$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft File: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft (raw, json) Hash identifier: vXwbCT90FEq3ZTfvHY6jSnAwdEe4VzRyCMFzvSY1t88= Subject key identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Certificate serial: 0235 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft Manifest number: 0229 Signing time: Sun 01 Jun 2025 22:56:07 +0000 Manifest this update: Sun 01 Jun 2025 22:56:07 +0000 Manifest next update: Tue 03 Jun 2025 22:56:07 +0000 Files and hashes: 1: O531ESolpvpmtVVdqAkg9J8b2Bs.roa (hash: sef+yQw2V8rO3m99X+5vfS4w/LKMm8AtVqJtO3Mg36U=) 2: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl (hash: R4uOOwEebBS02pzTosZcOWYa7V7ZcRycNwroyNrM2Hc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Validity Not Before: Jun 1 22:56:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9949C49DC8645CE600E8EA0C244876200B49A9EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ee:2c:7a:82:9e:91:78:70:e1:03:aa:dd:65: 79:37:3d:ca:eb:0d:6d:44:73:0b:2e:d6:d9:94:d6: 4a:2c:b9:2b:af:3c:c5:bc:3c:f5:0e:4f:74:a8:18: 06:2c:cb:4e:9c:85:f5:ae:22:b6:69:93:be:92:03: 6a:9c:b0:d4:ff:0a:47:2c:32:d2:81:b5:24:ee:b1: 49:88:5c:65:30:1f:37:b5:1f:c7:39:2f:d8:f5:75: 93:c6:33:af:54:d6:24:e3:79:79:9c:5d:5d:1d:65: 66:4d:6c:ff:d9:d0:56:ee:45:4c:3a:80:c4:06:2c: b3:0e:a0:fe:69:29:db:46:f1:d1:1d:4f:e7:20:84: 0a:6c:a3:55:11:64:f3:8b:e8:1d:cd:26:bb:0f:d9: 9d:7c:78:30:55:fb:e1:05:f4:a3:36:c7:e7:62:1f: d6:4d:47:b6:99:7c:7c:8d:e4:1d:31:99:76:94:c5: 3f:57:0f:d3:1c:02:c9:31:53:6e:0b:81:e5:38:23: f1:54:cf:d3:3c:75:b1:36:07:28:96:63:57:fa:21: ba:1b:08:0e:4c:92:ba:c9:d1:2d:75:6a:95:8f:24: aa:b5:00:a7:85:07:22:0d:b6:ea:58:bb:80:fc:ce: 1e:97:8b:a8:72:1a:ea:a2:8c:b5:cb:4b:88:c0:4b: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA X509v3 Authority Key Identifier: keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e7:ef:55:a7:76:1f:7d:1e:1a:52:43:1a:98:d8:92:97:67: 01:0c:bc:ef:59:77:c0:01:c8:7a:7d:e3:93:87:f4:c7:6b:23: 74:f1:74:16:d5:b5:b9:4b:a4:68:39:00:10:d8:17:6c:c7:e5: 34:39:96:46:f1:3f:a7:7a:3a:06:ea:79:58:ff:45:33:86:f3: 45:78:74:70:ee:72:05:50:bc:a8:8e:a0:2e:12:80:56:9d:14: 3d:c5:34:cb:19:07:0f:ce:58:23:77:c6:4f:11:4f:a6:4b:6d: 3e:8e:d8:f2:e0:1f:33:30:80:ad:75:03:db:df:56:5d:c7:74: da:89:4a:cb:0c:c3:15:5a:f5:43:18:2d:1c:5a:00:69:83:5e: c2:0e:37:7e:93:8b:d5:03:74:2a:51:72:de:ce:c6:5c:a3:8d: 7f:2b:10:5e:1a:41:49:79:ce:c1:df:78:7f:2f:28:f1:90:24: ce:6e:7e:70:79:00:fd:0e:58:3e:4f:36:9c:05:f1:a1:3e:d6: 15:bd:e4:f0:cf:2d:b2:fe:f3:79:1e:6e:48:bd:ac:3e:d5:ee: f8:5d:65:1b:c0:6f:43:0d:08:f5:cb:71:da:a8:6e:8f:e1:d9: f2:60:20:89:53:65:c4:f0:50:3e:59:a7:1d:82:7c:1b:d8:ed: a9:73:55:9b -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNB Q0ZDNDY2MDlDMTY0OUFCNDYxNkQyMEQ2NEM5RDE1RDgzNEM2NDAeFw0yNTA2MDEy MjU2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5NDlDNDlEQzg2NDVD RTYwMEU4RUEwQzI0NDg3NjIwMEI0OUE5RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt7ix6gp6ReHDhA6rdZXk3PcrrDW1Ecwsu1tmU1kosuSuvPMW8 PPUOT3SoGAYsy06chfWuIrZpk76SA2qcsNT/CkcsMtKBtSTusUmIXGUwHze1H8c5 L9j1dZPGM69U1iTjeXmcXV0dZWZNbP/Z0FbuRUw6gMQGLLMOoP5pKdtG8dEdT+cg hApso1URZPOL6B3NJrsP2Z18eDBV++EF9KM2x+diH9ZNR7aZfHyN5B0xmXaUxT9X D9McAskxU24LgeU4I/FUz9M8dbE2ByiWY1f6IbobCA5MkrrJ0S11apWPJKq1AKeF ByINtupYu4D8zh6Xi6hyGuqijLXLS4jASzLDAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUmUnEnchkXOYA6OoMJEh2IAtJqeowHwYDVR0jBBgwFoAUg6z8RmCcFkmrRhbS DWTJ0V2DTGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2 ejhSbUNjRmttclJoYlNEV1RKMFYyRFRHUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZzZ6OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2ejhSbUNjRmttclJoYlNEV1RKMFYy RFRHUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBJ5+9Vp3Yf fR4aUkMamNiSl2cBDLzvWXfAAch6feOTh/THayN08XQW1bW5S6RoOQAQ2Bdsx+U0 OZZG8T+nejoG6nlY/0UzhvNFeHRw7nIFULyojqAuEoBWnRQ9xTTLGQcPzlgjd8ZP EU+mS20+jtjy4B8zMICtdQPb31Zdx3TaiUrLDMMVWvVDGC0cWgBpg17CDjd+k4vV A3QqUXLezsZco41/KxBeGkFJec7B33h/LyjxkCTObn5weQD9Dlg+TzacBfGhPtYV veTwzy2y/vN5Hm5Ivaw+1e74XWUbwG9DDQj1y3HaqG6P4dnyYCCJU2XE8FA+Wacd gnwb2O2pc1Wb -----END CERTIFICATE-----Generated at Tue Jun 3 08:16:40 2025 by rpki-client