$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft File: oY6zd90DGK5GXY8_fW4K0KTp7R4.mft (raw, json) Hash identifier: M2/Z/c6A5UxaqemXk9sUL2A9IK3IeROJHl+XG4E1x4Q= Subject key identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0F6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft Manifest number: 0F48 Signing time: Sat 05 Apr 2025 21:07:01 +0000 Manifest this update: Sat 05 Apr 2025 21:07:01 +0000 Manifest next update: Mon 07 Apr 2025 21:07:01 +0000 Files and hashes: 1: -LaNSd5bcyNwfvJQEnWW0Y-UPTw.roa (hash: iRDk2Oqad20hAKeEZC3fxkepM/Lnpw5Rxv0JCz7TknQ=) 2: 0okVPrOkkuuweg-e6Y2Kh1m0E18.roa (hash: GNsRmMf8iUU1M8HxNNICCNYnnzoSnmqHOHVidSyPktA=) 3: Jm65ZX1THYNAUFvGYC9QknZvg0w.roa (hash: Gg9OLbjHZOg9LJuUO0nQzhrRZfDZ9xU/EGysNz91Ip0=) 4: JoilanPNZ7ze1kQIzyzQ7f8gCcc.roa (hash: lyUhuhjf6N7llhh7q2fQe+3hElLJrYXakcNED2X9nVU=) 5: MRuwKjQLae9spwTrqAwDrjR-GcM.roa (hash: d75MJ8QckEB8Sjzd2r0qlwQaB5QoMIhdTDAUXRNzLoI=) 6: Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa (hash: wzfLkb60K9w0a/3+U7yA+C8gD/bHhi3UsnjKh4eQrn4=) 7: T8Yo97UoE-uINqRpSeVu62JjspQ.roa (hash: iYY9WFXkRlxXzhZuD8oMrHY7OsRxa5Dh/mWXWXJf3No=) 8: jZu2gflVQ4tZZ4jCh2aQJBd_s0s.roa (hash: MfPsRo7ydVEan98Z5lQBzXdpUZ92vhShvnvD2RFyUFU=) 9: jnLQjztvxw9vQpc1H9FsDKf_E28.roa (hash: UNqaMyebJwnnkFcFbVd/JSZ1xnycNNp4ET9j/8dspfU=) 10: oY6zd90DGK5GXY8_fW4K0KTp7R4.crl (hash: aKuUYd6RPe+4nI2N7fU8erKONuO8stzfftopt/+6nms=) 11: oZ0HOj-IIICDSmMM-bVg0uF-ExI.roa (hash: +olRDMCOl4Hqwh/5HCNbK0MSdexq5rC0Qa6SgeCyYsQ=) 12: rD5Vxk_ynOoj6-6JFCzfQBQldRM.roa (hash: 54MeS1mlwqytYpiLo8OUyb1hGtFaPS0BAz6Lrllk5Is=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 07:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3948 (0xf6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Apr 5 21:07:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B0FBBD3D590D48A1A30B70313F514E1E038590C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:27:d7:0b:a8:24:ea:9c:4f:c1:43:11:ca: b3:45:5d:08:03:35:03:49:a0:63:2f:7a:09:e3:80: 9c:4f:c5:61:3c:d1:62:1c:e0:93:96:bf:bb:7b:87: 5c:61:54:b9:2a:d1:73:a3:9d:2d:e9:81:14:76:05: d3:3d:00:3a:67:60:6d:b2:5a:13:2a:84:3f:cb:5e: 58:e4:7d:48:c2:d5:0f:ae:8d:99:de:65:4f:c5:6f: f7:37:21:8d:17:05:58:7a:17:eb:d9:c9:bd:d2:98: 1f:c6:60:6a:8a:e9:3c:fb:ba:0b:f2:99:2e:c5:2b: a0:5b:70:1b:de:cb:9c:39:af:ce:74:0c:93:94:e3: 31:a4:0c:77:48:7b:d9:cd:52:3f:89:88:f0:47:de: 82:9e:2e:9a:87:09:94:7f:47:62:ef:2b:f5:8d:38: 