$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft File: csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft (raw, json) Hash identifier: zFGTGhdQoZV5nCOWzl0IIWpe94AWTOad+q/5M31aTFo= Subject key identifier: F3:91:F4:65:C8:CB:21:77:FC:08:73:98:16:F6:43:F8:C7:28:A5:BD Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Certificate serial: 01CE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft Manifest number: 01BD Signing time: Sat 05 Apr 2025 20:36:39 +0000 Manifest this update: Sat 05 Apr 2025 20:36:39 +0000 Manifest next update: Mon 07 Apr 2025 20:36:39 +0000 Files and hashes: 1: 5kOBDp9jfXuDFvfA1W_lYEoS2dY.roa (hash: FJD2mQnY+I0ZK4rHJS53+PX7U8IQxazyrPbXtYXVkDM=) 2: 6QxN4V5B7sONJRCCcAbjY4Mfhaw.roa (hash: leXIbe7ri/BFOve7nH6nMjDOk/IoW5anbl597syYGTs=) 3: cHL2QTlmaPZ3Pc11YLNDszyF5fs.roa (hash: SNxuv/Qnr8cZ7+UMWT74j7ekLg1OY+2vA0kL6Gx7h9k=) 4: csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl (hash: hAl9b4/mY9N1EqUuGlXF+A4v6DZpZZyPuGe4XUi0GwY=) 5: hpJsHFEua4sHzX4ZYAMvI_8qv08.roa (hash: XQHQoEROV4RXCAx8mOigJlxFvM/Jds1fyaWLifEg9Ak=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Validity Not Before: Apr 5 20:36:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F391F465C8CB2177FC08739816F643F8C728A5BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:98:d2:0c:b8:66:38:9d:f1:d0:d9:06:52: f1:32:4e:de:a5:0d:6c:90:58:85:27:b4:e4:69:d4: 94:2b:67:9d:7f:ad:a5:0e:b1:5a:f3:47:be:71:5c: 17:34:92:50:e4:9a:d6:10:6e:d4:47:87:03:ff:75: ff:d9:1b:ac:2d:3c:b3:bc:44:f4:1c:75:f0:ee:39: f3:5b:39:2b:6d:78:06:1b:dd:ec:34:58:df:4e:f9: 1d:03:e0:e1:3d:e7:7d:e2:c2:63:aa:c4:dc:17:75: dc:d4:8a:37:36:d1:4e:31:af:3d:d2:0d:bf:8f:3c: 4c:4f:81:5e:c1:6f:6b:3a:77:99:28:0d:f2:ec:61: 24:8b:e6:54:42:c0:e3:6e:4e:73:03:ff:24:98:31: 27:27:aa:13:d7:ae:4a:2e:2d:e6:32:01:0b:81:24: 54:eb:c4:7f:cd:49:ae:b4:e5:d7:89:87:17:1e:ba: a0:9c:07:51:6f:8e:44:c0:df:1d:72:fd:d4:1c:8f: 13:6f:61:3b:77:a4:bc:2c:e3:e6:bc:05:80:08:18: 49:dc:5c:9c:24:46:b7:90:31:b7:ee:45:2b:7c:59: b1:b5:16:b7:12:21:14:5b:18:90:89:57:5e:44:43: 7a:c7:7f:c1:80:d3:05:88:1e:26:1f:6e:db:74:76: 9e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:91:F4:65:C8:CB:21:77:FC:08:73:98:16:F6:43:F8:C7:28:A5:BD X509v3 Authority Key Identifier: keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e5:10:41:b1:6b:7d:55:9d:e3:89:e7:0c:3e:bb:4d:c7:40: