$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft File: YV-b2YzHDog20BqUgcGcXC1F15E.mft (raw, json) Hash identifier: 1GUHkIpiuLbalfmYRtA4+c9So8V5rL6GLTbwLcp5b7k= Subject key identifier: 29:48:E7:7B:52:AA:80:58:56:32:30:47:D0:54:4E:46:1C:FB:5F:B6 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0D5E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft Manifest number: 0D24 Signing time: Sat 05 Apr 2025 21:06:09 +0000 Manifest this update: Sat 05 Apr 2025 21:06:09 +0000 Manifest next update: Mon 07 Apr 2025 21:06:09 +0000 Files and hashes: 1: HGXAICMKlIFztpWd75_3AS8mfj8.roa (hash: WajPuWwbJkpNEAvkBk2K3kURT+9/Q/s6iGUXHrF5aOg=) 2: Tn-jK4k1zunZYZlLn5bRIwyK4Ws.roa (hash: 4X3fizjeYyzxT04O4oKhXgH2KVwMRjE0VO5XCCx2fSU=) 3: YV-b2YzHDog20BqUgcGcXC1F15E.crl (hash: qxMSLte9W2ufc2a2xuXq5om0XrjESyinxmekwgcgDiw=) 4: hhMYMGOaHFmrV_Wz1RZ5iLOeXkU.roa (hash: olQ5nKpJYa22CYGMvRXLH1IA+hL3jYOli5T5aglyxCU=) 5: k4VYlSkPwC-JJmk34SlNYqFYmp0.roa (hash: +1NMRZag2qmbeTOKxqDvxT+mAmyZrytHY1cdklDfcXg=) 6: ulzSpZ_xIQb7bESJcQDqgFSdO2E.roa (hash: 0vCyhPhc7YQad9Iq3RyKgs1zIf6QQ63oZtBlPpOOTA8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3422 (0xd5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Apr 5 21:06:09 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2948E77B52AA805856323047D0544E461CFB5FB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:a7:69:94:35:e8:60:d6:78:5d:a1:38:25: 17:26:0a:86:09:c6:a3:e8:88:1b:13:61:76:ea:24: 2a:4e:fb:a1:4b:43:03:71:59:4b:47:8b:99:09:b3: 19:5f:ab:d1:e5:20:df:f2:6b:df:04:60:16:50:0a: cb:48:c6:a3:2f:d2:0b:cd:10:0e:4d:92:54:e1:ff: 0b:a0:10:5d:fc:c2:05:74:b4:97:f1:1d:5e:aa:ff: 1a:47:61:6a:0f:91:7e:37:f9:a6:42:6c:02:41:d2: 8d:c4:be:cd:78:28:d1:c3:2c:8c:c9:14:cf:fe:aa: b8:e3:8d:ea:91:14:dc:9b:83:91:fd:9b:94:0b:f2: 6f:4b:d7:cd:80:b7:17:25:dc:11:79:7d:0d:17:da: 50:98:38:5f:d5:7b:4c:3c:89:d1:da:7c:a0:8d:20: e7:e2:bf:cf:25:4e:ef:06:c2:c6:6b:ac:f8:8f:f1: 9a:30:01:99:2e:06:70:a4:e0:10:97:c0:e1:b2:e7: 6d:42:cd:9e:9f:c6:1d:cc:d5:dd:d1:13:39:c8:76: 96:8d:cc:fe:05:37:33:f7:9c:93:0a:df:e9:57:ee: bb:e2:59:e1:9f:13:41:98:f0:8a:1d:9f:d2:5c:05: cd:36:54:8f:6a:58:11:db:21:c2:fd:e6:dd:f5:b8: 10:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:48:E7:7B:52:AA:80:58:56:32:30:47:D0:54:4E:46:1C:FB:5F:B6 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:7a:74:f2:dc:99:6d:ac:4e:7b:0f:e2:30:d5:aa:a9:ed:de: 27:58:ba:b4:1c:0a:16:b5:ad:04:09:a1:bb:9c:ff:53:4b:23: 86:08:77:93:8c:77:85:56:6a:dd:d2:b9:e4:45:14:83:8d:32: 9f:e6:8b:36:b7:ce:0c:ec:1e:59:7f:7e:47:c9:7c:39:2a:1e: b8:c3:6d:b5:f5:46:dd:90:03:7d:0e:f6:77:52:c5:28:02:a2: d0:f4:bc:79:13:d6:b0:3e:83:6c:52:1b:b5:43:4f:ea:f3:13: ff:da:8b:0e:06:bc:f9:76:e1:34:c7:7d:b8:09:bf:c4:bc:d6: 50:49:90:96:07:7f:88:22:fc:00:6f:c6:88:2e:f4:2f:3e:e9: 28:d5:23:d9:d7:d9:cd:2e:eb:42:e6:b3:04:26:50:dc:54:9e: fe:2c:9c:86:66:f2:97:fc:41:19:f4:04:d1:ba:26:9a:2b:af: 9b:be:9b:a2:2e:1d:eb:2a:0c:e9:71:ab:b0:60:05:48:28:18: df:b2:57:6c:a8:18:bd:d4:af:b4:42:78:dc:50:1d:bc:78:5b: c5:9e:7f:83:29:05:4e:15:ed:b1:3d:0f:50:2d:54:61:66:cf: ad:2c:04:39:77:fa:45:19:69:d5:32:09:95:98:0b:03:f8:d4: 62:ef:ce:a1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA0MDUy MTA2MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5NDhFNzdCNTJBQTgw NTg1NjMyMzA0N0QwNTQ0RTQ2MUNGQjVGQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHxqdplDXoYNZ4XaE4JRcmCoYJxqPoiBsTYXbqJCpO+6FLQwNx WUtHi5kJsxlfq9HlIN/ya98EYBZQCstIxqMv0gvNEA5NklTh/wugEF38wgV0tJfx HV6q/xpHYWoPkX43+aZCbAJB0o3Evs14KNHDLIzJFM/+qrjjjeqRFNybg5H9m5QL 8m9L182Atxcl3BF5fQ0X2lCYOF/Ve0w8idHafKCNIOfiv88lTu8GwsZrrPiP8Zow AZkuBnCk4BCXwOGy521CzZ6fxh3M1d3REznIdpaNzP4FNzP3nJMK3+lX7rviWeGf E0GY8Iodn9JcBc02VI9qWBHbIcL95t31uBARAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUKUjne1KqgFhWMjBH0FRORhz7X7YwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9ZVi1iMll6SERvZzIwQnFVZ2NH Y1hDMUYxNUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO3p0 8tyZbaxOew/iMNWqqe3eJ1i6tBwKFrWtBAmhu5z/U0sjhgh3k4x3hVZq3dK55EUU g40yn+aLNrfODOweWX9+R8l8OSoeuMNttfVG3ZADfQ72d1LFKAKi0PS8eRPWsD6D bFIbtUNP6vMT/9qLDga8+XbhNMd9uAm/xLzWUEmQlgd/iCL8AG/GiC70Lz7pKNUj 2dfZzS7rQuazBCZQ3FSe/iychmbyl/xBGfQE0bommiuvm76boi4d6yoM6XGrsGAF SCgY37JXbKgYvdSvtEJ43FAdvHhbxZ5/gykFThXtsT0PUC1UYWbPrSwEOXf6RRlp 1TIJlZgLA/jUYu/OoQ== -----END CERTIFICATE-----Generated at Mon Apr 7 00:58:07 2025 by rpki-client