$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft File: govRnvqOvlnvQHu3-raJj3VMfsE.mft (raw, json) Hash identifier: cjiA4mcNmQ41sTRyKRQTfR0aIb/IL4fZ/XdH/nh7Xxk= Subject key identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 10B2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft Manifest number: 109A Signing time: Wed 16 Apr 2025 09:38:10 +0000 Manifest this update: Wed 16 Apr 2025 09:38:10 +0000 Manifest next update: Fri 18 Apr 2025 09:38:10 +0000 Files and hashes: 1: -grOOHa3_jddpy3GH8j4XTJS9wg.roa (hash: eSjletpCySQKYScPYOUNFSI5cKWCEusALNTUcikKXzY=) 2: govRnvqOvlnvQHu3-raJj3VMfsE.crl (hash: wfaSk2pnmqCCe2dUhGDO4qbuLpJz+oyApF1WxdZwRtM=) 3: mFwhcovgG2b4DQaGqA9HSehFrEU.roa (hash: hMsYO8BRVxkhA8u0Aqt4DQFRflF7zpOY38Pp5GkkYss=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 04:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4274 (0x10b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Apr 16 09:38:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=199435E3FC72374E8E7AC2AD5B0820DA50D3E8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:3e:fa:9b:5a:dd:40:06:17:54:cf:46:56: c6:00:75:aa:0d:85:0d:78:43:77:58:47:f9:72:9d: ef:f1:76:2d:a0:b1:2c:0e:d4:8c:0e:07:0a:26:79: 1c:06:fa:b5:0c:58:5d:11:7b:e2:92:67:8a:33:a4: a0:bc:ac:2e:35:35:80:48:80:8b:f1:e7:0a:ca:23: 9c:f4:1b:ca:6f:af:e1:a2:1f:69:4d:05:d4:9c:ed: 11:75:0c:bb:76:5c:cf:b8:d4:d8:da:f5:58:75:a0: c4:9b:f5:b2:a5:eb:2e:34:4a:a9:8f:44:66:0c:fe: 6d:d3:6f:68:ab:c2:88:ed:8d:b3:f6:cb:7e:31:69: 9c:88:b0:53:07:b6:7f:85:13:0e:e6:47:a3:33:28: 9b:23:ed:0e:ab:62:df:f8:06:e3:8b:2f:a2:0c:57: e1:3e:db:33:7f:ad:2f:7e:39:71:ac:52:fe:62:f5: 0e:b4:cd:18:f6:65:1d:e7:c3:8b:ee:d3:61:ff:ea: d8:4f:ca:de:81:48:ae:19:24:47:2d:75:1b:18:b3: 5d:46:53:04:0c:21:de:3c:e4:eb:e2:7a:2c:39:22: 83:d6:7c:f3:92:af:c4:11:70:d2:c8:da:a9:8d:49: 7a:cf:f9:3d:1b:03:b3:af:e8:07:04:9d:22:60:a8: 0d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:15:4f:bc:8a:ce:31:34:6e:79:2b:01:11:69:44:e5:d1:c4: e5:12:c4:0d:21:0e:1a:ef:72:c8:bd:70:c0:c7:a5:92:88:f5: d1:f7:77:b2:fc:24:80:64:36:97:3c:c4:3b:56:38:b5:ee:e8: 08:79:bd:f6:aa:b9:eb:3c:50:20:27:cf:c5:c8:59:c6:aa:07: 14:bb:02:7f:fd:cb:22:f0:f3:5e:01:05:08:47:a0:41:09:e0: b1:c3:54:4e:ed:2f:8f:f3:8d:b2:59:b6:21:d2:0c:a0:c1:0e: 6c:0e:3c:97:3b:78:69:6c:6d:c5:4c:f2:5e:88:1f:8b:89:94: d3:c7:f1:bd:a1:b6:d1:72:a2:5d:88:bd:8e:8d:5d:03:cf:8d: a0:24:63:d1:c9:d5:c6:dc:e4:26:9e:e2:84:07:85:11:d6:4d: 8f:4f:e8:33:01:a0:9e:c0:28:80:1b:07:bf:d5:dd:ec:51:ac: 90:9f:20:e7:2d:0e:6a:53:f4:b2:5d:fd:5f:68:88:df:e7:0b: 05:07:41:de:88:e2:69:e5:d5:a8:09:c6:50:d0:4f:d0:6c:82: 93:69:ee:06:6b:21:79:39:3a:c0:1b:25:80:12:e6:42:50:61: f6:3f:c4:37:ef:80:0d:ce:f6:d4:3f:cc:d0:17:45:63:1e:d9: f9:c2:77:81 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICELIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yNTA0MTYw OTM4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5OTQzNUUzRkM3MjM3 NEU4RTdBQzJBRDVCMDgyMERBNTBEM0U4RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV2j76m1rdQAYXVM9GVsYAdaoNhQ14Q3dYR/lyne/xdi2gsSwO 1IwOBwomeRwG+rUMWF0Re+KSZ4ozpKC8rC41NYBIgIvx5wrKI5z0G8pvr+GiH2lN BdSc7RF1DLt2XM+41Nja9Vh1oMSb9bKl6y40SqmPRGYM/m3Tb2irwojtjbP2y34x aZyIsFMHtn+FEw7mR6MzKJsj7Q6rYt/4BuOLL6IMV+E+2zN/rS9+OXGsUv5i9Q60 zRj2ZR3nw4vu02H/6thPyt6BSK4ZJEctdRsYs11GUwQMId485Ovieiw5IoPWfPOS r8QRcNLI2qmNSXrP+T0bA7Ov6AcEnSJgqA1zAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUGZQ14/xyN06OesKtWwgg2lDT6NYwHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vZ292Um52cU92bG52UUh1My1yYUpq M1ZNZnNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBACwVT7yK zjE0bnkrARFpROXRxOUSxA0hDhrvcsi9cMDHpZKI9dH3d7L8JIBkNpc8xDtWOLXu 6Ah5vfaques8UCAnz8XIWcaqBxS7An/9yyLw814BBQhHoEEJ4LHDVE7tL4/zjbJZ tiHSDKDBDmwOPJc7eGlsbcVM8l6IH4uJlNPH8b2httFyol2IvY6NXQPPjaAkY9HJ 1cbc5Cae4oQHhRHWTY9P6DMBoJ7AKIAbB7/V3exRrJCfIOctDmpT9LJd/V9oiN/n CwUHQd6I4mnl1agJxlDQT9BsgpNp7gZrIXk5OsAbJYAS5kJQYfY/xDfvgA3O9tQ/ zNAXRWMe2fnCd4E= -----END CERTIFICATE-----Generated at Thu Apr 17 02:50:24 2025 by rpki-client