$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.mft File: k9lrBpm-uhV9UFSAKbwReSmtIOc.mft (raw, json) Hash identifier: eSXksnPYllaGSgP2wy9zlkVgmqnXPWE5ppKPiUfhcME= Subject key identifier: 8E:35:B9:F4:CC:40:AB:56:AD:F3:E7:A4:AF:48:73:EC:7A:E4:38:3D Authority key identifier: 93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7 Certificate issuer: /CN=93D96B0699BEBA157D50548029BC117929AD20E7 Certificate serial: 0281 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.mft Manifest number: 027B Signing time: Sun 01 Jun 2025 21:57:12 +0000 Manifest this update: Sun 01 Jun 2025 21:57:12 +0000 Manifest next update: Tue 03 Jun 2025 21:57:12 +0000 Files and hashes: 1: 8SXHWoAc2T8psht-LNegHkn-azw.roa (hash: iBwKO0asF7WNgWhKCH+VOyP2ISrqt5OlKs06p9N4kLI=) 2: k9lrBpm-uhV9UFSAKbwReSmtIOc.crl (hash: rcOBM6O8YYu9lplqigtAtv3XVz6ucaSDFRJ2p0xXAss=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93D96B0699BEBA157D50548029BC117929AD20E7 Validity Not Before: Jun 1 21:57:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8E35B9F4CC40AB56ADF3E7A4AF4873EC7AE4383D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c6:3e:a3:a0:58:e8:5f:38:c0:a0:7a:a7:ae: 5f:82:79:fd:30:24:e8:19:e3:2d:8d:a0:b4:65:81: 99:f7:3f:44:cc:d6:c8:42:77:56:9f:70:9c:9c:3a: b7:c3:85:f8:cb:a4:17:bd:c6:cc:5f:34:3f:70:32: 7a:64:d9:80:f6:8a:1b:72:b7:c2:7b:71:a9:8a:04: 6c:04:e1:f3:15:30:0e:83:3e:39:7f:9e:16:0d:2b: db:d4:9d:ed:8c:44:38:6b:3a:5f:e6:c6:c7:4f:bc: b9:cc:ef:61:0b:24:ce:61:fd:81:05:e5:dc:91:cb: 31:61:b9:c2:ed:dc:fa:72:fe:5a:bb:a3:84:6a:1c: 49:00:dc:ef:27:00:aa:76:93:0e:8a:45:eb:7f:0b: c6:bc:a9:5a:e6:a0:91:c0:30:14:37:65:84:ba:45: f7:29:2e:04:7b:b2:32:b1:69:df:26:ed:93:ac:92: d6:86:ad:67:a1:df:b7:4c:df:f9:aa:a1:b5:f6:eb: 99:c2:90:18:e6:ec:f4:8f:ee:39:fd:9c:30:2d:7a: cc:9e:e9:8b:62:c4:b3:31:52:89:73:dc:e2:57:a5: f8:00:b6:64:5a:fd:67:75:c2:a9:12:27:41:76:fc: 36:d4:ba:00:d8:74:cf:30:41:95:f3:e0:ed:85:89: 58:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:35:B9:F4:CC:40:AB:56:AD:F3:E7:A4:AF:48:73:EC:7A:E4:38:3D X509v3 Authority Key Identifier: keyid:93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:1a:ee:8b:ff:f8:ff:e5:56:fd:d3:cc:d7:80:86:12:1f:a6: 81:aa:75:56:f5:45:81:72:20:6d:1d:c3:2c:18:9f:5f:9f:db: c3:e4:d5:5d:10:61:a3:24:1b:45:cd:1f:24:69:23:e4:8e:25: 07:a5:22:7b:9d:53:93:26:b1:ef:d3:44:35:3a:76:a3:cd:c2: 3a:39:f7:de:54:38:6e:07:36:ec:d8:f8:46:47:33:5e:f4:9c: 6f:6b:e7:53:c0:1f:ac:56:bc:0d:41:07:ad:3f:ad:83:5b:b4: c7:c2:0b:2b:a8:04:e0:d0:d0:c3:e7:f3:f4:4a:da:ae:dc:e1: 10:a6:5d:b1:91:fb:2e:d1:62:9b:be:87:aa:bc:2b:31:d4:c4: cc:28:b1:85:b9:6b:d2:52:9f:5b:3c:27:3d:31:8c:28:93:0c: 44:8f:01:e1:69:23:6d:17:4a:2a:10:96:d0:b2:a6:1e:09:ff: dc:0c:c3:76:c9:db:b9:a0:f8:55:6e:c3:b1:ec:81:9d:bc:05: 1c:70:83:3f:2b:84:a5:c3:ac:d8:3c:99:af:70:16:48:69:fb: c3:2b:16:c6:70:74:50:5f:ee:5c:93:8e:a7:a3:bc:9b:5f:8d: 77:b5:37:73:ab:6e:07:b2:99:b7:be:15:fb:ff:9b:f9:c6:9a: b3:bd:c2:72 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTNE OTZCMDY5OUJFQkExNTdENTA1NDgwMjlCQzExNzkyOUFEMjBFNzAeFw0yNTA2MDEy MTU3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFMzVCOUY0Q0M0MEFC NTZBREYzRTdBNEFGNDg3M0VDN0FFNDM4M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6xj6joFjoXzjAoHqnrl+Cef0wJOgZ4y2NoLRlgZn3P0TM1shC d1afcJycOrfDhfjLpBe9xsxfND9wMnpk2YD2ihtyt8J7camKBGwE4fMVMA6DPjl/ nhYNK9vUne2MRDhrOl/mxsdPvLnM72ELJM5h/YEF5dyRyzFhucLt3Ppy/lq7o4Rq HEkA3O8nAKp2kw6KRet/C8a8qVrmoJHAMBQ3ZYS6RfcpLgR7sjKxad8m7ZOsktaG rWeh37dM3/mqobX265nCkBjm7PSP7jn9nDAtesye6YtixLMxUolz3OJXpfgAtmRa /Wd1wqkSJ0F2/DbUugDYdM8wQZXz4O2FiVj5AgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUjjW59MxAq1at8+ekr0hz7HrkOD0wHwYDVR0jBBgwFoAUk9lrBpm+uhV9UFSA KbwReSmtIOcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9XTldJ Ti9rOWxyQnBtLXVoVjlVRlNBS2J3UmVTbXRJT2MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2s5bHJCcG0tdWhWOVVGU0FLYndSZVNtdElPYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RPV05XSU4vazlsckJwbS11aFY5VUZT QUtid1JlU210SU9jLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AHQa7ov/+P/lVv3TzNeAhhIfpoGqdVb1RYFyIG0dwywYn1+f28Pk1V0QYaMkG0XN HyRpI+SOJQelInudU5Mmse/TRDU6dqPNwjo5995UOG4HNuzY+EZHM170nG9r51PA H6xWvA1BB60/rYNbtMfCCyuoBODQ0MPn8/RK2q7c4RCmXbGR+y7RYpu+h6q8KzHU xMwosYW5a9JSn1s8Jz0xjCiTDESPAeFpI20XSioQltCyph4J/9wMw3bJ27mg+FVu w7HsgZ28BRxwgz8rhKXDrNg8ma9wFkhp+8MrFsZwdFBf7lyTjqejvJtfjXe1N3Or bgeymbe+Ffv/m/nGmrO9wnI= -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:31 2025 by rpki-client