$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.mft File: FlSV6NMn5PYtWhZDjwgOYIo00NM.mft (raw, json) Hash identifier: OqZ/k43zqT/P2rpUgn7SUF1ZoNN0P2LraLt5rv/iZMM= Subject key identifier: 99:D7:C8:6B:B0:17:9C:EC:BF:7C:47:16:7D:EB:75:FC:58:4B:5E:C6 Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3 Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3 Certificate serial: 0F7B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.mft Manifest number: 0F17 Signing time: Thu 17 Apr 2025 21:08:22 +0000 Manifest this update: Thu 17 Apr 2025 21:08:22 +0000 Manifest next update: Sat 19 Apr 2025 21:08:22 +0000 Files and hashes: 1: FlSV6NMn5PYtWhZDjwgOYIo00NM.crl (hash: TRiA1ZtmLpqdMlVL23if6F2ID3SJMQ+dJ5XRmxAgVFk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3963 (0xf7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3 Validity Not Before: Apr 17 21:08:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=99D7C86BB0179CECBF7C47167DEB75FC584B5EC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:5b:82:e1:af:76:2d:70:7b:83:b3:1b:fe: d5:a7:03:88:12:99:d8:a0:5f:eb:85:dc:43:97:fd: 38:f9:af:00:7d:ce:15:42:9a:4b:71:ae:96:68:f4: 0c:92:af:88:f2:85:e1:66:7c:39:90:53:f4:1a:8e: 0e:a1:c9:3e:13:ae:d3:54:8e:40:ac:55:15:87:ea: b6:82:a1:ac:e4:ae:e9:34:b5:cd:5d:87:87:b4:b5: 79:4f:13:0a:cc:b0:7a:bf:8a:53:86:0a:e8:db:54: 88:39:6b:aa:36:35:39:a1:a4:b8:3e:4e:78:8a:34: cd:98:d5:30:08:b1:cb:10:10:45:b3:24:e0:f3:06: f8:44:8a:c5:c0:5e:a9:42:d2:48:fd:82:a4:3d:b2: 58:e6:39:f0:7d:b2:0c:e5:bb:e8:12:2d:ca:db:35: 3c:20:5b:15:c6:0a:d9:23:0d:6c:d0:58:75:77:fe: c3:cf:46:58:bd:cc:37:03:95:8f:2e:fc:21:d4:13: 50:1b:dd:85:9e:15:c5:38:fb:cc:1e:31:be:a2:f1: a4:79:af:c2:a0:28:64:fe:5b:e1:97:93:3c:51:9b: 12:63:f1:ce:bc:c1:bd:ed:c0:f5:a1:7e:67:24:c7: 8c:7d:91:38:e5:31:8d:fb:1a:51:7d:36:dc:72:54: 9e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D7:C8:6B:B0:17:9C:EC:BF:7C:47:16:7D:EB:75:FC:58:4B:5E:C6 X509v3 Authority Key Identifier: keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:03:b0:88:2c:95:7b:1c:48:06:8b:2f:df:ea:af:76:aa:58: dc:a1:c3:a0:4d:0b:40:9b:10:f9:65:ba:91:6a:38:1b:82:8f: 47:57:c2:b2:e1:4b:36:2d:7c:9f:c1:8d:2c:bd:fd:e4:ac:8f: a9:1a:99:14:cb:a0:f3:68:04:05:7d:a0:5f:cb:7d:e9:a8:e9: ea:8e:47:77:76:ee:06:49:81:85:16:61:ba:78:56:b6:67:95: 03:3e:8b:a2:6f:ec:e0:7c:1b:03:51:ba:9f:22:a8:35:a7:5d: 65:a5:57:d2:ba:e0:4e:2a:32:57:7c:da:32:7b:47:f3:90:ef: 94:b2:7b:b4:e8:8a:a0:df:4d:8f:9b:e6:1d:a5:f1:0b:8d:0b: b7:a5:a9:59:d5:33:c7:72:88:71:7c:8e:b5:ea:0a:1c:53:fa: 3e:14:af:f5:64:84:98:bd:de:40:2c:37:3d:b7:fb:52:f3:4e: 10:d0:2d:bb:68:ef:73:b8:9f:7f:27:28:ed:e4:37:df:19:52: c3:20:2c:38:a9:46:49:7b:47:37:af:2b:e8:e2:ca:e4:a7:fb: dd:9e:b3:3c:d8:29:f7:af:5c:33:4f:5a:4c:2d:73:59:f1:3e: 29:49:8e:9b:9b:25:3a:95:fd:d8:8f:59:77:9a:c5:b3:7f:45: 24:4b:a4:55 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICD3swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTY1 NDk1RThEMzI3RTRGNjJENUExNjQzOEYwODBFNjA4QTM0RDBEMzAeFw0yNTA0MTcy MTA4MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5RDdDODZCQjAxNzlD RUNCRjdDNDcxNjdERUI3NUZDNTg0QjVFQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5yFuC4a92LXB7g7Mb/tWnA4gSmdigX+uF3EOX/Tj5rwB9zhVC mktxrpZo9AySr4jyheFmfDmQU/Qajg6hyT4TrtNUjkCsVRWH6raCoazkruk0tc1d h4e0tXlPEwrMsHq/ilOGCujbVIg5a6o2NTmhpLg+TniKNM2Y1TAIscsQEEWzJODz BvhEisXAXqlC0kj9gqQ9sljmOfB9sgzlu+gSLcrbNTwgWxXGCtkjDWzQWHV3/sPP Rli9zDcDlY8u/CHUE1Ab3YWeFcU4+8weMb6i8aR5r8KgKGT+W+GXkzxRmxJj8c68 wb3twPWhfmckx4x9kTjlMY37GlF9NtxyVJ7ZAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUmdfIa7AXnOy/fEcWfet1/FhLXsYwHwYDVR0jBBgwFoAUFlSV6NMn5PYtWhZD jwgOYIo00NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNRVNP VUwvRmxTVjZOTW41UFl0V2haRGp3Z09ZSW8wME5NLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GbFNWNk5NbjVQWXRXaFpEandnT1lJbzAwTk0uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1FU09VTC9GbFNWNk5NbjVQWXRX aFpEandnT1lJbzAwTk0ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfAOwiCyVexxIBosv3+qvdqpY3KHDoE0LQJsQ+WW6kWo4G4KPR1fCsuFLNi18 n8GNLL395KyPqRqZFMug82gEBX2gX8t96ajp6o5Hd3buBkmBhRZhunhWtmeVAz6L om/s4HwbA1G6nyKoNaddZaVX0rrgTioyV3zaMntH85DvlLJ7tOiKoN9Nj5vmHaXx C40Lt6WpWdUzx3KIcXyOteoKHFP6PhSv9WSEmL3eQCw3Pbf7UvNOENAtu2jvc7if fyco7eQ33xlSwyAsOKlGSXtHN68r6OLK5Kf73Z6zPNgp969cM09aTC1zWfE+KUmO m5slOpX92I9Zd5rFs39FJEukVQ== -----END CERTIFICATE-----Generated at Fri Apr 18 22:24:01 2025 by rpki-client