$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft File: m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft (raw, json) Hash identifier: Y+e4mwpxiDOcXmK67jrLeYlVcTvBliFqm/zNtXhZfck= Subject key identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Certificate serial: 03E2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft Manifest number: 03CB Signing time: Tue 22 Jul 2025 23:06:27 +0000 Manifest this update: Tue 22 Jul 2025 23:06:27 +0000 Manifest next update: Thu 24 Jul 2025 23:06:27 +0000 Files and hashes: 1: OUVLOAWhICb6RKIUUcLjrmm0Y34.roa (hash: I2Osetrg7fASgUaT2feWidPEOjEVokbDhIH5fn7NG7s=) 2: m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl (hash: 9VuVLAvpYT4I0q5B3Fis0/WamgXGnmIRzvVOCGhhb0w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 03:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Validity Not Before: Jul 22 23:06:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=801E850C34B9F9E15E20E5068C97FB8B15063164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:8c:1b:ac:d4:ce:3b:dc:a0:83:31:ba:30: fc:30:4b:d2:0c:75:5a:7c:4f:8e:50:b9:ad:4b:e9: 60:4f:d5:8f:51:ca:c9:f3:40:d9:d1:d2:ee:b8:83: 83:49:b0:2c:a1:74:b6:63:c3:6b:0b:36:af:21:bd: 2f:01:68:ba:e4:c3:ec:a0:0e:7e:ba:cc:c8:9c:6b: e9:4b:db:e5:64:0f:58:f4:ad:31:27:56:ed:f1:ca: ec:06:4e:0a:8c:f0:24:eb:80:08:cc:7d:09:e2:55: b4:01:20:88:fc:ef:21:30:2a:20:49:49:11:4f:7f: 23:26:b2:14:86:3e:c1:89:b8:9a:4f:46:46:f4:53: 54:9f:40:bf:50:3f:c0:11:6a:52:a5:e9:fd:12:b6: c4:0e:2a:c6:15:1d:9f:41:5d:2e:f9:af:f1:c2:d4: 66:02:47:87:cb:c9:31:b8:01:ec:ab:f9:a1:d2:27: c2:96:49:67:15:04:a6:c1:14:13:f2:b2:4c:1b:68: f0:67:33:53:d1:43:96:a4:e5:d5:84:4d:9e:62:cc: cc:e3:6c:b3:67:70:6b:fb:dd:f0:1d:e6:fd:2b:af: 9b:d3:66:eb:28:78:75:c2:58:78:21:77:ad:54:dd: 26:83:b7:25:9c:3b:98:62:0b:e1:44:ab:d2:b3:e7: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 X509v3 Authority Key Identifier: keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:c7:80:8a:b7:d0:41:e7:ec:5f:3b:3b:e6:d3:c9:1d:c3:c0: 47:90:c0:cc:42:e7:1c:e6:06:a6:0a:43:fe:0d:15:45:f6:2a: 1d:64:05:c6:4e:2a:49:d1:b4:2d:1d:22:d7:a8:8b:31:b4:f6: c9:13:38:5e:00:e8:33:2f:28:0f:98:8e:7c:94:4d:10:cb:c6: 11:d5:2c:c9:9a:42:21:bd:bc:4f:84:13:ca:db:74:8e:27:07: 6e:f7:03:cd:ff:5c:12:69:53:f9:95:ef:22:97:f6:89:2f:81: a9:22:74:fb:ab:51:a3:9e:e7:a6:fe:72:64:a1:0f:01:c3:f7: 56:c5:68:97:cb:3e:7c:02:02:59:20:dc:db:29:59:c3:db:47: 11:f4:2b:22:80:6a:2b:f6:23:a0:19:b6:6b:1e:eb:b4:e6:24: 56:70:30:aa:9f:cc:c7:f0:e8:dd:82:11:e9:68:9e:6a:d5:55: 19:96:6b:5d:a4:01:b0:b5:c0:ea:7d:e2:5b:05:f1:ea:ba:2b: c7:e0:3d:cb:d6:6d:25:e4:61:7d:e6:fd:af:99:de:e1:d6:3d: bf:99:e7:28:3c:fc:d7:c3:a6:b0:bb:11:45:d4:83:d4:4b:c8: fe:4c:50:51:64:c8:82:40:b8:14:14:b6:c8:2e:d4:dc:dc:d4: c0:52:95:80 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI2 MDY5NkQ2ODc3M0FFMkU1MzJGMENENUQxMEZEQzBDODI3M0VBNTAeFw0yNTA3MjIy MzA2MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwMUU4NTBDMzRCOUY5 RTE1RTIwRTUwNjhDOTdGQjhCMTUwNjMxNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnOowbrNTOO9yggzG6MPwwS9IMdVp8T45Qua1L6WBP1Y9Rysnz QNnR0u64g4NJsCyhdLZjw2sLNq8hvS8BaLrkw+ygDn66zMica+lL2+VkD1j0rTEn Vu3xyuwGTgqM8CTrgAjMfQniVbQBIIj87yEwKiBJSRFPfyMmshSGPsGJuJpPRkb0 U1SfQL9QP8ARalKl6f0StsQOKsYVHZ9BXS75r/HC1GYCR4fLyTG4Aeyr+aHSJ8KW SWcVBKbBFBPyskwbaPBnM1PRQ5ak5dWETZ5izMzjbLNncGv73fAd5v0rr5vTZuso eHXCWHghd61U3SaDtyWcO5hiC+FEq9Kz5xxzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUgB6FDDS5+eFeIOUGjJf7ixUGMWQwHwYDVR0jBBgwFoAUm2BpbWh3OuLlMvDN XRD9wMgnPqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20y QnBiV2gzT3VMbE12RE5YUkQ5d01nblBxVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bTJCcGJXaDNPdUxsTXZETlhSRDl3TWduUHFVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20yQnBiV2gzT3VMbE12RE5YUkQ5d01n blBxVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCFx4CKt9BB 5+xfOzvm08kdw8BHkMDMQucc5gamCkP+DRVF9iodZAXGTipJ0bQtHSLXqIsxtPbJ EzheAOgzLygPmI58lE0Qy8YR1SzJmkIhvbxPhBPK23SOJwdu9wPN/1wSaVP5le8i l/aJL4GpInT7q1Gjnuem/nJkoQ8Bw/dWxWiXyz58AgJZINzbKVnD20cR9CsigGor 9iOgGbZrHuu05iRWcDCqn8zH8OjdghHpaJ5q1VUZlmtdpAGwtcDqfeJbBfHquivH 4D3L1m0l5GF95v2vmd7h1j2/mecoPPzXw6awuxFF1IPUS8j+TFBRZMiCQLgUFLbI LtTc3NTAUpWA -----END CERTIFICATE-----Generated at Thu Jul 24 00:29:14 2025 by rpki-client