$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft File: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft (raw, json) Hash identifier: XvTBpxbSfBHEzQoPhE0zxvHznvPuuNN20nvezaY4LMA= Subject key identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C Authority key identifier: DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 Certificate issuer: /CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Certificate serial: 0111 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft Manifest number: 0108 Signing time: Sun 16 Feb 2025 16:27:27 +0000 Manifest this update: Sun 16 Feb 2025 16:27:27 +0000 Manifest next update: Sun 16 Feb 2025 22:27:27 +0000 Files and hashes: 1: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl (hash: e2i1AvJ3hlxjv5q0LaUJ/ta2bPz/tsxVXAiBDUs8xho=) 2: aDtgujZ4Q58sTBqU9T12EpYX3qg.roa (hash: kFXJ2dYKbERQ2v8a9Rjz64jmXfu3H7PlBWa26xB89fU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Feb 2025 22:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Validity Not Before: Feb 16 16:27:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=275DBCFF08D33A5850754C5E3AACBCC723CEDE3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:e4:67:d1:00:b1:3a:66:a8:aa:bc:22:c0: f4:41:5d:11:da:88:40:62:27:af:d4:39:d3:8a:02: 22:05:07:9e:05:e0:75:56:92:5b:17:44:70:e9:ba: 9a:0f:ef:1c:7a:78:a4:73:5e:35:e1:65:c0:4c:f8: 92:57:44:82:c3:6b:7b:8e:b9:24:a0:03:04:2f:fe: 99:b4:d1:3f:ad:f3:21:50:37:17:14:f2:12:8b:a9: e7:50:65:50:d4:14:af:d3:31:93:1b:ea:b1:aa:3b: 9e:78:50:c0:ba:64:58:d4:a3:34:a0:b9:50:81:ea: 19:1e:70:6e:73:0c:07:70:3e:ff:40:b2:0a:47:cc: ef:47:af:59:ca:bc:15:7e:a1:e7:8f:4f:4c:26:1b: 58:15:68:c4:f6:ee:83:70:b2:c3:dd:30:b7:53:25: 00:e2:cb:be:65:8e:20:15:8e:bd:21:aa:cc:ba:f9: 0a:5b:3f:e7:a0:31:81:28:27:fe:c7:ff:05:3b:4d: 70:b3:68:8a:ad:73:f3:74:0b:2f:3d:e7:08:7e:56: 98:9b:7b:67:85:4c:02:9d:0b:82:35:e3:e3:49:b9: c2:60:c2:f7:8c:27:1e:f3:05:00:bd:28:e4:c3:aa: 3e:7d:7c:98:55:1e:bb:05:09:53:87:91:53:f1:c7: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C X509v3 Authority Key Identifier: keyid:DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c1:da:dd:86:a5:96:ff:c8:fd:87:49:d1:3b:51:67:3a:75: fb:9d:1e:79:de:75:01:b9:35:f7:6c:3c:5e:80:26:8d:94:3e: 84:01:03:ae:4c:3c:96:76:3d:ee:8e:25:05:11:c8:be:a1:7f: 68:e0:92:7a:3f:b8:e6:05:6d:0b:39:57:4a:fc:e5:e6:90:21: 8d:c3:91:50:79:ad:70:57:fc:68:80:76:21:a9:4f:b3:0e:a4: d9:49:e6:ad:c7:af:b9:20:2f:ca:1f:74:78:9d:0a:a5:08:bd: 51:ca:0a:b0:a1:72:e4:dc:15:4b:d6:f4:a2:91:6a:99:37:8a: c3:71:ef:38:2e:2e:58:2e:4b:c5:5c:ee:b3:b0:80:31:15:fe: 9e:a5:ec:7c:d7:62:a6:06:bc:a7:5e:15:a5:37:57:5e:fb:48: 45:af:d9:6e:ed:8a:ac:5c:e5:66:88:b8:dc:65:54:14:cd:90: dd:4f:8a:07:55:2f:5b:66:51:a3:de:53:24:8c:71:b3:d7:82: 55:e9:de:26:ef:b4:7b:f3:05:2f:9f:cb:e7:de:f8:68:05:75: 19:a6:a6:49:66:dc:5f:76:23:b8:7f:93:c3:c1:44:ad:66:22: 3a:4d:37:64:44:58:ef:1e:63:c5:57:c7:2b:f9:18:27:ba:68: cc:3d:24:ba -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREU4 NzJCQUQyNjJEMThGMEE2NzQ5RTAyNzJEOTc1MjYxRDk0OUVDMzAeFw0yNTAyMTYx NjI3MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3NURCQ0ZGMDhEMzNB NTg1MDc1NEM1RTNBQUNCQ0M3MjNDRURFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuA+Rn0QCxOmaoqrwiwPRBXRHaiEBiJ6/UOdOKAiIFB54F4HVW klsXRHDpupoP7xx6eKRzXjXhZcBM+JJXRILDa3uOuSSgAwQv/pm00T+t8yFQNxcU 8hKLqedQZVDUFK/TMZMb6rGqO554UMC6ZFjUozSguVCB6hkecG5zDAdwPv9AsgpH zO9Hr1nKvBV+oeePT0wmG1gVaMT27oNwssPdMLdTJQDiy75ljiAVjr0hqsy6+Qpb P+egMYEoJ/7H/wU7TXCzaIqtc/N0Cy895wh+Vpibe2eFTAKdC4I14+NJucJgwveM Jx7zBQC9KOTDqj59fJhVHrsFCVOHkVPxx79hAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUJ128/wjTOlhQdUxeOqy8xyPO3jwwHwYDVR0jBBgwFoAU3ocrrSYtGPCmdJ4C ctl1Jh2UnsMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRlVZVS8z b2NyclNZdEdQQ21kSjRDY3RsMUpoMlVuc00uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzNvY3JyU1l0R1BDbWRKNENjdGwxSmgyVW5zTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZVWVUvM29jcnJTWXRHUENtZEo0Q2N0bDFK aDJVbnNNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAIbB2t2G pZb/yP2HSdE7UWc6dfudHnnedQG5NfdsPF6AJo2UPoQBA65MPJZ2Pe6OJQURyL6h f2jgkno/uOYFbQs5V0r85eaQIY3DkVB5rXBX/GiAdiGpT7MOpNlJ5q3Hr7kgL8of dHidCqUIvVHKCrChcuTcFUvW9KKRapk3isNx7zguLlguS8Vc7rOwgDEV/p6l7HzX YqYGvKdeFaU3V177SEWv2W7tiqxc5WaIuNxlVBTNkN1PigdVL1tmUaPeUySMcbPX glXp3ibvtHvzBS+fy+fe+GgFdRmmpklm3F92I7h/k8PBRK1mIjpNN2REWO8eY8VX xyv5GCe6aMw9JLo= -----END CERTIFICATE-----Generated at Sun Feb 16 20:28:25 2025 by rpki-client