$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.mft File: nsvxcPf30ikOau05yo0jj2YHK3o.mft (raw, json) Hash identifier: FhhPYTjRibb271PmBEv+Yg5S/nF9dFF6GpFv9JBEXh8= Subject key identifier: 2D:4F:53:0A:51:DA:50:AB:28:DC:06:DE:D7:7D:DB:5A:F6:6C:D9:90 Authority key identifier: 9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A Certificate issuer: /CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A Certificate serial: 0D2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.mft Manifest number: 0D1D Signing time: Tue 22 Apr 2025 09:48:58 +0000 Manifest this update: Tue 22 Apr 2025 09:48:58 +0000 Manifest next update: Thu 24 Apr 2025 09:48:58 +0000 Files and hashes: 1: iyJHbzmqK-nW-G9MpyrCpv2aa8Y.roa (hash: c5gWWi5HdE0OrLUqTUJ+XjGw215z5u7IkTJGFVcXAcU=) 2: nsvxcPf30ikOau05yo0jj2YHK3o.crl (hash: +dS3RLCDbwDFYkAN8qN0RIs/eXCL6vn2NgtfpMZsHc0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3374 (0xd2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A Validity Not Before: Apr 22 09:48:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2D4F530A51DA50AB28DC06DED77DDB5AF66CD990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:36:cc:a3:8c:63:c9:d3:d4:cb:d0:7e:e9:48: 44:a6:56:b8:22:ed:21:5c:e1:db:1a:a7:71:07:a4: bd:48:ed:ce:5a:98:c1:6d:d1:38:94:9d:0a:2c:40: 0a:e9:7a:aa:76:0b:3d:38:23:fb:49:36:b9:73:fe: 3d:96:11:e8:e2:0b:3f:59:ed:32:a7:5e:53:51:95: 8b:f8:06:ec:43:76:3b:92:69:eb:76:44:cc:5e:95: d9:5e:e5:6f:16:78:c8:57:53:84:cb:f0:3c:4a:8d: 7f:f1:cf:29:64:b9:bb:9e:6b:c2:d9:3e:a0:6c:ce: 7d:2e:6b:3b:3f:73:3d:22:5c:20:08:43:d8:f4:56: 37:57:b5:7b:12:b1:19:71:2f:50:38:41:8e:01:65: 69:53:16:5d:2d:1d:ac:85:87:07:97:78:09:94:ed: f2:f3:07:90:91:9b:ac:6f:9b:68:97:35:85:5a:e3: a8:4d:6c:34:2a:4e:83:56:4c:24:24:10:3c:89:75: 73:92:b9:8f:72:f4:1a:84:11:7a:7b:aa:7e:25:a9: f9:46:3d:7f:57:ff:76:32:2b:1b:8d:62:0a:30:86: 40:07:60:40:91:99:5d:d2:c7:cd:15:09:a0:4d:36: 07:02:d6:e2:e7:d1:9f:ac:87:62:1f:4d:f1:00:ab: a5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4F:53:0A:51:DA:50:AB:28:DC:06:DE:D7:7D:DB:5A:F6:6C:D9:90 X509v3 Authority Key Identifier: keyid:9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:18:9e:0e:8e:7a:66:1d:df:72:78:c3:ab:64:66:a2:a5:ee: ac:4d:16:0c:b5:c8:fd:66:1b:06:2b:86:ef:6a:51:0d:7d:6d: f8:3b:36:34:08:2a:67:13:04:8a:ed:d8:1e:4a:2d:a3:c8:fc: f7:76:dc:4e:f4:b8:3f:b3:01:0b:55:0f:2b:e3:58:ce:70:05: f6:88:bc:d8:2d:5b:d9:7f:c9:6e:4f:24:4f:dd:3a:1c:79:2b: 1a:d4:b9:0f:57:39:a6:7e:ee:65:1e:a1:6d:37:a7:e7:e4:67: 0d:2a:8e:b3:5c:32:32:a8:cb:24:25:05:2c:ca:cd:b9:8b:f1: f6:33:16:53:5d:ed:16:d9:a4:84:ce:2e:ab:b7:d0:89:06:6e: fd:e1:0b:07:fa:02:76:ab:4c:55:cf:d9:3d:eb:dc:e3:c5:95: a5:f4:68:a3:0f:3c:af:20:cd:34:0b:b4:78:24:81:23:0b:76: 5f:12:fd:e2:7c:ea:0a:09:53:e3:86:7f:ef:ad:0a:ae:da:39: ee:7f:25:5e:e2:19:38:c1:4e:58:18:52:4d:ad:07:b9:8c:a1: 77:fb:74:4f:38:71:73:8c:e2:e7:8c:2b:6c:6e:9f:79:a9:c3: f6:d1:57:f2:f4:89:0f:bd:e7:9d:92:5e:73:79:0d:4a:a2:cd: e6:1b:d1:27 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUVD QkYxNzBGN0Y3RDIyOTBFNkFFRDM5Q0E4RDIzOEY2NjA3MkI3QTAeFw0yNTA0MjIw OTQ4NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJENEY1MzBBNTFEQTUw QUIyOERDMDZERUQ3N0REQjVBRjY2Q0Q5OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1NsyjjGPJ09TL0H7pSESmVrgi7SFc4dsap3EHpL1I7c5amMFt 0TiUnQosQArpeqp2Cz04I/tJNrlz/j2WEejiCz9Z7TKnXlNRlYv4BuxDdjuSaet2 RMxeldle5W8WeMhXU4TL8DxKjX/xzylkubuea8LZPqBszn0uazs/cz0iXCAIQ9j0 VjdXtXsSsRlxL1A4QY4BZWlTFl0tHayFhweXeAmU7fLzB5CRm6xvm2iXNYVa46hN bDQqToNWTCQkEDyJdXOSuY9y9BqEEXp7qn4lqflGPX9X/3YyKxuNYgowhkAHYECR mV3Sx80VCaBNNgcC1uLn0Z+sh2IfTfEAq6UtAgMBAAGjggILMIICBzAdBgNVHQ4E FgQULU9TClHaUKso3Abe133bWvZs2ZAwHwYDVR0jBBgwFoAUnsvxcPf30ikOau05 yo0jj2YHK3owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEFOREJB TksvbnN2eGNQZjMwaWtPYXUwNXlvMGpqMllISzNvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9uc3Z4Y1BmMzBpa09hdTA1eW8wamoyWUhLM28uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MQU5EQkFOSy9uc3Z4Y1BmMzBpa09h dTA1eW8wamoyWUhLM28ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgBieDo56Zh3fcnjDq2RmoqXurE0WDLXI/WYbBiuG72pRDX1t+Ds2NAgqZxME iu3YHkoto8j893bcTvS4P7MBC1UPK+NYznAF9oi82C1b2X/Jbk8kT906HHkrGtS5 D1c5pn7uZR6hbTen5+RnDSqOs1wyMqjLJCUFLMrNuYvx9jMWU13tFtmkhM4uq7fQ iQZu/eELB/oCdqtMVc/ZPevc48WVpfRoow88ryDNNAu0eCSBIwt2XxL94nzqCglT 44Z/760Krto57n8lXuIZOMFOWBhSTa0HuYyhd/t0Tzhxc4zi54wrbG6feanD9tFX 8vSJD73nnZJec3kNSqLN5hvRJw== -----END CERTIFICATE-----Generated at Tue Apr 22 15:01:41 2025 by rpki-client