$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft File: IsUSmNl6ECkCcx_cSb36s51Sqys.mft (raw, json) Hash identifier: YxtVS5QYszWJTyUAl56N0ASI+Z3ulKx9IoiBVqFwfuA= Subject key identifier: 90:9E:A4:E6:27:3D:85:BE:13:8C:CD:AB:C3:E0:C0:16:F0:39:30:DB Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 03FD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft Manifest number: 03EF Signing time: Wed 23 Jul 2025 04:06:21 +0000 Manifest this update: Wed 23 Jul 2025 04:06:21 +0000 Manifest next update: Fri 25 Jul 2025 04:06:21 +0000 Files and hashes: 1: IsUSmNl6ECkCcx_cSb36s51Sqys.crl (hash: qA2utwbY0tSypIBAqp4rb3+d7O3otcityzjJxDCRYj8=) 2: KDRe0F6SL1T6Lz8V0BGTXKfUvE0.roa (hash: zPWXOmGkH5dLzl9vxFuMqXfTcBSYvrDkL2Sp/TY3nDE=) 3: bWwCw21pEtskGzyYMtXn1A2jQV0.roa (hash: M7ZnADyfVjVtnb1/eITXDzIgYLq7OpcdSp5rJDGWyww=) 4: zZ1WC-SmSKUMmKU_aG0kyKlf4Qc.roa (hash: iwxg2LNZggRq16yye7v8Az8Vj/590Tz07JA5bljtp6M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 03:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1021 (0x3fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Jul 23 04:06:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=909EA4E6273D85BE138CCDABC3E0C016F03930DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:d6:62:d8:73:41:fe:f5:98:39:77:cb:58: c3:45:24:7c:ad:91:c7:3e:22:28:90:28:89:bf:76: 1f:28:22:21:fa:e0:5c:d0:f2:2c:28:12:ef:40:44: f8:0e:70:58:7d:9d:99:bc:ac:a4:76:78:8f:d9:9b: d7:99:94:06:7d:e4:01:11:3b:30:3c:88:f0:83:f1: 07:85:55:b3:16:a5:54:32:e4:25:26:2b:f7:44:ef: 57:7f:db:12:b8:60:80:4c:52:6b:ea:b0:4e:55:96: 0f:ca:62:51:71:e4:09:27:7c:39:7e:92:c8:5e:23: 9b:4f:0f:f7:14:08:46:9b:bc:22:30:9e:5f:28:d8: 11:85:a4:fe:94:2d:c0:76:03:f8:08:85:c4:bd:62: a5:92:88:9b:18:f9:d2:5a:dc:e7:ea:67:72:27:1e: c0:fb:12:5a:69:e8:89:84:e7:f6:0a:42:56:be:15: 86:03:7b:48:62:ce:eb:f6:80:d8:8e:ec:4a:7f:b4: c3:c9:12:ab:61:dd:b8:ee:25:a4:83:4a:d0:35:6c: 61:bf:89:21:dd:45:eb:ee:c6:9f:73:4d:94:9b:9f: 18:3d:f7:8a:a9:25:b1:95:c3:88:e3:83:ae:b8:79: 50:2b:79:21:d7:cb:c3:18:3b:8c:ab:d0:2a:cc:4d: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9E:A4:E6:27:3D:85:BE:13:8C:CD:AB:C3:E0:C0:16:F0:39:30:DB X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:7e:5f:5d:c1:2a:e5:dc:02:df:12:b2:bd:32:1d:b6:ff:99: ba:c4:78:62:5b:4e:23:0e:fe:12:c4:8c:78:83:32:b7:81:96: 88:be:96:b3:2d:d2:61:bb:60:cb:d9:8b:30:49:fc:6b:70:d5: 5a:84:50:cf:4f:a8:8d:8b:5e:58:70:d5:c5:5a:52:4b:83:d7: f4:36:c2:ed:b1:5f:3f:47:91:6e:c7:93:08:1f:f1:64:8c:2f: d6:d1:12:e1:ef:50:57:53:bc:1e:31:c2:7d:3e:a8:72:26:58: ce:c6:cb:6a:c8:71:7f:d0:58:83:41:17:e3:70:ca:49:ff:6f: 9a:30:72:e7:cb:75:05:3f:7e:82:65:6d:40:6e:41:0a:c9:c6: 47:7b:cb:97:19:b2:c8:1b:1d:9a:5a:a3:cf:d5:03:35:55:18: f2:8e:9e:d4:4c:6b:cd:ba:69:81:2d:00:31:a1:fa:31:e0:3d: 2b:f8:3e:c3:03:64:53:f6:e3:58:bb:da:f1:8d:85:d3:73:a5: 13:4e:59:3b:ef:78:d1:59:9f:38:ed:4d:7d:02:6e:9f:df:cb: b6:95:25:0a:76:75:c0:78:9b:a2:e3:5e:37:af:cb:cc:00:33: 7c:87:e7:9b:a7:ac:61:03:f7:5d:28:68:4d:b3:bd:10:d0:ee: fe:8a:a5:a7 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICA/0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTA3MjMw NDA2MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkwOUVBNEU2MjczRDg1 QkUxMzhDQ0RBQkMzRTBDMDE2RjAzOTMwREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCspdZi2HNB/vWYOXfLWMNFJHytkcc+IiiQKIm/dh8oIiH64FzQ 8iwoEu9ARPgOcFh9nZm8rKR2eI/Zm9eZlAZ95AEROzA8iPCD8QeFVbMWpVQy5CUm K/dE71d/2xK4YIBMUmvqsE5Vlg/KYlFx5AknfDl+ksheI5tPD/cUCEabvCIwnl8o 2BGFpP6ULcB2A/gIhcS9YqWSiJsY+dJa3OfqZ3InHsD7Elpp6ImE5/YKQla+FYYD e0hizuv2gNiO7Ep/tMPJEqth3bjuJaSDStA1bGG/iSHdRevuxp9zTZSbnxg994qp JbGVw4jjg664eVAreSHXy8MYO4yr0CrMTYOhAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUkJ6k5ic9hb4TjM2rw+DAFvA5MNswHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy9Jc1VTbU5sNkVDa0NjeF9jU2Iz NnM1MVNxeXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhX5f XcEq5dwC3xKyvTIdtv+ZusR4YltOIw7+EsSMeIMyt4GWiL6Wsy3SYbtgy9mLMEn8 a3DVWoRQz0+ojYteWHDVxVpSS4PX9DbC7bFfP0eRbseTCB/xZIwv1tES4e9QV1O8 HjHCfT6ociZYzsbLashxf9BYg0EX43DKSf9vmjBy58t1BT9+gmVtQG5BCsnGR3vL lxmyyBsdmlqjz9UDNVUY8o6e1ExrzbppgS0AMaH6MeA9K/g+wwNkU/bjWLva8Y2F 03OlE05ZO+940VmfOO1NfQJun9/LtpUlCnZ1wHibouNeN6/LzAAzfIfnm6esYQP3 XShoTbO9ENDu/oqlpw== -----END CERTIFICATE-----Generated at Wed Jul 23 23:29:09 2025 by rpki-client