$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft File: L_s3WM4eNSi-nhZU447PjSkkCWE.mft (raw, json) Hash identifier: itVfGrwTqDUW0H3M5tmCjLDXZhKa+xtnOIng6ou0h70= Subject key identifier: D3:3F:05:19:81:19:34:C2:41:09:B6:8A:0B:EF:8D:C1:B0:D1:0A:1C Authority key identifier: 2F:FB:37:58:CE:1E:35:28:BE:9E:16:54:E3:8E:CF:8D:29:24:09:61 Certificate issuer: /CN=2FFB3758CE1E3528BE9E1654E38ECF8D29240961 Certificate serial: 0CBC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/L_s3WM4eNSi-nhZU447PjSkkCWE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft Manifest number: 0CBC Signing time: Tue 22 Apr 2025 09:48:33 +0000 Manifest this update: Tue 22 Apr 2025 09:48:33 +0000 Manifest next update: Thu 24 Apr 2025 09:48:33 +0000 Files and hashes: 1: L_s3WM4eNSi-nhZU447PjSkkCWE.crl (hash: UtL8A75sduSnBEM7WGsKlL0B+df1v9tpsC0SZ7p0lKA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/L_s3WM4eNSi-nhZU447PjSkkCWE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FFB3758CE1E3528BE9E1654E38ECF8D29240961 Validity Not Before: Apr 22 09:48:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D33F0519811934C24109B68A0BEF8DC1B0D10A1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:97:a6:65:7c:87:20:0b:df:6d:14:38:7b:46: 96:67:a7:de:a0:39:c9:32:a9:4c:14:25:26:7b:a6: e0:03:a7:2b:6e:fe:13:13:bf:19:a1:28:c1:11:94: fd:4d:9d:11:82:8a:d0:95:ec:a9:de:80:ca:73:d2: 39:7f:5c:f7:c3:ea:e9:15:ba:96:4b:47:ae:52:98: 5c:e4:b0:c7:f3:0d:cf:4c:97:ad:e1:f5:79:15:c2: a6:3a:29:c1:0d:30:60:b2:6a:f0:5a:57:97:28:ba: 93:1a:26:2a:92:95:84:a4:21:5e:a4:73:ab:13:2c: ba:36:a1:90:2f:69:29:82:b5:a7:8c:08:3f:f8:da: 10:d4:b8:99:29:4b:61:dd:f6:ef:b0:75:06:6b:bc: a4:ac:20:cb:f4:a1:68:02:ca:09:14:30:6b:7d:ae: cc:7c:54:36:cd:36:6d:aa:19:26:f4:03:95:7c:bb: ec:d4:f4:8a:03:4e:af:63:53:85:ce:2a:57:e7:25: 00:67:2d:d6:c2:11:58:84:d1:e1:03:ef:db:be:6d: 35:80:19:c4:5a:2b:c8:ad:01:42:8f:55:1d:90:02: c0:d8:71:f3:90:2e:31:1d:ae:bd:5d:5b:76:63:1f: 01:47:9d:6f:5a:e7:96:01:31:1a:e8:7d:6e:86:18: a6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3F:05:19:81:19:34:C2:41:09:B6:8A:0B:EF:8D:C1:B0:D1:0A:1C X509v3 Authority Key Identifier: keyid:2F:FB:37:58:CE:1E:35:28:BE:9E:16:54:E3:8E:CF:8D:29:24:09:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/L_s3WM4eNSi-nhZU447PjSkkCWE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:d9:7c:77:e3:30:9d:fd:3a:a4:35:c8:4d:dc:fa:fd:e6:ab: