$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft File: mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft (raw, json) Hash identifier: E9wvsD3p0bcXFK+Sm+SdoyGwYfRCzY/Q1DXG5W/e4pI= Subject key identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5 Certificate serial: 045E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft Manifest number: 044E Signing time: Mon 07 Apr 2025 09:07:27 +0000 Manifest this update: Mon 07 Apr 2025 09:07:27 +0000 Manifest next update: Wed 09 Apr 2025 09:07:27 +0000 Files and hashes: 1: Ew-qcL2tVQfw_P0Dbr-rkWNtwTc.roa (hash: hBsut+aga9I0oiINrScVmIpACKkZ7ZquEX1Izy+tzvI=) 2: FhinhuqiAkO5hLp-j6X7ydkW6UA.roa (hash: iYegZqhBkdbfUKryMxzH0afkgGd7QBpxDiBPa9bmnPc=) 3: mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl (hash: Zo5V08YtlVYih2sKOj2y5UgAo5bj3TDu3lTPLxepDXo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1118 (0x45e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5 Validity Not Before: Apr 7 09:07:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B53DEE65687F1391EB2083BA1A2106262FBE7B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:53:85:d1:c7:6e:6f:83:48:80:1b:09:d7: b9:fc:fa:4b:41:6d:a4:04:6d:2c:40:39:a6:2b:af: 59:b0:4f:26:3c:df:66:19:1e:2b:e8:3b:8b:6b:19: 85:c4:83:9f:f8:e3:93:49:78:49:74:ae:d7:41:19: 10:65:bb:2c:60:37:b3:a0:a1:80:1b:40:8e:09:a9: 29:68:15:bf:31:14:e9:dc:02:01:d4:32:ac:c8:9d: c8:b5:94:84:5a:33:64:73:13:f4:f8:8c:47:77:fa: 17:ee:f2:48:1e:0f:a3:3c:d0:35:0a:2f:e0:b3:f0: 82:98:71:50:df:a7:7e:71:57:c0:a7:55:c0:12:d5: f2:2a:10:17:a5:27:18:4d:4a:22:a4:06:f1:49:24: fb:a2:87:06:61:c7:d2:7b:c9:6a:0c:5a:60:3e:01: 0b:7b:72:0f:5d:9e:d0:61:f6:72:9f:ff:6d:b7:3d: 20:42:9a:21:75:0d:30:95:7d:aa:a6:dc:f5:0b:18: b3:7f:e6:b0:77:9b:4b:3a:0a:4d:72:c7:62:5f:bf: 73:96:d8:77:0a:dc:fc:47:2e:09:ce:0b:e6:5e:5a: 3c:bc:e4:2d:2c:63:b2:85:d8:df:78:ac:c5:c4:3d: 8b:08:dd:b4:44:e3:39:41:06:e5:8d:76:11:68:f4: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C X509v3 Authority Key Identifier: keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:22:18:49:50:d3:38:d1:3d:73:5b:96:3d:71:99:25:b2:cd: 73:55:c6:93:a4:d1:24:b2:0d:83:0a:c4:67:dd:ee:c7:07:7f: 04:8a:5e:b5:25:72:05:da:9a:49:8c:db:89:e5:3f:01:aa:c4: 47:96:80:94:b8:69:46:11:16:b3:bb:45:9d:a2:08:69:73:16: bc:db:3f:09:48:c9:fd:3d:31:6a:aa:c5:fa:6c:32:f9:8e:8e: 36:c4:20:0e:d8:42:61:b0:b6:0e:80:bb:a7:c3:a3:37:a2:0b: fe:ca:55:64:2f:9d:d5:d1:7f:23:d6:9c:f1:e2:2e:d0:7b:42: 15:46:6c:3d:20:e4:39:a4:d2:14:14:98:38:7f:c6:5e:2a:a3: 4f:e3:c7:dc:0b:37:1a:ba:be:af:99:77:89:08:39:88:8d:2d: e1:99:cd:72:50:06:d3:2e:a0:95:41:6c:51:a9:f0:7b:31:a7: 15:04:0b:1b:3a:80:7d:84:39:e4:e2:3a:87:fd:66:d9:d5:da: ec:5d:52:e3:4a:eb:98:5c:71:42:8b:84:41:73:b0:0f:59:cd: 1c:4f:dc:e5:26:4c:ba:fd:33:79:62:b0:7e:e6:af:f6:e5:b5: 83:ee:a8:8a:b2:da:a1:cd:c6:aa:db:ef:0f:b1:a3:e5:4a:41: 48:8c:4f:ab -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICBF4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk2 RDY3MDIzRUQyNzc1NEFDQjFCNTY4NDMzRDQzNzZDODgyMDBGNTAeFw0yNTA0MDcw OTA3MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI1M0RFRTY1Njg3RjEz OTFFQjIwODNCQTFBMjEwNjI2MkZCRTdCMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPvlOF0cdub4NIgBsJ17n8+ktBbaQEbSxAOaYrr1mwTyY832YZ HivoO4trGYXEg5/445NJeEl0rtdBGRBluyxgN7OgoYAbQI4JqSloFb8xFOncAgHU MqzInci1lIRaM2RzE/T4jEd3+hfu8kgeD6M80DUKL+Cz8IKYcVDfp35xV8CnVcAS 1fIqEBelJxhNSiKkBvFJJPuihwZhx9J7yWoMWmA+AQt7cg9dntBh9nKf/223PSBC miF1DTCVfaqm3PULGLN/5rB3m0s6Ck1yx2Jfv3OW2HcK3PxHLgnOC+ZeWjy85C0s Y7KF2N94rMXEPYsI3bRE4zlBBuWNdhFo9L7fAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUtT3uZWh/E5HrIIO6GiEGJi++eywwHwYDVR0jBBgwFoAUmW1nAj7Sd1SssbVo Qz1DdsiCAPUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1dUVy9t VzFuQWo3U2QxU3NzYlZvUXoxRGRzaUNBUFUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L21XMW5BajdTZDFTc3NiVm9RejFEZHNpQ0FQVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NXVFcvbVcxbkFqN1NkMVNzc2JWb1F6MURk c2lDQVBVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABwiGElQ 0zjRPXNblj1xmSWyzXNVxpOk0SSyDYMKxGfd7scHfwSKXrUlcgXamkmM24nlPwGq xEeWgJS4aUYRFrO7RZ2iCGlzFrzbPwlIyf09MWqqxfpsMvmOjjbEIA7YQmGwtg6A u6fDozeiC/7KVWQvndXRfyPWnPHiLtB7QhVGbD0g5Dmk0hQUmDh/xl4qo0/jx9wL Nxq6vq+Zd4kIOYiNLeGZzXJQBtMuoJVBbFGp8HsxpxUECxs6gH2EOeTiOof9ZtnV 2uxdUuNK65hccUKLhEFzsA9ZzRxP3OUmTLr9M3lisH7mr/bltYPuqIqy2qHNxqrb 7w+xo+VKQUiMT6s= -----END CERTIFICATE-----Generated at Tue Apr 8 23:05:50 2025 by rpki-client