$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft File: P4T67Wy0fhEvJMawJ3pIYicGcso.mft (raw, json) Hash identifier: o1Tull1qA7LvKExG12dvipDRexxt1OazWhgzWuHHvCw= Subject key identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Certificate serial: 01BD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft Manifest number: 01B4 Signing time: Fri 04 Apr 2025 09:07:47 +0000 Manifest this update: Fri 04 Apr 2025 09:07:47 +0000 Manifest next update: Sun 06 Apr 2025 09:07:47 +0000 Files and hashes: 1: P4T67Wy0fhEvJMawJ3pIYicGcso.crl (hash: aKFaGtLB7dSNN6Qgds7505Myd9VrFGwBXcYgdP0c4iA=) 2: ok9BNTlr8zllkLmhpMWa7wsAAc0.roa (hash: qKkb+N05tfHOvmVIj8XG1Ddu4jYqKsPQyO4D2CXXHtM=) 3: pN7ZwF0LW42ypsIbS8fY9Glr7Ew.roa (hash: DHYfLzt6gQwuLU3/IqtIYmxooHQs9QYn28KSHiQPB3M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 08:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Validity Not Before: Apr 4 09:07:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C62935BDEE28689F47A37A776EF691F2FD9522A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:6f:5a:29:d0:9d:14:37:3b:94:31:e9:b6:39: 92:35:1b:25:de:6b:91:ab:a9:75:3c:3a:c5:73:71: d9:47:b9:21:fe:14:2a:4e:f9:c4:bf:d2:1f:4b:04: f9:1e:c5:38:e5:81:2f:61:65:d8:35:f4:55:ba:17: 6f:1d:ab:ee:60:36:f9:ab:f3:b9:46:42:56:a0:65: ce:68:17:4f:76:de:bb:2e:cc:6f:c9:00:dd:3a:ad: 41:1d:af:bf:5b:78:ef:29:5f:15:79:49:d7:53:ac: 56:6d:9c:b8:37:25:8f:f6:27:4e:54:d9:ca:ab:46: 36:ae:ea:ad:b4:d6:1b:b2:44:0e:61:84:a9:2d:fe: 29:47:38:ff:04:e3:8c:d1:e7:85:cf:8e:cc:d7:86: 0d:4b:5b:86:48:d6:fc:cd:21:96:e4:34:09:8c:a2: 66:b9:3a:6e:9a:9d:c9:a9:a8:66:e9:bf:94:e1:77: d0:b8:ad:d3:08:b5:2b:73:71:01:06:49:f1:40:52: a3:f3:c0:45:40:d4:4a:a0:a5:71:8a:19:d1:e1:a5: 7e:15:78:66:7a:06:fc:98:15:c8:a8:8d:af:d2:4c: eb:83:e3:ae:3a:dc:81:f8:ac:ce:3a:8c:c6:74:11: 7d:99:c3:56:c8:8e:af:62:3a:af:a8:fd:14:09:4c: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 X509v3 Authority Key Identifier: keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:de:39:34:e9:5f:b8:e7:36:9c:4e:e6:12:c7:de:27:dc:6e: bb:0f:7d:2c:9f:47:e9:10:77:21:82:f8:2f:ea:99:69:fe:f4: 6c:ec:37:49:fe:73:2d:e8:4f:8a:ff:ac:c0:5f:3d:d3:d3:5b: e4:d3:09:2b:0c:bf:f1:02:e5:41:68:fe:93:7a:5a:7a:6a:d4: 32:ee:a7:af:55:13:3e:34:11:d6:ee:44:35:21:69:44:fa:87: 95:fb:e8:e0:e3:88:20:51:f2:79:5a:c7:33:67:5a:34:17:ab: 71:61:b2:db:4f:d1:f8:1f:86:c8:f5:91:c0:f5:47:db:10:9c: 79:97:d2:1b:c9:80:7a:ba:b4:86:90:43:85:cb:eb:dd:af:fe: b3:63:c8:85:3f:74:60:d4:6d:bd:11:f7:62:7e:80:96:9c:1b: 6d:90:6e:6d:2c:75:e3:1c:e7:1d:1b:53:dd:ff:45:85:23:27: c6:ef:96:a3:ea:68:dc:98:42:f2:8e:71:c1:a3:79:81:9c:b5: 94:e2:99:16:1f:ba:ca:c0:17:4a:0e:bc:f3:90:7b:21:67:22: d7:d4:0e:2a:47:cf:97:10:2a:28:c0:f8:4f:d1:38:49:d4:4a: 31:70:cd:21:2d:26:e4:05:87:52:e8:94:c0:91:98:e8:6e:c5: ac:64:1e:ad -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y4 NEZBRUQ2Q0I0N0UxMTJGMjRDNkIwMjc3QTQ4NjIyNzA2NzJDQTAeFw0yNTA0MDQw OTA3NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2MjkzNUJERUUyODY4 OUY0N0EzN0E3NzZFRjY5MUYyRkQ5NTIyQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5b1op0J0UNzuUMem2OZI1GyXea5GrqXU8OsVzcdlHuSH+FCpO +cS/0h9LBPkexTjlgS9hZdg19FW6F28dq+5gNvmr87lGQlagZc5oF0923rsuzG/J AN06rUEdr79beO8pXxV5SddTrFZtnLg3JY/2J05U2cqrRjau6q201huyRA5hhKkt /ilHOP8E44zR54XPjszXhg1LW4ZI1vzNIZbkNAmMoma5Om6ancmpqGbpv5Thd9C4 rdMItStzcQEGSfFAUqPzwEVA1EqgpXGKGdHhpX4VeGZ6BvyYFcioja/STOuD4646 3IH4rM46jMZ0EX2Zw1bIjq9iOq+o/RQJTLsTAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUxik1ve4oaJ9Ho3p3bvaR8v2VIqAwHwYDVR0jBBgwFoAUP4T67Wy0fhEvJMaw J3pIYicGcsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9T VEVDSC9QNFQ2N1d5MGZoRXZKTWF3SjNwSVlpY0djc28uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tST05PU1RFQ0gvUDRUNjdXeTBm aEV2Sk1hd0ozcElZaWNHY3NvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABfeOTTpX7jnNpxO5hLH3ifcbrsPfSyfR+kQdyGC+C/qmWn+9GzsN0n+ cy3oT4r/rMBfPdPTW+TTCSsMv/EC5UFo/pN6Wnpq1DLup69VEz40EdbuRDUhaUT6 h5X76ODjiCBR8nlaxzNnWjQXq3FhsttP0fgfhsj1kcD1R9sQnHmX0hvJgHq6tIaQ Q4XL692v/rNjyIU/dGDUbb0R92J+gJacG22Qbm0sdeMc5x0bU93/RYUjJ8bvlqPq aNyYQvKOccGjeYGctZTimRYfusrAF0oOvPOQeyFnItfUDipHz5cQKijA+E/ROEnU SjFwzSEtJuQFh1LolMCRmOhuxaxkHq0= -----END CERTIFICATE-----Generated at Sat Apr 5 08:29:41 2025 by rpki-client