$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft File: P4T67Wy0fhEvJMawJ3pIYicGcso.mft (raw, json) Hash identifier: nlbu85mOxFCi2iioXleY0YcQolHXbXhmp3vmbYh95NM= Subject key identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Certificate serial: 020B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft Manifest number: 0202 Signing time: Wed 30 Jul 2025 10:09:46 +0000 Manifest this update: Wed 30 Jul 2025 10:09:46 +0000 Manifest next update: Fri 01 Aug 2025 10:09:46 +0000 Files and hashes: 1: P4T67Wy0fhEvJMawJ3pIYicGcso.crl (hash: BnqNBVkGW6AhWWPTtAUfnRNCu0zIrYU3i8+uf6nCHZY=) 2: ok9BNTlr8zllkLmhpMWa7wsAAc0.roa (hash: qKkb+N05tfHOvmVIj8XG1Ddu4jYqKsPQyO4D2CXXHtM=) 3: pN7ZwF0LW42ypsIbS8fY9Glr7Ew.roa (hash: DHYfLzt6gQwuLU3/IqtIYmxooHQs9QYn28KSHiQPB3M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Validity Not Before: Jul 30 10:09:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C62935BDEE28689F47A37A776EF691F2FD9522A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:6f:5a:29:d0:9d:14:37:3b:94:31:e9:b6:39: 92:35:1b:25:de:6b:91:ab:a9:75:3c:3a:c5:73:71: d9:47:b9:21:fe:14:2a:4e:f9:c4:bf:d2:1f:4b:04: f9:1e:c5:38:e5:81:2f:61:65:d8:35:f4:55:ba:17: 6f:1d:ab:ee:60:36:f9:ab:f3:b9:46:42:56:a0:65: ce:68:17:4f:76:de:bb:2e:cc:6f:c9:00:dd:3a:ad: 41:1d:af:bf:5b:78:ef:29:5f:15:79:49:d7:53:ac: 56:6d:9c:b8:37:25:8f:f6:27:4e:54:d9:ca:ab:46: 36:ae:ea:ad:b4:d6:1b:b2:44:0e:61:84:a9:2d:fe: 29:47:38:ff:04:e3:8c:d1:e7:85:cf:8e:cc:d7:86: 0d:4b:5b:86:48:d6:fc:cd:21:96:e4:34:09:8c:a2: 66:b9:3a:6e:9a:9d:c9:a9:a8:66:e9:bf:94:e1:77: d0:b8:ad:d3:08:b5:2b:73:71:01:06:49:f1:40:52: a3:f3:c0:45:40:d4:4a:a0:a5:71:8a:19:d1:e1:a5: 7e:15:78:66:7a:06:fc:98:15:c8:a8:8d:af:d2:4c: eb:83:e3:ae:3a:dc:81:f8:ac:ce:3a:8c:c6:74:11: 7d:99:c3:56:c8:8e:af:62:3a:af:a8:fd:14:09:4c: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 X509v3 Authority Key Identifier: keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:3e:32:d0:f3:5d:bf:2d:7a:fe:bc:d2:ad:52:41:cc:f5:ae: 85:97:c5:0d:aa:4e:49:7d:a0:88:65:fc:e9:cf:6a:e7:c9:c8: d5:70:b7:67:b2:2f:0c:56:c5:02:e1:a2:fd:4b:b1:1e:9b:df: fc:d2:93:e5:6b:44:5c:91:41:5c:95:62:40:04:a8:1c:ef:40: a2:65:16:e2:2e:98:55:fa:ab:37:c1:15:0b:9e:3a:db:87:c2: 76:ae:78:88:ec:da:5c:9b:36:1f:f0:f6:c4:fc:73:86:80:df: 5e:ac:2b:c8:e2:33:be:da:43:08:7b:36:f6:f3:e1:d8:d6:45: bb:c2:83:c6:d9:98:bc:a0:72:c0:47:cc:2a:10:26:43:eb:7b: 2b:17:2a:24:ab:b1:80:5c:f7:68:8f:02:ea:79:0e:4b:c8:1f: 0b:d8:e5:94:60:1e:04:cc:38:4a:db:25:e4:00:e5:5c:63:c1: 7a:87:da:5b:fd:96:41:20:a6:a9:82:a3:43:71:f4:cc:a7:11: 27:97:55:0d:93:80:3a:29:97:8f:51:88:94:8d:d8:b3:45:08: d8:47:08:29:06:73:3b:99:be:37:d3:bf:3f:66:81:bb:fa:eb: e3:46:4c:f5:c2:9b:da:39:35:4f:31:e1:8b:e5:3f:aa:6d:23: 35:d0:bd:1c -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y4 NEZBRUQ2Q0I0N0UxMTJGMjRDNkIwMjc3QTQ4NjIyNzA2NzJDQTAeFw0yNTA3MzAx MDA5NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2MjkzNUJERUUyODY4 OUY0N0EzN0E3NzZFRjY5MUYyRkQ5NTIyQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5b1op0J0UNzuUMem2OZI1GyXea5GrqXU8OsVzcdlHuSH+FCpO +cS/0h9LBPkexTjlgS9hZdg19FW6F28dq+5gNvmr87lGQlagZc5oF0923rsuzG/J AN06rUEdr79beO8pXxV5SddTrFZtnLg3JY/2J05U2cqrRjau6q201huyRA5hhKkt /ilHOP8E44zR54XPjszXhg1LW4ZI1vzNIZbkNAmMoma5Om6ancmpqGbpv5Thd9C4 rdMItStzcQEGSfFAUqPzwEVA1EqgpXGKGdHhpX4VeGZ6BvyYFcioja/STOuD4646 3IH4rM46jMZ0EX2Zw1bIjq9iOq+o/RQJTLsTAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUxik1ve4oaJ9Ho3p3bvaR8v2VIqAwHwYDVR0jBBgwFoAUP4T67Wy0fhEvJMaw J3pIYicGcsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9T VEVDSC9QNFQ2N1d5MGZoRXZKTWF3SjNwSVlpY0djc28uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tST05PU1RFQ0gvUDRUNjdXeTBm aEV2Sk1hd0ozcElZaWNHY3NvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACQ+MtDzXb8tev680q1SQcz1roWXxQ2qTkl9oIhl/OnPaufJyNVwt2ey LwxWxQLhov1LsR6b3/zSk+VrRFyRQVyVYkAEqBzvQKJlFuIumFX6qzfBFQueOtuH wnaueIjs2lybNh/w9sT8c4aA316sK8jiM77aQwh7Nvbz4djWRbvCg8bZmLygcsBH zCoQJkPreysXKiSrsYBc92iPAup5DkvIHwvY5ZRgHgTMOErbJeQA5VxjwXqH2lv9 lkEgpqmCo0Nx9MynESeXVQ2TgDopl49RiJSN2LNFCNhHCCkGczuZvjfTvz9mgbv6 6+NGTPXCm9o5NU8x4YvlP6ptIzXQvRw= -----END CERTIFICATE-----Generated at Thu Jul 31 18:20:44 2025 by rpki-client