$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft File: ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft (raw, json) Hash identifier: jO72PvVRh5dPiujqIGmsNoM10hdYmabSK3eOCX6zTa8= Subject key identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B Certificate serial: 018E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft Manifest number: 0188 Signing time: Mon 02 Jun 2025 07:25:49 +0000 Manifest this update: Mon 02 Jun 2025 07:25:49 +0000 Manifest next update: Wed 04 Jun 2025 07:25:49 +0000 Files and hashes: 1: ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl (hash: ZMD7nABHatcZ7zbSbZdFRnV9lqG2w/uWMxWjxSRTQCw=) 2: nGGt_1FXjW212J1NlW4LWF04FtM.roa (hash: JU/uHW0qqtU6y2jTJrIN3YLok0mOFKez9GuKFHuWAL0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B Validity Not Before: Jun 2 07:25:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E47FBCD40D235E41A478A43BF6B373538DDCE923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:22:3e:e5:3f:8b:43:f4:34:70:bd:ba:23:7f: 64:b0:7f:cf:5a:be:ce:6f:d4:ca:b5:de:ca:a1:8e: 76:10:37:cd:f4:dc:0a:66:d0:c1:df:eb:31:a6:bd: 93:37:6f:4c:e7:99:ac:cb:4f:54:67:96:7e:f2:a0: 60:00:67:ee:22:ce:14:e7:5f:36:07:d2:51:30:0d: 14:3c:f4:aa:f9:31:2b:17:ab:a8:2d:63:97:ca:8a: 90:1b:81:3f:28:ea:03:bb:a0:00:66:f6:e3:de:02: a8:4d:60:95:8f:68:5c:42:4c:d5:32:79:66:94:d0: 0c:2c:8d:31:01:e6:b1:76:4e:08:cf:e3:42:36:eb: 07:bb:49:d5:80:b2:ac:0c:a0:ed:0d:09:dc:31:bf: b4:8f:7e:e5:6e:5b:b5:f1:f9:4c:44:0e:01:ed:05: bc:e6:de:de:d6:00:2d:09:8a:96:74:24:bf:5b:98: 38:6f:b2:8b:50:23:3f:7f:b0:02:7e:05:03:fe:e0: b0:8e:b9:90:98:d4:8a:9b:b0:05:6d:b6:22:86:66: 52:b8:73:5d:c6:a1:59:e0:e4:5a:1a:9c:83:0a:41: 05:e6:ee:f1:49:76:10:e0:a3:0d:69:88:7f:36:70: 83:d5:bc:b6:0f:94:92:34:58:ad:80:63:d0:ee:b3: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 X509v3 Authority Key Identifier: keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:66:59:27:40:74:e7:d9:34:33:0a:3f:9c:20:49:05:70:01: 5b:fa:0c:f3:75:dc:f4:1f:fb:a5:32:11:af:41:e8:00:05:65: f4:a0:bc:e5:4a:3d:ab:f1:10:ab:aa:52:dc:5a:86:ea:ad:4a: c3:a5:49:9b:95:54:17:c1:cb:68:27:fa:35:5a:c1:de:78:af: d6:2c:2d:3b:cc:a8:fa:b7:09:95:d6:ff:63:15:3a:14:55:f6: 5a:e2:0d:fe:2a:db:dc:06:7c:2c:30:e4:e9:33:e0:08:5d:a2: df:28:9b:d3:98:8b:79:6d:78:9e:71:e8:61:33:53:e9:87:c7: f2:29:0e:77:fc:aa:05:98:d3:a7:ae:b8:a1:ba:2f:c3:4e:de: 51:b6:6d:a5:e1:51:d3:ca:af:4f:07:96:27:66:4a:25:b7:ea: ff:08:cf:f4:98:c0:a8:3f:86:af:c4:c6:fa:38:76:cb:09:b0: 85:31:9e:99:fc:72:8b:db:c7:99:38:04:ea:9d:c8:b1:86:0a: 06:66:1b:49:88:91:05:bb:49:5d:f5:4c:fd:98:dc:12:a5:4a: c1:2a:d0:36:b9:d2:fe:9c:1d:e1:36:3f:3f:be:69:c7:31:26: 0f:7c:56:6c:37:ad:d4:ea:49:a7:59:06:1f:ee:be:60:af:d9: d7:07:28:d2 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEE1 N0Q2RjAzNTRFQTU4QTE0OTM1MkJGMjQzMzBENjYzMDcwMkY5QjAeFw0yNTA2MDIw NzI1NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0N0ZCQ0Q0MEQyMzVF NDFBNDc4QTQzQkY2QjM3MzUzOEREQ0U5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVIj7lP4tD9DRwvbojf2Swf89avs5v1Mq13sqhjnYQN8303Apm 0MHf6zGmvZM3b0znmazLT1Rnln7yoGAAZ+4izhTnXzYH0lEwDRQ89Kr5MSsXq6gt Y5fKipAbgT8o6gO7oABm9uPeAqhNYJWPaFxCTNUyeWaU0AwsjTEB5rF2TgjP40I2 6we7SdWAsqwMoO0NCdwxv7SPfuVuW7Xx+UxEDgHtBbzm3t7WAC0JipZ0JL9bmDhv sotQIz9/sAJ+BQP+4LCOuZCY1IqbsAVttiKGZlK4c13GoVng5FoanIMKQQXm7vFJ dhDgow1piH82cIPVvLYPlJI0WK2AY9Dus0WtAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU5H+81A0jXkGkeKQ79rNzU43c6SMwHwYDVR0jBBgwFoAUilfW8DVOpYoUk1K/ JDMNZjBwL5swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v aWxmVzhEVk9wWW9VazFLX0pETU5aakJ3TDVzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9pbGZXOERWT3BZb1VrMUtfSkRNTlpqQndMNXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi9pbGZXOERWT3BZb1VrMUtfSkRN TlpqQndMNXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAImZZ J0B059k0Mwo/nCBJBXABW/oM83Xc9B/7pTIRr0HoAAVl9KC85Uo9q/EQq6pS3FqG 6q1Kw6VJm5VUF8HLaCf6NVrB3niv1iwtO8yo+rcJldb/YxU6FFX2WuIN/irb3AZ8 LDDk6TPgCF2i3yib05iLeW14nnHoYTNT6YfH8ikOd/yqBZjTp664obovw07eUbZt peFR08qvTweWJ2ZKJbfq/wjP9JjAqD+Gr8TG+jh2ywmwhTGemfxyi9vHmTgE6p3I sYYKBmYbSYiRBbtJXfVM/ZjcEqVKwSrQNrnS/pwd4TY/P75pxzEmD3xWbDet1OpJ p1kGH+6+YK/Z1wco0g== -----END CERTIFICATE-----Generated at Tue Jun 3 08:16:34 2025 by rpki-client