$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft File: P4T67Wy0fhEvJMawJ3pIYicGcso.mft (raw, json) Hash identifier: WNyGBH5y/U9mWHGKGtJzFYDX+747CV4iW9OKhxbcDeg= Subject key identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Certificate serial: 01E4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft Manifest number: 01DB Signing time: Sun 01 Jun 2025 21:57:56 +0000 Manifest this update: Sun 01 Jun 2025 21:57:56 +0000 Manifest next update: Tue 03 Jun 2025 21:57:56 +0000 Files and hashes: 1: P4T67Wy0fhEvJMawJ3pIYicGcso.crl (hash: PKdyXMYIeQdO/SLtBUNeHWHaKMHKCnAExXMMjDcQ70g=) 2: ok9BNTlr8zllkLmhpMWa7wsAAc0.roa (hash: qKkb+N05tfHOvmVIj8XG1Ddu4jYqKsPQyO4D2CXXHtM=) 3: pN7ZwF0LW42ypsIbS8fY9Glr7Ew.roa (hash: DHYfLzt6gQwuLU3/IqtIYmxooHQs9QYn28KSHiQPB3M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Validity Not Before: Jun 1 21:57:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C62935BDEE28689F47A37A776EF691F2FD9522A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:6f:5a:29:d0:9d:14:37:3b:94:31:e9:b6:39: 92:35:1b:25:de:6b:91:ab:a9:75:3c:3a:c5:73:71: d9:47:b9:21:fe:14:2a:4e:f9:c4:bf:d2:1f:4b:04: f9:1e:c5:38:e5:81:2f:61:65:d8:35:f4:55:ba:17: 6f:1d:ab:ee:60:36:f9:ab:f3:b9:46:42:56:a0:65: ce:68:17:4f:76:de:bb:2e:cc:6f:c9:00:dd:3a:ad: 41:1d:af:bf:5b:78:ef:29:5f:15:79:49:d7:53:ac: 56:6d:9c:b8:37:25:8f:f6:27:4e:54:d9:ca:ab:46: 36:ae:ea:ad:b4:d6:1b:b2:44:0e:61:84:a9:2d:fe: 29:47:38:ff:04:e3:8c:d1:e7:85:cf:8e:cc:d7:86: 0d:4b:5b:86:48:d6:fc:cd:21:96:e4:34:09:8c:a2: 66:b9:3a:6e:9a:9d:c9:a9:a8:66:e9:bf:94:e1:77: d0:b8:ad:d3:08:b5:2b:73:71:01:06:49:f1:40:52: a3:f3:c0:45:40:d4:4a:a0:a5:71:8a:19:d1:e1:a5: 7e:15:78:66:7a:06:fc:98:15:c8:a8:8d:af:d2:4c: eb:83:e3:ae:3a:dc:81:f8:ac:ce:3a:8c:c6:74:11: 7d:99:c3:56:c8:8e:af:62:3a:af:a8:fd:14:09:4c: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 X509v3 Authority Key Identifier: keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:af:82:20:a1:81:e8:d6:52:f7:5b:f0:96:24:f6:88:10:fe: 20:73:64:9b:bc:bf:cf:d7:99:da:95:80:d0:f8:b6:ab:1e:bf: 46:6e:c4:9a:16:38:cf:c9:6d:ee:0d:6b:f5:cf:61:a2:1c:8f: 96:52:d6:ef:6c:88:74:07:6c:78:db:bc:96:ef:c2:d4:51:d6: 39:3a:f7:37:9a:4f:90:b6:90:0c:44:52:09:83:04:05:ea:b5: d3:c5:b5:12:fb:14:e6:f7:eb:99:79:41:4f:7b:d7:09:05:2f: 11:01:17:32:48:60:d1:b2:ba:f4:67:56:42:d0:36:95:87:4f: 4c:00:a0:fe:98:bc:cd:b3:de:64:2d:b6:5f:bd:c9:56:a1:8c: 92:c2:79:82:f9:0b:e2:69:47:aa:4d:4e:ba:d3:55:6e:b3:a7: 84:2f:d0:d5:c4:8b:57:91:b7:a0:70:a6:d1:1b:9e:7f:6c:6a: 42:58:dc:1b:6c:87:9c:c2:1d:56:ab:8a:1e:d8:f4:ab:4b:39: e4:2d:f6:16:43:70:de:ef:03:5e:82:3c:4d:c4:c3:af:46:63: f7:68:2f:4c:57:67:98:57:b5:09:42:9b:b6:3e:39:76:33:d8: a5:5a:97:a6:89:97:f4:15:5e:71:6f:c4:de:f6:af:08:cc:05: 55:66:25:0f -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y4 NEZBRUQ2Q0I0N0UxMTJGMjRDNkIwMjc3QTQ4NjIyNzA2NzJDQTAeFw0yNTA2MDEy MTU3NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2MjkzNUJERUUyODY4 OUY0N0EzN0E3NzZFRjY5MUYyRkQ5NTIyQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5b1op0J0UNzuUMem2OZI1GyXea5GrqXU8OsVzcdlHuSH+FCpO +cS/0h9LBPkexTjlgS9hZdg19FW6F28dq+5gNvmr87lGQlagZc5oF0923rsuzG/J AN06rUEdr79beO8pXxV5SddTrFZtnLg3JY/2J05U2cqrRjau6q201huyRA5hhKkt /ilHOP8E44zR54XPjszXhg1LW4ZI1vzNIZbkNAmMoma5Om6ancmpqGbpv5Thd9C4 rdMItStzcQEGSfFAUqPzwEVA1EqgpXGKGdHhpX4VeGZ6BvyYFcioja/STOuD4646 3IH4rM46jMZ0EX2Zw1bIjq9iOq+o/RQJTLsTAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUxik1ve4oaJ9Ho3p3bvaR8v2VIqAwHwYDVR0jBBgwFoAUP4T67Wy0fhEvJMaw J3pIYicGcsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9T VEVDSC9QNFQ2N1d5MGZoRXZKTWF3SjNwSVlpY0djc28uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tST05PU1RFQ0gvUDRUNjdXeTBm aEV2Sk1hd0ozcElZaWNHY3NvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAevgiChgejWUvdb8JYk9ogQ/iBzZJu8v8/XmdqVgND4tqsev0ZuxJoW OM/Jbe4Na/XPYaIcj5ZS1u9siHQHbHjbvJbvwtRR1jk69zeaT5C2kAxEUgmDBAXq tdPFtRL7FOb365l5QU971wkFLxEBFzJIYNGyuvRnVkLQNpWHT0wAoP6YvM2z3mQt tl+9yVahjJLCeYL5C+JpR6pNTrrTVW6zp4Qv0NXEi1eRt6BwptEbnn9sakJY3Bts h5zCHVarih7Y9KtLOeQt9hZDcN7vA16CPE3Ew69GY/doL0xXZ5hXtQlCm7Y+OXYz 2KVal6aJl/QVXnFvxN72rwjMBVVmJQ8= -----END CERTIFICATE-----Generated at Tue Jun 3 08:16:25 2025 by rpki-client