$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft File: YCy84y3XbQuzn1pwYyQkiGkRlDU.mft (raw, json) Hash identifier: /MvLSStq/3I4gTEHRAtZwDfjiUF0F57graU8wJHNCJA= Subject key identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0D72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft Manifest number: 0D5E Signing time: Wed 30 Jul 2025 11:37:21 +0000 Manifest this update: Wed 30 Jul 2025 11:37:21 +0000 Manifest next update: Fri 01 Aug 2025 11:37:21 +0000 Files and hashes: 1: YCy84y3XbQuzn1pwYyQkiGkRlDU.crl (hash: S+x0tmnply1w3RMNbjtdCnN/1sjMMz0eeoBOnWSdHeQ=) 2: cPXxuhOdvwQPXXbR1Wv8iPc55Kg.roa (hash: 4AHCu1yQuQh+Dm5YkasjNoRstu+XKu7pAnxZv4dfcwU=) 3: flzLDX0XTBwV1EDDQlivvODYLW0.roa (hash: qMYYCb6jkjkxcl1R+jxMJAExVzMCCf0ZX65wsYAxMB0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: Jul 30 11:37:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E2B4BA29E533234E960934A1548A8BA60A2BC2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ea:e8:4b:58:f6:93:80:b3:4d:d0:4f:69:02: 6c:fa:fe:5f:d2:1f:20:a8:9f:9c:82:39:94:72:9e: 26:47:d2:77:6a:16:b1:df:f5:45:72:03:50:2d:1e: e7:23:0e:08:3f:b2:f1:2d:c6:05:5c:82:5f:35:5e: 67:bc:c9:47:16:37:1a:77:d4:50:89:64:70:fd:17: 68:27:25:a2:a3:f7:2b:79:60:9a:b5:f6:e6:5d:a7: 83:17:52:b5:7e:fb:23:95:9e:10:fc:80:91:47:f1: ab:2c:e4:27:9a:0a:1e:e1:67:58:cb:ac:1c:60:b3: 2a:f5:ed:9a:e6:0f:14:c7:94:81:cd:82:20:48:0f: 0c:b3:0b:45:d3:18:12:2e:26:11:e1:61:f4:2e:92: c5:4d:fa:6f:8e:9a:0f:10:c0:3b:99:db:59:03:5b: b2:a5:47:71:78:1f:e3:75:23:0e:35:f1:87:f5:06: f7:98:fa:35:c1:5b:67:30:8f:1b:89:75:75:a3:85: bc:f1:9c:1b:ac:e1:3f:a7:1f:1a:9a:ec:f6:e7:87: fe:0e:e2:68:a4:ab:e1:ac:97:69:f1:36:0d:7c:ca: df:c5:67:ac:90:81:78:7c:a6:56:c9:f0:ad:0d:8d: af:61:4a:cf:08:79:aa:62:cd:d0:06:8b:f6:c3:a0: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:23:e9:3c:d9:1a:0f:3e:f0:65:45:a6:1e:42:e3:f3:ba:27: 96:63:18:18:3a:bf:5d:f3:85:7b:76:b3:96:72:a2:ad:8a:79: 1b:17:0d:b1:3e:e0:d5:4b:e6:ec:3a:9a:2c:4d:91:9a:b0:69: 3d:82:d3:df:eb:64:fd:75:fb:20:bd:d9:84:a8:a3:13:98:8b: eb:74:9e:b0:3a:e7:41:a3:d4:76:02:ef:c5:96:dc:0c:8a:0f: bd:e0:f3:dd:25:9b:5c:b6:39:1d:45:93:1e:84:77:d3:ff:02: 90:79:c7:e4:22:45:c9:b6:ec:3e:e1:ee:d2:94:28:0d:22:78: d5:ff:eb:55:3a:05:17:18:94:eb:77:74:4a:b9:89:24:6b:39: 9e:9d:e8:16:a6:9b:c2:10:06:53:19:8a:49:f8:81:1e:b6:f7: 19:29:69:7c:5d:de:43:65:2a:91:82:40:55:48:fc:48:ba:d2: ed:e8:74:2f:96:a5:5f:04:81:bc:54:88:81:1b:c5:84:70:e9: e9:af:6e:e1:fa:85:ca:62:fd:1d:55:15:5d:21:1e:1b:8a:a4: 40:de:25:83:42:94:45:07:06:b0:90:b4:5b:ba:a0:6f:69:d6: 4f:4f:82:17:75:53:35:7f:c2:1d:18:43:4e:e4:12:04:bc:00: 9f:f0:91:45 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNTA3MzAx MTM3MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFMkI0QkEyOUU1MzMy MzRFOTYwOTM0QTE1NDhBOEJBNjBBMkJDMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh6uhLWPaTgLNN0E9pAmz6/l/SHyCon5yCOZRyniZH0ndqFrHf 9UVyA1AtHucjDgg/svEtxgVcgl81Xme8yUcWNxp31FCJZHD9F2gnJaKj9yt5YJq1 9uZdp4MXUrV++yOVnhD8gJFH8ass5CeaCh7hZ1jLrBxgsyr17ZrmDxTHlIHNgiBI DwyzC0XTGBIuJhHhYfQuksVN+m+Omg8QwDuZ21kDW7KlR3F4H+N1Iw418Yf1BveY +jXBW2cwjxuJdXWjhbzxnBus4T+nHxqa7Pbnh/4O4mikq+Gsl2nxNg18yt/FZ6yQ gXh8plbJ8K0Nja9hSs8IeapizdAGi/bDoMnlAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUHitLop5TMjTpYJNKFUioumCivC8wHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy9ZQ3k4NHkzWGJRdXpu MXB3WXlRa2lHa1JsRFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKyPpPNkaDz7wZUWmHkLj87onlmMYGDq/XfOFe3azlnKirYp5GxcNsT7g1Uvm 7DqaLE2RmrBpPYLT3+tk/XX7IL3ZhKijE5iL63SesDrnQaPUdgLvxZbcDIoPveDz 3SWbXLY5HUWTHoR30/8CkHnH5CJFybbsPuHu0pQoDSJ41f/rVToFFxiU63d0SrmJ JGs5np3oFqabwhAGUxmKSfiBHrb3GSlpfF3eQ2UqkYJAVUj8SLrS7eh0L5alXwSB vFSIgRvFhHDp6a9u4fqFymL9HVUVXSEeG4qkQN4lg0KURQcGsJC0W7qgb2nWT0+C F3VTNX/CHRhDTuQSBLwAn/CRRQ== -----END CERTIFICATE-----Generated at Thu Jul 31 18:19:35 2025 by rpki-client