$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft File: Uptgbbhig71KCK9-sz7ziiVmMbs.mft (raw, json) Hash identifier: +DvgPiJfJp3OYFzKXixfb2ciCBfhSgsM0LhPiQc6sRM= Subject key identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0D63 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft Manifest number: 0CEB Signing time: Tue 22 Apr 2025 09:47:33 +0000 Manifest this update: Tue 22 Apr 2025 09:47:33 +0000 Manifest next update: Thu 24 Apr 2025 09:47:33 +0000 Files and hashes: 1: 7jkb-qiId542WFjMjFeCzShoCsU.roa (hash: v6F38azfqv6ngUvB3voCsiMTzNniwh26albKevr0xqk=) 2: 9XRt41blNePr5YhFGCZqfZojQqk.roa (hash: lTnK1TntsxV/PDMQhwSe8kvZNw8OO/W1qFXO4Xkv/vU=) 3: EQcTko4ZSBSFYOIYA4vRhsbkspo.roa (hash: v12oN9ik2bMxdrVcIJleYHCUPMHOyaVEHoj8fRa5uG0=) 4: F0hEG-Z8t4GrzNMoG5mOzIlvzLM.roa (hash: lrEYTeG35UK0y+HOoxv0o+gr+isfw3vVK4yhkeLwPII=) 5: JLqpo-JO2qKLUyN8fO9dQXnCpw4.roa (hash: ur/3v/H4FQMVJ1xFf+8IloTMZ+P5TknWGs3MAK+xu+M=) 6: OE6d0gfHOWNHjzeI-AcjYhHth7c.roa (hash: iBGFTaVS49pc+yfkaDBzQcOUjdYTJpz2lLaUJtgLd+U=) 7: T0-4OsbzDODDmQAvej-o-7oiGo4.roa (hash: 4qveo6fs12K/GTQ8LvFEO4HDQ+QKgkGggDZcNCfj32E=) 8: TEX5iHZOv1sEtWItlKM5QqU9cs8.roa (hash: KRMEYnYuQ6sz6J5E3y5O6KvuRJRegShC7z37S7gzDeI=) 9: TbTKJdlEVtUaIWi6LIISCuCh49s.roa (hash: 4oGJfMUB6dDeAr4ucBnBad65vcRingVvoqfqZXP2JPI=) 10: Uptgbbhig71KCK9-sz7ziiVmMbs.crl (hash: sYfHNvBU1CvuTpC/AioqrTvQHkqrmhShPMz/2Jzqk6c=) 11: sGPtGlpFcIsz7r3UaPXra1bbjtQ.roa (hash: yIkE4iASlrLz5lfiq7zJuU62fUSiKIkuZFwNHrYjH1E=) 12: tmglbtPFD74N3wh3zRlzSfL7MFc.roa (hash: zS8nTYFLzdXIyKJHuyzzUJONZdixhGlL985MniBI5RE=) 13: uraxH9xjm7jxTO_7nX8dTBAwZfo.roa (hash: upqsyOY/01e7DyP3vBaEyIGHhjzN69Ce+LIajMVTzWU=) 14: whTzVAp3GmNkhn8stzQGz-0es48.roa (hash: q6KjinddlUW/GxutVfxJ5USBn0zKEc+Y5hgIl89ARrc=) 15: yurZnfV8GalIvW7pP9xN0gOO3FE.roa (hash: kB06K0PDVbQRohaGSjPZAqVnyFdiMfaNFekXyLcn65Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Apr 22 09:47:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FEAD3529A599ED7B16CFC4443C03E1439377561F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:72:70:3c:c0:6e:bb:a7:f6:b9:c6:30:2e: 3c:ba:79:5c:0b:c2:60:e1:c4:21:51:16:88:8c:50: 6d:d1:e3:11:b6:cf:d1:3a:e7:ff:7a:6e:56:d2:65: cb:9c:f0:15:33:83:a3:e9:7f:b5:13:33:43:f8:8b: 54:92:3c:8d:b8:0f:a9:47:01:39:7e:3e:10:92:1a: 88:5e:72:c4:fd:ab:8a:3d:1e:7c:07:44:fc:bd:f9: 8a:b3:45:12:2f:57:a4:6b:ca:e4:f9:f6:30:a2:ce: ec:2b:42:ed:11:77:53:1c:f0:e0:5e:1e:0c:2c:b2: 6c:d7:01:87:3b:69:08:02:bb:f2:8b:88:e3:19:a3: 