$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft File: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft (raw, json) Hash identifier: z65AkYi2UxQhm/IBMAVVC5AYHKb179GWhpycLMucAHQ= Subject key identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Certificate serial: 0217 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft Manifest number: 020B Signing time: Thu 17 Apr 2025 21:39:12 +0000 Manifest this update: Thu 17 Apr 2025 21:39:12 +0000 Manifest next update: Sat 19 Apr 2025 21:39:12 +0000 Files and hashes: 1: O531ESolpvpmtVVdqAkg9J8b2Bs.roa (hash: sef+yQw2V8rO3m99X+5vfS4w/LKMm8AtVqJtO3Mg36U=) 2: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl (hash: 9Ne5dgDiPpD431aDV3E85cFU2BkPhp4axqjEtCJCDY4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Validity Not Before: Apr 17 21:39:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9949C49DC8645CE600E8EA0C244876200B49A9EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ee:2c:7a:82:9e:91:78:70:e1:03:aa:dd:65: 79:37:3d:ca:eb:0d:6d:44:73:0b:2e:d6:d9:94:d6: 4a:2c:b9:2b:af:3c:c5:bc:3c:f5:0e:4f:74:a8:18: 06:2c:cb:4e:9c:85:f5:ae:22:b6:69:93:be:92:03: 6a:9c:b0:d4:ff:0a:47:2c:32:d2:81:b5:24:ee:b1: 49:88:5c:65:30:1f:37:b5:1f:c7:39:2f:d8:f5:75: 93:c6:33:af:54:d6:24:e3:79:79:9c:5d:5d:1d:65: 66:4d:6c:ff:d9:d0:56:ee:45:4c:3a:80:c4:06:2c: b3:0e:a0:fe:69:29:db:46:f1:d1:1d:4f:e7:20:84: 0a:6c:a3:55:11:64:f3:8b:e8:1d:cd:26:bb:0f:d9: 9d:7c:78:30:55:fb:e1:05:f4:a3:36:c7:e7:62:1f: d6:4d:47:b6:99:7c:7c:8d:e4:1d:31:99:76:94:c5: 3f:57:0f:d3:1c:02:c9:31:53:6e:0b:81:e5:38:23: f1:54:cf:d3:3c:75:b1:36:07:28:96:63:57:fa:21: ba:1b:08:0e:4c:92:ba:c9:d1:2d:75:6a:95:8f:24: aa:b5:00:a7:85:07:22:0d:b6:ea:58:bb:80:fc:ce: 1e:97:8b:a8:72:1a:ea:a2:8c:b5:cb:4b:88:c0:4b: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA X509v3 Authority Key Identifier: keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:dc:79:d0:7f:38:9e:1b:45:6b:b8:ed:df:1a:09:c2:01:41: 2e:60:6f:52:29:96:ff:3e:24:6e:bc:1c:04:5a:d7:e3:2b:82: 65:cc:1b:99:aa:7b:a4:bc:91:90:20:d6:c0:35:13:6c:2a:ce: db:30:10:6d:d0:da:f8:c8:ab:ef:f0:92:67:ec:fc:dc:95:b6: 60:b3:c5:63:88:a6:56:90:b5:fd:bc:f9:80:13:2f:23:ab:26: 67:87:1d:c5:b1:b0:03:3b:6a:79:f8:1a:8f:c8:64:e4:0f:8d: bc:6b:27:f8:28:f6:e9:b6:78:e5:36:e7:97:03:03:2b:d8:2f: 0f:f8:ca:9b:29:3a:03:a4:77:ca:1a:56:f0:f8:dd:c2:84:99: d3:43:a9:94:5b:b8:d1:c2:87:cc:96:29:b9:8f:19:00:d2:dc: 1e:b3:33:db:2a:e2:bd:de:c2:da:27:a7:1c:56:8c:73:89:f1: e8:26:9b:c7:ed:fa:ca:a8:c3:2e:33:1f:68:eb:ca:a8:3f:1d: 9f:15:b0:67:04:41:ff:a0:ff:e5:eb:a5:aa:fd:07:b8:29:d9: 5e:62:fe:e3:27:33:6a:26:d1:da:35:a7:1d:0c:b8:33:f5:db: 37:c5:83:bc:63:9e:55:ff:d0:77:48:81:2d:79:04:55:4a:5c: 01:97:fa:0f -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNB Q0ZDNDY2MDlDMTY0OUFCNDYxNkQyMEQ2NEM5RDE1RDgzNEM2NDAeFw0yNTA0MTcy MTM5MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5NDlDNDlEQzg2NDVD RTYwMEU4RUEwQzI0NDg3NjIwMEI0OUE5RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt7ix6gp6ReHDhA6rdZXk3PcrrDW1Ecwsu1tmU1kosuSuvPMW8 PPUOT3SoGAYsy06chfWuIrZpk76SA2qcsNT/CkcsMtKBtSTusUmIXGUwHze1H8c5 L9j1dZPGM69U1iTjeXmcXV0dZWZNbP/Z0FbuRUw6gMQGLLMOoP5pKdtG8dEdT+cg hApso1URZPOL6B3NJrsP2Z18eDBV++EF9KM2x+diH9ZNR7aZfHyN5B0xmXaUxT9X D9McAskxU24LgeU4I/FUz9M8dbE2ByiWY1f6IbobCA5MkrrJ0S11apWPJKq1AKeF ByINtupYu4D8zh6Xi6hyGuqijLXLS4jASzLDAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUmUnEnchkXOYA6OoMJEh2IAtJqeowHwYDVR0jBBgwFoAUg6z8RmCcFkmrRhbS DWTJ0V2DTGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2 ejhSbUNjRmttclJoYlNEV1RKMFYyRFRHUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZzZ6OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2ejhSbUNjRmttclJoYlNEV1RKMFYy RFRHUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBS3HnQfzie G0VruO3fGgnCAUEuYG9SKZb/PiRuvBwEWtfjK4JlzBuZqnukvJGQINbANRNsKs7b MBBt0Nr4yKvv8JJn7PzclbZgs8VjiKZWkLX9vPmAEy8jqyZnhx3FsbADO2p5+BqP yGTkD428ayf4KPbptnjlNueXAwMr2C8P+MqbKToDpHfKGlbw+N3ChJnTQ6mUW7jR wofMlim5jxkA0tweszPbKuK93sLaJ6ccVoxzifHoJpvH7frKqMMuMx9o68qoPx2f FbBnBEH/oP/l66Wq/Qe4KdleYv7jJzNqJtHaNacdDLgz9ds3xYO8Y55V/9B3SIEt eQRVSlwBl/oP -----END CERTIFICATE-----Generated at Fri Apr 18 22:06:22 2025 by rpki-client