$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft File: Z3gr2kgldGOtzabXLy7kG1_ZShE.mft (raw, json) Hash identifier: FPU8u2uSFO+Hb/EWK3WQoc4LU/iOCVtFkNzNQa5SFWA= Subject key identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 Authority key identifier: 67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 Certificate issuer: /CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Certificate serial: 0FB9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft Manifest number: 0FA3 Signing time: Sun 01 Jun 2025 20:56:59 +0000 Manifest this update: Sun 01 Jun 2025 20:56:59 +0000 Manifest next update: Tue 03 Jun 2025 20:56:59 +0000 Files and hashes: 1: 24PrChtalK_fMOIIGNeP3NcNpxQ.roa (hash: 3bIrKqvOeei9ua6lyO9qDEIZzjD2j/RMBdOGQyoxw8g=) 2: Z3gr2kgldGOtzabXLy7kG1_ZShE.crl (hash: 2HislbzjxOqXi8owBDPcweV4pMzySQEYHCzEwJXrikY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4025 (0xfb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Validity Not Before: Jun 1 20:56:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E0E70F63546DF8BC7C14185082C052D16A84AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:1f:19:fd:a1:a0:86:7a:d0:8f:91:43:cd: 92:06:58:14:7b:3c:94:a0:fa:89:07:a3:1a:b0:d0: 77:e4:d0:30:88:d9:18:04:e3:6e:98:ef:b6:a5:6d: 37:86:70:7d:a7:b3:a3:af:aa:af:b3:c8:64:65:4b: 6f:ff:01:33:c9:19:29:ec:68:ea:da:e7:6e:4e:63: bc:ea:c3:f7:6b:ef:55:9e:06:02:00:94:3f:27:5f: 6c:7e:82:c5:36:5a:77:6c:35:12:bc:bf:aa:3d:99: fa:00:ab:c1:be:4b:4f:5f:31:38:c7:6d:0e:01:5d: 2e:aa:cd:47:49:83:4e:6e:40:82:21:f5:f9:70:3e: 97:b5:e1:89:3c:ba:be:4f:94:b3:5d:3a:0d:05:61: 80:67:5e:f2:31:91:5d:eb:8a:79:23:cf:36:ec:5e: 7b:dd:96:f5:3d:8d:85:1a:32:9d:76:48:42:33:74: 54:38:b2:31:d0:b4:5b:df:f1:c2:86:18:7c:55:20: ff:00:cf:9e:58:39:a0:fd:3c:c2:0f:06:26:a7:2c: f3:e1:be:58:c3:30:34:21:c4:63:9e:f9:84:0f:7b: 9b:b2:39:7f:4b:11:ba:48:b6:96:6d:79:69:ba:df: 15:46:48:b1:75:00:86:47:f9:e7:66:f2:02:ce:d2: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 X509v3 Authority Key Identifier: keyid:67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:26:3e:9c:2b:35:45:7d:50:30:f3:73:25:b1:aa:93:96:78: c0:56:33:cf:ca:7d:7f:da:99:62:21:93:e6:ad:e6:56:3e:b7: b1:da:64:76:c6:f8:3d:0e:8f:95:e0:74:a9:f8:ff:86:d8:9b: fa:4e:a0:cf:6a:49:c3:63:55:8b:7e:06:bc:86:e8:a7:b1:0c: f7:ff:1a:76:3e:be:78:81:5f:8a:6a:69:68:ff:4f:51:d8:2e: a9:56:d5:a7:52:3a:42:0b:f6:fb:14:b4:7d:fe:8a:15:02:0f: 77:cd:4d:91:d7:1c:a0:cd:0b:1b:08:cc:e0:12:48:50:63:21: f5:d8:82:78:21:45:8b:43:7e:6b:3c:ae:21:b8:89:fa:48:a9: 65:a5:fb:bb:0b:89:37:6c:a7:34:87:3b:ee:70:9e:4e:e1:cd: f3:30:90:97:81:b1:c5:8b:f6:09:06:88:52:56:bc:1a:d9:8a: 91:e1:a8:08:5d:4d:2c:3e:dc:81:09:3e:af:f5:f9:7d:4d:ba: d1:91:e5:4c:67:0f:e3:39:6d:8a:d3:d7:fd:2b:ef:af:05:5d: 7f:2b:0b:51:24:2b:d8:0f:71:f4:70:61:89:2e:70:7a:de:7e: 1d:42:fb:52:19:ff:67:98:c0:b6:f7:71:1d:03:5f:fc:c2:3b: 8a:3d:2d:9e -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICD7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjc3 ODJCREE0ODI1NzQ2M0FEQ0RBNkQ3MkYyRUU0MUI1RkQ5NEExMTAeFw0yNTA2MDEy MDU2NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFMEU3MEY2MzU0NkRG OEJDN0MxNDE4NTA4MkMwNTJEMTZBODRBQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HB8Z/aGghnrQj5FDzZIGWBR7PJSg+okHoxqw0Hfk0DCI2RgE 426Y77albTeGcH2ns6Ovqq+zyGRlS2//ATPJGSnsaOra525OY7zqw/dr71WeBgIA lD8nX2x+gsU2WndsNRK8v6o9mfoAq8G+S09fMTjHbQ4BXS6qzUdJg05uQIIh9flw Ppe14Yk8ur5PlLNdOg0FYYBnXvIxkV3rinkjzzbsXnvdlvU9jYUaMp12SEIzdFQ4 sjHQtFvf8cKGGHxVIP8Az55YOaD9PMIPBianLPPhvljDMDQhxGOe+YQPe5uyOX9L EbpItpZteWm63xVGSLF1AIZH+edm8gLO0jKdAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUHg5w9jVG34vHwUGFCCwFLRaoSsQwHwYDVR0jBBgwFoAUZ3gr2kgldGOtzabX Ly7kG1/ZShEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DTE9V RC9aM2dyMmtnbGRHT3R6YWJYTHk3a0cxX1pTaEUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ozZ3Iya2dsZEdPdHphYlhMeTdrRzFfWlNoRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lNQ0xPVUQvWjNncjJrZ2xkR090emFi WEx5N2tHMV9aU2hFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB ACYmPpwrNUV9UDDzcyWxqpOWeMBWM8/KfX/amWIhk+at5lY+t7HaZHbG+D0Oj5Xg dKn4/4bYm/pOoM9qScNjVYt+BryG6KexDPf/GnY+vniBX4pqaWj/T1HYLqlW1adS OkIL9vsUtH3+ihUCD3fNTZHXHKDNCxsIzOASSFBjIfXYgnghRYtDfms8riG4ifpI qWWl+7sLiTdspzSHO+5wnk7hzfMwkJeBscWL9gkGiFJWvBrZipHhqAhdTSw+3IEJ Pq/1+X1NutGR5UxnD+M5bYrT1/0r768FXX8rC1EkK9gPcfRwYYkucHrefh1C+1IZ /2eYwLb3cR0DX/zCO4o9LZ4= -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:44 2025 by rpki-client