$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft File: p7aF2RtOmIGWTnfVtOI591VSoYs.mft (raw, json) Hash identifier: kFJtpNeGiGbloM559AFqxSsstqpRxUL74Jmd1Sq/vv8= Subject key identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 Authority key identifier: A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B Certificate issuer: /CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Certificate serial: 019D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft Manifest number: 019D Signing time: Tue 03 Jun 2025 09:56:24 +0000 Manifest this update: Tue 03 Jun 2025 09:56:24 +0000 Manifest next update: Thu 05 Jun 2025 09:56:24 +0000 Files and hashes: 1: p7aF2RtOmIGWTnfVtOI591VSoYs.crl (hash: Wq1xn81SDYjy1Z32/rgswDw8ynS3hHDeyfAo17GkVH0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Validity Not Before: Jun 3 09:56:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B70344CCA18168928455839B008376099FCB1700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:fc:c9:8a:ce:0e:24:02:36:12:19:73:41: a8:7b:60:92:68:db:b4:be:5c:1b:7d:12:bd:22:00: ce:27:d7:35:cd:19:79:a4:8f:cc:d9:df:11:3c:51: f3:db:ba:cb:8c:09:2b:ae:30:15:a9:0b:20:ea:b7: 95:5d:17:2a:33:25:09:a0:8e:ff:d1:33:54:4f:42: 12:0f:5e:ca:6e:c0:68:66:ee:a5:aa:00:fc:94:82: 3f:ec:f7:cf:e7:93:72:01:ce:5e:a1:16:17:61:c7: de:86:b6:53:4f:61:f8:04:bc:e3:c3:90:ef:2c:b6: 76:57:76:f5:91:12:69:7b:a1:36:c4:8f:21:77:f7: 43:8a:14:8a:92:69:02:d3:82:30:99:d0:6d:dd:6e: d3:e9:22:8b:cf:e8:e1:3b:1c:a5:7b:5a:49:13:d1: ae:ac:46:03:11:0a:55:b3:43:77:7a:a0:89:5d:3c: b4:d2:c9:3a:6f:d8:07:3e:ce:de:38:ff:47:d9:5b: 05:68:39:d1:55:a8:23:3e:a1:56:01:ee:ba:e3:bd: c0:c5:60:6d:77:b7:62:aa:b2:00:1d:b2:16:bc:7a: db:4a:ba:d7:32:72:ba:a6:46:aa:d3:f5:2c:7e:b6: c2:51:d3:d6:80:b2:3c:3c:25:d7:3e:6a:69:5e:67: e3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 X509v3 Authority Key Identifier: keyid:A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:c4:de:45:92:57:68:cc:8b:30:2c:01:08:37:a5:08:a9:20: 97:45:40:53:78:87:52:5b:67:30:b3:7d:bf:f3:62:2d:6f:cb: b1:76:34:eb:63:11:b5:d0:13:09:54:df:18:07:22:97:17:33: 50:79:08:0c:e5:98:6c:05:91:15:77:a3:89:13:9d:ba:0a:2a: 93:a7:41:38:82:a4:23:bb:db:ec:aa:ec:f2:a3:e6:af:82:52: 85:45:98:b4:d2:e3:1f:a2:c3:a3:6e:1e:fb:49:a0:5c:d7:24: 09:71:75:99:96:74:7a:ae:1d:fa:98:ce:da:0f:a3:2e:3e:5d: 67:fa:35:11:aa:33:54:2e:86:b8:4b:28:0a:9c:2a:62:21:bc: c9:af:96:29:3a:91:75:f2:cd:0a:2e:2a:6e:67:53:8f:66:56: ea:54:f2:eb:bc:56:df:04:e6:7d:7f:8b:59:68:d8:c8:ce:91: f7:8b:3c:e8:67:2d:cc:77:95:39:75:0b:fb:e3:89:27:dd:2d: 6f:e9:32:1b:1c:19:72:dc:77:ed:54:21:7b:d1:2d:c8:0d:c8: 77:76:bf:d0:bf:e8:8d:52:e4:fb:ee:7e:22:9b:bc:e2:a2:76: 8a:bd:bf:2c:06:ef:36:2d:f1:a3:96:ee:7a:3f:14:0b:7b:66: bf:53:d6:02 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTdC Njg1RDkxQjRFOTg4MTk2NEU3N0Q1QjRFMjM5Rjc1NTUyQTE4QjAeFw0yNTA2MDMw OTU2MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3MDM0NENDQTE4MTY4 OTI4NDU1ODM5QjAwODM3NjA5OUZDQjE3MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNSPzJis4OJAI2EhlzQah7YJJo27S+XBt9Er0iAM4n1zXNGXmk j8zZ3xE8UfPbusuMCSuuMBWpCyDqt5VdFyozJQmgjv/RM1RPQhIPXspuwGhm7qWq APyUgj/s98/nk3IBzl6hFhdhx96GtlNPYfgEvOPDkO8stnZXdvWREml7oTbEjyF3 90OKFIqSaQLTgjCZ0G3dbtPpIovP6OE7HKV7WkkT0a6sRgMRClWzQ3d6oIldPLTS yTpv2Ac+zt44/0fZWwVoOdFVqCM+oVYB7rrjvcDFYG13t2KqsgAdsha8ettKutcy crqmRqrT9Sx+tsJR09aAsjw8Jdc+amleZ+PhAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUtwNEzKGBaJKEVYObAIN2CZ/LFwAwHwYDVR0jBBgwFoAUp7aF2RtOmIGWTnfV tOI591VSoYswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJB UFBTL3A3YUYyUnRPbUlHV1RuZlZ0T0k1OTFWU29Zcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcDdhRjJSdE9tSUdXVG5mVnRPSTU5MVZTb1lzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJBUFBTL3A3YUYyUnRPbUlH V1RuZlZ0T0k1OTFWU29Zcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCZxN5FkldozIswLAEIN6UIqSCXRUBTeIdSW2cws32/82Itb8uxdjTrYxG1 0BMJVN8YByKXFzNQeQgM5ZhsBZEVd6OJE526CiqTp0E4gqQju9vsquzyo+avglKF RZi00uMfosOjbh77SaBc1yQJcXWZlnR6rh36mM7aD6MuPl1n+jURqjNULoa4SygK nCpiIbzJr5YpOpF18s0KLipuZ1OPZlbqVPLrvFbfBOZ9f4tZaNjIzpH3izzoZy3M d5U5dQv744kn3S1v6TIbHBly3HftVCF70S3IDch3dr/Qv+iNUuT77n4im7zionaK vb8sBu82LfGjlu56PxQLe2a/U9YC -----END CERTIFICATE-----Generated at Wed Jun 4 00:15:24 2025 by rpki-client