4e:6c:ab:b9:33:85:5d:e7:9a:98:d4:08:95:5b:35: d2:30:37:30:f7:9b:ab:46:1a:e1:4f:2f:2d:1a:b9: 5e:ef:18:b1:61:2f:43:91:1d:0e:7a:ac:a6:38:4f: 42:ff:be:65:de:bd:fc:91:c7:6c:a0:32:ea:d9:6f: ec:7b:b9:8c:a3:25:b5:0d:a8:04:a4:ba:ba:35:30: d8:be:99:20:d2:89:9f:24:69:23:7f:f3:de:77:71: 72:15:e8:97:a5:3b:3a:69:84:00:92:28:08:ed:ad: b4:cb:ef:3c:fe:1a:4a:90:99:6b:2a:1f:97:59:c0: 2a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c7:39:1e:f9:21:7e:ff:a5:74:93:ea:e2:0e:21:b0:47:8d: f3:4d:90:58:bc:b9:cc:c2:2f:f8:84:76:64:d1:57:92:15:90: 66:24:d7:77:e3:a2:2e:7d:f9:d1:d3:6b:d2:98:ad:b1:23:04: f9:e4:40:65:51:92:12:5d:8b:76:02:17:b1:e8:56:fa:f6:06: df:aa:df:66:13:e8:9c:22:3c:fe:8a:65:db:7e:64:ef:29:48: 02:fa:6e:b2:71:dc:e4:e6:9f:8b:3f:4a:d6:d7:35:1f:1a:97: 83:fb:18:df:07:c1:c9:93:ea:71:25:ed:c6:45:6e:d2:45:48: c8:b0:1f:eb:48:26:0b:7f:bf:0f:5b:a4:7c:7f:90:3a:77:5d: 6e:78:73:a6:d3:5c:f8:84:e9:ff:99:e7:a2:07:35:dd:12:92: 34:2d:87:0f:38:ee:92:c3:d2:94:62:1d:ac:eb:2e:e2:53:1a: 38:fb:4c:97:8a:70:ce:c2:f8:f0:69:77:e0:cb:c1:68:27:f6: a1:7b:ef:55:97:47:86:9d:42:5e:e8:39:9a:d4:90:0b:33:87: 24:46:59:aa:b0:25:1d:65:61:cd:dd:5d:6d:2e:24:07:3c:89: 3e:ab:6f:36:4d:ea:2f:ab:dc:d4:7d:cd:d6:2e:ef:a8:2c:f0: 5f:2a:cf:91 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA0MjIw OTQ3MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFQUQzNTI5QTU5OUVE N0IxNkNGQzQ0NDNDMDNFMTQzOTM3NzU2MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/qXJwPMBuu6f2ucYwLjy6eVwLwmDhxCFRFoiMUG3R4xG2z9E6 5/96blbSZcuc8BUzg6Ppf7UTM0P4i1SSPI24D6lHATl+PhCSGohecsT9q4o9HnwH RPy9+YqzRRIvV6RryuT59jCizuwrQu0Rd1Mc8OBeHgwssmzXAYc7aQgCu/KLiOMZ o05sq7kzhV3nmpjUCJVbNdIwNzD3m6tGGuFPLy0auV7vGLFhL0ORHQ56rKY4T0L/ vmXevfyRx2ygMurZb+x7uYyjJbUNqASkuro1MNi+mSDSiZ8kaSN/8953cXIV6Jel OzpphACSKAjtrbTL7zz+GkqQmWsqH5dZwCpPAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU/q01KaWZ7XsWz8REPAPhQ5N3Vh8wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9VcHRnYmJoaWc3MUtDSzktc3o3 emlpVm1NYnMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhsc5 Hvkhfv+ldJPq4g4hsEeN802QWLy5zMIv+IR2ZNFXkhWQZiTXd+OiLn350dNr0pit sSME+eRAZVGSEl2LdgIXsehW+vYG36rfZhPonCI8/opl235k7ylIAvpusnHc5Oaf iz9K1tc1HxqXg/sY3wfByZPqcSXtxkVu0kVIyLAf60gmC3+/D1ukfH+QOnddbnhz ptNc+ITp/5nnogc13RKSNC2HDzjuksPSlGIdrOsu4lMaOPtMl4pwzsL48Gl34MvB aCf2oXvvVZdHhp1CXug5mtSQCzOHJEZZqrAlHWVhzd1dbS4kBzyJPqtvNk3qL6vc 1H3N1i7vqCzwXyrPkQ== -----END CERTIFICATE-----Generated at Tue Apr 22 14:59:22 2025 by rpki-client