$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft File: p7aF2RtOmIGWTnfVtOI591VSoYs.mft (raw, json) Hash identifier: +7ODQnmQ34eq9dOrUiTUJnlVWKmRsyvf1ifhiCOY/is= Subject key identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 Authority key identifier: A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B Certificate issuer: /CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Certificate serial: 01C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft Manifest number: 01C3 Signing time: Wed 30 Jul 2025 10:37:26 +0000 Manifest this update: Wed 30 Jul 2025 10:37:26 +0000 Manifest next update: Fri 01 Aug 2025 10:37:26 +0000 Files and hashes: 1: p7aF2RtOmIGWTnfVtOI591VSoYs.crl (hash: 5sV65P2Hkx+bZgTBwGZg4f/4hLPMn4OTR61JN5zKy/g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Validity Not Before: Jul 30 10:37:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B70344CCA18168928455839B008376099FCB1700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:fc:c9:8a:ce:0e:24:02:36:12:19:73:41: a8:7b:60:92:68:db:b4:be:5c:1b:7d:12:bd:22:00: ce:27:d7:35:cd:19:79:a4:8f:cc:d9:df:11:3c:51: f3:db:ba:cb:8c:09:2b:ae:30:15:a9:0b:20:ea:b7: 95:5d:17:2a:33:25:09:a0:8e:ff:d1:33:54:4f:42: 12:0f:5e:ca:6e:c0:68:66:ee:a5:aa:00:fc:94:82: 3f:ec:f7:cf:e7:93:72:01:ce:5e:a1:16:17:61:c7: de:86:b6:53:4f:61:f8:04:bc:e3:c3:90:ef:2c:b6: 76:57:76:f5:91:12:69:7b:a1:36:c4:8f:21:77:f7: 43:8a:14:8a:92:69:02:d3:82:30:99:d0:6d:dd:6e: d3:e9:22:8b:cf:e8:e1:3b:1c:a5:7b:5a:49:13:d1: ae:ac:46:03:11:0a:55:b3:43:77:7a:a0:89:5d:3c: b4:d2:c9:3a:6f:d8:07:3e:ce:de:38:ff:47:d9:5b: 05:68:39:d1:55:a8:23:3e:a1:56:01:ee:ba:e3:bd: c0:c5:60:6d:77:b7:62:aa:b2:00:1d:b2:16:bc:7a: db:4a:ba:d7:32:72:ba:a6:46:aa:d3:f5:2c:7e:b6: c2:51:d3:d6:80:b2:3c:3c:25:d7:3e:6a:69:5e:67: e3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 X509v3 Authority Key Identifier: keyid:A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:a8:e3:c5:d4:07:16:13:22:71:38:08:22:0d:7b:1b:c4:ae: b1:cd:ed:3e:36:59:c8:75:76:38:ac:30:53:13:f3:4a:e2:c3: d0:12:51:90:ce:f8:eb:fb:83:4c:5f:17:8f:58:38:9d:5e:05: 7e:25:e9:a0:3d:07:8b:4b:34:af:da:af:c9:4a:a2:80:54:9c: 74:eb:14:d2:d8:19:2a:8d:13:22:67:13:0d:3b:6f:1a:25:a1: cc:9f:77:54:f8:26:a8:aa:9f:64:8c:43:73:cd:dc:1d:30:64: a6:68:c7:03:7c:36:46:7a:af:21:a2:9e:74:60:d9:a6:d4:dd: 33:8c:58:c7:c8:74:f9:56:54:a1:e0:9e:f1:a7:8b:40:3e:ac: 73:64:bf:3a:37:4e:6f:7e:fb:0a:43:31:9d:81:02:3a:66:c1: c1:88:c3:55:5c:76:67:d7:64:42:56:f1:28:b0:16:de:1b:ac: 5d:da:2a:2c:63:df:e3:e6:bb:fb:7b:6d:c0:3c:2c:ff:5a:13: 49:21:eb:35:6a:af:22:b1:44:fc:4d:2f:81:a2:a8:e7:13:25: 90:34:3e:56:42:e3:3f:e2:95:d5:cb:6e:51:3f:1d:fc:75:12: c9:a1:36:ae:15:f1:8d:8e:36:9c:18:aa:b1:2b:78:2d:d6:4d: e3:36:8a:64 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTdC Njg1RDkxQjRFOTg4MTk2NEU3N0Q1QjRFMjM5Rjc1NTUyQTE4QjAeFw0yNTA3MzAx MDM3MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3MDM0NENDQTE4MTY4 OTI4NDU1ODM5QjAwODM3NjA5OUZDQjE3MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNSPzJis4OJAI2EhlzQah7YJJo27S+XBt9Er0iAM4n1zXNGXmk j8zZ3xE8UfPbusuMCSuuMBWpCyDqt5VdFyozJQmgjv/RM1RPQhIPXspuwGhm7qWq APyUgj/s98/nk3IBzl6hFhdhx96GtlNPYfgEvOPDkO8stnZXdvWREml7oTbEjyF3 90OKFIqSaQLTgjCZ0G3dbtPpIovP6OE7HKV7WkkT0a6sRgMRClWzQ3d6oIldPLTS yTpv2Ac+zt44/0fZWwVoOdFVqCM+oVYB7rrjvcDFYG13t2KqsgAdsha8ettKutcy crqmRqrT9Sx+tsJR09aAsjw8Jdc+amleZ+PhAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUtwNEzKGBaJKEVYObAIN2CZ/LFwAwHwYDVR0jBBgwFoAUp7aF2RtOmIGWTnfV tOI591VSoYswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJB UFBTL3A3YUYyUnRPbUlHV1RuZlZ0T0k1OTFWU29Zcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcDdhRjJSdE9tSUdXVG5mVnRPSTU5MVZTb1lzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJBUFBTL3A3YUYyUnRPbUlH V1RuZlZ0T0k1OTFWU29Zcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCIqOPF1AcWEyJxOAgiDXsbxK6xze0+NlnIdXY4rDBTE/NK4sPQElGQzvjr +4NMXxePWDidXgV+JemgPQeLSzSv2q/JSqKAVJx06xTS2BkqjRMiZxMNO28aJaHM n3dU+Caoqp9kjENzzdwdMGSmaMcDfDZGeq8hop50YNmm1N0zjFjHyHT5VlSh4J7x p4tAPqxzZL86N05vfvsKQzGdgQI6ZsHBiMNVXHZn12RCVvEosBbeG6xd2iosY9/j 5rv7e23APCz/WhNJIes1aq8isUT8TS+BoqjnEyWQND5WQuM/4pXVy25RPx38dRLJ oTauFfGNjjacGKqxK3gt1k3jNopk -----END CERTIFICATE-----Generated at Thu Jul 31 18:11:29 2025 by rpki-client