$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft File: aMrB-gTYDP4-K-l8erGFK2ZWU18.mft (raw, json) Hash identifier: qu0CRrZ6HG+KB3wMqMBigm3j73MN3Dtn4eH0lbSht5U= Subject key identifier: 06:C2:74:CC:25:B5:C7:36:BD:BE:A4:AD:32:37:AF:D5:46:1B:69:09 Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Certificate serial: 1349 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft Manifest number: 133A Signing time: Thu 17 Apr 2025 21:08:04 +0000 Manifest this update: Thu 17 Apr 2025 21:08:04 +0000 Manifest next update: Sat 19 Apr 2025 21:08:04 +0000 Files and hashes: 1: 3jx5GdUf5gMAK9-4ae9ojtZgcB0.roa (hash: atwhpbJyyBBSoDUx9t5hcvCTpc7kQ0JQR+wBQ2WQpqU=) 2: aMrB-gTYDP4-K-l8erGFK2ZWU18.crl (hash: vFe4n0tRnKdjozBtggUnbdbHO2aElV2RWdOLIdP4vDg=) 3: bxTrnezpDP1Xa8VQF3cI6cbxo1M.roa (hash: pRLptR+u3w4r/JlUVL383TWJSatNcKhO5Ix/NmSTnpY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4937 (0x1349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Validity Not Before: Apr 17 21:08:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=06C274CC25B5C736BDBEA4AD3237AFD5461B6909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d5:87:c4:0b:a7:37:be:2d:dd:5c:55:39:28: 31:c9:ca:ac:20:56:97:9a:40:08:e1:0e:b0:b4:9b: 15:3f:da:29:fd:41:72:26:82:fd:dc:23:f8:89:06: 98:f9:bf:5c:89:dd:f2:87:c3:74:4f:c2:0d:4b:f1: 0e:36:f4:dc:0b:9c:5d:15:66:d3:c2:ed:67:e2:e3: aa:68:4d:f1:c4:a0:52:1c:5b:7d:d0:da:b9:23:83: 55:2e:71:36:db:a6:cf:97:7f:25:cb:7f:0a:50:1c: d7:cf:09:08:e5:bd:63:95:f7:b9:c8:9e:ba:d0:79: 53:ac:69:e6:b2:23:3f:8e:95:7c:26:c6:e7:2d:19: e2:e5:13:8b:a3:70:ce:26:36:ed:12:70:ed:6d:42: 1a:3c:2f:b5:49:45:4d:49:8c:50:a5:5c:88:16:53: df:f6:9c:3e:eb:f6:4d:9f:3b:f6:4c:6c:eb:ea:47: 80:69:19:b5:df:15:ec:fd:8c:04:70:0b:ab:41:8a: 7a:2a:71:21:8a:50:f6:50:c7:d5:a4:3e:a8:3e:e6: 7c:86:6c:e7:8b:69:fc:f7:f0:55:8c:69:f5:ca:c8: a7:d6:2c:c4:f4:56:2f:e8:b2:f2:e1:39:fb:41:49: 1b:40:4f:63:3a:31:4d:9d:48:3f:ea:4b:35:fd:d7: 13:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C2:74:CC:25:B5:C7:36:BD:BE:A4:AD:32:37:AF:D5:46:1B:69:09 X509v3 Authority Key Identifier: keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:77:77:bc:a6:90:41:b7:7b:d6:f1:4c:f3:11:c2:fb:d3:18: 40:b6:57:0d:d2:d8:0f:49:6d:49:ca:30:0e:3f:7c:3e:38:cc: f1:ef:dd:13:92:ec:19:cf:96:d2:ae:e0:90:ef:3c:98:d7:f6: 21:87:0e:82:6d:cf:a5:fe:3e:71:b3:0a:5c:93:f7:59:e2:d9: 78:d2:0c:5e:4c:45:9b:0c:26:46:8d:23:b8:dd:b8:b4:5c:a8: c5:b5:5d:98:53:f6:8b:c9:82:0b:56:84:f2:14:07:f3:6b:83: d1:d6:5f:e1:d2:5c:1d:ca:e3:1e:03:ee:8d:73:d6:4f:31:02: 51:cc:4d:dc:f2:ff:d5:a1:e1:6b:d3:d4:35:1a:b7:a6:44:27: b4:52:06:72:88:21:ad:30:7b:2c:e6:70:20:9f:d3:24:e9:1f: d4:04:ff:72:de:00:e6:ff:8a:e4:71:00:7f:6e:d5:9e:32:d4: f8:f2:6a:35:e2:b2:06:96:bc:ae:3d:9d:f0:42:9b:1c:86:c7: 11:9e:02:d0:d4:d8:c0:cf:c7:0e:54:3f:06:db:ee:7e:8e:7d: fb:1b:fe:86:a3:9b:c8:41:89:9e:37:4a:26:fa:74:06:9b:5b: 51:70:b6:76:07:17:8a:35:87:79:c3:73:07:7a:bb:01:e1:fe: 36:93:4e:be -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICE0kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjhD QUMxRkEwNEQ4MENGRTNFMkJFOTdDN0FCMTg1MkI2NjU2NTM1RjAeFw0yNTA0MTcy MTA4MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2QzI3NENDMjVCNUM3 MzZCREJFQTRBRDMyMzdBRkQ1NDYxQjY5MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT1YfEC6c3vi3dXFU5KDHJyqwgVpeaQAjhDrC0mxU/2in9QXIm gv3cI/iJBpj5v1yJ3fKHw3RPwg1L8Q429NwLnF0VZtPC7Wfi46poTfHEoFIcW33Q 2rkjg1UucTbbps+XfyXLfwpQHNfPCQjlvWOV97nInrrQeVOsaeayIz+OlXwmxuct GeLlE4ujcM4mNu0ScO1tQho8L7VJRU1JjFClXIgWU9/2nD7r9k2fO/ZMbOvqR4Bp GbXfFez9jARwC6tBinoqcSGKUPZQx9WkPqg+5nyGbOeLafz38FWMafXKyKfWLMT0 Vi/osvLhOftBSRtAT2M6MU2dSD/qSzX91xN/AgMBAAGjggILMIICBzAdBgNVHQ4E FgQUBsJ0zCW1xza9vqStMjev1UYbaQkwHwYDVR0jBBgwFoAUaMrB+gTYDP4+K+l8 erGFK2ZWU18wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0lHQUJZ VEUvYU1yQi1nVFlEUDQtSy1sOGVyR0ZLMlpXVTE4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9hTXJCLWdUWURQNC1LLWw4ZXJHRksyWldVMTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HSUdBQllURS9hTXJCLWdUWURQNC1L LWw4ZXJHRksyWldVMTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjXd3vKaQQbd71vFM8xHC+9MYQLZXDdLYD0ltScowDj98PjjM8e/dE5LsGc+W 0q7gkO88mNf2IYcOgm3Ppf4+cbMKXJP3WeLZeNIMXkxFmwwmRo0juN24tFyoxbVd mFP2i8mCC1aE8hQH82uD0dZf4dJcHcrjHgPujXPWTzECUcxN3PL/1aHha9PUNRq3 pkQntFIGcoghrTB7LOZwIJ/TJOkf1AT/ct4A5v+K5HEAf27VnjLU+PJqNeKyBpa8 rj2d8EKbHIbHEZ4C0NTYwM/HDlQ/Btvufo59+xv+hqObyEGJnjdKJvp0BptbUXC2 dgcXijWHecNzB3q7AeH+NpNOvg== -----END CERTIFICATE-----Generated at Fri Apr 18 22:31:49 2025 by rpki-client