$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft File: irmeyQYHuWAZUW7KYEx7f_JHSpo.mft (raw, json) Hash identifier: Eyr/zn5GawxzmZFhlRWFEEfXvCOqQGfrvtGOau7vytE= Subject key identifier: 3A:27:64:29:E7:A9:6E:DE:38:5F:B5:2F:1F:F6:EC:95:B6:17:99:9A Authority key identifier: 8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A Certificate issuer: /CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A Certificate serial: 022C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft Manifest number: 0221 Signing time: Sun 01 Jun 2025 20:56:47 +0000 Manifest this update: Sun 01 Jun 2025 20:56:47 +0000 Manifest next update: Tue 03 Jun 2025 20:56:47 +0000 Files and hashes: 1: RihfMfWvQsLq-r9eLjMkQB5ScIo.roa (hash: h+3FeksP7vpLGtxaVSkH3RkUH7+7bnYI87GWeleGJ1I=) 2: irmeyQYHuWAZUW7KYEx7f_JHSpo.crl (hash: vP+1NE4BKDVISv4KVWlrb3aTlwyFuk7VgR7ai3PmtWQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A Validity Not Before: Jun 1 20:56:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3A276429E7A96EDE385FB52F1FF6EC95B617999A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:03:d5:ac:ae:ff:f4:03:a3:9a:71:2e:ce: 7a:8a:c4:f0:0b:bb:59:38:e0:3c:a3:ea:e1:3e:e7: eb:a3:6f:a1:95:38:ec:3f:8c:d2:85:a0:9d:db:b8: b9:e6:e4:de:96:14:a9:c8:32:df:2b:7f:0d:55:aa: 64:56:1e:e7:0e:08:38:5c:ad:ed:a9:d3:27:9a:93: cc:25:9e:77:7b:e4:a2:ab:c5:a9:f3:e5:e6:1f:ae: a5:48:a4:2d:06:b3:98:ff:e5:d9:96:ed:9e:40:0c: 13:33:c9:05:d4:ed:42:dc:8e:6a:3d:d6:e8:b3:11: ee:a6:88:56:09:8c:5d:48:2a:9e:a3:81:47:ff:3f: 88:39:f7:a7:57:18:53:35:95:cf:ee:ea:99:cf:54: 27:b9:9d:b7:46:4e:1e:6c:86:21:33:ec:a0:83:ff: 4d:b3:bc:e5:00:10:a5:8e:6f:95:d2:c4:fa:da:a4: 83:a0:ed:40:92:82:33:d1:93:e8:94:11:8e:cc:3d: 26:c3:da:75:5e:d6:4a:9c:fc:f4:5c:da:53:55:20: bb:1d:00:d1:a7:ab:e0:43:1c:54:7b:1c:dc:71:05: da:a6:e5:18:86:77:88:7b:da:c6:5b:4b:d8:54:e7: 3b:86:9a:b4:45:d1:f6:99:62:97:f8:a3:43:21:d6: 41:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:27:64:29:E7:A9:6E:DE:38:5F:B5:2F:1F:F6:EC:95:B6:17:99:9A X509v3 Authority Key Identifier: keyid:8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ec:9d:f0:15:0d:7b:45:76:0c:9c:65:f5:0b:65:d0:f1:29: d6:f8:c2:e2:16:f3:9e:52:ef:51:04:31:e8:28:e2:90:21:ee: a2:e0:b9:36:33:47:f7:ff:77:42:e1:57:de:71:89:2e:9e:21: bb:92:f3:1e:8d:27:14:83:95:ba:7c:9f:22:f7:90:b3:63:15: 26:0d:47:71:8d:67:9d:99:bf:04:3d:11:79:bf:55:3f:33:d0: f5:9a:3b:57:29:3c:8a:f7:20:74:ac:49:42:20:8a:de:17:af: 07:27:c1:60:80:3b:a1:92:92:bb:3b:8e:71:de:67:f5:eb:8c: f4:85:5c:8b:30:fb:38:fa:39:cb:4f:87:4f:d4:fd:67:29:3b: a4:92:35:21:5d:77:ef:e1:8b:1b:c3:28:40:6b:05:84:e8:58: b9:e4:b0:a0:65:41:32:86:01:84:5e:3b:f6:57:f0:5d:97:21: 6e:53:74:7a:58:1d:f6:f8:aa:e3:59:c9:9e:c0:de:6d:13:29: 4b:42:3f:55:0c:b9:f6:91:f5:67:52:32:41:95:61:49:11:26: 4b:79:20:7b:dc:59:ec:30:dd:a4:69:1a:e7:af:84:bb:72:fa: 63:80:23:17:ac:66:da:62:98:e1:ad:50:6e:a7:26:c6:39:d6: de:6d:8e:96 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFC OTlFQzkwNjA3Qjk2MDE5NTE2RUNBNjA0QzdCN0ZGMjQ3NEE5QTAeFw0yNTA2MDEy MDU2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBMjc2NDI5RTdBOTZF REUzODVGQjUyRjFGRjZFQzk1QjYxNzk5OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpSwPVrK7/9AOjmnEuznqKxPALu1k44Dyj6uE+5+ujb6GVOOw/ jNKFoJ3buLnm5N6WFKnIMt8rfw1VqmRWHucOCDhcre2p0yeak8wlnnd75KKrxanz 5eYfrqVIpC0Gs5j/5dmW7Z5ADBMzyQXU7ULcjmo91uizEe6miFYJjF1IKp6jgUf/ P4g596dXGFM1lc/u6pnPVCe5nbdGTh5shiEz7KCD/02zvOUAEKWOb5XSxPrapIOg 7UCSgjPRk+iUEY7MPSbD2nVe1kqc/PRc2lNVILsdANGnq+BDHFR7HNxxBdqm5RiG d4h72sZbS9hU5zuGmrRF0faZYpf4o0Mh1kHTAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUOidkKeepbt44X7UvH/bslbYXmZowHwYDVR0jBBgwFoAUirmeyQYHuWAZUW7K YEx7f/JHSpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElOR0NB SS9pcm1leVFZSHVXQVpVVzdLWUV4N2ZfSkhTcG8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2lybWV5UVlIdVdBWlVXN0tZRXg3Zl9KSFNwby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xJTkdDQUkvaXJtZXlRWUh1V0FaVVc3 S1lFeDdmX0pIU3BvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AFHsnfAVDXtFdgycZfULZdDxKdb4wuIW855S71EEMego4pAh7qLguTYzR/f/d0Lh V95xiS6eIbuS8x6NJxSDlbp8nyL3kLNjFSYNR3GNZ52ZvwQ9EXm/VT8z0PWaO1cp PIr3IHSsSUIgit4XrwcnwWCAO6GSkrs7jnHeZ/XrjPSFXIsw+zj6OctPh0/U/Wcp O6SSNSFdd+/hixvDKEBrBYToWLnksKBlQTKGAYReO/ZX8F2XIW5TdHpYHfb4quNZ yZ7A3m0TKUtCP1UMufaR9WdSMkGVYUkRJkt5IHvcWeww3aRpGuevhLty+mOAIxes ZtpimOGtUG6nJsY51t5tjpY= -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:41 2025 by rpki-client