$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft File: YV-b2YzHDog20BqUgcGcXC1F15E.mft (raw, json) Hash identifier: 4BBLTDLq+CFZlmAZQ6RvkvxmBnub8KeDI99gGJwJUcU= Subject key identifier: 29:48:E7:7B:52:AA:80:58:56:32:30:47:D0:54:4E:46:1C:FB:5F:B6 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0DB9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft Manifest number: 0D76 Signing time: Sat 19 Jul 2025 20:05:48 +0000 Manifest this update: Sat 19 Jul 2025 20:05:47 +0000 Manifest next update: Mon 21 Jul 2025 20:05:47 +0000 Files and hashes: 1: HGXAICMKlIFztpWd75_3AS8mfj8.roa (hash: WajPuWwbJkpNEAvkBk2K3kURT+9/Q/s6iGUXHrF5aOg=) 2: QZlrdCIyJ7crR5iE2UnumHSMdTo.roa (hash: ebgWJzUDOSOfD5gmXHGclkJIZmPyBy42ri+pB6YQyCs=) 3: Tn-jK4k1zunZYZlLn5bRIwyK4Ws.roa (hash: 4X3fizjeYyzxT04O4oKhXgH2KVwMRjE0VO5XCCx2fSU=) 4: YV-b2YzHDog20BqUgcGcXC1F15E.crl (hash: Qolf/TrMkRrqlMpEws9dH+pi1mSB3MM2KwvQiBIG5Yo=) 5: hhMYMGOaHFmrV_Wz1RZ5iLOeXkU.roa (hash: olQ5nKpJYa22CYGMvRXLH1IA+hL3jYOli5T5aglyxCU=) 6: k4VYlSkPwC-JJmk34SlNYqFYmp0.roa (hash: +1NMRZag2qmbeTOKxqDvxT+mAmyZrytHY1cdklDfcXg=) 7: ulzSpZ_xIQb7bESJcQDqgFSdO2E.roa (hash: 0vCyhPhc7YQad9Iq3RyKgs1zIf6QQ63oZtBlPpOOTA8=) 8: zdgg2m3lv0eYEAvAeVcQnxYFoIE.roa (hash: /ijSoNKm4rHPVUrDGGb6GBMokahEw6Qod+JFL0vi5Qk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 16:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3513 (0xdb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Jul 19 20:05:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2948E77B52AA805856323047D0544E461CFB5FB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:a7:69:94:35:e8:60:d6:78:5d:a1:38:25: 17:26:0a:86:09:c6:a3:e8:88:1b:13:61:76:ea:24: 2a:4e:fb:a1:4b:43:03:71:59:4b:47:8b:99:09:b3: 19:5f:ab:d1:e5:20:df:f2:6b:df:04:60:16:50:0a: cb:48:c6:a3:2f:d2:0b:cd:10:0e:4d:92:54:e1:ff: 0b:a0:10:5d:fc:c2:05:74:b4:97:f1:1d:5e:aa:ff: 1a:47:61:6a:0f:91:7e:37:f9:a6:42:6c:02:41:d2: 8d:c4:be:cd:78:28:d1:c3:2c:8c:c9:14:cf:fe:aa: b8:e3:8d:ea:91:14:dc:9b:83:91:fd:9b:94:0b:f2: 6f:4b:d7:cd:80:b7:17:25:dc:11:79:7d:0d:17:da: 50:98:38:5f:d5:7b:4c:3c:89:d1:da:7c:a0:8d:20: e7:e2:bf:cf:25:4e:ef:06:c2:c6:6b:ac:f8:8f:f1: 9a:30:01:99:2e:06:70:a4:e0:10:97:c0:e1:b2:e7: 6d:42:cd:9e:9f:c6:1d:cc:d5:dd:d1:13:39:c8:76: 96:8d:cc:fe:05:37:33:f7:9c:93:0a:df:e9:57:ee: