$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft File: ftgwlnECe35vya4nucaMnE4pxXU.mft (raw, json) Hash identifier: Qz1iBryBdQOSIw7fCMwChXzy8Creo9g4YCc6zeF0u4A= Subject key identifier: 66:A9:74:07:81:77:DC:FD:04:3F:D9:68:DE:DF:E1:B1:80:12:D4:2F Authority key identifier: 7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 Certificate issuer: /CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Certificate serial: 42 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft Manifest number: 41 Signing time: Mon 21 Jul 2025 03:05:58 +0000 Manifest this update: Mon 21 Jul 2025 03:05:58 +0000 Manifest next update: Mon 21 Jul 2025 09:05:58 +0000 Files and hashes: 1: ftgwlnECe35vya4nucaMnE4pxXU.crl (hash: AazV57YfKpYvhj58k5PpY251fzlFcrmuopDpzMtQhsc=) 2: td3jCjzHIYCL0-HvpN4nhdz2tvg.roa (hash: rBvJqif2TLaa20JqvQMoW3jO03c53tQSeUOcr0H7L0I=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 09:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Validity Not Before: Jul 21 03:05:58 2025 GMT Not After : Jul 8 15:30:21 2026 GMT Subject: CN=66A974078177DCFD043FD968DEDFE1B18012D42F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:25:2e:ce:01:3c:ee:31:ae:3d:11:9f:9c:1d: 2c:de:41:17:95:93:07:18:4b:f2:b5:7c:6d:99:11: 32:65:a7:b4:4c:d4:9c:5c:95:33:3f:41:56:f8:40: 75:39:d9:67:03:42:b5:3f:a8:3c:89:a0:f6:db:57: 34:6f:92:8d:6b:1d:38:b3:e2:58:1f:9d:02:05:1d: 40:a0:25:bc:00:bb:2f:ed:17:eb:bd:6b:3a:98:83: 02:d4:c8:37:39:bf:88:25:c2:b3:c9:51:43:ef:74: 5b:ce:74:f8:6f:85:79:7e:b5:a0:73:bc:45:16:ca: 5d:fb:4b:98:54:18:71:70:d2:f0:60:b5:d5:2f:a6: cb:c0:4b:c9:37:05:0a:fa:02:09:06:99:f7:53:c7: 81:f0:7c:1c:56:ba:76:e1:0a:6a:49:5e:49:32:3e: 01:c3:8e:db:b7:69:30:a0:af:b7:17:d0:f6:47:22: 20:bf:7b:3c:90:ad:3e:35:8d:58:de:73:c7:55:88: f1:60:00:98:90:ff:a4:e8:bd:62:12:14:de:ae:3a: 55:24:a8:d2:3d:f8:2e:6d:b0:23:91:7a:95:72:9a: 7a:ca:32:d1:e4:46:b1:67:77:bc:63:43:53:d9:08: 3b:86:bb:be:d3:a8:e9:b4:3d:1e:e4:da:7e:19:cf: 8c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A9:74:07:81:77:DC:FD:04:3F:D9:68:DE:DF:E1:B1:80:12:D4:2F X509v3 Authority Key Identifier: keyid:7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:19:21:ea:04:d5:ab:9b:43:44:46:aa:61:28:08:af:52:4a: 5b:ef:82:83:f9:3b:30:4f:0f:a2:f2:3a:ae:6c:79:67:5d:1a: 0f:31:f6:86:c8:1c:6b:14:1d:70:78:0b:65:46:4c:41:94:58: ed:55:2a:9c:5a:78:35:5d:8a:22:9e:60:31:2c:e7:27:31:8d: 5e:e2:05:f2:e8:ac:a5:2e:ec:81:91:0e:3b:e1:0b:7b:b5:6b: 56:fd:f0:de:d8:71:fb:aa:15:ac:a3:4f:c3:7a:4d:7d:a9:fa: 43:40:48:ed:b1:4a:0c:5f:21:68:6f:12:14:a0:66:65:76:e1: cf:ea:55:65:f3:86:19:ef:61:c2:05:33:88:4f:7c:24:03:be: ce:b5:5d:f9:db:ae:9c:14:48:90:eb:ad:47:60:15:56:45:cf: 52:59:d1:8d:a2:ff:71:8b:58:61:a4:ae:f6:a8:5f:78:71:47: 35:b2:18:5d:43:55:54:48:c2:0b:61:fd:36:5a:f1:0a:8d:b8: d0:ee:46:76:0c:d6:66:eb:0b:30:57:45:af:60:f9:11:b2:8e: b4:bb:d0:d3:d0:f5:52:75:7b:30:c1:83:92:24:d7:b3:bd:17: 15:56:45:22:c9:21:af:ed:99:d4:dd:52:62:51:d4:2d:a1:27: 72:0c:c3:08 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3RUQ4 MzA5NjcxMDI3QjdFNkZDOUFFMjdCOUM2OEM5QzRFMjlDNTc1MB4XDTI1MDcyMTAz MDU1OFoXDTI2MDcwODE1MzAyMVowMzExMC8GA1UEAxMoNjZBOTc0MDc4MTc3RENG RDA0M0ZEOTY4REVERkUxQjE4MDEyRDQyRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM4lLs4BPO4xrj0Rn5wdLN5BF5WTBxhL8rV8bZkRMmWntEzUnFyV Mz9BVvhAdTnZZwNCtT+oPImg9ttXNG+SjWsdOLPiWB+dAgUdQKAlvAC7L+0X671r OpiDAtTINzm/iCXCs8lRQ+90W850+G+FeX61oHO8RRbKXftLmFQYcXDS8GC11S+m y8BLyTcFCvoCCQaZ91PHgfB8HFa6duEKakleSTI+AcOO27dpMKCvtxfQ9kciIL97 PJCtPjWNWN5zx1WI8WAAmJD/pOi9YhIU3q46VSSo0j34Lm2wI5F6lXKaesoy0eRG sWd3vGNDU9kIO4a7vtOo6bQ9HuTafhnPjEkCAwEAAaOCAgswggIHMB0GA1UdDgQW BBRmqXQHgXfc/QQ/2Wje3+GxgBLULzAfBgNVHSMEGDAWgBR+2DCWcQJ7fm/Jrie5 xoycTinFdTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1CRVNP Ti9mdGd3bG5FQ2UzNXZ5YTRudWNhTW5FNHB4WFUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2Z0Z3dsbkVDZTM1dnlhNG51Y2FNbkU0cHhYVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0dBTUJFU09OL2Z0Z3dsbkVDZTM1dnlh NG51Y2FNbkU0cHhYVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p Yy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBlGSHqBNWrm0NERqphKAivUkpb74KD+TswTw+i8jqubHlnXRoPMfaGyBxrFB1w eAtlRkxBlFjtVSqcWng1XYoinmAxLOcnMY1e4gXy6KylLuyBkQ474Qt7tWtW/fDe 2HH7qhWso0/Dek19qfpDQEjtsUoMXyFobxIUoGZlduHP6lVl84YZ72HCBTOIT3wk A77OtV35266cFEiQ661HYBVWRc9SWdGNov9xi1hhpK72qF94cUc1shhdQ1VUSMIL Yf02WvEKjbjQ7kZ2DNZm6wswV0WvYPkRso60u9DT0PVSdXswwYOSJNezvRcVVkUi ySGv7ZnU3VJiUdQtoSdyDMMI -----END CERTIFICATE-----Generated at Mon Jul 21 08:09:13 2025 by rpki-client