$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft File: 0SSAw3OkqF1efXJZMUQ137NEBEA.mft (raw, json) Hash identifier: S58r617YEiPEgtaM4mf0FEnRIiN13jK+5oEvxvS88LA= Subject key identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 Authority key identifier: D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 Certificate issuer: /CN=D12480C373A4A85D5E7D7259314435DFB3440440 Certificate serial: 0D49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft Manifest number: 0D49 Signing time: Wed 30 Jul 2025 10:08:32 +0000 Manifest this update: Wed 30 Jul 2025 10:08:32 +0000 Manifest next update: Fri 01 Aug 2025 10:08:32 +0000 Files and hashes: 1: 0SSAw3OkqF1efXJZMUQ137NEBEA.crl (hash: 2qzvlRHT+fZFR+kN5rxmRtwb+l4453sn3HQZMRMX81w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3401 (0xd49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D12480C373A4A85D5E7D7259314435DFB3440440 Validity Not Before: Jul 30 10:08:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=679553EAF718165E2C6F7C23CBA05EE3F79704A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:89:34:5d:8d:6a:29:a5:8f:c4:e1:db:fd: 5d:46:b9:22:d4:cb:84:17:df:78:5f:fb:c6:e8:46: ae:67:c7:aa:e8:45:a2:86:6b:21:1b:6e:1b:4e:82: ae:2e:50:8b:90:c0:07:27:82:10:ea:a5:5a:5d:7b: 46:e1:ce:0c:e8:ef:51:c6:de:54:4a:aa:da:0e:7e: ef:84:b7:8d:33:b9:ec:19:3a:94:4a:32:79:9f:11: cc:25:86:49:e2:df:63:af:ab:f1:f8:ab:12:c6:9d: 6e:6c:fe:46:67:c5:b1:4b:0d:47:6e:f8:1d:03:bb: 56:7e:1b:4b:5c:ea:67:45:e5:9f:d5:6b:e0:27:14: 57:b9:a9:07:9b:0c:93:c4:f1:17:37:20:cf:d6:5b: 24:32:d8:93:e6:0d:01:50:89:93:11:28:ff:9c:30: 2a:de:9f:d7:47:11:32:73:ad:16:08:5a:b0:53:5f: 67:98:f1:04:7f:56:e8:7f:62:95:23:a0:f6:5b:5b: 5f:ba:18:a3:c4:6e:67:99:61:7d:0c:d8:cc:f9:7a: 81:cd:c5:3b:ec:61:db:ac:bf:9c:50:2b:8f:8d:69: 1d:2a:8c:8d:61:5a:a5:f7:bb:69:09:54:49:77:8d: 47:41:22:a8:92:43:e5:3c:90:83:b7:fe:39:39:18: 68:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 X509v3 Authority Key Identifier: keyid:D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:2d:5b:20:e8:75:38:28:b6:b5:4f:b2:01:40:e3:f6:e0:77: c3:f0:b6:75:fd:7d:7d:86:4f:b2:f2:4d:eb:2e:c2:c2:7a:5f: 51:dc:60:b0:51:c2:b9:8c:b3:dd:8e:05:c6:40:66:9d:51:23: 67:ca:98:13:84:89:0b:5f:63:48:b7:70:d4:8d:67:b4:fd:69: 3f:b4:c0:b3:e6:d2:a0:94:89:ae:68:cb:2c:4f:45:f0:61:13: b6:50:54:0e:f4:7a:e1:50:f6:11:fe:55:56:59:9e:af:99:7a: 8b:10:f1:53:15:ab:4d:01:78:06:a2:b8:53:95:09:50:8d:0d: 4b:26:4b:cb:e7:d7:88:e6:8f:61:a9:cb:f0:21:fa:62:5f:0a: f3:b1:34:cb:58:cc:39:83:8c:04:80:e2:17:d8:06:fe:f4:1c: cb:51:54:e9:1d:a9:f1:60:22:00:aa:9c:d4:2d:b4:14:b3:49: 40:1a:25:db:67:3f:30:ee:74:6b:7f:0b:d7:0f:4c:e7:a1:d5: f5:8c:d3:51:a3:b3:68:45:7b:bb:dc:70:e8:e0:84:4a:f3:49: 5e:e8:c9:a7:5e:0d:f9:9a:62:95:56:c9:3b:9b:b3:9e:00:97: a2:64:25:fe:40:42:42:03:03:73:64:92:bd:23:cb:74:f1:32: 26:04:fa:22 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEy NDgwQzM3M0E0QTg1RDVFN0Q3MjU5MzE0NDM1REZCMzQ0MDQ0MDAeFw0yNTA3MzAx MDA4MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3OTU1M0VBRjcxODE2 NUUyQzZGN0MyM0NCQTA1RUUzRjc5NzA0QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2BYk0XY1qKaWPxOHb/V1GuSLUy4QX33hf+8boRq5nx6roRaKG ayEbbhtOgq4uUIuQwAcnghDqpVpde0bhzgzo71HG3lRKqtoOfu+Et40zuewZOpRK MnmfEcwlhkni32Ovq/H4qxLGnW5s/kZnxbFLDUdu+B0Du1Z+G0tc6mdF5Z/Va+An FFe5qQebDJPE8Rc3IM/WWyQy2JPmDQFQiZMRKP+cMCren9dHETJzrRYIWrBTX2eY 8QR/Vuh/YpUjoPZbW1+6GKPEbmeZYX0M2Mz5eoHNxTvsYdusv5xQK4+NaR0qjI1h WqX3u2kJVEl3jUdBIqiSQ+U8kIO3/jk5GGjVAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUZ5VT6vcYFl4sb3wjy6Be4/eXBKcwHwYDVR0jBBgwFoAU0SSAw3OkqF1efXJZ MUQ137NEBEAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0VUT1Av MFNTQXczT2txRjFlZlhKWk1VUTEzN05FQkVBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8wU1NBdzNPa3FGMWVmWEpaTVVRMTM3TkVCRUEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HRVRPUC8wU1NBdzNPa3FGMWVmWEpaTVVR MTM3TkVCRUEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPi1b IOh1OCi2tU+yAUDj9uB3w/C2df19fYZPsvJN6y7CwnpfUdxgsFHCuYyz3Y4FxkBm nVEjZ8qYE4SJC19jSLdw1I1ntP1pP7TAs+bSoJSJrmjLLE9F8GETtlBUDvR64VD2 Ef5VVlmer5l6ixDxUxWrTQF4BqK4U5UJUI0NSyZLy+fXiOaPYanL8CH6Yl8K87E0 y1jMOYOMBIDiF9gG/vQcy1FU6R2p8WAiAKqc1C20FLNJQBol22c/MO50a38L1w9M 56HV9YzTUaOzaEV7u9xw6OCESvNJXujJp14N+ZpilVbJO5uzngCXomQl/kBCQgMD c2SSvSPLdPEyJgT6Ig== -----END CERTIFICATE-----Generated at Thu Jul 31 18:02:55 2025 by rpki-client