$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft File: mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft (raw, json) Hash identifier: D6MVUSdz5HOPy23mMFqNfHOQs0TKhIRygzEXXkGIbK0= Subject key identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5 Certificate serial: 0483 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft Manifest number: 0473 Signing time: Sun 01 Jun 2025 21:56:58 +0000 Manifest this update: Sun 01 Jun 2025 21:56:58 +0000 Manifest next update: Tue 03 Jun 2025 21:56:58 +0000 Files and hashes: 1: Ew-qcL2tVQfw_P0Dbr-rkWNtwTc.roa (hash: hBsut+aga9I0oiINrScVmIpACKkZ7ZquEX1Izy+tzvI=) 2: FhinhuqiAkO5hLp-j6X7ydkW6UA.roa (hash: iYegZqhBkdbfUKryMxzH0afkgGd7QBpxDiBPa9bmnPc=) 3: mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl (hash: d+ugCE0rXSqlJFYAleklcniur7lfROXXwiSUI8vUU2M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5 Validity Not Before: Jun 1 21:56:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B53DEE65687F1391EB2083BA1A2106262FBE7B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:53:85:d1:c7:6e:6f:83:48:80:1b:09:d7: b9:fc:fa:4b:41:6d:a4:04:6d:2c:40:39:a6:2b:af: 59:b0:4f:26:3c:df:66:19:1e:2b:e8:3b:8b:6b:19: 85:c4:83:9f:f8:e3:93:49:78:49:74:ae:d7:41:19: 10:65:bb:2c:60:37:b3:a0:a1:80:1b:40:8e:09:a9: 29:68:15:bf:31:14:e9:dc:02:01:d4:32:ac:c8:9d: c8:b5:94:84:5a:33:64:73:13:f4:f8:8c:47:77:fa: 17:ee:f2:48:1e:0f:a3:3c:d0:35:0a:2f:e0:b3:f0: 82:98:71:50:df:a7:7e:71:57:c0:a7:55:c0:12:d5: f2:2a:10:17:a5:27:18:4d:4a:22:a4:06:f1:49:24: fb:a2:87:06:61:c7:d2:7b:c9:6a:0c:5a:60:3e:01: 0b:7b:72:0f:5d:9e:d0:61:f6:72:9f:ff:6d:b7:3d: 20:42:9a:21:75:0d:30:95:7d:aa:a6:dc:f5:0b:18: b3:7f:e6:b0:77:9b:4b:3a:0a:4d:72:c7:62:5f:bf: 73:96:d8:77:0a:dc:fc:47:2e:09:ce:0b:e6:5e:5a: 3c:bc:e4:2d:2c:63:b2:85:d8:df:78:ac:c5:c4:3d: 8b:08:dd:b4:44:e3:39:41:06:e5:8d:76:11:68:f4: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C X509v3 Authority Key Identifier: keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:11:ad:8a:46:bb:a2:ab:be:f6:7b:3b:91:47:dc:ae:ad:4c: 7a:e8:44:42:f6:f4:c5:06:6e:50:38:fc:16:3e:2f:d6:04:73: 09:4b:82:e6:63:8b:46:49:13:5f:35:f8:93:58:f2:2b:2e:af: a3:5c:ae:b5:16:f4:a0:e2:2c:db:e0:36:eb:66:56:34:5c:a2: c2:cf:ec:96:06:48:69:96:51:47:c6:d6:1f:58:a4:3d:9b:9d: e0:8c:e9:db:d5:92:69:fe:d8:6f:a8:9b:23:5d:f8:80:d0:69: 84:3c:93:5c:4f:27:15:83:0c:e7:88:c2:6a:32:a7:8a:5a:de: d5:cf:8c:10:95:5a:b9:59:ef:c0:eb:db:2e:de:e1:86:d9:df: 73:ba:81:76:e8:f8:bf:8e:b2:6e:91:3c:77:e0:7a:39:ff:01: b6:18:ce:d9:1e:2f:10:6c:4d:b6:f0:cf:29:d3:98:9c:b6:86: 7b:0d:12:4a:68:53:54:8f:1f:98:16:00:48:71:6c:cb:72:07: 09:e1:f8:b4:4f:0c:3d:8f:23:bd:b6:b4:54:a6:20:40:0b:3a: 67:e2:e6:2b:f2:db:62:1d:ae:27:bd:8e:6f:ee:1f:b3:90:7e: 23:43:68:39:72:6b:c9:f5:97:8d:b0:08:0c:d9:d5:3c:6c:d0: 18:c6:83:0c -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk2 RDY3MDIzRUQyNzc1NEFDQjFCNTY4NDMzRDQzNzZDODgyMDBGNTAeFw0yNTA2MDEy MTU2NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI1M0RFRTY1Njg3RjEz OTFFQjIwODNCQTFBMjEwNjI2MkZCRTdCMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPvlOF0cdub4NIgBsJ17n8+ktBbaQEbSxAOaYrr1mwTyY832YZ HivoO4trGYXEg5/445NJeEl0rtdBGRBluyxgN7OgoYAbQI4JqSloFb8xFOncAgHU MqzInci1lIRaM2RzE/T4jEd3+hfu8kgeD6M80DUKL+Cz8IKYcVDfp35xV8CnVcAS 1fIqEBelJxhNSiKkBvFJJPuihwZhx9J7yWoMWmA+AQt7cg9dntBh9nKf/223PSBC miF1DTCVfaqm3PULGLN/5rB3m0s6Ck1yx2Jfv3OW2HcK3PxHLgnOC+ZeWjy85C0s Y7KF2N94rMXEPYsI3bRE4zlBBuWNdhFo9L7fAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUtT3uZWh/E5HrIIO6GiEGJi++eywwHwYDVR0jBBgwFoAUmW1nAj7Sd1SssbVo Qz1DdsiCAPUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1dUVy9t VzFuQWo3U2QxU3NzYlZvUXoxRGRzaUNBUFUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L21XMW5BajdTZDFTc3NiVm9RejFEZHNpQ0FQVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NXVFcvbVcxbkFqN1NkMVNzc2JWb1F6MURk c2lDQVBVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAGwRrYpG u6KrvvZ7O5FH3K6tTHroREL29MUGblA4/BY+L9YEcwlLguZji0ZJE181+JNY8isu r6NcrrUW9KDiLNvgNutmVjRcosLP7JYGSGmWUUfG1h9YpD2bneCM6dvVkmn+2G+o myNd+IDQaYQ8k1xPJxWDDOeIwmoyp4pa3tXPjBCVWrlZ78Dr2y7e4YbZ33O6gXbo +L+Osm6RPHfgejn/AbYYztkeLxBsTbbwzynTmJy2hnsNEkpoU1SPH5gWAEhxbMty Bwnh+LRPDD2PI722tFSmIEALOmfi5ivy22Idrie9jm/uH7OQfiNDaDlya8n1l42w CAzZ1Txs0BjGgww= -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:38 2025 by rpki-client