$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.mft File: Sntf_5e4nIe9v9RhZO6SSofWluk.mft (raw, json) Hash identifier: PBGOlidVfHe06Fa6oH6VO2s0Ce5Fc5pMo5FsTCZu4vc= Subject key identifier: 77:90:87:95:44:CF:DD:E1:EA:7B:F0:90:F4:38:7A:6C:AC:D4:84:44 Authority key identifier: 4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9 Certificate issuer: /CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9 Certificate serial: 0274 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.mft Manifest number: 0267 Signing time: Sun 07 Sep 2025 21:19:46 +0000 Manifest this update: Sun 07 Sep 2025 21:19:46 +0000 Manifest next update: Tue 09 Sep 2025 21:19:46 +0000 Files and hashes: 1: Sntf_5e4nIe9v9RhZO6SSofWluk.crl (hash: sOXTRUkCBAJfhfpFXUzm1ZnadC1vyyZ0HTWqkrsfSqM=) 2: UZoCbnjLoO4BaHSQrR36SjBhSj8.roa (hash: Hyjn0OpDnYxY1GnrSqONjxYyOeA06xVT1xeOStgakio=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 10:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9 Validity Not Before: Sep 7 21:19:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7790879544CFDDE1EA7BF090F4387A6CACD48444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e0:ad:c9:3f:ed:d3:1a:56:0d:9b:93:10:85: 51:e8:17:63:76:39:2c:2c:43:a0:9f:fe:5d:40:5f: 5f:5b:10:4c:dd:2e:18:51:b3:2e:90:49:4a:7e:9c: 0f:88:b3:74:76:8e:29:a4:ec:64:c5:97:08:07:d2: e1:8c:21:e4:3a:47:7f:e3:f0:b4:df:f5:11:e5:1b: a9:b7:4a:19:8e:0b:aa:58:ab:aa:2b:15:9e:21:44: 02:ee:27:55:4e:58:5c:d2:6f:10:c9:49:9b:2e:8c: 57:58:9d:8a:8d:b1:dd:c6:33:e2:61:7f:77:c8:00: b5:f2:23:a8:25:a4:0e:47:a2:ee:b5:6f:25:22:5b: e3:b7:47:7b:10:40:95:ab:da:f1:a6:a5:31:df:cc: c5:05:f3:ce:cb:ac:31:ef:65:2d:de:14:0f:db:a4: b6:62:c2:ab:18:db:9d:6e:ab:22:3b:0d:ca:48:bb: 6d:4a:44:2b:ec:7a:21:04:65:e9:b1:ec:80:b3:02: c3:8e:fa:36:6a:e7:a2:ca:66:05:d5:2c:97:e7:65: 90:77:b4:39:c0:9e:03:f9:16:51:a4:c3:d4:09:f9: 46:e0:ac:7f:1a:24:c2:e2:eb:c3:06:23:24:75:4b: d1:31:9c:6c:b3:b1:ee:92:d3:db:b9:ed:dc:7d:a4: 7c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:90:87:95:44:CF:DD:E1:EA:7B:F0:90:F4:38:7A:6C:AC:D4:84:44 X509v3 Authority Key Identifier: keyid:4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:d5:7a:d1:7a:46:8d:c0:0b:32:93:77:dd:c2:81:06:7d:80: 77:b1:f6:22:39:db:c2:ca:c4:b4:8e:b8:01:3c:e2:56:57:61: 5f:c1:0e:36:13:18:18:88:1e:c9:8e:cd:a1:16:59:53:7c:0b: 92:d0:2e:94:6c:ca:5b:fb:c0:a7:12:05:c3:f4:7a:5b:93:93: 87:c1:b1:db:e9:88:e3:c1:88:26:20:5b:a7:d4:10:86:c2:ea: 3e:a7:b4:9d:e5:7d:49:09:6f:0c:4e:25:56:71:e9:48:b4:64: cc:a6:e9:04:8b:9b:8d:56:d2:5b:02:24:10:de:1f:21:65:be: 37:a8:ca:0f:36:7d:f7:87:ee:57:e2:29:a9:f3:21:5a:07:b6: 54:2b:9c:e2:1c:ef:62:ad:fb:1e:75:4a:bf:5e:e9:dc:80:df: be:30:3d:2d:52:99:65:91:8c:0b:51:23:b9:bd:e0:d6:9b:fc: 16:5e:d8:7d:30:97:06:b5:ff:27:7f:46:bc:d4:a6:56:2d:90: ec:2e:eb:bb:14:7f:b3:f1:6d:ce:49:ec:eb:8b:49:a2:9f:41: 82:80:7d:7d:4f:a0:b9:43:e0:db:9d:ea:47:4e:14:bd:4a:c4: 1e:14:fd:e9:d0:8d:f1:13:1e:30:f5:3a:80:23:21:0e:9e:dc: ce:a6:1b:e6 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEE3 QjVGRkY5N0I4OUM4N0JEQkZENDYxNjRFRTkyNEE4N0Q2OTZFOTAeFw0yNTA5MDcy MTE5NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc3OTA4Nzk1NDRDRkRE RTFFQTdCRjA5MEY0Mzg3QTZDQUNENDg0NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC64K3JP+3TGlYNm5MQhVHoF2N2OSwsQ6Cf/l1AX19bEEzdLhhR sy6QSUp+nA+Is3R2jimk7GTFlwgH0uGMIeQ6R3/j8LTf9RHlG6m3ShmOC6pYq6or FZ4hRALuJ1VOWFzSbxDJSZsujFdYnYqNsd3GM+Jhf3fIALXyI6glpA5Hou61byUi W+O3R3sQQJWr2vGmpTHfzMUF887LrDHvZS3eFA/bpLZiwqsY251uqyI7DcpIu21K RCvseiEEZemx7ICzAsOO+jZq56LKZgXVLJfnZZB3tDnAngP5FlGkw9QJ+UbgrH8a JMLi68MGIyR1S9ExnGyzse6S09u57dx9pHzDAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUd5CHlUTP3eHqe/CQ9Dh6bKzUhEQwHwYDVR0jBBgwFoAUSntf/5e4nIe9v9Rh ZO6SSofWlukwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1JPV04v U250Zl81ZTRuSWU5djlSaFpPNlNTb2ZXbHVrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9TbnRmXzVlNG5JZTl2OVJoWk82U1NvZldsdWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUk9XTi9TbnRmXzVlNG5JZTl2OVJoWk82 U1NvZldsdWsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa9V6 0XpGjcALMpN33cKBBn2Ad7H2IjnbwsrEtI64ATziVldhX8EONhMYGIgeyY7NoRZZ U3wLktAulGzKW/vApxIFw/R6W5OTh8Gx2+mI48GIJiBbp9QQhsLqPqe0neV9SQlv DE4lVnHpSLRkzKbpBIubjVbSWwIkEN4fIWW+N6jKDzZ994fuV+IpqfMhWge2VCuc 4hzvYq37HnVKv17p3IDfvjA9LVKZZZGMC1Ejub3g1pv8Fl7YfTCXBrX/J39GvNSm Vi2Q7C7ruxR/s/Ftzkns64tJop9BgoB9fU+guUPg253qR04UvUrEHhT96dCN8RMe MPU6gCMhDp7czqYb5g== -----END CERTIFICATE-----Generated at Tue Sep 9 07:52:19 2025 by rpki-client