$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft File: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft (raw, json) Hash identifier: /+gGsEuBAkYyrcFibdWfgO44zsf5TFtB0qcPi2C5M1A= Subject key identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C Authority key identifier: DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 Certificate issuer: /CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Certificate serial: 01C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft Manifest number: 01BC Signing time: Mon 21 Jul 2025 10:07:52 +0000 Manifest this update: Mon 21 Jul 2025 10:07:52 +0000 Manifest next update: Wed 23 Jul 2025 10:07:52 +0000 Files and hashes: 1: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl (hash: LgxJLLTrsVLcLsR4ytuNAuWrnlK3euW+/rnpFkBk29g=) 2: aDtgujZ4Q58sTBqU9T12EpYX3qg.roa (hash: kFXJ2dYKbERQ2v8a9Rjz64jmXfu3H7PlBWa26xB89fU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 20:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Validity Not Before: Jul 21 10:07:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=275DBCFF08D33A5850754C5E3AACBCC723CEDE3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:e4:67:d1:00:b1:3a:66:a8:aa:bc:22:c0: f4:41:5d:11:da:88:40:62:27:af:d4:39:d3:8a:02: 22:05:07:9e:05:e0:75:56:92:5b:17:44:70:e9:ba: 9a:0f:ef:1c:7a:78:a4:73:5e:35:e1:65:c0:4c:f8: 92:57:44:82:c3:6b:7b:8e:b9:24:a0:03:04:2f:fe: 99:b4:d1:3f:ad:f3:21:50:37:17:14:f2:12:8b:a9: e7:50:65:50:d4:14:af:d3:31:93:1b:ea:b1:aa:3b: 9e:78:50:c0:ba:64:58:d4:a3:34:a0:b9:50:81:ea: 19:1e:70:6e:73:0c:07:70:3e:ff:40:b2:0a:47:cc: ef:47:af:59:ca:bc:15:7e:a1:e7:8f:4f:4c:26:1b: 58:15:68:c4:f6:ee:83:70:b2:c3:dd:30:b7:53:25: 00:e2:cb:be:65:8e:20:15:8e:bd:21:aa:cc:ba:f9: 0a:5b:3f:e7:a0:31:81:28:27:fe:c7:ff:05:3b:4d: 70:b3:68:8a:ad:73:f3:74:0b:2f:3d:e7:08:7e:56: 98:9b:7b:67:85:4c:02:9d:0b:82:35:e3:e3:49:b9: c2:60:c2:f7:8c:27:1e:f3:05:00:bd:28:e4:c3:aa: 3e:7d:7c:98:55:1e:bb:05:09:53:87:91:53:f1:c7: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C X509v3 Authority Key Identifier: keyid:DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:d0:f8:32:7e:44:5e:12:ba:e2:51:07:1a:20:94:69:e7:eb: 88:71:dc:11:a5:d5:84:8a:b8:5d:c2:27:9b:47:7b:ca:0d:39: 96:fe:af:85:ce:8a:1a:ee:52:79:5e:f6:db:d7:22:81:13:a1: 02:dc:e8:f4:65:a1:14:59:86:b3:ee:ee:5e:08:e1:50:8c:f5: a3:df:92:cb:3c:0e:c7:04:77:f6:ae:e4:a4:9b:dd:fa:49:5d: 12:6c:58:af:18:ce:1e:6c:a5:ed:c4:f9:b0:a2:0d:45:8d:7d: bd:63:97:6c:99:96:b5:bd:31:e1:59:f2:8d:84:e0:0a:c0:59: 6c:c2:33:97:04:30:69:ed:9c:6b:74:db:44:b4:3e:b0:6f:6c: ff:f4:25:3b:a4:10:e3:c3:e0:cf:0d:d2:0c:75:ea:16:21:0e: 26:ef:8e:0d:96:0f:54:6e:87:41:55:7c:a0:f2:01:53:0c:5c: 7a:c3:0e:c6:09:b1:07:2b:eb:2c:80:57:77:34:a8:f4:b1:06: 4b:16:84:98:14:40:c9:9c:10:6a:2b:d7:77:5e:ac:32:2f:88: 7c:a2:c7:e0:df:6b:45:f9:92:fb:29:d6:11:f0:f1:fc:26:74: db:6d:aa:10:41:fc:47:f9:b0:3c:f3:9c:64:be:72:29:1a:e6: 18:57:bc:db -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREU4 NzJCQUQyNjJEMThGMEE2NzQ5RTAyNzJEOTc1MjYxRDk0OUVDMzAeFw0yNTA3MjEx MDA3NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3NURCQ0ZGMDhEMzNB NTg1MDc1NEM1RTNBQUNCQ0M3MjNDRURFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuA+Rn0QCxOmaoqrwiwPRBXRHaiEBiJ6/UOdOKAiIFB54F4HVW klsXRHDpupoP7xx6eKRzXjXhZcBM+JJXRILDa3uOuSSgAwQv/pm00T+t8yFQNxcU 8hKLqedQZVDUFK/TMZMb6rGqO554UMC6ZFjUozSguVCB6hkecG5zDAdwPv9AsgpH zO9Hr1nKvBV+oeePT0wmG1gVaMT27oNwssPdMLdTJQDiy75ljiAVjr0hqsy6+Qpb P+egMYEoJ/7H/wU7TXCzaIqtc/N0Cy895wh+Vpibe2eFTAKdC4I14+NJucJgwveM Jx7zBQC9KOTDqj59fJhVHrsFCVOHkVPxx79hAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUJ128/wjTOlhQdUxeOqy8xyPO3jwwHwYDVR0jBBgwFoAU3ocrrSYtGPCmdJ4C ctl1Jh2UnsMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRlVZVS8z b2NyclNZdEdQQ21kSjRDY3RsMUpoMlVuc00uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzNvY3JyU1l0R1BDbWRKNENjdGwxSmgyVW5zTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZVWVUvM29jcnJTWXRHUENtZEo0Q2N0bDFK aDJVbnNNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBALLQ+DJ+ RF4SuuJRBxoglGnn64hx3BGl1YSKuF3CJ5tHe8oNOZb+r4XOihruUnle9tvXIoET oQLc6PRloRRZhrPu7l4I4VCM9aPfkss8DscEd/au5KSb3fpJXRJsWK8Yzh5spe3E +bCiDUWNfb1jl2yZlrW9MeFZ8o2E4ArAWWzCM5cEMGntnGt020S0PrBvbP/0JTuk EOPD4M8N0gx16hYhDibvjg2WD1Ruh0FVfKDyAVMMXHrDDsYJsQcr6yyAV3c0qPSx BksWhJgUQMmcEGor13derDIviHyix+Dfa0X5kvsp1hHw8fwmdNttqhBB/Ef5sDzz nGS+cika5hhXvNs= -----END CERTIFICATE-----Generated at Mon Jul 21 18:49:48 2025 by rpki-client