$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft File: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft (raw, json) Hash identifier: /Qox36TbVP9FmrnSyzk+D4ar8+nG+6xCQSZKTzPEORc= Subject key identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Certificate serial: 01B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft Manifest number: 01B2 Signing time: Sun 01 Jun 2025 20:57:05 +0000 Manifest this update: Sun 01 Jun 2025 20:57:05 +0000 Manifest next update: Tue 03 Jun 2025 20:57:05 +0000 Files and hashes: 1: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl (hash: 128RNwXBQ91n618zbtTWuCN7XDbLmAE3sZSULnFDfuo=) 2: E_JWqcoO7EcFuEzGnzKrBjWldqM.roa (hash: O8oWogY+TrtvEq6X8MLndGGGVT9NMHXVNZFqZUWczmA=) 3: UremWI23EE8u1p7CfhDnwpjhlLQ.roa (hash: wv75pPQFMWlDZE600lDbdJZtK0tyg5SMAVgxTpem/Vo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Validity Not Before: Jun 1 20:57:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8A610AE96B4321E951B8987289B43995A978A495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ee:ab:c5:28:79:0d:ba:d3:97:77:cb:2b:f3: 95:ec:95:00:07:e9:8c:73:44:12:bf:08:69:1e:3e: 26:29:d4:33:3f:d4:4e:e5:83:d6:82:0e:60:09:62: 75:57:cb:0d:69:5f:03:84:f2:8c:f4:a2:a1:1b:16: 5c:e1:a6:77:78:17:7d:a7:d1:85:b5:b7:e2:29:9e: e6:79:fc:4e:09:63:4e:9f:dd:1b:cd:04:25:fb:e0: 95:f1:4f:61:30:b2:50:8c:80:2d:59:d4:0d:99:1b: 58:d1:8c:55:d3:9f:c5:f3:bc:98:eb:23:e2:25:3f: d2:e6:8e:4e:7e:85:71:25:92:22:9a:ef:33:9a:e5: 7b:8d:4b:c3:f7:23:53:f0:77:ec:63:29:b2:34:56: ad:88:ee:cb:6e:6e:c3:ba:65:2a:83:78:52:b0:28: e2:d1:8f:06:4b:d2:54:5a:7d:0e:7e:51:b1:9d:af: e5:94:57:10:5c:16:e8:fc:d2:d9:d6:77:d7:2f:c7: 36:f8:43:11:79:d0:ef:b8:86:f7:c6:21:db:64:2e: ad:e8:1f:b0:8d:f0:d0:a0:9e:f8:b3:e9:32:e3:39: 27:d4:37:21:6a:bc:c8:34:4a:25:06:98:30:c4:ad: b3:ff:af:c0:06:75:d1:0a:dc:bf:bc:18:0f:ab:6e: f9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 X509v3 Authority Key Identifier: keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:8b:05:42:92:01:78:aa:fb:10:06:96:fe:1a:0f:14:db:ad: ed:5c:80:7a:fa:ea:ba:72:64:95:36:25:14:6e:9f:fe:03:96: 8b:62:43:8c:fd:f7:1f:bb:50:3d:91:0d:25:03:c5:cf:29:ad: 43:c4:64:09:b4:a2:4f:89:1c:2d:93:ba:3d:08:2a:fd:12:4f: 67:56:17:57:8c:60:7c:51:04:77:9e:ce:ad:ba:1c:30:67:72: 60:7a:f2:ca:51:17:2b:32:0f:8a:e1:1a:f6:b7:8e:1d:49:ac: 22:0b:5a:83:d8:df:74:19:ec:f2:c7:4d:a7:d0:31:af:0c:41: 8c:fd:0b:71:b7:02:3e:fd:dc:76:2f:1b:0d:ff:71:a8:c3:41: ff:ec:a6:c4:c8:67:50:50:81:25:dc:3b:78:56:92:56:10:8e: 78:07:c8:f9:b1:e7:60:d9:e3:c1:63:cf:fe:2f:84:91:e7:c6: b0:58:2d:b5:75:ec:6d:70:62:91:0f:ac:d0:81:f4:42:b2:f9: 7c:e3:d8:c2:57:80:fd:97:5d:a4:d8:fd:7f:90:9a:9d:c7:1c: 85:30:ed:1b:89:f7:aa:08:77:5f:e2:d9:9c:78:31:7c:8d:af: 73:cf:9e:bd:92:5c:56:af:1e:c5:31:d0:4c:d1:bc:dd:ff:4c: e1:26:32:97 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDY5 Q0U2NTFERDdENzE2QTg5QThFRTg0ODczRENDQkY0MTM1NDc5OTAeFw0yNTA2MDEy MDU3MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhBNjEwQUU5NkI0MzIx RTk1MUI4OTg3Mjg5QjQzOTk1QTk3OEE0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC17qvFKHkNutOXd8sr85XslQAH6YxzRBK/CGkePiYp1DM/1E7l g9aCDmAJYnVXyw1pXwOE8oz0oqEbFlzhpnd4F32n0YW1t+IpnuZ5/E4JY06f3RvN BCX74JXxT2EwslCMgC1Z1A2ZG1jRjFXTn8XzvJjrI+IlP9Lmjk5+hXElkiKa7zOa 5XuNS8P3I1Pwd+xjKbI0Vq2I7stubsO6ZSqDeFKwKOLRjwZL0lRafQ5+UbGdr+WU VxBcFuj80tnWd9cvxzb4QxF50O+4hvfGIdtkLq3oH7CN8NCgnviz6TLjOSfUNyFq vMg0SiUGmDDErbP/r8AGddEK3L+8GA+rbvlvAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUimEK6WtDIelRuJhyibQ5lal4pJUwHwYDVR0jBBgwFoAUBpzmUd19cWqJqO6E hz3Mv0E1R5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUv QnB6bVVkMTljV3FKcU82RWh6M012MEUxUjVrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9CcHptVWQxOWNXcUpxTzZFaHozTXYwRTFSNWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BUkNIRS9CcHptVWQxOWNXcUpxTzZFaHoz TXYwRTFSNWsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEABYsF QpIBeKr7EAaW/hoPFNut7VyAevrqunJklTYlFG6f/gOWi2JDjP33H7tQPZENJQPF zymtQ8RkCbSiT4kcLZO6PQgq/RJPZ1YXV4xgfFEEd57OrbocMGdyYHryylEXKzIP iuEa9reOHUmsIgtag9jfdBns8sdNp9AxrwxBjP0LcbcCPv3cdi8bDf9xqMNB/+ym xMhnUFCBJdw7eFaSVhCOeAfI+bHnYNnjwWPP/i+EkefGsFgttXXsbXBikQ+s0IH0 QrL5fOPYwleA/ZddpNj9f5CanccchTDtG4n3qgh3X+LZnHgxfI2vc8+evZJcVq8e xTHQTNG83f9M4SYylw== -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:49 2025 by rpki-client