjggINMIICCTAdBgNVHQ4E FgQUQ038SwcdUQJvKrHkn/vajOTeA6EwHwYDVR0jBBgwFoAU/E+Ji6SA2A0EpIps fjmnIcqrS0cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFJFQU1D SVRZL19FLUppNlNBMkEwRXBJcHNmam1uSWNxclMwYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvX0UtSmk2U0EyQTBFcElwc2ZqbW5JY3FyUzBjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFJFQU1DSVRZL19FLUppNlNBMkEw RXBJcHNmam1uSWNxclMwYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQACz4NWSZ+dgj6i+GKF55Zt/fl2a0eHrYRUhZj29lTaFjERq3JFDfnqKMeM tc8x9/u4HjYo6Dybc5IZL1/GP8x97TWBrbfZrpXp61uIWCGeaxRAsVOz9FRZYm+R C4OqXmd+4QHU+Gnp99DG3af5tygRzdQjmuXXouknCW7h6gWnZwZA2QD88mLHJ7Fa cpH6dFOappqn0hXgl7895PrBc7k4EgNi3gW135aFSFw1nKJH7klk5iBaBQ3Dc6XV 703hH2iAshFuhnDDBkPxHF3T1kOhfB465vabviutREeR7eJF6SW4JjHmgsaguLNq tVznSrhUE2Gvc3ByS9NyieYfS9dc -----END CERTIFICATE-----Generated at Fri Apr 18 21:40:46 2025 by rpki-client