$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft File: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft (raw, json) Hash identifier: GKN9q3UjXfLFUyyevmF5yyxZsxAthc6Zz1kk5rvP4IE= Subject key identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 Authority key identifier: BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 Certificate issuer: /CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Certificate serial: 015D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft Manifest number: 015B Signing time: Tue 03 Jun 2025 09:57:33 +0000 Manifest this update: Tue 03 Jun 2025 09:57:33 +0000 Manifest next update: Thu 05 Jun 2025 09:57:33 +0000 Files and hashes: 1: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl (hash: CYbkvbOHb2EPVczPTAvzdY5ouELuDWtqVSTW2bnJSMg=) 2: w_KewT6KWsZuHTgvBMYnYFPhchY.roa (hash: vA7vcHpZZT9NqWFZlSoCmScIUZDx16ZMpEGvj2tJDZ0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Validity Not Before: Jun 3 09:57:33 2025 GMT Not After : Jan 9 15:30:20 2026 GMT Subject: CN=5F2EA8F6BC2A32CE1819AD42C2E60E2DB6EDB008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0c:a3:25:d5:73:fe:23:56:af:9f:31:3d:98: 9c:39:b9:09:f9:35:63:31:52:3d:49:d4:d4:a8:e8: 4e:93:97:6f:59:a1:fc:73:d5:e2:fd:e7:17:f0:da: 95:a1:9c:24:cf:bb:13:2b:9e:52:3e:52:31:25:ea: ce:28:a9:b3:20:9f:63:91:81:ae:e4:db:31:6a:ee: 83:db:1a:c0:08:c9:83:bd:78:f2:cc:9f:c1:98:57: bc:64:9e:43:11:9b:4b:48:bf:f8:41:7e:af:15:b3: 18:c4:be:35:21:e7:68:9e:9d:ee:3c:6d:d5:3e:1d: 2e:ae:7a:48:9a:8d:b3:be:d6:05:9d:86:e2:83:48: a6:e8:56:c6:04:6f:2f:25:9c:17:a1:f6:50:9a:29: 7c:35:13:d2:ad:b3:37:7d:e9:80:63:11:e4:fd:b0: 76:6a:3c:2e:9a:ba:d1:78:b0:7a:20:5f:83:37:64: 5b:51:de:28:73:e2:9d:2b:ae:56:9b:7f:89:a1:5a: 6d:05:ec:69:f7:01:eb:8d:b0:9a:37:ff:63:38:8e: 8b:e7:a8:8a:16:0f:84:c5:85:59:b6:a0:c6:94:c5: 41:5e:39:d6:26:28:ea:63:90:f9:4b:7b:f2:6b:f6: 81:9b:bf:f0:a7:c7:d2:3b:4e:6d:a6:9a:1c:11:93: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 X509v3 Authority Key Identifier: keyid:BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:a7:ac:ae:71:19:42:df:09:97:f2:a7:5e:6e:76:c1:f7:0a: 8f:3b:09:e9:c1:12:45:3f:6c:90:62:0b:69:06:47:0f:b2:34: d8:3d:12:e2:a0:f3:63:82:7c:6a:02:3c:20:fd:af:af:b0:58: 50:fd:bb:9e:ad:8f:ef:3e:0b:78:94:ed:5b:1f:2e:60:71:dc: 6c:08:4a:bf:dd:b6:90:ee:3c:e2:89:b9:78:25:1c:22:58:5b: 60:78:56:e2:d8:a4:87:bb:bf:d4:4a:8b:05:d2:f3:b9:27:82: 24:a8:11:e6:19:1c:54:f1:48:51:9f:44:2e:ab:04:bc:d5:9e: da:3b:ab:5a:7b:c9:1e:d2:8a:4e:eb:f0:80:29:0d:1e:49:96: 90:31:e0:64:bd:ed:f7:d3:ef:b5:b8:ed:5a:61:64:87:5a:56: 6c:ac:1a:de:aa:13:8f:10:ce:74:1b:77:13:f6:b3:95:be:ec: 88:14:d3:d8:2d:58:82:fe:29:45:53:44:0a:8c:ee:38:0f:40: 9f:4f:3c:80:aa:c2:bd:bc:fd:1f:66:d8:d7:a4:cf:94:ec:1e: 68:15:fc:9b:59:52:90:2d:1c:c6:7c:e7:cf:1f:26:f5:c6:6f: 08:b9:b7:22:7f:dd:14:37:ba:f6:20:81:39:01:f3:35:07:27: f1:e3:36:0c -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJG OEU1MzUyMjQwOTcxNzg3ODA2QTNFNTNBODkwNDg1OUE5RjBFNzAeFw0yNTA2MDMw OTU3MzNaFw0yNjAxMDkxNTMwMjBaMDMxMTAvBgNVBAMTKDVGMkVBOEY2QkMyQTMy Q0UxODE5QUQ0MkMyRTYwRTJEQjZFREIwMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoDKMl1XP+I1avnzE9mJw5uQn5NWMxUj1J1NSo6E6Tl29Zofxz 1eL95xfw2pWhnCTPuxMrnlI+UjEl6s4oqbMgn2ORga7k2zFq7oPbGsAIyYO9ePLM n8GYV7xknkMRm0tIv/hBfq8VsxjEvjUh52iene48bdU+HS6uekiajbO+1gWdhuKD SKboVsYEby8lnBeh9lCaKXw1E9Ktszd96YBjEeT9sHZqPC6autF4sHogX4M3ZFtR 3ihz4p0rrlabf4mhWm0F7Gn3AeuNsJo3/2M4jovnqIoWD4TFhVm2oMaUxUFeOdYm KOpjkPlLe/Jr9oGbv/Cnx9I7Tm2mmhwRk/FfAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUXy6o9rwqMs4YGa1CwuYOLbbtsAgwHwYDVR0jBBgwFoAUu/jlNSJAlxeHgGo+ U6iQSFmp8OcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3Vf amxOU0pBbHhlSGdHby1VNmlRU0ZtcDhPYy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev dV9qbE5TSkFseGVIZ0dvLVU2aVFTRm1wOE9jLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3VfamxOU0pBbHhlSGdHby1VNmlRU0Zt cDhPYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA1p6yucRlC 3wmX8qdebnbB9wqPOwnpwRJFP2yQYgtpBkcPsjTYPRLioPNjgnxqAjwg/a+vsFhQ /buerY/vPgt4lO1bHy5gcdxsCEq/3baQ7jziibl4JRwiWFtgeFbi2KSHu7/USosF 0vO5J4IkqBHmGRxU8UhRn0QuqwS81Z7aO6tae8ke0opO6/CAKQ0eSZaQMeBkve33 0++1uO1aYWSHWlZsrBreqhOPEM50G3cT9rOVvuyIFNPYLViC/ilFU0QKjO44D0Cf TzyAqsK9vP0fZtjXpM+U7B5oFfybWVKQLRzGfOfPHyb1xm8Iubcif90UN7r2IIE5 AfM1Byfx4zYM -----END CERTIFICATE-----Generated at Wed Jun 4 01:17:37 2025 by rpki-client