$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft File: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft (raw, json) Hash identifier: qfIl6O8mCFuxXF5/mgEQKtFHPd/w1El+mnTSMwQZQNQ= Subject key identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Certificate serial: 0127 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft Manifest number: 0120 Signing time: Sun 16 Feb 2025 16:27:38 +0000 Manifest this update: Sun 16 Feb 2025 16:27:38 +0000 Manifest next update: Sun 16 Feb 2025 22:27:38 +0000 Files and hashes: 1: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl (hash: mpfV4yOpZhEFHJe0dhwiRZW/rzPtoAjpEsVzr1Fg9fU=) 2: E_JWqcoO7EcFuEzGnzKrBjWldqM.roa (hash: O8oWogY+TrtvEq6X8MLndGGGVT9NMHXVNZFqZUWczmA=) 3: UremWI23EE8u1p7CfhDnwpjhlLQ.roa (hash: wv75pPQFMWlDZE600lDbdJZtK0tyg5SMAVgxTpem/Vo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Feb 2025 22:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Validity Not Before: Feb 16 16:27:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8A610AE96B4321E951B8987289B43995A978A495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ee:ab:c5:28:79:0d:ba:d3:97:77:cb:2b:f3: 95:ec:95:00:07:e9:8c:73:44:12:bf:08:69:1e:3e: 26:29:d4:33:3f:d4:4e:e5:83:d6:82:0e:60:09:62: 75:57:cb:0d:69:5f:03:84:f2:8c:f4:a2:a1:1b:16: 5c:e1:a6:77:78:17:7d:a7:d1:85:b5:b7:e2:29:9e: e6:79:fc:4e:09:63:4e:9f:dd:1b:cd:04:25:fb:e0: 95:f1:4f:61:30:b2:50:8c:80:2d:59:d4:0d:99:1b: 58:d1:8c:55:d3:9f:c5:f3:bc:98:eb:23:e2:25:3f: d2:e6:8e:4e:7e:85:71:25:92:22:9a:ef:33:9a:e5: 7b:8d:4b:c3:f7:23:53:f0:77:ec:63:29:b2:34:56: ad:88:ee:cb:6e:6e:c3:ba:65:2a:83:78:52:b0:28: e2:d1:8f:06:4b:d2:54:5a:7d:0e:7e:51:b1:9d:af: e5:94:57:10:5c:16:e8:fc:d2:d9:d6:77:d7:2f:c7: 36:f8:43:11:79:d0:ef:b8:86:f7:c6:21:db:64:2e: ad:e8:1f:b0:8d:f0:d0:a0:9e:f8:b3:e9:32:e3:39: 27:d4:37:21:6a:bc:c8:34:4a:25:06:98:30:c4:ad: b3:ff:af:c0:06:75:d1:0a:dc:bf:bc:18:0f:ab:6e: f9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 X509v3 Authority Key Identifier: keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e8:3c:8c:21:e8:fb:14:28:27:e1:67:ea:e2:5b:6b:72:64:7b: ea:97:14:44:ff:7b:94:05:62:b5:7c:0b:04:d1:d0:1d:b1:c9: e0:6c:60:37:34:52:ca:e9:51:e1:62:f8:09:4e:46:bc:19:54: 4e:5d:19:68:ff:7e:c6:3f:f7:85:d3:f6:90:03:ee:75:39:db: d5:ef:80:da:4e:17:d4:eb:68:1e:ef:09:32:19:53:f5:38:04: b9:bb:28:84:9f:41:42:93:70:6d:17:0f:24:5b:b7:20:77:7c: f7:2a:8f:42:c6:67:29:91:1a:e6:b5:a5:cc:f0:bd:4e:60:2f: 93:29:15:5c:d3:3a:74:37:5b:48:2a:cd:82:f6:32:76:31:43: af:1d:2f:4e:6a:c6:9a:fa:79:8e:d4:15:df:92:2a:d7:24:3b: 31:db:3e:0f:7d:e7:de:4c:2f:48:3f:6a:a0:12:fe:21:da:b9: 85:aa:7e:0b:85:2a:f9:99:03:ff:ca:7d:31:72:30:09:06:8e: 95:4d:9f:14:37:fa:7a:ff:65:2e:e7:9c:15:f2:6e:19:a8:ef: 4a:90:36:c2:fa:b1:33:f6:28:f6:dc:b7:d9:6d:e7:e9:b3:54: 10:77:39:af:eb:b6:72:a1:5a:14:73:ef:b0:9f:25:60:d5:1c: 46:4f:f9:04 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDY5 Q0U2NTFERDdENzE2QTg5QThFRTg0ODczRENDQkY0MTM1NDc5OTAeFw0yNTAyMTYx NjI3MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhBNjEwQUU5NkI0MzIx RTk1MUI4OTg3Mjg5QjQzOTk1QTk3OEE0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC17qvFKHkNutOXd8sr85XslQAH6YxzRBK/CGkePiYp1DM/1E7l g9aCDmAJYnVXyw1pXwOE8oz0oqEbFlzhpnd4F32n0YW1t+IpnuZ5/E4JY06f3RvN BCX74JXxT2EwslCMgC1Z1A2ZG1jRjFXTn8XzvJjrI+IlP9Lmjk5+hXElkiKa7zOa 5XuNS8P3I1Pwd+xjKbI0Vq2I7stubsO6ZSqDeFKwKOLRjwZL0lRafQ5+UbGdr+WU VxBcFuj80tnWd9cvxzb4QxF50O+4hvfGIdtkLq3oH7CN8NCgnviz6TLjOSfUNyFq vMg0SiUGmDDErbP/r8AGddEK3L+8GA+rbvlvAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUimEK6WtDIelRuJhyibQ5lal4pJUwHwYDVR0jBBgwFoAUBpzmUd19cWqJqO6E hz3Mv0E1R5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUv QnB6bVVkMTljV3FKcU82RWh6M012MEUxUjVrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9CcHptVWQxOWNXcUpxTzZFaHozTXYwRTFSNWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BUkNIRS9CcHptVWQxOWNXcUpxTzZFaHoz TXYwRTFSNWsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6DyM Iej7FCgn4Wfq4ltrcmR76pcURP97lAVitXwLBNHQHbHJ4GxgNzRSyulR4WL4CU5G vBlUTl0ZaP9+xj/3hdP2kAPudTnb1e+A2k4X1OtoHu8JMhlT9TgEubsohJ9BQpNw bRcPJFu3IHd89yqPQsZnKZEa5rWlzPC9TmAvkykVXNM6dDdbSCrNgvYydjFDrx0v TmrGmvp5jtQV35Iq1yQ7Mds+D33n3kwvSD9qoBL+Idq5hap+C4Uq+ZkD/8p9MXIw CQaOlU2fFDf6ev9lLuecFfJuGajvSpA2wvqxM/Yo9ty32W3n6bNUEHc5r+u2cqFa FHPvsJ8lYNUcRk/5BA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:15:52 2025 by rpki-client