ae:31:0c:fb:96:f1:65:a4:c8:2b:31:2d:2a:82:f0:fa:8e:48: 47:27:ef:a8:7b:30:f1:7a:aa:36:60:3e:22:2d:19:4c:6c:b3: 8f:4a:ab:df:50:46:e5:b6:52:03:0f:cd:18:ff:db:da:b5:e8: 4b:41:c1:9c:a1:bd:fd:e3:64:ae:9b:05:7c:a1:ab:42:c7:69: be:9e:ac:db:0b:c1:92:b7:ab:98:52:25:63:31:4f:c0:a9:c2: 28:17:95:39:9c:06:1a:9b:53:06:f7:cc:2b:cc:3b:52:55:ef: 63:a1:a4:79:7f:cd:3c:98:ef:43:19:57:a9:68:e1:90:9d:1a: ea:48:6e:2d:6f:e7:12:bd:23:f3:82:a8:2f:56:36:3f:41:c6: 90:40:13:aa:15:28:70:e1:26:6b:7e:b0:a0:0e:c3:fc:f0:d5: a8:1e:66:29:a2:ec:f2:92:4f:73:02:39:34:a4:a7:6e:cc:38: 40:6e:68:56:77:cd:92:a1:3b:10:e5:e2:00:01:2f:c4:3b:16: c1:4e:ad:5a:16:53:c4:b2:64:8b:d1:62:0c:c3:05:7c:5d:f7: d3:f5:70:63:66:88:46:7f:28:52:93:e8:a2:b8:38:da:ee:fc: bc:35:89:d8 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZG QjM3NThDRTFFMzUyOEJFOUUxNjU0RTM4RUNGOEQyOTI0MDk2MTAeFw0yNTA0MjIw OTQ4MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzM0YwNTE5ODExOTM0 QzI0MTA5QjY4QTBCRUY4REMxQjBEMTBBMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBl6ZlfIcgC99tFDh7RpZnp96gOckyqUwUJSZ7puADpytu/hMT vxmhKMERlP1NnRGCitCV7KnegMpz0jl/XPfD6ukVupZLR65SmFzksMfzDc9Ml63h 9XkVwqY6KcENMGCyavBaV5coupMaJiqSlYSkIV6kc6sTLLo2oZAvaSmCtaeMCD/4 2hDUuJkpS2Hd9u+wdQZrvKSsIMv0oWgCygkUMGt9rsx8VDbNNm2qGSb0A5V8u+zU 9IoDTq9jU4XOKlfnJQBnLdbCEViE0eED79u+bTWAGcRaK8itAUKPVR2QAsDYcfOQ LjEdrr1dW3ZjHwFHnW9a55YBMRrofW6GGKa5AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQU0z8FGYEZNMJBCbaKC++NwbDRChwwHwYDVR0jBBgwFoAUL/s3WM4eNSi+nhZU 447PjSkkCWEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFUVU5H SU5GTy9MX3MzV000ZU5TaS1uaFpVNDQ3UGpTa2tDV0UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0xfczNXTTRlTlNpLW5oWlU0NDdQalNra0NXRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RBVFVOR0lORk8vTF9zM1dNNGVO U2ktbmhaVTQ0N1BqU2trQ1dFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKXZfHfjMJ39OqQ1yE3c+v3mq64xDPuW8WWkyCsxLSqC8PqOSEcn76h7 MPF6qjZgPiItGUxss49Kq99QRuW2UgMPzRj/29q16EtBwZyhvf3jZK6bBXyhq0LH ab6erNsLwZK3q5hSJWMxT8CpwigXlTmcBhqbUwb3zCvMO1JV72OhpHl/zTyY70MZ V6lo4ZCdGupIbi1v5xK9I/OCqC9WNj9BxpBAE6oVKHDhJmt+sKAOw/zw1ageZimi 7PKST3MCOTSkp27MOEBuaFZ3zZKhOxDl4gABL8Q7FsFOrVoWU8SyZIvRYgzDBXxd 99P1cGNmiEZ/KFKT6KK4ONru/Lw1idg= -----END CERTIFICATE-----Generated at Tue Apr 22 16:18:01 2025 by rpki-client