$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft File: aMrB-gTYDP4-K-l8erGFK2ZWU18.mft (raw, json) Hash identifier: yPvt+XFUA+1Uxou/66DMnH0wB5/W57Rbo26/xAwkhHA= Subject key identifier: 06:C2:74:CC:25:B5:C7:36:BD:BE:A4:AD:32:37:AF:D5:46:1B:69:09 Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Certificate serial: 1367 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft Manifest number: 1358 Signing time: Sun 01 Jun 2025 21:26:07 +0000 Manifest this update: Sun 01 Jun 2025 21:26:07 +0000 Manifest next update: Tue 03 Jun 2025 21:26:07 +0000 Files and hashes: 1: 3jx5GdUf5gMAK9-4ae9ojtZgcB0.roa (hash: atwhpbJyyBBSoDUx9t5hcvCTpc7kQ0JQR+wBQ2WQpqU=) 2: aMrB-gTYDP4-K-l8erGFK2ZWU18.crl (hash: ZUsF9f6b2AS+ZQB4aQzQN0/8Ml2+R5fC9ocIwH4E3is=) 3: bxTrnezpDP1Xa8VQF3cI6cbxo1M.roa (hash: pRLptR+u3w4r/JlUVL383TWJSatNcKhO5Ix/NmSTnpY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4967 (0x1367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Validity Not Before: Jun 1 21:26:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=06C274CC25B5C736BDBEA4AD3237AFD5461B6909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d5:87:c4:0b:a7:37:be:2d:dd:5c:55:39:28: 31:c9:ca:ac:20:56:97:9a:40:08:e1:0e:b0:b4:9b: 15:3f:da:29:fd:41:72:26:82:fd:dc:23:f8:89:06: 98:f9:bf:5c:89:dd:f2:87:c3:74:4f:c2:0d:4b:f1: 0e:36:f4:dc:0b:9c:5d:15:66:d3:c2:ed:67:e2:e3: aa:68:4d:f1:c4:a0:52:1c:5b:7d:d0:da:b9:23:83: 55:2e:71:36:db:a6:cf:97:7f:25:cb:7f:0a:50:1c: d7:cf:09:08:e5:bd:63:95:f7:b9:c8:9e:ba:d0:79: 53:ac:69:e6:b2:23:3f:8e:95:7c:26:c6:e7:2d:19: e2:e5:13:8b:a3:70:ce:26:36:ed:12:70:ed:6d:42: 1a:3c:2f:b5:49:45:4d:49:8c:50:a5:5c:88:16:53: df:f6:9c:3e:eb:f6:4d:9f:3b:f6:4c:6c:eb:ea:47: 80:69:19:b5:df:15:ec:fd:8c:04:70:0b:ab:41:8a: 7a:2a:71:21:8a:50:f6:50:c7:d5:a4:3e:a8:3e:e6: 7c:86:6c:e7:8b:69:fc:f7:f0:55:8c:69:f5:ca:c8: a7:d6:2c:c4:f4:56:2f:e8:b2:f2:e1:39:fb:41:49: 1b:40:4f:63:3a:31:4d:9d:48:3f:ea:4b:35:fd:d7: 13:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C2:74:CC:25:B5:C7:36:BD:BE:A4:AD:32:37:AF:D5:46:1B:69:09 X509v3 Authority Key Identifier: keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:4f:0e:cd:3f:b5:a1:c5:3d:28:db:f7:3e:a6:e8:7e:d3:80: 83:03:22:4b:d6:3c:e4:ff:ed:65:ba:21:a4:59:c6:93:73:4f: 40:48:b1:83:2d:8b:40:d7:cf:34:68:24:62:3c:e4:14:34:0d: 84:5f:e6:5e:0e:46:92:e0:07:d9:bd:98:10:03:cf:1c:98:ee: 96:93:30:5e:ab:c2:69:f4:3f:c3:60:a3:eb:a9:8a:e4:7b:a5: 43:40:1b:86:0e:96:98:56:4d:7a:f3:0e:f6:d2:e9:b6:80:5a: 14:50:f4:91:88:c6:a8:61:f9:dd:c1:f9:2f:d2:b3:87:14:75: 3a:5a:0d:0d:bb:b8:02:9b:05:dd:34:67:5d:2c:9f:ed:fb:ed: e2:08:03:40:02:ed:34:5e:ab:c9:ad:a7:c9:55:51:8f:fd:99: af:86:d8:d3:b6:d8:3e:3d:c0:36:04:28:3b:f1:30:ba:b8:08: db:64:42:05:1b:b3:02:2d:f1:0c:c9:50:64:a3:ad:04:66:94: 8e:91:6d:52:07:de:91:fa:8a:b4:5a:c2:88:9f:0f:78:8c:28: f2:07:b1:84:55:4e:4e:84:17:f9:4d:6b:81:73:82:54:28:30: d1:2e:2f:f9:9d:e7:3c:70:90:75:21:a1:5c:3d:aa:1a:57:c5: e6:3a:c0:87 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICE2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjhD QUMxRkEwNEQ4MENGRTNFMkJFOTdDN0FCMTg1MkI2NjU2NTM1RjAeFw0yNTA2MDEy MTI2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2QzI3NENDMjVCNUM3 MzZCREJFQTRBRDMyMzdBRkQ1NDYxQjY5MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT1YfEC6c3vi3dXFU5KDHJyqwgVpeaQAjhDrC0mxU/2in9QXIm gv3cI/iJBpj5v1yJ3fKHw3RPwg1L8Q429NwLnF0VZtPC7Wfi46poTfHEoFIcW33Q 2rkjg1UucTbbps+XfyXLfwpQHNfPCQjlvWOV97nInrrQeVOsaeayIz+OlXwmxuct GeLlE4ujcM4mNu0ScO1tQho8L7VJRU1JjFClXIgWU9/2nD7r9k2fO/ZMbOvqR4Bp GbXfFez9jARwC6tBinoqcSGKUPZQx9WkPqg+5nyGbOeLafz38FWMafXKyKfWLMT0 Vi/osvLhOftBSRtAT2M6MU2dSD/qSzX91xN/AgMBAAGjggILMIICBzAdBgNVHQ4E FgQUBsJ0zCW1xza9vqStMjev1UYbaQkwHwYDVR0jBBgwFoAUaMrB+gTYDP4+K+l8 erGFK2ZWU18wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0lHQUJZ VEUvYU1yQi1nVFlEUDQtSy1sOGVyR0ZLMlpXVTE4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9hTXJCLWdUWURQNC1LLWw4ZXJHRksyWldVMTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HSUdBQllURS9hTXJCLWdUWURQNC1L LWw4ZXJHRksyWldVMTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgE8OzT+1ocU9KNv3PqboftOAgwMiS9Y85P/tZbohpFnGk3NPQEixgy2LQNfP NGgkYjzkFDQNhF/mXg5GkuAH2b2YEAPPHJjulpMwXqvCafQ/w2Cj66mK5HulQ0Ab hg6WmFZNevMO9tLptoBaFFD0kYjGqGH53cH5L9KzhxR1OloNDbu4ApsF3TRnXSyf 7fvt4ggDQALtNF6rya2nyVVRj/2Zr4bY07bYPj3ANgQoO/EwurgI22RCBRuzAi3x DMlQZKOtBGaUjpFtUgfekfqKtFrCiJ8PeIwo8gexhFVOToQX+U1rgXOCVCgw0S4v +Z3nPHCQdSGhXD2qGlfF5jrAhw== -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:50 2025 by rpki-client