$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft File: RfMLTF7ObhLm2QiJ15QNjhhxBys.mft (raw, json) Hash identifier: 088dCkTu+gZL1HVJ01EYNxDT54pbQ0FyMLIXgFBETHg= Subject key identifier: 3C:D6:46:90:69:C6:DB:A2:9F:32:42:0C:F1:07:60:D4:C4:92:61:0E Authority key identifier: 45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B Certificate issuer: /CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B Certificate serial: 02C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft Manifest number: 02BC Signing time: Mon 07 Apr 2025 09:36:08 +0000 Manifest this update: Mon 07 Apr 2025 09:36:08 +0000 Manifest next update: Wed 09 Apr 2025 09:36:08 +0000 Files and hashes: 1: 4LCuSTLL7qeP9mF1fUbtbwtI1uA.roa (hash: rQwJ9oPwvvyl/c2WYI+KqBsAiYtF0PmNP25R9m7Jzuc=) 2: Kg76e3TIgMemo9k2KJdC19DmHGo.roa (hash: vZZpklQo17On66tjFZ2K3CGlLCKNta+GShVVfWdpf7k=) 3: RfMLTF7ObhLm2QiJ15QNjhhxBys.crl (hash: IhNSOZ7p5dIt3nhrE6/kWGEZms0187o5G2tpKLc6XUg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B Validity Not Before: Apr 7 09:36:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CD6469069C6DBA29F32420CF10760D4C492610E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:9e:37:bd:b4:86:96:42:be:41:85:d8:6e: ce:58:1c:10:e0:88:d6:42:22:ab:c3:15:62:3f:9f: f4:23:a6:2a:57:ff:a7:17:c9:e8:13:72:1b:34:aa: c3:e3:2f:8b:40:40:0b:28:d6:59:53:8a:39:67:8c: 7d:d0:c5:f8:c7:4e:fe:d9:1f:49:f3:ee:28:4d:53: 7f:3d:f1:ab:6c:54:aa:0d:8f:d0:df:51:0c:42:e9: bc:ee:c1:aa:9a:26:ef:cf:ef:20:c8:36:fc:8f:22: 8f:7d:05:f0:9f:63:80:84:6a:9d:4f:84:52:55:ab: 70:ea:41:e3:7b:71:3a:d8:8c:8d:11:d6:3a:8a:2b: 9e:1e:ef:f2:25:d8:a0:25:ba:6e:c8:ec:14:5a:b7: be:fa:54:89:27:51:61:1c:3a:f1:20:ca:ae:cc:ae: fa:cb:1f:c6:c4:7d:26:fe:a4:ac:0e:1d:82:cd:5a: 5e:c8:4a:6c:de:c3:04:8f:12:4d:23:de:8c:06:35: ba:2d:60:70:e3:d8:bc:2f:0b:f2:14:08:f9:07:66: c9:d3:2f:48:20:d7:d9:8d:77:3c:70:29:2b:de:56: 70:8e:c3:b8:95:16:4a:94:cf:04:0b:a1:7d:24:07: fe:10:d6:7d:b0:f9:81:b9:38:8c:36:9a:d0:31:04: 77:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D6:46:90:69:C6:DB:A2:9F:32:42:0C:F1:07:60:D4:C4:92:61:0E X509v3 Authority Key Identifier: keyid:45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:6e:f1:e3:05:a2:a4:19:91:ef:f5:d1:e5:eb:4b:ad:9e:91: 9c:20:7c:22:a9:75:a6:e3:40:a5:03:40:f9:1d:18:6c:d8:11: 0b:8a:4c:07:7d:07:f4:9b:6d:a5:d2:04:a4:8b:b3:f6:c2:5d: b4:57:bc:ce:2b:c9:4d:17:93:16:bb:50:ec:0d:8f:3d:c1:c1: 3c:9d:e5:82:6e:62:d1:18:ed:12:d2:0b:c5:d7:f2:27:ae:b4: 5d:f3:32:3a:e8:21:bf:26:75:b0:e8:c2:9e:12:aa:de:d7:93: aa:a1:9a:d1:ea:1a:3f:6a:75:bf:5f:4d:51:07:15:a3:78:e6: cf:1c:29:e6:74:c4:4d:9e:22:d2:0e:1c:ec:c7:56:ad:69:93: 3c:9f:0b:84:3a:83:f0:69:08:4d:57:14:d1:c5:08:35:e9:ff: 87:63:61:71:c0:3d:2d:bb:fe:77:46:a1:e0:89:3a:9f:79:03: 23:46:b1:cb:c9:9d:b9:03:1e:40:79:db:79:9a:3b:a0:f5:fe: f1:a9:50:42:53:08:53:84:d0:94:f5:b0:68:6f:f4:a2:d8:02: b4:14:e0:c3:24:0a:ef:8f:ef:9b:61:a8:c5:3b:09:0b:c7:41: fe:15:4b:9a:62:f0:89:fe:c7:34:52:56:2f:0e:f6:d5:a0:e7: 15:ff:e2:2e -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICAscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDVG MzBCNEM1RUNFNkUxMkU2RDkwODg5RDc5NDBEOEUxODcxMDcyQjAeFw0yNTA0MDcw OTM2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDRDY0NjkwNjlDNkRC QTI5RjMyNDIwQ0YxMDc2MEQ0QzQ5MjYxMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEDp43vbSGlkK+QYXYbs5YHBDgiNZCIqvDFWI/n/QjpipX/6cX yegTchs0qsPjL4tAQAso1llTijlnjH3QxfjHTv7ZH0nz7ihNU3898atsVKoNj9Df UQxC6bzuwaqaJu/P7yDINvyPIo99BfCfY4CEap1PhFJVq3DqQeN7cTrYjI0R1jqK K54e7/Il2KAlum7I7BRat776VIknUWEcOvEgyq7MrvrLH8bEfSb+pKwOHYLNWl7I SmzewwSPEk0j3owGNbotYHDj2LwvC/IUCPkHZsnTL0gg19mNdzxwKSveVnCOw7iV FkqUzwQLoX0kB/4Q1n2w+YG5OIw2mtAxBHc7AgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUPNZGkGnG26KfMkIM8Qdg1MSSYQ4wHwYDVR0jBBgwFoAURfMLTF7ObhLm2QiJ 15QNjhhxByswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU01UUlRD SC9SZk1MVEY3T2JoTG0yUWlKMTVRTmpoaHhCeXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1JmTUxURjdPYmhMbTJRaUoxNVFOamhoeEJ5cy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NNVFJUQ0gvUmZNTFRGN09iaExtMlFp SjE1UU5qaGh4QnlzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AFlu8eMFoqQZke/10eXrS62ekZwgfCKpdabjQKUDQPkdGGzYEQuKTAd9B/SbbaXS BKSLs/bCXbRXvM4ryU0Xkxa7UOwNjz3BwTyd5YJuYtEY7RLSC8XX8ieutF3zMjro Ib8mdbDowp4Sqt7Xk6qhmtHqGj9qdb9fTVEHFaN45s8cKeZ0xE2eItIOHOzHVq1p kzyfC4Q6g/BpCE1XFNHFCDXp/4djYXHAPS27/ndGoeCJOp95AyNGscvJnbkDHkB5 23maO6D1/vGpUEJTCFOE0JT1sGhv9KLYArQU4MMkCu+P75thqMU7CQvHQf4VS5pi 8In+xzRSVi8O9tWg5xX/4i4= -----END CERTIFICATE-----Generated at Mon Apr 7 20:51:55 2025 by rpki-client