$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft File: s1TTHFRizuxspNW_1vRhsrcL8LE.mft (raw, json) Hash identifier: HYTZ4J31UFnAfD231m+wRidfwK3tiAyZdqu7khN+uMI= Subject key identifier: 5C:43:9F:D5:D9:98:7F:6B:05:79:7D:86:BB:BA:C4:36:E2:C0:8D:CD Authority key identifier: B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1 Certificate issuer: /CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1 Certificate serial: 0138 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft Manifest number: 0137 Signing time: Wed 23 Jul 2025 10:06:07 +0000 Manifest this update: Wed 23 Jul 2025 10:06:07 +0000 Manifest next update: Wed 23 Jul 2025 16:06:07 +0000 Files and hashes: 1: iRKUuh79K81XRDn1kB4T_7QQ_a8.roa (hash: 18urDyn6ICt5b52RQ51LCS6obl5FebXJowDlflhnmgs=) 2: s1TTHFRizuxspNW_1vRhsrcL8LE.crl (hash: bvk7j0ZZKp/XIeYaHKvo5aLbv8FhM/3AR44u6qO+/FM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 13:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1 Validity Not Before: Jul 23 10:06:07 2025 GMT Not After : May 23 15:30:20 2026 GMT Subject: CN=5C439FD5D9987F6B05797D86BBBAC436E2C08DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:d0:0d:e2:6c:2a:53:08:22:6c:b2:be:7e: 91:87:87:f9:7b:3c:d8:9a:d9:e9:ad:d8:6f:d4:0e: b2:79:8e:ee:28:a5:7c:e6:50:2e:58:f8:7f:c6:5a: 44:c1:cb:49:4e:33:ac:f8:07:57:86:be:d4:8c:f2: d4:65:2d:70:47:ab:d4:bc:08:c8:7c:bf:3b:6e:60: bb:b8:93:4e:fc:bd:cb:17:78:1a:b6:db:ae:07:c6: e7:a5:6b:f8:e2:0b:b8:67:43:5c:7b:97:17:b9:91: a6:46:03:5f:b3:44:bd:42:46:f7:9c:67:b4:6c:fc: 31:fb:f1:7f:fb:93:39:3f:44:67:16:06:a0:9d:d3: de:e7:18:fe:62:05:5f:d8:b9:49:71:3a:bb:a7:89: 2a:2f:af:1f:75:49:69:7a:5e:3b:89:5b:29:53:41: 08:30:1b:4c:b8:86:f2:80:f4:77:f1:e9:90:1e:71: 78:e6:57:53:eb:71:1d:1d:c0:99:db:7c:5e:37:ff: 03:ec:a0:00:c4:5d:ce:a3:5c:24:df:a8:da:5c:20: 1b:ce:aa:1b:ae:4e:ad:72:0e:fe:10:0d:91:2a:70: e9:6f:a1:ad:2c:5e:c7:be:41:6b:3e:bd:43:1e:6e: e8:0e:74:07:60:fa:eb:9e:13:7b:91:c6:df:9d:44: 7f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:43:9F:D5:D9:98:7F:6B:05:79:7D:86:BB:BA:C4:36:E2:C0:8D:CD X509v3 Authority Key Identifier: keyid:B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:b2:5b:fd:9c:f5:e7:23:fe:12:71:67:17:06:5b:5e:dd:d7: 4f:43:e5:4f:8b:30:e8:63:6d:35:92:f0:9f:c2:f4:bb:66:98: d3:a6:af:61:67:ed:77:61:92:80:2b:a3:1b:f8:33:cf:8b:23: 05:7a:52:dc:71:2a:2f:15:dc:4c:80:38:51:70:21:d2:95:34: 96:b0:db:c8:0a:e6:f1:c5:71:90:22:5e:6a:e2:01:57:f5:0e: b6:9e:f5:c3:e2:95:09:27:92:bf:65:7b:0e:3f:f0:f6:5c:80: 07:78:84:32:ae:98:86:f6:59:de:0b:c0:ab:6a:72:38:42:bd: 39:31:47:1b:43:82:2f:81:53:c5:01:33:d9:32:21:ed:e9:d3: 8f:3a:08:5f:2d:84:44:e1:f7:46:4f:7d:54:d6:0d:3f:5b:1c: da:00:fc:7b:03:d7:c0:06:d7:cd:45:d7:bd:e6:27:9e:54:65: 8a:d6:40:96:6f:fe:a7:e9:6d:87:a4:54:ef:95:c6:3f:3d:8b: 15:53:f9:10:36:94:80:c9:45:45:17:90:a7:61:4d:d3:02:d4: 9c:e9:3e:b7:e3:bb:5a:47:27:34:5c:2c:c9:72:8f:16:50:58: ef:17:8c:b0:eb:75:1a:56:e5:dd:ee:ce:d5:2b:8e:f4:88:6d: 70:f9:b9:d5 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICATgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjM1 NEQzMUM1NDYyQ0VFQzZDQTRENUJGRDZGNDYxQjJCNzBCRjBCMTAeFw0yNTA3MjMx MDA2MDdaFw0yNjA1MjMxNTMwMjBaMDMxMTAvBgNVBAMTKDVDNDM5RkQ1RDk5ODdG NkIwNTc5N0Q4NkJCQkFDNDM2RTJDMDhEQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXVdAN4mwqUwgibLK+fpGHh/l7PNia2emt2G/UDrJ5ju4opXzm UC5Y+H/GWkTBy0lOM6z4B1eGvtSM8tRlLXBHq9S8CMh8vztuYLu4k078vcsXeBq2 264Hxuela/jiC7hnQ1x7lxe5kaZGA1+zRL1CRvecZ7Rs/DH78X/7kzk/RGcWBqCd 097nGP5iBV/YuUlxOruniSovrx91SWl6XjuJWylTQQgwG0y4hvKA9Hfx6ZAecXjm V1PrcR0dwJnbfF43/wPsoADEXc6jXCTfqNpcIBvOqhuuTq1yDv4QDZEqcOlvoa0s Xse+QWs+vUMebugOdAdg+uueE3uRxt+dRH8bAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUXEOf1dmYf2sFeX2Gu7rENuLAjc0wHwYDVR0jBBgwFoAUs1TTHFRizuxspNW/ 1vRhsrcL8LEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVVdBWUlP L3MxVFRIRlJpenV4c3BOV18xdlJoc3JjTDhMRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvczFUVEhGUml6dXhzcE5XXzF2UmhzcmNMOExFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVVdBWUlPL3MxVFRIRlJpenV4c3BOV18x dlJoc3JjTDhMRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQC0 slv9nPXnI/4ScWcXBlte3ddPQ+VPizDoY201kvCfwvS7ZpjTpq9hZ+13YZKAK6Mb +DPPiyMFelLccSovFdxMgDhRcCHSlTSWsNvICubxxXGQIl5q4gFX9Q62nvXD4pUJ J5K/ZXsOP/D2XIAHeIQyrpiG9lneC8CranI4Qr05MUcbQ4IvgVPFATPZMiHt6dOP OghfLYRE4fdGT31U1g0/WxzaAPx7A9fABtfNRde95ieeVGWK1kCWb/6n6W2HpFTv lcY/PYsVU/kQNpSAyUVFF5CnYU3TAtSc6T6347taRyc0XCzJco8WUFjvF4yw63Ua VuXd7s7VK470iG1w+bnV -----END CERTIFICATE-----Generated at Wed Jul 23 12:59:44 2025 by rpki-client