$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft File: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft (raw, json) Hash identifier: 0d4bpN0Qoh6j1IoPaE6bhpujEDAr1JvF1n/i7+SJLfc= Subject key identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C Authority key identifier: DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 Certificate issuer: /CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Certificate serial: 0189 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft Manifest number: 0180 Signing time: Tue 22 Apr 2025 09:49:57 +0000 Manifest this update: Tue 22 Apr 2025 09:49:57 +0000 Manifest next update: Thu 24 Apr 2025 09:49:57 +0000 Files and hashes: 1: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl (hash: gN+jozIR4ufgIenJpWpT4Tw8ISpthtGVhbgJ8HrZ7fI=) 2: aDtgujZ4Q58sTBqU9T12EpYX3qg.roa (hash: kFXJ2dYKbERQ2v8a9Rjz64jmXfu3H7PlBWa26xB89fU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Validity Not Before: Apr 22 09:49:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=275DBCFF08D33A5850754C5E3AACBCC723CEDE3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:e4:67:d1:00:b1:3a:66:a8:aa:bc:22:c0: f4:41:5d:11:da:88:40:62:27:af:d4:39:d3:8a:02: 22:05:07:9e:05:e0:75:56:92:5b:17:44:70:e9:ba: 9a:0f:ef:1c:7a:78:a4:73:5e:35:e1:65:c0:4c:f8: 92:57:44:82:c3:6b:7b:8e:b9:24:a0:03:04:2f:fe: 99:b4:d1:3f:ad:f3:21:50:37:17:14:f2:12:8b:a9: e7:50:65:50:d4:14:af:d3:31:93:1b:ea:b1:aa:3b: 9e:78:50:c0:ba:64:58:d4:a3:34:a0:b9:50:81:ea: 19:1e:70:6e:73:0c:07:70:3e:ff:40:b2:0a:47:cc: ef:47:af:59:ca:bc:15:7e:a1:e7:8f:4f:4c:26:1b: 58:15:68:c4:f6:ee:83:70:b2:c3:dd:30:b7:53:25: 00:e2:cb:be:65:8e:20:15:8e:bd:21:aa:cc:ba:f9: 0a:5b:3f:e7:a0:31:81:28:27:fe:c7:ff:05:3b:4d: 70:b3:68:8a:ad:73:f3:74:0b:2f:3d:e7:08:7e:56: 98:9b:7b:67:85:4c:02:9d:0b:82:35:e3:e3:49:b9: c2:60:c2:f7:8c:27:1e:f3:05:00:bd:28:e4:c3:aa: 3e:7d:7c:98:55:1e:bb:05:09:53:87:91:53:f1:c7: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C X509v3 Authority Key Identifier: keyid:DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:a8:64:05:72:4b:f0:f8:9a:15:6f:50:d9:7b:81:cd:e1:fc: 03:34:35:39:b5:88:21:14:37:be:53:53:ae:75:be:fb:40:e8: 11:41:06:61:0b:76:f0:d4:95:d1:e7:e8:e4:a5:e3:dc:ee:b3: 1b:2b:11:ad:29:01:00:54:0d:0e:3e:d3:81:0b:65:ef:4d:77: 89:d9:22:1f:7b:58:c7:67:19:71:ee:a4:75:62:27:4b:a6:72: 8d:7d:dd:c1:69:41:5d:5e:cd:4b:d4:23:1e:b6:17:18:dd:5a: b5:8b:8b:63:42:8a:4f:ec:5f:5b:19:14:eb:9f:8a:4e:6b:4a: 17:a8:34:29:44:8f:17:e6:ce:3c:a5:6f:d7:ce:02:55:39:d1: 64:1a:e5:d2:a3:82:2d:cb:9f:36:22:8f:49:ad:e3:92:84:45: f6:54:5c:b8:a2:1d:76:7e:e7:ff:51:26:1a:cc:b8:dc:8e:f5: 95:1e:61:83:ac:03:69:b0:69:4f:60:00:8d:35:4b:84:f7:c6: 9d:71:ad:67:ed:53:7b:87:f0:29:ea:95:91:9a:52:09:db:c5: 02:39:eb:77:95:c5:43:33:a0:83:d8:a4:ba:5d:d6:c1:c4:14: e8:5f:79:2d:6c:41:84:5d:5e:bf:5d:f5:88:5c:e7:df:3c:4b: c5:db:1d:36 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREU4 NzJCQUQyNjJEMThGMEE2NzQ5RTAyNzJEOTc1MjYxRDk0OUVDMzAeFw0yNTA0MjIw OTQ5NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3NURCQ0ZGMDhEMzNB NTg1MDc1NEM1RTNBQUNCQ0M3MjNDRURFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuA+Rn0QCxOmaoqrwiwPRBXRHaiEBiJ6/UOdOKAiIFB54F4HVW klsXRHDpupoP7xx6eKRzXjXhZcBM+JJXRILDa3uOuSSgAwQv/pm00T+t8yFQNxcU 8hKLqedQZVDUFK/TMZMb6rGqO554UMC6ZFjUozSguVCB6hkecG5zDAdwPv9AsgpH zO9Hr1nKvBV+oeePT0wmG1gVaMT27oNwssPdMLdTJQDiy75ljiAVjr0hqsy6+Qpb P+egMYEoJ/7H/wU7TXCzaIqtc/N0Cy895wh+Vpibe2eFTAKdC4I14+NJucJgwveM Jx7zBQC9KOTDqj59fJhVHrsFCVOHkVPxx79hAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUJ128/wjTOlhQdUxeOqy8xyPO3jwwHwYDVR0jBBgwFoAU3ocrrSYtGPCmdJ4C ctl1Jh2UnsMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRlVZVS8z b2NyclNZdEdQQ21kSjRDY3RsMUpoMlVuc00uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzNvY3JyU1l0R1BDbWRKNENjdGwxSmgyVW5zTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZVWVUvM29jcnJTWXRHUENtZEo0Q2N0bDFK aDJVbnNNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAKeoZAVy S/D4mhVvUNl7gc3h/AM0NTm1iCEUN75TU651vvtA6BFBBmELdvDUldHn6OSl49zu sxsrEa0pAQBUDQ4+04ELZe9Nd4nZIh97WMdnGXHupHViJ0umco193cFpQV1ezUvU Ix62FxjdWrWLi2NCik/sX1sZFOufik5rSheoNClEjxfmzjylb9fOAlU50WQa5dKj gi3LnzYij0mt45KERfZUXLiiHXZ+5/9RJhrMuNyO9ZUeYYOsA2mwaU9gAI01S4T3 xp1xrWftU3uH8CnqlZGaUgnbxQI563eVxUMzoIPYpLpd1sHEFOhfeS1sQYRdXr9d 9Yhc5988S8XbHTY= -----END CERTIFICATE-----Generated at Tue Apr 22 16:44:29 2025 by rpki-client