$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft (raw, json) Hash identifier: AkEaAWR5c6zBU/4z2RwZy1t5MeTPJWyfmKGt/np5mgE= Subject key identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 0196 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft Manifest number: 018B Signing time: Thu 05 Jun 2025 07:26:27 +0000 Manifest this update: Thu 05 Jun 2025 07:26:27 +0000 Manifest next update: Sat 07 Jun 2025 07:26:27 +0000 Files and hashes: 1: 1eSfSntra-ca5Lr8nUQ1zK5nOOU.roa (hash: 6/YXwZoj2PwcoCAykO7n382MAN5eiVvhL55SSSkIfRs=) 2: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl (hash: GhGaeE+pPnUq+qJZjumxN9XTRgXjoV6O+z00cIXbgjc=) 3: Hl6hGPRaL0pe61IMQ_nAGVfhRMU.roa (hash: NVIRzL71UVNo7abnEO4Mncia6Xlu9bPWr+FJDUx0/Uc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 21:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: Jun 5 07:26:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=721BD71397601F82691E128A2782C35B4FC3AC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:dd:8e:40:a6:72:e5:c1:f7:b8:37:1b:68: c8:64:1b:d0:2a:24:ac:4d:57:74:67:03:07:e8:a4: 6b:2b:d7:0b:62:1b:78:1f:73:05:95:f3:23:86:27: 5f:9b:ab:4a:67:34:ea:8a:1d:12:78:76:b0:df:78: 86:eb:a3:a8:31:65:3c:48:08:da:6c:06:fe:5c:6a: 59:16:be:af:39:2d:60:6a:ad:be:7e:15:e4:0c:81: cf:e8:05:89:05:3e:cd:f7:7d:9a:9b:c0:02:55:4c: f1:4a:ef:73:ff:0d:d8:16:f2:58:b4:a5:b7:5f:d3: f6:a1:18:77:ce:48:4a:7c:ee:bf:cf:a8:34:82:a8: b5:a0:d3:1f:6d:86:8b:9c:b2:0b:2e:4d:f0:60:4f: 3f:b7:c4:91:cb:07:70:f1:dd:82:da:5d:b8:a5:21: 1a:9f:5e:7c:87:30:4a:0a:a2:c7:4f:61:d0:b7:43: de:db:c8:20:05:7d:e6:ce:b8:17:3f:85:cd:b9:0f: de:cf:7c:ce:63:7a:25:28:3e:81:5d:85:cf:eb:7d: 48:e1:44:22:52:cb:32:95:aa:70:a3:42:df:98:23: 4d:ca:fe:70:4c:d0:9a:24:ff:b9:23:f4:6c:7c:b4: 42:39:a5:82:b2:11:58:a7:e7:6c:3c:c8:ad:1d:24: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:8c:ba:8b:d5:c6:e2:49:26:05:7a:45:5a:4e:d0:1a:b2:75: fc:a2:fe:c2:2c:a2:0e:bc:5e:14:0e:d3:d1:7a:e3:52:44:60: 99:fe:d2:23:2b:6e:2c:26:b6:5f:9c:6e:0c:e3:51:9a:ba:11: 4e:b8:82:f0:58:e8:9c:a3:d6:48:39:e7:12:1b:81:85:b7:8d: 08:4b:29:0c:a8:47:fd:a5:b8:77:d9:8a:2e:4c:23:4e:65:23: 62:09:1a:1d:94:66:10:ee:e6:c2:60:20:69:af:99:9d:1e:da: 01:f7:a2:c6:1c:a6:37:0a:8a:53:b3:ba:0b:87:6b:1f:f7:bb: 3f:bb:b1:31:c0:f8:6b:d3:6b:a8:18:53:3f:48:7b:51:09:29: ae:15:27:16:91:a3:e1:1d:f6:d9:4c:04:1a:50:ae:e8:83:12: 39:b5:90:c9:3c:e4:d0:6d:55:ad:51:35:e0:14:fd:a1:35:7c: e1:55:f0:16:c9:ef:cb:e5:80:02:52:97:38:0d:52:0b:89:d6: 3f:9d:37:5c:b7:a6:4a:26:f4:81:13:ec:42:08:a1:05:d6:72: 9f:df:d1:66:fe:5e:e9:1d:f3:42:d6:12:78:3f:56:21:a7:1f: 29:10:a3:c0:0a:53:b9:e8:ce:2c:97:bd:e3:ef:ed:45:73:60: 04:18:22:b1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDk2 NkI1NTkwOTMyNDE4MEE4OEE0NUUxRjY4M0NGNEQyRUQ5QkNBNTAeFw0yNTA2MDUw NzI2MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcyMUJENzEzOTc2MDFG ODI2OTFFMTI4QTI3ODJDMzVCNEZDM0FDNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdhd2OQKZy5cH3uDcbaMhkG9AqJKxNV3RnAwfopGsr1wtiG3gf cwWV8yOGJ1+bq0pnNOqKHRJ4drDfeIbro6gxZTxICNpsBv5calkWvq85LWBqrb5+ FeQMgc/oBYkFPs33fZqbwAJVTPFK73P/DdgW8li0pbdf0/ahGHfOSEp87r/PqDSC qLWg0x9thoucsgsuTfBgTz+3xJHLB3Dx3YLaXbilIRqfXnyHMEoKosdPYdC3Q97b yCAFfebOuBc/hc25D97PfM5jeiUoPoFdhc/rfUjhRCJSyzKVqnCjQt+YI03K/nBM 0Jok/7kj9Gx8tEI5pYKyEVin52w8yK0dJMenAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUchvXE5dgH4JpHhKKJ4LDW0/DrEAwHwYDVR0jBBgwFoAU2Wa1WQkyQYCoikXh 9oPPTS7ZvKUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v MldhMVdRa3lRWUNvaWtYaDlvUFBUUzdadktVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8yV2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8yV2ExV1FreVFZQ29pa1hoOW9Q UFRTN1p2S1UubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAoy6 i9XG4kkmBXpFWk7QGrJ1/KL+wiyiDrxeFA7T0XrjUkRgmf7SIytuLCa2X5xuDONR mroRTriC8FjonKPWSDnnEhuBhbeNCEspDKhH/aW4d9mKLkwjTmUjYgkaHZRmEO7m wmAgaa+ZnR7aAfeixhymNwqKU7O6C4drH/e7P7uxMcD4a9NrqBhTP0h7UQkprhUn FpGj4R322UwEGlCu6IMSObWQyTzk0G1VrVE14BT9oTV84VXwFsnvy+WAAlKXOA1S C4nWP503XLemSib0gRPsQgihBdZyn9/RZv5e6R3zQtYSeD9WIacfKRCjwApTuejO LJe94+/tRXNgBBgisQ== -----END CERTIFICATE-----Generated at Thu Jun 5 20:32:51 2025 by rpki-client