$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft File: mgzAu2MdFRMQI4SQg9lBotvN-mU.mft (raw, json) Hash identifier: v67LPC8bSGioyIJVD09fsfKF1FtPr5IL0x6SzVF5G58= Subject key identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 Authority key identifier: 9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 Certificate issuer: /CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Certificate serial: 032D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft Manifest number: 032B Signing time: Tue 03 Jun 2025 09:55:49 +0000 Manifest this update: Tue 03 Jun 2025 09:55:49 +0000 Manifest next update: Thu 05 Jun 2025 09:55:49 +0000 Files and hashes: 1: 01RQUEtFxMGHJVeUpTMd0UhYN1M.roa (hash: Q248vq37R80V0s3lK2JE3RRZSna/szE1CSMMYO7a8OA=) 2: mgzAu2MdFRMQI4SQg9lBotvN-mU.crl (hash: wo4wZ4z/C7nGwZcAiZLb/EBjCOjs8Y43aNYKrWHiYIc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Validity Not Before: Jun 3 09:55:49 2025 GMT Not After : Oct 14 15:30:23 2025 GMT Subject: CN=4A4DF4813E4B7F8C3224F41D669928169DE43AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:59:b7:a6:ee:5f:12:2a:71:4d:a5:03:68: 47:9b:ee:30:cf:46:7a:73:f7:10:93:10:f1:ee:d7: f5:c6:e4:e7:8b:cb:10:07:0b:7f:92:c1:fb:7e:d2: 91:62:a6:10:6d:f9:de:03:ce:88:d1:6a:82:55:5f: 4d:60:a4:12:8e:1f:49:be:05:89:52:d8:f3:10:bb: 4f:4b:92:0a:8d:c1:10:c8:64:b0:5e:e9:01:df:c8: 62:2f:d4:5b:9d:41:fe:e3:2b:36:19:28:f6:e2:ae: 26:a0:52:8c:9e:30:e1:90:7d:5e:68:27:29:91:cc: 6a:d6:5d:34:59:6d:1c:7d:e9:2f:d9:8b:44:2e:4e: c3:50:9b:97:87:66:d4:11:eb:f1:c8:fa:91:af:e7: 06:e5:af:cf:11:c2:03:e2:4c:09:6d:01:0a:cd:12: ee:3e:04:5b:97:46:44:d4:39:93:54:b2:0d:9b:6e: 0d:14:9d:94:26:3f:80:97:74:21:88:1a:ec:bd:13: 5c:a2:a5:26:5e:a5:60:c8:97:3f:6d:d5:46:2d:f0: d8:4a:e4:e2:70:ed:51:8e:e2:67:b8:80:cc:00:bc: 2f:d6:0b:4a:96:37:63:26:a6:4e:b5:c2:83:29:93: e1:ca:d2:44:55:5c:32:03:b3:71:ae:b1:45:67:43: 95:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 X509v3 Authority Key Identifier: keyid:9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:48:7f:10:49:d3:57:f6:4d:63:96:2c:fd:a3:17:69:40:3b: 97:31:d9:b0:37:25:3b:52:81:b5:2f:37:8d:6d:f0:b3:23:67: 45:83:74:4b:fd:7e:17:7f:f3:a3:9b:2a:d0:d2:47:ba:08:ed: c7:2a:c9:0d:8a:b4:5e:40:a9:0d:48:40:af:ac:a5:9a:2b:3e: de:3d:c0:43:1b:0a:c6:24:be:c9:2a:6f:c5:df:96:77:e0:45: c4:d5:83:eb:be:4e:94:ad:cb:6c:07:2a:91:14:68:6c:40:d5: 0c:ca:d1:21:2e:15:82:f5:1b:af:4d:b9:03:29:e2:14:48:a7: 34:ca:b9:e1:97:a3:aa:60:d2:89:58:63:22:34:32:23:68:56: cd:22:2c:6a:7e:c1:d4:66:b5:da:66:92:c8:2c:1f:16:59:26: a0:cd:8e:19:0b:bf:0d:6e:6f:72:83:25:87:ef:da:17:67:6e: bc:69:6b:63:f0:44:ac:d9:c0:af:6f:bd:27:61:8c:21:78:ac: 98:93:5e:be:63:08:36:6d:8b:ac:7f:30:cf:f9:14:a4:50:10: 92:a0:6c:2e:9c:ce:dc:bd:9c:ba:a0:7a:54:ab:fa:34:24:f9: 88:2c:4a:eb:bb:3a:c2:1c:b1:53:31:e8:c1:12:36:c2:72:98: 1d:ea:e9:d1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEw Q0MwQkI2MzFEMTUxMzEwMjM4NDkwODNEOTQxQTJEQkNERkE2NTAeFw0yNTA2MDMw OTU1NDlaFw0yNTEwMTQxNTMwMjNaMDMxMTAvBgNVBAMTKDRBNERGNDgxM0U0QjdG OEMzMjI0RjQxRDY2OTkyODE2OURFNDNBQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKIFm3pu5fEipxTaUDaEeb7jDPRnpz9xCTEPHu1/XG5OeLyxAH C3+Swft+0pFiphBt+d4DzojRaoJVX01gpBKOH0m+BYlS2PMQu09LkgqNwRDIZLBe 6QHfyGIv1FudQf7jKzYZKPbiriagUoyeMOGQfV5oJymRzGrWXTRZbRx96S/Zi0Qu TsNQm5eHZtQR6/HI+pGv5wblr88RwgPiTAltAQrNEu4+BFuXRkTUOZNUsg2bbg0U nZQmP4CXdCGIGuy9E1yipSZepWDIlz9t1UYt8NhK5OJw7VGO4me4gMwAvC/WC0qW N2Mmpk61woMpk+HK0kRVXDIDs3GusUVnQ5VrAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUSk30gT5Lf4wyJPQdZpkoFp3kOrEwHwYDVR0jBBgwFoAUmgzAu2MdFRMQI4SQ g9lBotvN+mUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1ZS0wv bWd6QXUyTWRGUk1RSTRTUWc5bEJvdHZOLW1VLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9tZ3pBdTJNZEZSTVFJNFNRZzlsQm90dk4tbVUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTVlLTC9tZ3pBdTJNZEZSTVFJNFNRZzls Qm90dk4tbVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO0h/ EEnTV/ZNY5Ys/aMXaUA7lzHZsDclO1KBtS83jW3wsyNnRYN0S/1+F3/zo5sq0NJH ugjtxyrJDYq0XkCpDUhAr6ylmis+3j3AQxsKxiS+ySpvxd+Wd+BFxNWD675OlK3L bAcqkRRobEDVDMrRIS4VgvUbr025AyniFEinNMq54ZejqmDSiVhjIjQyI2hWzSIs an7B1Ga12maSyCwfFlkmoM2OGQu/DW5vcoMlh+/aF2duvGlrY/BErNnAr2+9J2GM IXismJNevmMINm2LrH8wz/kUpFAQkqBsLpzO3L2cuqB6VKv6NCT5iCxK67s6whyx UzHowRI2wnKYHerp0Q== -----END CERTIFICATE-----Generated at Wed Jun 4 01:59:52 2025 by rpki-client