$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft File: kZfpea-7G-wu_CZHIHVgVhvpALY.mft (raw, json) Hash identifier: lBXht9FWWL15ipijEQaqQ+MrbCIRvECulvNahntyM+Q= Subject key identifier: 74:D4:FC:72:F8:47:C0:38:F9:BA:8E:64:D0:7F:2A:8E:65:AE:2A:E0 Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Certificate serial: 0616 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft Manifest number: 05F3 Signing time: Thu 17 Apr 2025 20:39:12 +0000 Manifest this update: Thu 17 Apr 2025 20:39:12 +0000 Manifest next update: Sat 19 Apr 2025 20:39:12 +0000 Files and hashes: 1: 94r2lJ1gt0DCoF4j_teGPHVt6FU.roa (hash: SQh0+inyAhP+hHAiZEd3p846fwEWqcsUzg7e7sPGIuU=) 2: HGVVXy8B8Z97Jg8qq2yACjaQFVQ.roa (hash: CR8geyRb8c3sBJ+eR39U+rjmNRwXIlYqsLSRRpB15ps=) 3: VQ1IuuCh6FoZGnuOOyo5Ml-T-mI.roa (hash: nfEyUtLqG7JenRuc02N72s9nzVjnSP138odfah3iIQk=) 4: VdQ0q0GYOlhhaLw9Bl8YkuOEDuM.roa (hash: fJ96JalUcoxtuSw/iMLEwnOjkr/nhRz2chioAH/FFe0=) 5: kZfpea-7G-wu_CZHIHVgVhvpALY.crl (hash: KNsZNDFyVGF0P7NRb31o2q3l9FkKZWIyhOQfVsNZr+g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Validity Not Before: Apr 17 20:39:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=74D4FC72F847C038F9BA8E64D07F2A8E65AE2AE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4e:79:78:1b:70:1f:a0:0f:6b:2d:23:7e:97: 7c:0c:e8:d2:a1:62:d1:df:ed:69:4d:d4:9e:24:75: 6b:13:d3:e3:68:f8:68:99:c6:2a:d4:c4:a1:36:9e: d5:1e:59:a4:9d:2d:96:86:84:cf:e4:0c:6c:04:01: e8:3d:64:70:39:31:55:96:b1:4f:49:5c:3c:99:0b: ab:cb:aa:8e:91:53:64:44:f0:f2:d5:6e:48:0d:de: 02:31:5e:d9:6a:4e:53:c4:5d:85:6c:c1:d3:69:70: dc:95:07:3c:fe:cd:24:5f:a2:8e:a4:07:39:ea:eb: bc:36:6a:5a:93:91:bb:20:15:46:61:b3:e7:65:d8: 00:ad:e1:c7:0b:a6:16:a8:4e:a1:7f:1a:e2:ec:99: 87:d2:fc:39:1a:13:fb:7f:4c:cc:5e:5e:ea:ba:bc: 6d:89:4d:6f:5e:58:c2:bc:df:97:58:01:ea:0f:28: b8:cd:9e:07:1a:55:93:b0:c8:d2:fb:61:a2:ba:24: 6a:b3:ce:ad:51:73:4c:8b:ab:80:c2:d3:fa:31:ca: b0:02:36:cc:69:3f:1c:fa:5f:6a:54:39:97:60:8e: 6b:34:c7:7b:51:91:d0:b9:ce:5c:53:66:c2:bb:1c: 5c:8d:49:93:c9:18:32:9f:ca:33:1f:bf:7b:33:49: 59:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D4:FC:72:F8:47:C0:38:F9:BA:8E:64:D0:7F:2A:8E:65:AE:2A:E0 X509v3 Authority Key Identifier: keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:e6:78:b8:90:4b:f3:54:ed:e9:c3:7f:3b:66:e9:44:30:ba: 48:dc:ba:e9:b5:85:12:c1:ad:df:3b:fd:4c:60:39:bc:23:f3: 19:71:9b:e1:32:8b:5a:6a:e5:85:0b:5b:e4:fa:af:9a:1b:55: f6:80:b3:e8:f7:00:94:78:26:4a:a0:9e:ab:cd:f1:10:c8:34: 19:80:b0:51:03:c3:e8:d9:f2:3c:32:c5:c4:29:aa:c3:a7:61: 2d:e9:71:1b:7c:90:62:14:0a:ac:8f:47:2b:40:7e:1f:dd:4f: 63:ac:da:9c:c8:75:5a:06:55:1a:40:1b:66:5b:b0:b1:4a:0c: 39:00:24:7f:7b:3f:68:63:b5:d1:c0:56:bd:01:4a:ba:66:1c: ea:96:12:d6:11:d6:b7:3a:d3:ab:2e:6a:20:5d:07:2d:7a:5b: dd:6e:9e:c7:97:10:ad:e5:18:85:0a:ee:00:7b:6f:1b:44:18: ae:3e:fb:fd:58:aa:e2:23:28:b5:d2:4e:11:cf:2e:0b:8a:d8: 2a:78:8c:cc:2f:f8:52:0d:5b:7e:cf:02:c6:2a:b1:f6:d5:de: 39:97:d3:81:a1:3f:67:25:92:ce:e4:62:23:f7:3b:a0:03:66: 7a:e9:9d:1f:98:d4:0c:06:6f:32:ed:d1:42:25:94:77:ed:bd: 28:2a:97:85 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5 N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yNTA0MTcy MDM5MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc0RDRGQzcyRjg0N0Mw MzhGOUJBOEU2NEQwN0YyQThFNjVBRTJBRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/Tnl4G3AfoA9rLSN+l3wM6NKhYtHf7WlN1J4kdWsT0+No+GiZ xirUxKE2ntUeWaSdLZaGhM/kDGwEAeg9ZHA5MVWWsU9JXDyZC6vLqo6RU2RE8PLV bkgN3gIxXtlqTlPEXYVswdNpcNyVBzz+zSRfoo6kBznq67w2alqTkbsgFUZhs+dl 2ACt4ccLphaoTqF/GuLsmYfS/DkaE/t/TMxeXuq6vG2JTW9eWMK835dYAeoPKLjN ngcaVZOwyNL7YaK6JGqzzq1Rc0yLq4DC0/oxyrACNsxpPxz6X2pUOZdgjms0x3tR kdC5zlxTZsK7HFyNSZPJGDKfyjMfv3szSVkhAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUdNT8cvhHwDj5uo5k0H8qjmWuKuAwHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC9rWmZwZWEtN0ctd3Vf Q1pISUhWZ1ZodnBBTFkubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFOZ4uJBL81Tt6cN/O2bpRDC6SNy66bWFEsGt3zv9TGA5vCPzGXGb4TKLWmrl hQtb5PqvmhtV9oCz6PcAlHgmSqCeq83xEMg0GYCwUQPD6NnyPDLFxCmqw6dhLelx G3yQYhQKrI9HK0B+H91PY6zanMh1WgZVGkAbZluwsUoMOQAkf3s/aGO10cBWvQFK umYc6pYS1hHWtzrTqy5qIF0HLXpb3W6ex5cQreUYhQruAHtvG0QYrj77/Viq4iMo tdJOEc8uC4rYKniMzC/4Ug1bfs8Cxiqx9tXeOZfTgaE/ZyWSzuRiI/c7oANmeumd H5jUDAZvMu3RQiWUd+29KCqXhQ== -----END CERTIFICATE-----Generated at Fri Apr 18 22:16:46 2025 by rpki-client