$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft File: p7aF2RtOmIGWTnfVtOI591VSoYs.mft (raw, json) Hash identifier: CpnmWYCoyPHvRj4DjJfN8iNyv4+3fJX81LLie1vhYqE= Subject key identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 Authority key identifier: A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B Certificate issuer: /CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Certificate serial: 01E4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft Manifest number: 01E4 Signing time: Tue 16 Sep 2025 21:17:50 +0000 Manifest this update: Tue 16 Sep 2025 21:17:50 +0000 Manifest next update: Thu 18 Sep 2025 21:17:50 +0000 Files and hashes: 1: p7aF2RtOmIGWTnfVtOI591VSoYs.crl (hash: 8dWAmuSLQWmROD4LH+3moaXQN7WQaxWmfuff2o3XHG0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 13:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Validity Not Before: Sep 16 21:17:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B70344CCA18168928455839B008376099FCB1700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:fc:c9:8a:ce:0e:24:02:36:12:19:73:41: a8:7b:60:92:68:db:b4:be:5c:1b:7d:12:bd:22:00: ce:27:d7:35:cd:19:79:a4:8f:cc:d9:df:11:3c:51: f3:db:ba:cb:8c:09:2b:ae:30:15:a9:0b:20:ea:b7: 95:5d:17:2a:33:25:09:a0:8e:ff:d1:33:54:4f:42: 12:0f:5e:ca:6e:c0:68:66:ee:a5:aa:00:fc:94:82: 3f:ec:f7:cf:e7:93:72:01:ce:5e:a1:16:17:61:c7: de:86:b6:53:4f:61:f8:04:bc:e3:c3:90:ef:2c:b6: 76:57:76:f5:91:12:69:7b:a1:36:c4:8f:21:77:f7: 43:8a:14:8a:92:69:02:d3:82:30:99:d0:6d:dd:6e: d3:e9:22:8b:cf:e8:e1:3b:1c:a5:7b:5a:49:13:d1: ae:ac:46:03:11:0a:55:b3:43:77:7a:a0:89:5d:3c: b4:d2:c9:3a:6f:d8:07:3e:ce:de:38:ff:47:d9:5b: 05:68:39:d1:55:a8:23:3e:a1:56:01:ee:ba:e3:bd: c0:c5:60:6d:77:b7:62:aa:b2:00:1d:b2:16:bc:7a: db:4a:ba:d7:32:72:ba:a6:46:aa:d3:f5:2c:7e:b6: c2:51:d3:d6:80:b2:3c:3c:25:d7:3e:6a:69:5e:67: e3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 X509v3 Authority Key Identifier: keyid:A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:de:f7:c9:a3:58:00:96:42:e0:f5:76:18:9b:c8:e3:96:84: 43:c4:77:c4:65:09:c1:4c:17:13:e3:ec:34:2f:d0:10:93:4a: db:a5:c9:44:6a:3a:3b:00:fe:3d:ba:96:86:26:f5:35:89:f6: 23:41:58:98:17:ea:e8:c9:a6:1e:97:97:d9:6f:fd:94:a4:6f: 93:2a:22:0c:ef:30:06:01:90:f4:27:30:99:68:3a:9e:36:c6: a8:13:08:fd:99:d5:23:fe:e8:5e:a9:9c:da:02:e9:63:f1:69: b0:16:19:1d:e3:62:71:15:fe:d6:3c:05:ef:4b:0c:49:17:c0: a0:13:3f:cf:5f:9b:a1:45:38:7f:c1:ec:11:ff:b6:da:6c:49: 08:39:63:fe:36:f3:8b:ee:41:5f:15:02:6e:bf:99:ca:5d:d0: 23:47:b9:95:42:a3:ad:c8:7f:1f:20:a6:62:20:58:ef:68:ad: 68:ae:8b:59:9d:03:3f:fe:07:b9:9e:69:ef:f5:f1:97:a1:7a: 3a:50:35:47:27:7b:de:79:a4:98:91:dc:cb:ec:18:93:ec:d6: ac:1c:79:8b:bf:b0:fd:5c:72:9f:91:43:c2:3c:12:e5:c4:e8: 72:8a:fb:51:d1:00:31:67:99:07:e4:ee:4d:73:28:55:85:83: ca:5d:ec:03 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTdC Njg1RDkxQjRFOTg4MTk2NEU3N0Q1QjRFMjM5Rjc1NTUyQTE4QjAeFw0yNTA5MTYy MTE3NTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI3MDM0NENDQTE4MTY4 OTI4NDU1ODM5QjAwODM3NjA5OUZDQjE3MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNSPzJis4OJAI2EhlzQah7YJJo27S+XBt9Er0iAM4n1zXNGXmk j8zZ3xE8UfPbusuMCSuuMBWpCyDqt5VdFyozJQmgjv/RM1RPQhIPXspuwGhm7qWq APyUgj/s98/nk3IBzl6hFhdhx96GtlNPYfgEvOPDkO8stnZXdvWREml7oTbEjyF3 90OKFIqSaQLTgjCZ0G3dbtPpIovP6OE7HKV7WkkT0a6sRgMRClWzQ3d6oIldPLTS yTpv2Ac+zt44/0fZWwVoOdFVqCM+oVYB7rrjvcDFYG13t2KqsgAdsha8ettKutcy crqmRqrT9Sx+tsJR09aAsjw8Jdc+amleZ+PhAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUtwNEzKGBaJKEVYObAIN2CZ/LFwAwHwYDVR0jBBgwFoAUp7aF2RtOmIGWTnfV tOI591VSoYswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJB UFBTL3A3YUYyUnRPbUlHV1RuZlZ0T0k1OTFWU29Zcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcDdhRjJSdE9tSUdXVG5mVnRPSTU5MVZTb1lzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJBUFBTL3A3YUYyUnRPbUlH V1RuZlZ0T0k1OTFWU29Zcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQA+3vfJo1gAlkLg9XYYm8jjloRDxHfEZQnBTBcT4+w0L9AQk0rbpclEajo7 AP49upaGJvU1ifYjQViYF+royaYel5fZb/2UpG+TKiIM7zAGAZD0JzCZaDqeNsao Ewj9mdUj/uheqZzaAulj8WmwFhkd42JxFf7WPAXvSwxJF8CgEz/PX5uhRTh/wewR /7babEkIOWP+NvOL7kFfFQJuv5nKXdAjR7mVQqOtyH8fIKZiIFjvaK1orotZnQM/ /ge5nmnv9fGXoXo6UDVHJ3veeaSYkdzL7BiT7NasHHmLv7D9XHKfkUPCPBLlxOhy ivtR0QAxZ5kH5O5NcyhVhYPKXewD -----END CERTIFICATE-----Generated at Thu Sep 18 08:13:51 2025 by rpki-client