e6:af:c8:01:dc:f2:5b:b9:c1:43:06:6a:1f:22:4b:a4:b1:d5: b8:b7:89:17:7d:27:5e:b0:68:d1:c4:86:e0:0b:aa:1b:b3:83: 2c:01:cd:7a:6e:74:a6:fa:60:38:bc:92:0b:1f:2c:62:ca:4c: d7:11:54:fb:17:64:35:b0:4c:a8:23:29:67:a0:d9:c1:be:d4: 77:89:84:5d:05:66:d0:62:bb:51:d0:27:26:e4:ca:47:ed:ba: 4f:ba:71:6f:91:68:3e:53:9c:26:5f:11:5f:a2:93:0d:fb:e6: a1:48:1c:a0:a3:49:4a:bc:2c:2e:f1:dc:d9:4f:eb:e2:c1:85: 10:93:54:01:45:0f:3a:53:c8:9b:8a:ee:8c:16:1f:3f:ff:f6: 5c:3a:72:cd:ea:6d:a9:03:e6:57:4f:4d:ec:d2:96:5a:da:85: ea:97:c4:d5:db:1b:8b:8a:54:85:a9:53:d9:e3:e0:6a:27:cb: 66:26:f4:45:88:e5:a4:2f:71:8a:a5:9e:47:95:33:23:bb:9c: 59:e4:5f:f1:16:4c:27:19:1b:ee:89:e9:9a:6e:cd:b2:ef:3f: 8b:fc:74:de:c4:c5:3b:6c:f1:a2:d5:59:d5:c6:41:28:69:dc: f4:33:84:54 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzJD NDM2QkU5MkFFMEFEQ0IzMTRFQkMxQUNFMzE5RkY3N0JEQTNGQzAeFw0yNTA0MDUy MDM2MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzOTFGNDY1QzhDQjIx NzdGQzA4NzM5ODE2RjY0M0Y4QzcyOEE1QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxsZjSDLhmOJ3x0NkGUvEyTt6lDWyQWIUntORp1JQrZ51/raUO sVrzR75xXBc0klDkmtYQbtRHhwP/df/ZG6wtPLO8RPQcdfDuOfNbOStteAYb3ew0 WN9O+R0D4OE9533iwmOqxNwXddzUijc20U4xrz3SDb+PPExPgV7Bb2s6d5koDfLs YSSL5lRCwONuTnMD/ySYMScnqhPXrkouLeYyAQuBJFTrxH/NSa605deJhxceuqCc B1FvjkTA3x1y/dQcjxNvYTt3pLws4+a8BYAIGEncXJwkRreQMbfuRSt8WbG1FrcS IRRbGJCJV15EQ3rHf8GA0wWIHiYfbtt0dp4pAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQU85H0ZcjLIXf8CHOYFvZD+Mcopb0wHwYDVR0jBBgwFoAUcsQ2vpKuCtyzFOvB rOMZ/3e9o/wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2Nz UTJ2cEt1Q3R5ekZPdkJyT01aXzNlOW9fdy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Y3NRMnZwS3VDdHl6Rk92QnJPTVpfM2U5b193LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2NzUTJ2cEt1Q3R5ekZPdkJyT01aXzNl OW9fdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCL5RBBsWt9 VZ3jiecMPrtNx0Dmr8gB3PJbucFDBmofIkuksdW4t4kXfSdesGjRxIbgC6obs4Ms Ac16bnSm+mA4vJILHyxiykzXEVT7F2Q1sEyoIylnoNnBvtR3iYRdBWbQYrtR0Ccm 5MpH7bpPunFvkWg+U5wmXxFfopMN++ahSBygo0lKvCwu8dzZT+viwYUQk1QBRQ86 U8ibiu6MFh8///ZcOnLN6m2pA+ZXT03s0pZa2oXql8TV2xuLilSFqVPZ4+BqJ8tm JvRFiOWkL3GKpZ5HlTMju5xZ5F/xFkwnGRvuiemabs2y7z+L/HTexMU7bPGi1VnV xkEoadz0M4RU -----END CERTIFICATE-----Generated at Mon Apr 7 05:38:00 2025 by rpki-client