bb:e2:59:e1:9f:13:41:98:f0:8a:1d:9f:d2:5c:05: cd:36:54:8f:6a:58:11:db:21:c2:fd:e6:dd:f5:b8: 10:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:48:E7:7B:52:AA:80:58:56:32:30:47:D0:54:4E:46:1C:FB:5F:B6 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:be:ae:82:f7:07:37:ba:f8:ca:c4:4a:35:e7:cb:15:7d:98: c4:9b:76:fa:96:6b:24:e0:db:8e:55:29:60:46:14:44:b0:29: c8:54:26:5e:e6:9b:f8:7f:b4:8c:d8:bf:89:66:f6:67:78:0e: 81:be:2e:d2:35:33:7e:55:1a:8f:b9:75:8a:b9:8c:fa:26:0d: 81:06:eb:c3:4d:9e:e5:11:fd:d7:bc:f2:47:fe:b3:db:4f:2c: 32:f0:76:b4:c4:08:68:71:30:43:f5:4b:63:a0:be:ac:45:e5: d4:06:a6:37:b7:d5:45:8d:ab:d4:df:70:6b:67:95:e7:95:cc: 74:05:de:71:e0:e5:21:b0:c8:0c:f5:b2:e5:df:2f:c7:ce:83: e2:e5:4f:ba:50:25:28:81:13:c2:f8:b3:62:cf:0b:92:1e:1f: 13:7f:37:a3:5f:41:7d:d2:d2:70:ea:6a:53:04:9f:73:3c:3f: b3:54:16:40:cd:07:6f:e7:14:54:de:5a:63:b4:9d:81:b5:d5: 73:da:55:c5:bf:92:e7:5f:27:7b:60:5f:ad:08:a9:33:35:90: f1:60:6a:07:47:92:c4:34:1f:3f:38:50:fa:d7:84:c5:79:c7: ec:3b:8f:f8:f7:a8:d6:c5:ce:f7:fb:48:d5:30:1b:35:18:34: b8:61:af:2e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA3MTky MDA1NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5NDhFNzdCNTJBQTgw NTg1NjMyMzA0N0QwNTQ0RTQ2MUNGQjVGQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHxqdplDXoYNZ4XaE4JRcmCoYJxqPoiBsTYXbqJCpO+6FLQwNx WUtHi5kJsxlfq9HlIN/ya98EYBZQCstIxqMv0gvNEA5NklTh/wugEF38wgV0tJfx HV6q/xpHYWoPkX43+aZCbAJB0o3Evs14KNHDLIzJFM/+qrjjjeqRFNybg5H9m5QL 8m9L182Atxcl3BF5fQ0X2lCYOF/Ve0w8idHafKCNIOfiv88lTu8GwsZrrPiP8Zow AZkuBnCk4BCXwOGy521CzZ6fxh3M1d3REznIdpaNzP4FNzP3nJMK3+lX7rviWeGf E0GY8Iodn9JcBc02VI9qWBHbIcL95t31uBARAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUKUjne1KqgFhWMjBH0FRORhz7X7YwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9ZVi1iMll6SERvZzIwQnFVZ2NH Y1hDMUYxNUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKL6u gvcHN7r4ysRKNefLFX2YxJt2+pZrJODbjlUpYEYURLApyFQmXuab+H+0jNi/iWb2 Z3gOgb4u0jUzflUaj7l1irmM+iYNgQbrw02e5RH917zyR/6z208sMvB2tMQIaHEw Q/VLY6C+rEXl1AamN7fVRY2r1N9wa2eV55XMdAXeceDlIbDIDPWy5d8vx86D4uVP ulAlKIETwvizYs8Lkh4fE383o19BfdLScOpqUwSfczw/s1QWQM0Hb+cUVN5aY7Sd gbXVc9pVxb+S518ne2BfrQipMzWQ8WBqB0eSxDQfPzhQ+teExXnH7DuP+Peo1sXO 9/tI1TAbNRg0uGGvLg== -----END CERTIFICATE-----Generated at Sun Jul 20 15:18:39 2025 by rpki-client