$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft File: G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft (raw, json) Hash identifier: mg9iUJGG5QHqKVtOt+tOWiRdGV39AwfqNCICGta72fo= Subject key identifier: 16:17:8A:25:82:1E:C4:D4:E1:05:C7:17:EF:00:4F:21:04:94:0F:16 Authority key identifier: 1B:E9:F3:7C:3E:52:48:AC:B7:CD:E3:78:B0:49:EC:0D:7F:17:20:C5 Certificate issuer: /CN=1BE9F37C3E5248ACB7CDE378B049EC0D7F1720C5 Certificate serial: 0D14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/G-nzfD5SSKy3zeN4sEnsDX8XIMU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft Manifest number: 0D14 Signing time: Tue 22 Jul 2025 22:07:26 +0000 Manifest this update: Tue 22 Jul 2025 22:07:26 +0000 Manifest next update: Thu 24 Jul 2025 22:07:26 +0000 Files and hashes: 1: G-nzfD5SSKy3zeN4sEnsDX8XIMU.crl (hash: CpUiyS6diY1BzIKkH95o7PvWIX/x+gcceAmVLmzRTzk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/G-nzfD5SSKy3zeN4sEnsDX8XIMU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 03:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3348 (0xd14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BE9F37C3E5248ACB7CDE378B049EC0D7F1720C5 Validity Not Before: Jul 22 22:07:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=16178A25821EC4D4E105C717EF004F2104940F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4b:92:02:b7:63:10:1b:fb:ff:4a:b7:8f:ee: d3:e2:fd:3e:87:28:a5:52:11:44:1b:33:f6:0f:8f: ba:e4:a3:92:81:e1:be:6c:c2:ef:be:9c:fa:08:18: 46:7f:61:ee:78:31:31:04:9d:75:0d:54:50:60:61: 4a:48:ac:b8:c3:67:40:22:db:71:6e:d9:88:35:7d: 24:90:cb:a0:ea:68:95:f3:07:10:3f:e9:45:82:1a: 5e:a3:49:5c:fc:94:ed:c3:a5:36:57:ec:13:df:fa: 58:f9:1b:22:02:6c:ae:ad:fa:0c:21:a0:8f:ab:b0: 2c:ac:f3:5d:02:e9:95:b6:d1:a4:5a:de:8c:c5:ad: 9e:70:c9:66:0e:0e:ab:4f:25:0f:1b:61:3f:7a:7e: b8:52:42:d5:2c:51:7c:49:03:45:9e:9c:f3:96:04: ae:39:ef:42:c0:a1:d1:59:49:15:84:83:1b:b7:3b: 86:5e:87:23:f4:5a:a3:bc:8f:84:b4:18:ae:26:bd: a2:cd:cd:a7:18:6f:06:4c:5d:0c:7e:ef:a3:52:e2: 5b:e2:77:ab:ab:e0:e2:0b:c4:d1:24:2a:07:45:3e: 45:24:54:35:2d:58:41:38:3d:07:5a:dd:e1:75:81: 26:e4:d1:f2:e5:c5:67:27:de:5d:4a:c2:65:08:33: f3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:17:8A:25:82:1E:C4:D4:E1:05:C7:17:EF:00:4F:21:04:94:0F:16 X509v3 Authority Key Identifier: keyid:1B:E9:F3:7C:3E:52:48:AC:B7:CD:E3:78:B0:49:EC:0D:7F:17:20:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/G-nzfD5SSKy3zeN4sEnsDX8XIMU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TISNET/G-nzfD5SSKy3zeN4sEnsDX8XIMU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:59:41:c3:33:3d:72:e8:c6:79:91:bd:22:73:8c:0e:37:dd: 