$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft File: TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft (raw, json) Hash identifier: xlssv5f+at/g7tLcWfS9yqmU323xj9pLxYE8dyVmw7k= Subject key identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Certificate serial: 0D60 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft Manifest number: 0D56 Signing time: Wed 30 Jul 2025 11:09:08 +0000 Manifest this update: Wed 30 Jul 2025 11:09:08 +0000 Manifest next update: Fri 01 Aug 2025 11:09:08 +0000 Files and hashes: 1: TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl (hash: HvzDQPNVymqEMgFqylZNd6CThAodUh6+Ea+TW5LrJGc=) 2: TmtOrpS7o28ER7oLjnOBZLdWcgM.roa (hash: mQz/hV7i4zdeNwzhSThQr7qIHt69JvQ2KxLsJS+vAxM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3424 (0xd60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Validity Not Before: Jul 30 11:09:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7E8B480C4C7274DFF97F4BDEB57C33F8491C09C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:fd:0e:fe:75:76:0d:6a:27:8d:10:c0:ba: 72:e2:63:52:46:07:b4:a7:77:ff:17:c3:8a:fe:4a: ee:dd:00:b3:78:cc:46:fb:ca:d8:37:66:71:3b:b2: e7:b8:8d:a7:5c:c8:56:6a:90:a2:62:43:21:22:0f: b9:56:83:12:e6:78:7a:e2:fd:87:17:49:4d:be:6f: 1e:e7:24:68:e5:6b:5a:c6:43:4a:e1:48:66:43:ed: 24:26:55:b6:34:61:d9:79:21:8e:74:55:d9:aa:77: a7:0c:3d:b8:a5:8f:9a:d3:f7:2d:c4:db:eb:47:bd: d0:6a:fa:85:b5:c1:0a:19:cf:54:8d:54:76:f4:63: 0d:7f:b8:2a:ad:12:e6:ae:de:e1:a2:ba:be:23:57: e8:1d:3e:82:7c:96:d4:58:44:86:86:29:f2:ba:61: 45:83:ec:63:62:d1:4f:65:cf:b5:7f:1d:94:fc:4b: ef:22:65:f0:c4:d0:4a:7a:00:16:2f:ed:df:48:83: 1e:17:ed:b4:68:aa:74:5c:8e:7a:4d:77:64:37:5a: 30:36:85:57:8a:65:dd:8e:01:30:07:89:04:db:66: c0:45:b4:f4:51:21:e7:2e:ec:9d:38:37:a5:a0:20: 04:ca:b3:82:69:34:91:2e:b7:4c:98:c2:5f:e8:0d: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C X509v3 Authority Key Identifier: keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:1d:d5:60:6f:fb:77:f8:60:cd:39:96:22:36:cd:c7:5a:d9: 72:fc:98:c8:28:5d:d6:54:64:af:10:2c:a4:40:a1:1d:4e:1a: 48:4a:c8:e6:85:f8:32:ee:05:3f:51:85:b9:52:fa:d5:77:c7: 16:a1:c0:fd:d1:f5:8c:4e:4c:18:c0:0b:19:c6:0a:49:7f:d9: 07:30:bd:04:57:f2:62:58:d0:75:f2:17:a3:c4:1d:c2:ef:a1: fe:a6:31:92:1d:fc:32:51:7b:9f:c7:c1:7b:46:ff:d9:8d:b4: df:02:fd:35:3c:e2:07:f1:a3:2d:2a:fc:9f:3c:84:6e:5b:0b: e2:fb:c9:11:49:8a:6f:5a:f3:e3:f5:a6:85:5f:74:57:74:f4: 67:98:db:21:17:51:0c:d8:5d:88:91:6f:99:5f:ae:aa:a3:69: 0d:94:32:88:1b:41:bf:91:9f:5f:dc:14:f4:30:50:39:2c:b5: dd:c7:d0:a7:b4:29:d2:88:bc:14:69:60:26:8b:d1:62:74:d9: 1a:57:73:70:af:9c:a3:95:bb:32:af:0c:ca:6f:41:e5:ea:0e: 9f:fe:61:4f:60:62:27:7c:21:19:3f:06:36:d6:ea:7b:45:27: b9:b6:40:02:e6:99:5e:43:03:b4:33:38:05:53:b5:4b:84:ed: ed:43:5a:01 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM0 N0RGNzQ4RUMwRkYxNjkxMjI4M0NFQzEwRUMxMEVEMzJEMjQ0RjAeFw0yNTA3MzAx MTA5MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3RThCNDgwQzRDNzI3 NERGRjk3RjRCREVCNTdDMzNGODQ5MUMwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNuP0O/nV2DWonjRDAunLiY1JGB7Snd/8Xw4r+Su7dALN4zEb7 ytg3ZnE7sue4jadcyFZqkKJiQyEiD7lWgxLmeHri/YcXSU2+bx7nJGjla1rGQ0rh SGZD7SQmVbY0Ydl5IY50Vdmqd6cMPbilj5rT9y3E2+tHvdBq+oW1wQoZz1SNVHb0 Yw1/uCqtEuau3uGiur4jV+gdPoJ8ltRYRIaGKfK6YUWD7GNi0U9lz7V/HZT8S+8i ZfDE0Ep6ABYv7d9Igx4X7bRoqnRcjnpNd2Q3WjA2hVeKZd2OATAHiQTbZsBFtPRR Iecu7J04N6WgIATKs4JpNJEut0yYwl/oDVjdAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU1+i0gMTHJ03/l/S961fDP4SRwJwwHwYDVR0jBBgwFoAUTEffdI7A/xaRIoPO wQ7BDtMtJE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NORVQv VEVmZmRJN0FfeGFSSW9QT3dRN0JEdE10SkU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9URWZmZEk3QV94YVJJb1BPd1E3QkR0TXRKRTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HU05FVC9URWZmZEk3QV94YVJJb1BPd1E3 QkR0TXRKRTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEANx3V YG/7d/hgzTmWIjbNx1rZcvyYyChd1lRkrxAspEChHU4aSErI5oX4Mu4FP1GFuVL6 1XfHFqHA/dH1jE5MGMALGcYKSX/ZBzC9BFfyYljQdfIXo8Qdwu+h/qYxkh38MlF7 n8fBe0b/2Y203wL9NTziB/GjLSr8nzyEblsL4vvJEUmKb1rz4/WmhV90V3T0Z5jb IRdRDNhdiJFvmV+uqqNpDZQyiBtBv5GfX9wU9DBQOSy13cfQp7Qp0oi8FGlgJovR YnTZGldzcK+co5W7Mq8Mym9B5eoOn/5hT2BiJ3whGT8GNtbqe0UnubZAAuaZXkMD tDM4BVO1S4Tt7UNaAQ== -----END CERTIFICATE-----Generated at Thu Jul 31 18:16:35 2025 by rpki-client