$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft File: F5xj2x1vOrL7DueOGol7hbvSpgI.mft (raw, json) Hash identifier: 1CooeEwRA7dW8qXOxCozPOkCK2UxFhGDiO4TCNU70OQ= Subject key identifier: D8:FA:B0:C7:18:7F:34:1B:62:59:39:0C:B3:78:EF:06:94:0B:44:84 Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Certificate serial: 03A4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft Manifest number: 0397 Signing time: Wed 30 Jul 2025 09:37:52 +0000 Manifest this update: Wed 30 Jul 2025 09:37:52 +0000 Manifest next update: Fri 01 Aug 2025 09:37:52 +0000 Files and hashes: 1: F5xj2x1vOrL7DueOGol7hbvSpgI.crl (hash: ihNiZbn0B7zhaeFxTFXkUDd/c6dKXG/J6l/E/q2zVTI=) 2: wu_0SQvvr0Xapqh654Y10EzUX0w.roa (hash: 9UO6hfwFwtN8mT5Irs7ztnjcToRtwAZhrBWyPsgh/98=) 3: yBgz_XZJEY3ExgFIqhOcvEGCU5w.roa (hash: +U2HUjYHSKaHmWe1aK14KuguYPBl+wgmlW/WeWe7daI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Validity Not Before: Jul 30 09:37:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D8FAB0C7187F341B6259390CB378EF06940B4484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:f7:2d:d9:f3:7e:28:44:b2:f7:ed:49:87: 97:8a:e6:b8:60:07:72:1e:4f:e1:c5:5d:85:4b:78: a1:54:7f:46:67:4d:85:ce:e5:5d:e3:0f:d4:a6:c5: 49:32:c0:16:ca:7e:4e:01:83:9d:af:49:37:d9:a1: e9:1c:bd:ec:6b:22:69:cb:cc:93:10:5c:7b:1c:19: d7:0e:2f:67:6d:a1:41:5e:e1:55:4f:2c:48:44:d5: 01:e2:f8:21:0f:48:de:70:ba:91:7b:3e:b2:69:92: d6:20:88:fb:0e:86:5c:c6:9f:f4:8c:24:31:60:d4: ab:d1:eb:9c:3a:6c:0b:ea:6d:ac:28:80:96:75:f1: ae:17:7d:0f:80:50:17:69:55:b6:90:d4:bc:a9:15: 2b:99:14:c5:e7:e8:13:13:8c:a9:27:da:fe:19:3d: 40:fd:ce:12:44:6c:ad:f2:62:4a:72:24:2b:d2:e5: 58:ec:5b:31:93:5f:2d:b6:94:84:34:a2:08:3f:02: e9:62:7d:22:ca:ac:ad:0e:0b:a1:61:08:8a:0d:ef: 59:03:57:08:a3:9b:b8:68:f1:14:08:81:df:95:7f: 0f:6c:ed:f4:63:02:8d:ec:6e:61:98:1f:9b:3d:2a: 5c:41:ca:1e:51:73:e8:47:97:9a:e2:b8:fb:77:30: e1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FA:B0:C7:18:7F:34:1B:62:59:39:0C:B3:78:EF:06:94:0B:44:84 X509v3 Authority Key Identifier: keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:c3:ea:e0:67:73:0b:85:7f:3a:2a:d7:4a:3a:24:db:58:11: 47:d8:32:85:1b:22:38:c4:c4:38:4b:59:a9:36:23:a6:52:e7: 77:c6:02:76:6c:2e:e2:2a:4c:2c:51:ba:92:60:3f:3b:01:38: 95:7f:89:16:76:fe:d5:8a:70:15:63:d2:30:bf:69:c3:88:78: 82:6d:b2:dd:e2:0f:f6:ee:d4:06:91:1b:f9:65:76:82:66:10: 32:ee:a4:8a:50:a3:24:22:5d:cc:c5:82:65:cf:3d:18:3f:eb: f0:8c:ff:90:85:e3:2a:42:2a:48:e2:9f:64:91:1a:48:36:36: 13:59:ad:d3:aa:aa:ae:b3:04:50:df:89:ac:70:d5:2b:2e:31: f7:50:e7:c9:bb:ab:0c:7f:d0:50:b4:ce:95:86:e8:c6:51:60: 29:00:68:87:be:98:d8:52:99:7c:b1:8c:d2:df:f1:05:b2:5c: c1:a5:c8:c3:24:29:53:8d:f8:b2:b3:75:01:63:87:2c:65:c0: 95:23:5e:fe:0a:d0:ea:28:5f:52:fa:9e:06:3d:e7:2c:25:af: 32:ff:42:11:61:3b:1d:ef:f2:9d:d0:c3:08:84:3a:87:b3:21: cc:f3:b3:42:80:99:07:f5:ab:32:99:56:ef:63:9e:db:7b:cb: 3d:cd:f3:e0 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5 QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yNTA3MzAw OTM3NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4RkFCMEM3MTg3RjM0 MUI2MjU5MzkwQ0IzNzhFRjA2OTQwQjQ0ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw9vct2fN+KESy9+1Jh5eK5rhgB3IeT+HFXYVLeKFUf0ZnTYXO 5V3jD9SmxUkywBbKfk4Bg52vSTfZoekcvexrImnLzJMQXHscGdcOL2dtoUFe4VVP LEhE1QHi+CEPSN5wupF7PrJpktYgiPsOhlzGn/SMJDFg1KvR65w6bAvqbawogJZ1 8a4XfQ+AUBdpVbaQ1LypFSuZFMXn6BMTjKkn2v4ZPUD9zhJEbK3yYkpyJCvS5Vjs WzGTXy22lIQ0ogg/AulifSLKrK0OC6FhCIoN71kDVwijm7ho8RQIgd+Vfw9s7fRj Ao3sbmGYH5s9KlxByh5Rc+hHl5riuPt3MOFBAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU2Pqwxxh/NBtiWTkMs3jvBpQLRIQwHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS9GNXhqMngxdk9yTDdE dWVPR29sN2hidlNwZ0kubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdsPq4GdzC4V/OirXSjok21gRR9gyhRsiOMTEOEtZqTYjplLnd8YCdmwu4ipM LFG6kmA/OwE4lX+JFnb+1YpwFWPSML9pw4h4gm2y3eIP9u7UBpEb+WV2gmYQMu6k ilCjJCJdzMWCZc89GD/r8Iz/kIXjKkIqSOKfZJEaSDY2E1mt06qqrrMEUN+JrHDV Ky4x91DnyburDH/QULTOlYboxlFgKQBoh76Y2FKZfLGM0t/xBbJcwaXIwyQpU434 srN1AWOHLGXAlSNe/grQ6ihfUvqeBj3nLCWvMv9CEWE7He/yndDDCIQ6h7MhzPOz QoCZB/WrMplW72Oe23vLPc3z4A== -----END CERTIFICATE-----Generated at Thu Jul 31 18:18:53 2025 by rpki-client