2b:bb:45:86:84:8c:32:f4:79:38:a6:83:73:78:f2:bf:e5:38: 07:b1:f4:d7:a0:22:81:3b:94:ff:cc:6b:34:93:0f:38:70:72: 97:b2:dc:e7:6e:9c:0f:aa:99:f4:e2:02:4f:ee:44:bf:f5:b3: 78:75:bd:f9:7b:df:10:51:b2:b1:7a:6e:9c:6b:89:89:70:b4: 51:61:12:07:0c:92:fd:5b:64:15:3f:2c:7e:ed:15:0e:fe:23: 98:84:61:f2:55:7b:74:4e:cd:e9:b8:f7:a7:1e:89:f8:a3:5e: 77:8b:3c:4f:e2:ed:ac:78:b4:40:48:5d:05:8e:43:b9:7f:65: 64:9d:17:51:9c:a0:7f:2a:02:c9:93:05:96:42:6c:5e:4f:f6: 32:68:ea:f4:1a:de:79:e1:b5:a3:42:2f:12:92:69:c4:5e:cd: 13:f2:33:77:a9:74:32:75:c9:1d:f8:a9:e1:86:7e:75:3b:38: 9f:80:e7:ca:f5:11:b7:a2:3e:2e:ed:d8:ed:fe:31:d7:84:90: 12:fe:04:f6:7d:20:3c:f9:e2:c7:f6:b4:cf:a5:67:fd:f5:de: 4d:bf:bf:df:17:36:28:40:af:07:0f:a0:cb:d3:8c:c7:7c:56: e3:2d:6c:e7 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDRQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJF OUYzN0MzRTUyNDhBQ0I3Q0RFMzc4QjA0OUVDMEQ3RjE3MjBDNTAeFw0yNTA3MjIy MjA3MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2MTc4QTI1ODIxRUM0 RDRFMTA1QzcxN0VGMDA0RjIxMDQ5NDBGMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqS5ICt2MQG/v/SreP7tPi/T6HKKVSEUQbM/YPj7rko5KB4b5s wu++nPoIGEZ/Ye54MTEEnXUNVFBgYUpIrLjDZ0Ai23Fu2Yg1fSSQy6DqaJXzBxA/ 6UWCGl6jSVz8lO3DpTZX7BPf+lj5GyICbK6t+gwhoI+rsCys810C6ZW20aRa3ozF rZ5wyWYODqtPJQ8bYT96frhSQtUsUXxJA0WenPOWBK4570LAodFZSRWEgxu3O4Ze hyP0WqO8j4S0GK4mvaLNzacYbwZMXQx+76NS4lvid6ur4OILxNEkKgdFPkUkVDUt WEE4PQda3eF1gSbk0fLlxWcn3l1KwmUIM/ObAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUFheKJYIexNThBccX7wBPIQSUDxYwHwYDVR0jBBgwFoAUG+nzfD5SSKy3zeN4 sEnsDX8XIMUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElTTkVU L0ctbnpmRDVTU0t5M3plTjRzRW5zRFg4WElNVS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvRy1uemZENVNTS3kzemVONHNFbnNEWDhYSU1VLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElTTkVUL0ctbnpmRDVTU0t5M3plTjRz RW5zRFg4WElNVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB0 WUHDMz1y6MZ5kb0ic4wON90ru0WGhIwy9Hk4poNzePK/5TgHsfTXoCKBO5T/zGs0 kw84cHKXstznbpwPqpn04gJP7kS/9bN4db35e98QUbKxem6ca4mJcLRRYRIHDJL9 W2QVPyx+7RUO/iOYhGHyVXt0Ts3puPenHon4o153izxP4u2seLRASF0FjkO5f2Vk nRdRnKB/KgLJkwWWQmxeT/YyaOr0Gt554bWjQi8SkmnEXs0T8jN3qXQydckd+Knh hn51OzifgOfK9RG3oj4u7djt/jHXhJAS/gT2fSA8+eLH9rTPpWf99d5Nv7/fFzYo QK8HD6DL04zHfFbjLWzn -----END CERTIFICATE-----Generated at Wed Jul 23 02:25:13 2025 by rpki-client