$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft File: P4T67Wy0fhEvJMawJ3pIYicGcso.mft (raw, json) Hash identifier: WZAvMBJ+gaKalscxW41HhJScmHPysPMLzZ3yfK7ZIak= Subject key identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Certificate serial: 022E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft Manifest number: 0223 Signing time: Tue 16 Sep 2025 21:21:12 +0000 Manifest this update: Tue 16 Sep 2025 21:21:12 +0000 Manifest next update: Thu 18 Sep 2025 21:21:12 +0000 Files and hashes: 1: IErOyzoZVkiS9Uhk0QF6wLDAljo.roa (hash: L6eHFiNuaWY66hK66Hq26PxHIFkjbaThfdmbM18C7cE=) 2: NbDi8Af5Gmmz6J7SUj6VheHbgkQ.roa (hash: QshxsuPUbcaWeX3b7o/6+1HYkGZdF5/K5o7k1P2M0uo=) 3: P4T67Wy0fhEvJMawJ3pIYicGcso.crl (hash: 5gVUiQfxsdTFc0V8Ochu5Wbr9NoVVzwyK9jAzc10QS8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Validity Not Before: Sep 16 21:21:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C62935BDEE28689F47A37A776EF691F2FD9522A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:6f:5a:29:d0:9d:14:37:3b:94:31:e9:b6:39: 92:35:1b:25:de:6b:91:ab:a9:75:3c:3a:c5:73:71: d9:47:b9:21:fe:14:2a:4e:f9:c4:bf:d2:1f:4b:04: f9:1e:c5:38:e5:81:2f:61:65:d8:35:f4:55:ba:17: 6f:1d:ab:ee:60:36:f9:ab:f3:b9:46:42:56:a0:65: ce:68:17:4f:76:de:bb:2e:cc:6f:c9:00:dd:3a:ad: 41:1d:af:bf:5b:78:ef:29:5f:15:79:49:d7:53:ac: 56:6d:9c:b8:37:25:8f:f6:27:4e:54:d9:ca:ab:46: 36:ae:ea:ad:b4:d6:1b:b2:44:0e:61:84:a9:2d:fe: 29:47:38:ff:04:e3:8c:d1:e7:85:cf:8e:cc:d7:86: 0d:4b:5b:86:48:d6:fc:cd:21:96:e4:34:09:8c:a2: 66:b9:3a:6e:9a:9d:c9:a9:a8:66:e9:bf:94:e1:77: d0:b8:ad:d3:08:b5:2b:73:71:01:06:49:f1:40:52: a3:f3:c0:45:40:d4:4a:a0:a5:71:8a:19:d1:e1:a5: 7e:15:78:66:7a:06:fc:98:15:c8:a8:8d:af:d2:4c: eb:83:e3:ae:3a:dc:81:f8:ac:ce:3a:8c:c6:74:11: 7d:99:c3:56:c8:8e:af:62:3a:af:a8:fd:14:09:4c: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 X509v3 Authority Key Identifier: keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:84:4b:6d:02:2e:f7:19:99:2e:db:83:3d:78:7b:c4:ce:5e: e2:96:78:68:46:ed:6f:ef:be:60:64:c1:5b:51:f7:65:d6:3b: e1:8e:ee:ab:33:88:ec:38:fc:95:9b:24:26:0a:7a:c1:0f:02: e3:14:c2:f1:e5:8f:db:bc:ee:be:e1:62:78:5d:83:83:95:a9: 29:57:76:88:c7:6a:98:c8:31:44:d2:ce:71:82:dd:cb:9c:e8: 83:de:e4:87:b9:46:0a:0a:b2:3f:86:cb:ff:ed:5d:15:53:7f: e5:25:c9:77:a7:a3:7c:32:e0:9d:0e:16:83:23:23:bb:fc:fd: 4c:42:5e:c8:c0:ea:97:37:19:35:cb:a1:8f:0f:2d:9d:55:4c: de:67:3c:bd:d6:d3:54:a2:79:fa:ce:ed:a0:93:4b:d9:cb:b3: 85:30:81:6a:ef:be:d8:1d:b2:b1:c5:77:84:b2:ab:ae:49:ca: f6:93:3a:28:f2:ad:b4:e7:00:9a:21:6c:98:29:91:4a:7c:ad: bd:01:5c:0a:1f:55:ef:6a:16:0c:43:af:fa:23:0e:ae:f0:71: a4:da:2f:7f:61:4d:28:51:90:37:e5:fc:5c:83:ea:d6:db:67: 45:e4:35:b4:c8:d2:aa:6f:24:25:6c:09:c9:2c:32:9f:ac:d2: 48:db:1e:79 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y4 NEZBRUQ2Q0I0N0UxMTJGMjRDNkIwMjc3QTQ4NjIyNzA2NzJDQTAeFw0yNTA5MTYy MTIxMTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM2MjkzNUJERUUyODY4 OUY0N0EzN0E3NzZFRjY5MUYyRkQ5NTIyQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5b1op0J0UNzuUMem2OZI1GyXea5GrqXU8OsVzcdlHuSH+FCpO +cS/0h9LBPkexTjlgS9hZdg19FW6F28dq+5gNvmr87lGQlagZc5oF0923rsuzG/J AN06rUEdr79beO8pXxV5SddTrFZtnLg3JY/2J05U2cqrRjau6q201huyRA5hhKkt /ilHOP8E44zR54XPjszXhg1LW4ZI1vzNIZbkNAmMoma5Om6ancmpqGbpv5Thd9C4 rdMItStzcQEGSfFAUqPzwEVA1EqgpXGKGdHhpX4VeGZ6BvyYFcioja/STOuD4646 3IH4rM46jMZ0EX2Zw1bIjq9iOq+o/RQJTLsTAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUxik1ve4oaJ9Ho3p3bvaR8v2VIqAwHwYDVR0jBBgwFoAUP4T67Wy0fhEvJMaw J3pIYicGcsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9T VEVDSC9QNFQ2N1d5MGZoRXZKTWF3SjNwSVlpY0djc28uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tST05PU1RFQ0gvUDRUNjdXeTBm aEV2Sk1hd0ozcElZaWNHY3NvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA2ES20CLvcZmS7bgz14e8TOXuKWeGhG7W/vvmBkwVtR92XWO+GO7qsz iOw4/JWbJCYKesEPAuMUwvHlj9u87r7hYnhdg4OVqSlXdojHapjIMUTSznGC3cuc 6IPe5Ie5RgoKsj+Gy//tXRVTf+UlyXeno3wy4J0OFoMjI7v8/UxCXsjA6pc3GTXL oY8PLZ1VTN5nPL3W01SiefrO7aCTS9nLs4UwgWrvvtgdsrHFd4Syq65JyvaTOijy rbTnAJohbJgpkUp8rb0BXAofVe9qFgxDr/ojDq7wcaTaL39hTShRkDfl/FyD6tbb Z0XkNbTI0qpvJCVsCcksMp+s0kjbHnk= -----END CERTIFICATE-----Generated at Wed Sep 17 23:29:11 2025 by rpki-client