$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft File: o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft (raw, json) Hash identifier: yojBEFC1hmTvR3M2WMfL5AqQkBlRswHilI5Cfv/8uHw= Subject key identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 Authority key identifier: A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D Certificate issuer: /CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Certificate serial: 0CB5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft Manifest number: 0CB5 Signing time: Thu 17 Apr 2025 21:38:51 +0000 Manifest this update: Thu 17 Apr 2025 21:38:51 +0000 Manifest next update: Sat 19 Apr 2025 21:38:51 +0000 Files and hashes: 1: o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl (hash: e7bdXVBDExSI9ZE0R82o/ysYb5bejhU3T30FzV33o1Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Validity Not Before: Apr 17 21:38:51 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C64762165FC5DB2FF375AB7DB85FAA4CC6FACAA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e3:a5:d7:31:58:2c:8a:00:dd:62:3e:01:76: 96:df:6b:ad:d8:e6:ef:af:02:c0:9c:7e:ed:04:96: de:0d:6f:57:85:e2:17:42:93:f6:d7:fc:24:3e:a6: 79:62:7e:db:57:d1:d3:c2:8f:1e:ee:93:94:df:43: cb:4c:16:33:01:2f:d4:e9:06:7e:ff:e1:2f:70:53: 78:95:19:bc:98:ba:21:f8:bf:c1:fe:5c:90:3b:6b: 31:f6:0f:2b:07:e3:8a:79:1b:13:8f:9a:29:8e:b7: ab:66:d2:72:0c:3a:d0:87:b4:b0:31:72:ad:5c:ce: bc:a2:75:fc:5f:61:03:b9:4e:bf:6d:a6:54:e5:ac: 05:ab:2b:a2:ef:7d:27:0c:29:b8:f7:5d:bc:6e:bc: 87:54:f3:61:ad:c8:99:07:25:ee:24:e8:2a:69:77: 4d:4f:49:b2:c7:15:2b:cb:00:85:2a:1f:f9:19:08: 70:15:f2:5e:dc:fd:54:09:d7:c6:29:d5:d2:78:aa: fd:6c:e7:8b:70:13:98:d3:0a:3e:4b:19:e8:88:78: eb:4a:91:11:02:f9:aa:86:60:c4:87:ea:b2:5c:56: e0:f5:3f:07:83:23:86:e9:17:78:6e:5c:4e:3a:2c: 2e:bf:37:ac:9e:ba:13:a6:3f:c1:08:8a:be:22:f1: c0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 X509v3 Authority Key Identifier: keyid:A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:c8:7b:83:80:06:7c:ac:d5:9c:52:97:e8:20:15:f1:2d:33: 4a:3b:98:f4:a5:8d:e5:76:b8:6b:c4:f2:3f:11:07:14:4d:6c: 45:f0:14:fb:08:a8:02:6e:30:8c:e9:19:43:dc:35:69:eb:65: 22:26:03:9c:98:0f:ae:87:6e:c4:ae:63:74:57:c9:e2:f3:9b: 79:ca:57:cc:bf:1e:41:e1:e0:13:a8:f2:2d:ba:f5:23:88:dd: f5:e4:5e:59:fa:38:d4:ba:6d:af:11:8d:28:a4:39:72:12:5e: b2:57:1a:a4:38:aa:34:fe:1f:7e:cc:37:48:8f:36:13:e0:1b: fe:57:7d:83:41:f5:20:19:c8:5e:37:6a:e2:b8:7a:60:1d:48: 7c:6c:3d:d4:f7:20:bf:55:b4:6c:4d:d0:be:00:c6:70:4d:b7: b7:34:74:5d:d5:ee:22:6c:6b:3b:9f:dd:87:01:36:26:ba:45: 8e:5a:cb:d2:34:a0:4c:28:e0:fa:14:38:b7:84:38:68:68:cf: 31:cc:e6:57:ac:df:60:13:bb:ad:f8:6d:c2:94:a7:39:10:4d: 35:18:13:8b:86:25:7f:9a:16:ba:e2:81:2a:2b:2c:83:7f:71: 2e:0e:06:4f:00:c9:df:ad:3b:a0:0e:fe:23:37:1d:fe:bd:f7: 30:b7:77:3a -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTM3 QzZFRTJCMEVEMEFGODMyMTEwMkUzNEUxNEI2QTk3NkY3OTg5RDAeFw0yNTA0MTcy MTM4NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2NDc2MjE2NUZDNURC MkZGMzc1QUI3REI4NUZBQTRDQzZGQUNBQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCj46XXMVgsigDdYj4Bdpbfa63Y5u+vAsCcfu0Elt4Nb1eF4hdC k/bX/CQ+pnlifttX0dPCjx7uk5TfQ8tMFjMBL9TpBn7/4S9wU3iVGbyYuiH4v8H+ XJA7azH2DysH44p5GxOPmimOt6tm0nIMOtCHtLAxcq1czryidfxfYQO5Tr9tplTl rAWrK6LvfScMKbj3XbxuvIdU82GtyJkHJe4k6Cppd01PSbLHFSvLAIUqH/kZCHAV 8l7c/VQJ18Yp1dJ4qv1s54twE5jTCj5LGeiIeOtKkREC+aqGYMSH6rJcVuD1PweD I4bpF3huXE46LC6/N6yeuhOmP8EIir4i8cDZAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUxkdiFl/F2y/zdat9uF+qTMb6yqQwHwYDVR0jBBgwFoAUo3xu4rDtCvgyEQLj ThS2qXb3mJ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28z eHU0ckR0Q3ZneUVRTGpUaFMycVhiM21KMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bzN4dTRyRHRDdmd5RVFMalRoUzJxWGIzbUowLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28zeHU0ckR0Q3ZneUVRTGpUaFMycVhi M21KMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDWyHuDgAZ8 rNWcUpfoIBXxLTNKO5j0pY3ldrhrxPI/EQcUTWxF8BT7CKgCbjCM6RlD3DVp62Ui JgOcmA+uh27ErmN0V8ni85t5ylfMvx5B4eATqPItuvUjiN315F5Z+jjUum2vEY0o pDlyEl6yVxqkOKo0/h9+zDdIjzYT4Bv+V32DQfUgGcheN2riuHpgHUh8bD3U9yC/ VbRsTdC+AMZwTbe3NHRd1e4ibGs7n92HATYmukWOWsvSNKBMKOD6FDi3hDhoaM8x zOZXrN9gE7ut+G3ClKc5EE01GBOLhiV/mha64oEqKyyDf3EuDgZPAMnfrTugDv4j Nx3+vfcwt3c6 -----END CERTIFICATE-----Generated at Fri Apr 18 23:02:18 2025 by rpki-client