$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft File: ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft (raw, json) Hash identifier: F9xGlMP0vETsvRJkJmei7F7DxlZ1XHTjH3smzen0pqk= Subject key identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B Certificate serial: 01D7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft Manifest number: 01D0 Signing time: Tue 16 Sep 2025 21:18:26 +0000 Manifest this update: Tue 16 Sep 2025 21:18:26 +0000 Manifest next update: Thu 18 Sep 2025 21:18:26 +0000 Files and hashes: 1: ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl (hash: Wc1BGYEapcDsHnsSbzUGHQD9aPVq/3BabEL0WM3k7IU=) 2: uDxhDjnL-pmbSYYVgxv5lq2NY-U.roa (hash: WVgRb9G4nEZf0kGTnargnDA8wcCQCqCfs+MlmbKZa7o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B Validity Not Before: Sep 16 21:18:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E47FBCD40D235E41A478A43BF6B373538DDCE923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:22:3e:e5:3f:8b:43:f4:34:70:bd:ba:23:7f: 64:b0:7f:cf:5a:be:ce:6f:d4:ca:b5:de:ca:a1:8e: 76:10:37:cd:f4:dc:0a:66:d0:c1:df:eb:31:a6:bd: 93:37:6f:4c:e7:99:ac:cb:4f:54:67:96:7e:f2:a0: 60:00:67:ee:22:ce:14:e7:5f:36:07:d2:51:30:0d: 14:3c:f4:aa:f9:31:2b:17:ab:a8:2d:63:97:ca:8a: 90:1b:81:3f:28:ea:03:bb:a0:00:66:f6:e3:de:02: a8:4d:60:95:8f:68:5c:42:4c:d5:32:79:66:94:d0: 0c:2c:8d:31:01:e6:b1:76:4e:08:cf:e3:42:36:eb: 07:bb:49:d5:80:b2:ac:0c:a0:ed:0d:09:dc:31:bf: b4:8f:7e:e5:6e:5b:b5:f1:f9:4c:44:0e:01:ed:05: bc:e6:de:de:d6:00:2d:09:8a:96:74:24:bf:5b:98: 38:6f:b2:8b:50:23:3f:7f:b0:02:7e:05:03:fe:e0: b0:8e:b9:90:98:d4:8a:9b:b0:05:6d:b6:22:86:66: 52:b8:73:5d:c6:a1:59:e0:e4:5a:1a:9c:83:0a:41: 05:e6:ee:f1:49:76:10:e0:a3:0d:69:88:7f:36:70: 83:d5:bc:b6:0f:94:92:34:58:ad:80:63:d0:ee:b3: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 X509v3 Authority Key Identifier: keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:d6:a1:85:ba:dd:36:4e:59:5b:84:75:87:84:3e:60:3e:79: 97:8e:17:fc:eb:af:3f:ce:52:5a:f7:d3:eb:89:7e:de:fa:de: 1d:74:d3:47:d3:2b:58:8e:1b:d2:27:6a:33:15:84:eb:d4:4e: 06:8b:f9:b6:e6:1a:88:d4:50:ec:4d:f9:7d:ee:f0:34:d2:fc: 67:9a:c3:30:2d:45:d8:fa:fe:23:b1:71:53:00:63:47:ef:09: c5:1a:97:06:4b:4d:06:8e:5c:bf:2f:96:81:21:55:f1:07:b5: 78:92:0c:a3:c8:dd:1c:d2:a7:af:b0:6f:62:2a:1e:88:89:6b: 0a:73:f7:07:56:90:e5:ba:af:fe:3e:9f:f8:0e:10:11:9e:25: ed:15:29:1e:a6:03:2c:9f:55:1e:55:ef:e9:0f:16:02:82:74: 79:12:9a:a2:7c:05:d6:bf:aa:86:53:5c:b1:5e:80:a3:5e:d0: ab:83:a7:7e:be:98:c4:13:d5:33:b9:78:d8:9c:8f:e7:02:cf: 1b:88:7b:89:56:26:a3:58:45:6d:3e:38:ee:93:e7:ff:32:90: 78:90:2e:26:1f:c2:1d:c2:36:0e:1e:70:8d:41:30:28:cf:47: 3f:1b:a0:cd:7b:03:69:5e:43:1b:1d:a6:c2:d5:fe:d4:14:8a: ae:61:72:e2 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEE1 N0Q2RjAzNTRFQTU4QTE0OTM1MkJGMjQzMzBENjYzMDcwMkY5QjAeFw0yNTA5MTYy MTE4MjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU0N0ZCQ0Q0MEQyMzVF NDFBNDc4QTQzQkY2QjM3MzUzOEREQ0U5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVIj7lP4tD9DRwvbojf2Swf89avs5v1Mq13sqhjnYQN8303Apm 0MHf6zGmvZM3b0znmazLT1Rnln7yoGAAZ+4izhTnXzYH0lEwDRQ89Kr5MSsXq6gt Y5fKipAbgT8o6gO7oABm9uPeAqhNYJWPaFxCTNUyeWaU0AwsjTEB5rF2TgjP40I2 6we7SdWAsqwMoO0NCdwxv7SPfuVuW7Xx+UxEDgHtBbzm3t7WAC0JipZ0JL9bmDhv sotQIz9/sAJ+BQP+4LCOuZCY1IqbsAVttiKGZlK4c13GoVng5FoanIMKQQXm7vFJ dhDgow1piH82cIPVvLYPlJI0WK2AY9Dus0WtAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU5H+81A0jXkGkeKQ79rNzU43c6SMwHwYDVR0jBBgwFoAUilfW8DVOpYoUk1K/ JDMNZjBwL5swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v aWxmVzhEVk9wWW9VazFLX0pETU5aakJ3TDVzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9pbGZXOERWT3BZb1VrMUtfSkRNTlpqQndMNXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi9pbGZXOERWT3BZb1VrMUtfSkRN TlpqQndMNXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFdah hbrdNk5ZW4R1h4Q+YD55l44X/OuvP85SWvfT64l+3vreHXTTR9MrWI4b0idqMxWE 69ROBov5tuYaiNRQ7E35fe7wNNL8Z5rDMC1F2Pr+I7FxUwBjR+8JxRqXBktNBo5c vy+WgSFV8Qe1eJIMo8jdHNKnr7BvYioeiIlrCnP3B1aQ5bqv/j6f+A4QEZ4l7RUp HqYDLJ9VHlXv6Q8WAoJ0eRKaonwF1r+qhlNcsV6Ao17Qq4Onfr6YxBPVM7l42JyP 5wLPG4h7iVYmo1hFbT447pPn/zKQeJAuJh/CHcI2Dh5wjUEwKM9HPxugzXsDaV5D Gx2mwtX+1BSKrmFy4g== -----END CERTIFICATE-----Generated at Thu Sep 18 02:08:31 2025 by rpki-client