$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft File: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft (raw, json) Hash identifier: u2aRZ0ncWXfqLFqMc4m3qVwD4YLzqkvJa85wruaNqjo= Subject key identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 Authority key identifier: 43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 Certificate issuer: /CN=43FF5C92CC4950A457A7327D168FBC465B218322 Certificate serial: 0D72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft Manifest number: 0D5F Signing time: Wed 30 Jul 2025 10:08:34 +0000 Manifest this update: Wed 30 Jul 2025 10:08:34 +0000 Manifest next update: Fri 01 Aug 2025 10:08:34 +0000 Files and hashes: 1: 1U1k0Hlx6ZW6IFa4nN3lR_y-d9c.roa (hash: e0jdeeLkDyWic3BOVBIZA4NnL/5ALEfukPtZdf4Bz7M=) 2: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl (hash: sfeJ2hfKD0pFW2LgmUkAZuOoLoq3NKD9DyrBS2yB4Dg=) 3: sNFpsuof2m2YwCY_4vGA_8eEz24.roa (hash: 1vs3bjXgnjtxpYHQMijJC69EBIuMd+IBMJ2LcRE9d1o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43FF5C92CC4950A457A7327D168FBC465B218322 Validity Not Before: Jul 30 10:08:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=56980AC090CF7AC18968DC6613BDE3859D50C7A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:32:cc:56:3f:6e:08:87:11:d5:84:95:31: 04:3b:1e:8f:9d:ee:a1:0c:2f:e3:69:5c:da:45:76: 03:eb:d7:07:89:d3:27:18:6e:a1:cd:8c:fb:fe:69: d5:8c:88:77:c6:ef:e4:f2:e9:97:1b:f5:c8:b0:9a: ca:c9:52:01:aa:98:9d:e6:27:af:3c:9d:9b:de:0c: 06:6f:c0:9c:a8:8c:eb:82:dc:c4:64:e4:3c:16:61: 4a:68:d4:1c:f7:8b:01:a2:f5:99:82:4d:67:c4:7e: e5:12:bd:ad:d5:98:49:97:c8:d6:13:25:5a:5f:27: af:1e:58:c7:6a:26:b0:cc:05:22:e9:7d:20:ac:2f: 8b:31:24:52:90:54:f4:e7:39:df:d5:5b:bc:83:c4: 98:6c:b6:03:92:aa:f5:c5:26:09:96:b0:14:22:08: 12:89:bc:ac:e6:7c:de:77:69:c5:fa:27:ea:4f:2f: cc:7a:0b:43:39:a1:8e:0c:d9:fe:dd:04:73:71:4c: c5:a5:f3:b1:1e:13:3c:59:7f:2c:3c:04:f0:a0:58: 68:16:db:61:86:aa:a1:34:e4:90:d3:30:68:5f:2e: f1:c8:d4:d0:a4:28:67:e4:e9:96:a0:4c:e8:4c:2f: 1b:95:92:d8:a6:6c:14:12:58:cf:d7:62:70:41:a0: 11:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 X509v3 Authority Key Identifier: keyid:43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:8a:d6:df:eb:4e:c1:6d:0b:e1:4e:97:5c:58:fb:06:f0:18: f5:af:3b:64:65:a0:39:12:22:9c:9f:2e:e0:e1:e0:24:cb:c3: 9c:a2:2f:c2:d1:4c:88:fe:fc:1e:02:b5:fa:28:ca:9f:b0:e1: 1b:66:7b:02:ef:6f:a1:98:7c:89:a1:02:9e:9e:39:11:5f:93: e5:64:85:d5:e4:05:b6:12:93:85:4d:47:4e:f2:a2:8c:d4:d9: 3a:be:cc:18:05:e9:2d:f4:31:ec:7a:64:5f:8b:dd:5e:5b:ec: 62:15:fb:f8:c1:0a:5b:2c:f2:78:2a:18:aa:d8:4b:8d:24:11: 43:c2:44:ac:5a:f1:e2:ee:79:ef:b3:86:1e:10:04:c4:c3:1b: 5d:69:0d:d1:2f:d6:df:92:84:ae:d1:13:5d:b6:fc:03:8c:53: 48:2d:ec:f3:a5:7a:bd:d5:e7:dc:fa:a9:36:7a:80:dc:99:2c: 49:ee:ea:41:f1:a1:5e:1d:94:e7:b6:37:57:40:1e:08:52:f9: 33:57:09:3e:c0:16:a2:cf:5d:62:9c:2a:2e:05:7d:4c:46:0a: 26:48:41:82:15:6b:83:37:3b:af:f0:77:b4:02:cb:4a:bc:3a: 16:13:b4:2f:d7:d3:8b:93:f0:0c:15:a6:5a:c7:54:82:bb:f1: ad:cd:ea:c5 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNG RjVDOTJDQzQ5NTBBNDU3QTczMjdEMTY4RkJDNDY1QjIxODMyMjAeFw0yNTA3MzAx MDA4MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2OTgwQUMwOTBDRjdB QzE4OTY4REM2NjEzQkRFMzg1OUQ1MEM3QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMVDLMVj9uCIcR1YSVMQQ7Ho+d7qEML+NpXNpFdgPr1weJ0ycY bqHNjPv+adWMiHfG7+Ty6Zcb9ciwmsrJUgGqmJ3mJ688nZveDAZvwJyojOuC3MRk 5DwWYUpo1Bz3iwGi9ZmCTWfEfuUSva3VmEmXyNYTJVpfJ68eWMdqJrDMBSLpfSCs L4sxJFKQVPTnOd/VW7yDxJhstgOSqvXFJgmWsBQiCBKJvKzmfN53acX6J+pPL8x6 C0M5oY4M2f7dBHNxTMWl87EeEzxZfyw8BPCgWGgW22GGqqE05JDTMGhfLvHI1NCk KGfk6ZagTOhMLxuVktimbBQSWM/XYnBBoBGnAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUVpgKwJDPesGJaNxmE73jhZ1Qx6IwHwYDVR0jBBgwFoAUQ/9cksxJUKRXpzJ9 Fo+8RlshgyIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRI TkVUL1FfOWNrc3hKVUtSWHB6SjlGby04UmxzaGd5SS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvUV85Y2tzeEpVS1JYcHpKOUZvLThSbHNoZ3lJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRITkVUL1FfOWNrc3hKVUtS WHB6SjlGby04UmxzaGd5SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBYitbf607BbQvhTpdcWPsG8Bj1rztkZaA5EiKcny7g4eAky8Ocoi/C0UyI /vweArX6KMqfsOEbZnsC72+hmHyJoQKenjkRX5PlZIXV5AW2EpOFTUdO8qKM1Nk6 vswYBekt9DHsemRfi91eW+xiFfv4wQpbLPJ4Khiq2EuNJBFDwkSsWvHi7nnvs4Ye EATEwxtdaQ3RL9bfkoSu0RNdtvwDjFNILezzpXq91efc+qk2eoDcmSxJ7upB8aFe HZTntjdXQB4IUvkzVwk+wBaiz11inCouBX1MRgomSEGCFWuDNzuv8He0AstKvDoW E7Qv19OLk/AMFaZax1SCu/GtzerF -----END CERTIFICATE-----Generated at Thu Jul 31 18:18:07 2025 by rpki-client