$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft File: 8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft (raw, json) Hash identifier: fNyFmfCB/0dpCA+dWfod5gwbEhjAloizcCO3KOyfFSo= Subject key identifier: 7A:F7:DD:84:1A:67:03:83:BA:74:77:3B:AD:79:38:72:71:1D:1E:CD Authority key identifier: F3:E6:A6:95:53:88:04:6E:01:3E:5E:D1:E0:CE:C6:C2:5E:85:30:94 Certificate issuer: /CN=F3E6A6955388046E013E5ED1E0CEC6C25E853094 Certificate serial: 0CCA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft Manifest number: 0CCA Signing time: Sat 19 Apr 2025 08:48:16 +0000 Manifest this update: Sat 19 Apr 2025 08:48:16 +0000 Manifest next update: Mon 21 Apr 2025 08:48:16 +0000 Files and hashes: 1: 8-amlVOIBG4BPl7R4M7Gwl6FMJQ.crl (hash: yFukw7HPI9X+bTMbyd1/NR5ZRPCs2f0L4K0ulmPd+x8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 19:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3274 (0xcca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3E6A6955388046E013E5ED1E0CEC6C25E853094 Validity Not Before: Apr 19 08:48:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7AF7DD841A670383BA74773BAD793872711D1ECD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:83:9f:7f:46:07:9e:97:a3:c4:cc:14:a4: ff:7c:6a:47:ec:c0:40:ba:78:44:a2:df:54:4e:16: c5:36:a7:76:5b:f9:27:f9:d2:34:c8:09:e4:8a:12: f3:c9:79:a0:b6:40:85:13:a6:c8:cb:37:cf:7a:4b: 3c:de:49:fe:f7:7c:85:df:4f:9e:8b:0c:c5:6b:45: da:be:ed:f4:27:33:3a:5a:aa:e1:f8:ea:25:f0:38: 34:a7:cf:42:96:80:17:0f:e7:ef:bb:fd:07:ae:97: 59:db:7d:f5:41:6a:7e:b5:3f:66:83:e0:2a:dd:0b: 58:88:08:2c:d6:9e:ec:a9:13:bc:21:b8:cf:7f:81: c0:c6:21:94:bd:f6:81:56:75:b9:93:87:7e:65:ec: 9a:e3:bf:66:e2:26:52:a7:ce:58:5f:d7:5a:c1:0d: cc:e5:f3:07:c9:b0:05:1e:13:a0:82:a4:7d:a6:61: 50:d2:04:75:6f:55:b1:96:0f:3c:a5:a8:ff:3a:45: b2:53:87:98:45:0e:16:72:e4:fb:cd:b3:ef:8a:4d: d0:42:1e:d5:33:8b:d6:91:78:8e:6f:75:a4:37:6f: 33:6e:73:52:79:7b:3a:7d:71:2e:23:94:04:28:69: 43:a8:33:75:dd:4d:f9:cb:e5:cc:3d:43:47:dd:f4: ac:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F7:DD:84:1A:67:03:83:BA:74:77:3B:AD:79:38:72:71:1D:1E:CD X509v3 Authority Key Identifier: keyid:F3:E6:A6:95:53:88:04:6E:01:3E:5E:D1:E0:CE:C6:C2:5E:85:30:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:9f:d2:a8:8b:39:48:7c:03:7c:46:7f:a3:fd:26:06:7e:17: 48:e5:0c:49:83:f2:20:07:e5:a3:61:7a:f7:df:25:ae:db:60: dd:93:6f:6c:95:fa:08:e0:7c:94:8a:8e:2d:4e:44:90:7e:c6: 0a:a8:e2:cd:15:7e:e5:fb:04:78:cd:a6:24:71:5a:c3:7d:25: b0:40:b7:9d:16:a8:ef:01:94:b3:2f:bd:b9:43:b7:a7:96:a9: f3:6b:a9:18:a2:d3:13:70:76:db:b3:c2:c9:40:bb:8b:05:e6: 07:a4:c1:e5:2f:f8:71:8b:41:fc:88:10:0c:03:4d:11:49:0c: 21:58:ae:4e:ba:45:02:ef:de:89:91:f6:52:e4:aa:81:43:7e: 33:9d:df:c2:c2:6f:ae:c9:90:2a:bc:af:5b:ce:35:4e:56:28: a1:02:54:55:8d:07:f3:b6:8c:9d:5f:76:17:b7:1a:70:5e:ce: fe:08:f5:d9:ff:76:a1:76:1a:95:ea:d6:7c:05:3f:de:fa:dc: e3:0d:0c:bf:6e:2d:d6:1e:6d:90:15:fb:27:5d:5c:1e:52:84: 1c:de:3e:0b:de:60:b9:fb:35:b0:36:88:44:ad:2e:ba:3f:85: cc:a3:06:9d:65:d4:31:a9:d9:bc:df:83:42:91:a7:43:8e:45: b3:49:ed:34 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjNF NkE2OTU1Mzg4MDQ2RTAxM0U1RUQxRTBDRUM2QzI1RTg1MzA5NDAeFw0yNTA0MTkw ODQ4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdBRjdERDg0MUE2NzAz ODNCQTc0NzczQkFENzkzODcyNzExRDFFQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6cIOff0YHnpejxMwUpP98akfswEC6eESi31ROFsU2p3Zb+Sf5 0jTICeSKEvPJeaC2QIUTpsjLN896SzzeSf73fIXfT56LDMVrRdq+7fQnMzpaquH4 6iXwODSnz0KWgBcP5++7/Qeul1nbffVBan61P2aD4CrdC1iICCzWnuypE7whuM9/ gcDGIZS99oFWdbmTh35l7Jrjv2biJlKnzlhf11rBDczl8wfJsAUeE6CCpH2mYVDS BHVvVbGWDzylqP86RbJTh5hFDhZy5PvNs++KTdBCHtUzi9aReI5vdaQ3bzNuc1J5 ezp9cS4jlAQoaUOoM3XdTfnL5cw9Q0fd9Kx5AgMBAAGjggIFMIICATAdBgNVHQ4E FgQUevfdhBpnA4O6dHc7rXk4cnEdHs0wHwYDVR0jBBgwFoAU8+amlVOIBG4BPl7R 4M7Gwl6FMJQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVlORVQv OC1hbWxWT0lCRzRCUGw3UjRNN0d3bDZGTUpRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS84LWFtbFZPSUJHNEJQbDdSNE03R3dsNkZNSlEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NWU5FVC84LWFtbFZPSUJHNEJQbDdSNE03 R3dsNkZNSlEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnZ/S qIs5SHwDfEZ/o/0mBn4XSOUMSYPyIAflo2F6998lrttg3ZNvbJX6COB8lIqOLU5E kH7GCqjizRV+5fsEeM2mJHFaw30lsEC3nRao7wGUsy+9uUO3p5ap82upGKLTE3B2 27PCyUC7iwXmB6TB5S/4cYtB/IgQDANNEUkMIViuTrpFAu/eiZH2UuSqgUN+M53f wsJvrsmQKryvW841TlYooQJUVY0H87aMnV92F7cacF7O/gj12f92oXYalerWfAU/ 3vrc4w0Mv24t1h5tkBX7J11cHlKEHN4+C95gufs1sDaIRK0uuj+FzKMGnWXUManZ vN+DQpGnQ45Fs0ntNA== -----END CERTIFICATE-----Generated at Sun Apr 20 19:37:45 2025 by rpki-client