$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft File: bKW4t-CigcRnJiJG3wyFnfX4fx8.mft (raw, json) Hash identifier: i5MLHcO7nBQJjw91dLUXEtO4mWomdZwJiviZ6nwcbLc= Subject key identifier: D7:62:F2:FD:46:30:B4:60:04:B4:DC:69:56:A9:96:5F:50:00:63:37 Authority key identifier: 6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F Certificate issuer: /CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Certificate serial: 0177 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft Manifest number: 0171 Signing time: Mon 07 Apr 2025 09:08:25 +0000 Manifest this update: Mon 07 Apr 2025 09:08:25 +0000 Manifest next update: Wed 09 Apr 2025 09:08:25 +0000 Files and hashes: 1: ExpQGmoy41mz8HcVe08a4EiyggQ.roa (hash: 11NsnHthJjFPtDtFAO7Z3psvgtzGK5ZfhNI9tJzQpSI=) 2: WTjaWmYJdv7V8sDS2BF49s3J85g.roa (hash: X50FHLr8Vf18if055EJXtt7EsB/iVBYRuKYlDStqjX8=) 3: bKW4t-CigcRnJiJG3wyFnfX4fx8.crl (hash: ELd215scAZHA+Zae3lcWr7XPiRstDpThDh+aTwLYrJA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Validity Not Before: Apr 7 09:08:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D762F2FD4630B46004B4DC6956A9965F50006337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:b7:8c:80:8b:3e:ae:56:61:8e:87:ba:af: d9:44:2c:dd:ab:f0:fc:5c:87:fb:b0:d7:b4:1a:b8: 7f:84:9c:82:ae:e5:88:66:f9:2b:53:b3:2f:33:52: 85:5a:fc:34:3c:b1:e4:3f:c2:21:62:0d:8b:a4:67: 3d:43:42:00:73:e1:57:43:24:38:e3:76:3d:59:41: 00:4e:80:7f:e6:a5:c6:e6:7b:cc:20:72:09:76:b7: 59:5c:40:d3:be:09:63:f8:12:6f:0c:10:be:ec:ab: f0:88:84:8e:6f:f6:87:64:cc:fc:0e:f1:85:eb:c2: 7a:c2:2f:fb:80:f6:5b:2a:25:86:14:ec:07:cb:e5: 29:ae:b3:89:7f:24:74:6b:a9:ba:66:b5:9f:03:b6: 03:67:35:3c:0a:42:4c:07:7a:45:38:c8:30:3a:3f: 7f:5d:81:01:6b:de:49:b9:51:06:2c:31:ef:cc:2c: 7b:31:2e:8e:0b:3c:d1:e2:9e:d6:4b:b5:ca:6c:0a: 54:d7:61:65:fe:5a:eb:4a:c3:e9:81:5f:e6:76:76: b1:e5:d3:12:b5:7e:5c:2f:26:1d:ff:3e:27:73:74: 5c:8a:ca:56:73:f2:d3:68:4e:ff:60:9a:b3:3e:03: b9:6e:44:77:09:d4:5e:b8:82:d0:cd:e2:60:43:30: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:62:F2:FD:46:30:B4:60:04:B4:DC:69:56:A9:96:5F:50:00:63:37 X509v3 Authority Key Identifier: keyid:6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:1f:87:38:cc:5f:87:3a:36:ea:cd:5f:e0:60:6f:3c:ab:d0: 35:61:d1:e4:e5:ea:03:54:7f:93:ee:e9:05:2f:9d:55:f7:75: 8b:c3:8e:a4:9c:bc:27:d7:49:7e:1b:40:7d:17:7a:ad:fe:95: 14:42:bb:c6:b4:aa:fb:29:71:a3:c4:e6:a0:3e:5e:e2:19:c5: db:f6:77:1e:f7:ee:88:87:76:94:73:06:c2:98:75:c5:b4:c8: ac:7d:e5:97:f8:f2:99:05:c1:a7:c9:26:34:68:95:c8:b8:c2: 3f:db:f1:8f:4e:fd:e0:4f:83:f1:eb:aa:39:7a:61:81:76:b0: e3:f2:9a:54:a0:80:04:70:5b:f8:21:d8:e6:da:e4:fb:3f:17: c2:f2:01:28:54:1c:a1:9e:28:0d:d0:f0:e6:07:0a:95:de:7c: 3a:12:b8:f5:a8:a6:d7:85:e6:1b:c8:a9:d2:c1:a1:27:8d:8d: 49:a6:7b:cd:5c:ce:7a:8c:40:a4:82:54:91:ca:6d:1e:c5:37: 0a:79:45:78:9b:e1:aa:e6:5d:4b:9b:b1:3a:7b:eb:f8:5f:d6: 22:09:19:5c:83:65:8a:5e:46:f1:53:5e:19:65:2a:f2:74:c7: 33:2c:41:4c:93:03:77:17:8f:23:b7:06:36:60:4f:50:cf:b6: 94:0e:61:f0 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkNB NUI4QjdFMEEyODFDNDY3MjYyMjQ2REYwQzg1OURGNUY4N0YxRjAeFw0yNTA0MDcw OTA4MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3NjJGMkZENDYzMEI0 NjAwNEI0REM2OTU2QTk5NjVGNTAwMDYzMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1kLeMgIs+rlZhjoe6r9lELN2r8Pxch/uw17QauH+EnIKu5Yhm +StTsy8zUoVa/DQ8seQ/wiFiDYukZz1DQgBz4VdDJDjjdj1ZQQBOgH/mpcbme8wg cgl2t1lcQNO+CWP4Em8MEL7sq/CIhI5v9odkzPwO8YXrwnrCL/uA9lsqJYYU7AfL 5Smus4l/JHRrqbpmtZ8DtgNnNTwKQkwHekU4yDA6P39dgQFr3km5UQYsMe/MLHsx Lo4LPNHintZLtcpsClTXYWX+WutKw+mBX+Z2drHl0xK1flwvJh3/PidzdFyKylZz 8tNoTv9gmrM+A7luRHcJ1F64gtDN4mBDMHdBAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQU12Ly/UYwtGAEtNxpVqmWX1AAYzcwHwYDVR0jBBgwFoAUbKW4t+CigcRnJiJG 3wyFnfX4fx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC9i S1c0dC1DaWdjUm5KaUpHM3d5Rm5mWDRmeDguY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2JLVzR0LUNpZ2NSbkppSkczd3lGbmZYNGZ4OC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvYktXNHQtQ2lnY1JuSmlKRzN3eUZu Zlg0Zng4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABYfhzjM X4c6NurNX+Bgbzyr0DVh0eTl6gNUf5Pu6QUvnVX3dYvDjqScvCfXSX4bQH0Xeq3+ lRRCu8a0qvspcaPE5qA+XuIZxdv2dx737oiHdpRzBsKYdcW0yKx95Zf48pkFwafJ JjRolci4wj/b8Y9O/eBPg/Hrqjl6YYF2sOPymlSggARwW/gh2Oba5Ps/F8LyAShU HKGeKA3Q8OYHCpXefDoSuPWopteF5hvIqdLBoSeNjUmme81cznqMQKSCVJHKbR7F Nwp5RXib4armXUubsTp76/hf1iIJGVyDZYpeRvFTXhllKvJ0xzMsQUyTA3cXjyO3 BjZgT1DPtpQOYfA= -----END CERTIFICATE-----Generated at Tue Apr 8 19:19:48 2025 by rpki-client