42:30:35:46:5b:62:b5:26:4e:f4:e3:d1:9d:05:e6: 81:31:69:38:05:6c:99:91:9d:2d:c4:ca:21:06:43: 14:10:1e:82:6d:0c:02:d1:1a:af:b3:92:46:31:5a: 5f:f7:5b:df:c4:a3:7a:15:11:2b:46:78:06:89:b1: b2:7a:07:d4:7b:e9:14:06:77:f6:f4:65:a1:d3:4e: 68:59:cc:85:a2:fa:f6:bd:e8:9c:3f:f0:3a:b5:8f: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:3c:bb:73:08:4f:6a:33:95:e9:9c:32:5c:26:7d:c7:ea:b3: b9:f4:b5:97:8d:54:f8:b2:5a:ce:84:e8:54:4a:5e:ae:d0:3b: 93:9c:38:20:bd:c9:f3:d9:4b:9b:66:c5:9d:7e:93:5d:e6:be: fb:69:fa:cd:c9:ee:7f:60:dd:40:9f:1f:f3:3b:0e:21:c6:b9: ee:d8:c5:9f:22:45:25:c2:a8:36:11:11:b9:00:79:9b:02:e9: f1:40:ab:71:3c:d5:7e:63:65:8b:74:83:86:ed:d0:da:13:95: e3:5f:6d:5b:b2:16:75:72:b4:12:b1:6c:35:00:7a:a1:22:79: 20:7c:a6:70:b9:c7:fb:cb:c0:98:ca:b5:ac:85:a3:b8:40:63: 9b:aa:66:8f:ee:7c:f1:f4:eb:71:6b:32:20:de:dc:6a:13:64: d2:94:73:e7:de:ee:ed:f2:62:2c:1c:00:95:db:52:77:18:0c: 34:8b:f7:a4:33:94:10:11:ae:97:a0:1d:69:f5:48:a9:d2:89: 26:27:eb:3c:77:aa:0c:8a:97:72:27:e0:a1:99:1a:32:59:41: d5:f7:63:92:54:38:7c:50:b1:13:eb:2a:fc:36:31:26:a9:f4: 30:f2:79:00:2b:00:f7:c3:10:f3:8d:4e:bf:4b:d8:77:5a:19: fc:db:50:45 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICD2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA0MDUy MTA3MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwRkJCRDNENTkwRDQ4 QTFBMzBCNzAzMTNGNTE0RTFFMDM4NTkwQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYyfXC6gk6pxPwUMRyrNFXQgDNQNJoGMvegnjgJxPxWE80WIc 4JOWv7t7h1xhVLkq0XOjnS3pgRR2BdM9ADpnYG2yWhMqhD/LXljkfUjC1Q+ujZne ZU/Fb/c3IY0XBVh6F+vZyb3SmB/GYGqK6Tz7ugvymS7FK6BbcBvey5w5r850DJOU 4zGkDHdIe9nNUj+JiPBH3oKeLpqHCZR/R2LvK/WNOEIwNUZbYrUmTvTj0Z0F5oEx aTgFbJmRnS3EyiEGQxQQHoJtDALRGq+zkkYxWl/3W9/Eo3oVEStGeAaJsbJ6B9R7 6RQGd/b0ZaHTTmhZzIWi+va96Jw/8Dq1j0IxAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsPu9PVkNSKGjC3AxP1FOHgOFkMgwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vb1k2emQ5MERH SzVHWFk4X2ZXNEswS1RwN1I0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAY8u3MIT2ozlemcMlwmfcfqs7n0tZeNVPiyWs6E6FRKXq7QO5OcOCC9 yfPZS5tmxZ1+k13mvvtp+s3J7n9g3UCfH/M7DiHGue7YxZ8iRSXCqDYREbkAeZsC 6fFAq3E81X5jZYt0g4bt0NoTleNfbVuyFnVytBKxbDUAeqEieSB8pnC5x/vLwJjK tayFo7hAY5uqZo/ufPH063FrMiDe3GoTZNKUc+fe7u3yYiwcAJXbUncYDDSL96Qz lBARrpegHWn1SKnSiSYn6zx3qgyKl3In4KGZGjJZQdX3Y5JUOHxQsRPrKvw2MSap 9DDyeQArAPfDEPONTr9L2HdaGfzbUEU= -----END CERTIFICATE-----Generated at Sun Apr 6 04:00:16 2025 by rpki-client