$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft File: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft (raw, json) Hash identifier: yK4xTZd9Z7DlcDofy2VGorrteTlAWBXN7HFLPXbqy4Y= Subject key identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 Authority key identifier: 43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 Certificate issuer: /CN=43FF5C92CC4950A457A7327D168FBC465B218322 Certificate serial: 0D50 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft Manifest number: 0D3D Signing time: Mon 09 Jun 2025 09:58:05 +0000 Manifest this update: Mon 09 Jun 2025 09:58:05 +0000 Manifest next update: Wed 11 Jun 2025 09:58:05 +0000 Files and hashes: 1: 1U1k0Hlx6ZW6IFa4nN3lR_y-d9c.roa (hash: e0jdeeLkDyWic3BOVBIZA4NnL/5ALEfukPtZdf4Bz7M=) 2: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl (hash: YvkfmMJgCx9kf7iALGyYyfOpx1C43Z0DLB4lABYdz0A=) 3: sNFpsuof2m2YwCY_4vGA_8eEz24.roa (hash: 1vs3bjXgnjtxpYHQMijJC69EBIuMd+IBMJ2LcRE9d1o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3408 (0xd50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43FF5C92CC4950A457A7327D168FBC465B218322 Validity Not Before: Jun 9 09:58:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=56980AC090CF7AC18968DC6613BDE3859D50C7A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:32:cc:56:3f:6e:08:87:11:d5:84:95:31: 04:3b:1e:8f:9d:ee:a1:0c:2f:e3:69:5c:da:45:76: 03:eb:d7:07:89:d3:27:18:6e:a1:cd:8c:fb:fe:69: d5:8c:88:77:c6:ef:e4:f2:e9:97:1b:f5:c8:b0:9a: ca:c9:52:01:aa:98:9d:e6:27:af:3c:9d:9b:de:0c: 06:6f:c0:9c:a8:8c:eb:82:dc:c4:64:e4:3c:16:61: 4a:68:d4:1c:f7:8b:01:a2:f5:99:82:4d:67:c4:7e: e5:12:bd:ad:d5:98:49:97:c8:d6:13:25:5a:5f:27: af:1e:58:c7:6a:26:b0:cc:05:22:e9:7d:20:ac:2f: 8b:31:24:52:90:54:f4:e7:39:df:d5:5b:bc:83:c4: 98:6c:b6:03:92:aa:f5:c5:26:09:96:b0:14:22:08: 12:89:bc:ac:e6:7c:de:77:69:c5:fa:27:ea:4f:2f: cc:7a:0b:43:39:a1:8e:0c:d9:fe:dd:04:73:71:4c: c5:a5:f3:b1:1e:13:3c:59:7f:2c:3c:04:f0:a0:58: 68:16:db:61:86:aa:a1:34:e4:90:d3:30:68:5f:2e: f1:c8:d4:d0:a4:28:67:e4:e9:96:a0:4c:e8:4c:2f: 1b:95:92:d8:a6:6c:14:12:58:cf:d7:62:70:41:a0: 11:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 X509v3 Authority Key Identifier: keyid:43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:02:56:99:84:92:05:84:78:b7:59:46:e1:d1:92:8d:23:e9: 1c:44:6a:58:d3:21:12:cb:fa:bf:1d:56:88:b4:56:60:8f:b0: 58:17:db:55:94:ae:49:d0:2e:bf:24:15:9d:d1:68:1b:6d:cf: 4d:dc:97:ff:2e:9f:50:ef:d5:9f:a6:9f:c8:eb:71:82:93:ce: 85:bf:93:df:c6:9c:e5:87:5c:17:29:e6:26:ac:41:41:ce:83: 6f:05:ea:9b:bf:a1:0c:c8:fa:30:ee:1b:66:90:ae:ab:0a:3d: b9:70:d5:a4:e4:2d:0a:fd:14:20:5b:d9:96:d9:bf:90:b8:1a: 82:f4:87:0b:67:85:36:9d:7f:ed:3f:1c:36:1d:5a:8c:1f:03: ef:d9:42:0a:03:9d:16:6d:b8:9c:fe:75:04:05:ca:d8:9b:87: 0f:bf:47:1e:16:24:82:b4:d8:11:d4:94:28:b8:a7:f0:45:b1: 43:bf:53:71:d6:60:6c:e1:a0:e3:f9:fa:7d:0a:91:6c:81:38: 9a:5c:18:0c:41:82:2a:c3:e4:4d:4e:6f:c2:39:fc:b2:f2:e0: 04:49:fc:65:b3:d2:53:e2:7f:82:81:f2:5a:9b:46:48:60:ce: 32:20:5e:39:b6:83:da:1a:2a:a3:67:cd:00:f2:8f:95:e0:a3: a9:f0:6a:90 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICDVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNG RjVDOTJDQzQ5NTBBNDU3QTczMjdEMTY4RkJDNDY1QjIxODMyMjAeFw0yNTA2MDkw OTU4MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2OTgwQUMwOTBDRjdB QzE4OTY4REM2NjEzQkRFMzg1OUQ1MEM3QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMVDLMVj9uCIcR1YSVMQQ7Ho+d7qEML+NpXNpFdgPr1weJ0ycY bqHNjPv+adWMiHfG7+Ty6Zcb9ciwmsrJUgGqmJ3mJ688nZveDAZvwJyojOuC3MRk 5DwWYUpo1Bz3iwGi9ZmCTWfEfuUSva3VmEmXyNYTJVpfJ68eWMdqJrDMBSLpfSCs L4sxJFKQVPTnOd/VW7yDxJhstgOSqvXFJgmWsBQiCBKJvKzmfN53acX6J+pPL8x6 C0M5oY4M2f7dBHNxTMWl87EeEzxZfyw8BPCgWGgW22GGqqE05JDTMGhfLvHI1NCk KGfk6ZagTOhMLxuVktimbBQSWM/XYnBBoBGnAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUVpgKwJDPesGJaNxmE73jhZ1Qx6IwHwYDVR0jBBgwFoAUQ/9cksxJUKRXpzJ9 Fo+8RlshgyIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRI TkVUL1FfOWNrc3hKVUtSWHB6SjlGby04UmxzaGd5SS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvUV85Y2tzeEpVS1JYcHpKOUZvLThSbHNoZ3lJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRITkVUL1FfOWNrc3hKVUtS WHB6SjlGby04UmxzaGd5SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBvAlaZhJIFhHi3WUbh0ZKNI+kcRGpY0yESy/q/HVaItFZgj7BYF9tVlK5J 0C6/JBWd0Wgbbc9N3Jf/Lp9Q79Wfpp/I63GCk86Fv5Pfxpzlh1wXKeYmrEFBzoNv Beqbv6EMyPow7htmkK6rCj25cNWk5C0K/RQgW9mW2b+QuBqC9IcLZ4U2nX/tPxw2 HVqMHwPv2UIKA50Wbbic/nUEBcrYm4cPv0ceFiSCtNgR1JQouKfwRbFDv1Nx1mBs 4aDj+fp9CpFsgTiaXBgMQYIqw+RNTm/COfyy8uAESfxls9JT4n+CgfJam0ZIYM4y IF45toPaGiqjZ80A8o+V4KOp8GqQ -----END CERTIFICATE-----Generated at Tue Jun 10 04:46:28 2025 by rpki-client