$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft File: oY6zd90DGK5GXY8_fW4K0KTp7R4.mft (raw, json) Hash identifier: yceXBIXc4ZuiARoy2MmzWgKDoBzpeqmvnkCKb18ySF0= Subject key identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0F9F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft Manifest number: 0F77 Signing time: Tue 03 Jun 2025 03:26:25 +0000 Manifest this update: Tue 03 Jun 2025 03:26:25 +0000 Manifest next update: Thu 05 Jun 2025 03:26:25 +0000 Files and hashes: 1: 0okVPrOkkuuweg-e6Y2Kh1m0E18.roa (hash: GNsRmMf8iUU1M8HxNNICCNYnnzoSnmqHOHVidSyPktA=) 2: 7mxWTwv3IBLORp7spaMYKpea2GQ.roa (hash: w/kX82+UzH333Fewygx7lvK0a+QgJawb78CA7U14CW4=) 3: 8RuLXrhyjUmCBqEjo58C0xTMT7A.roa (hash: qcguX6NHOgZLhRsRUg1Sc13qEaVC9akNnwzad8XLi7I=) 4: Jm65ZX1THYNAUFvGYC9QknZvg0w.roa (hash: Gg9OLbjHZOg9LJuUO0nQzhrRZfDZ9xU/EGysNz91Ip0=) 5: T8Yo97UoE-uINqRpSeVu62JjspQ.roa (hash: iYY9WFXkRlxXzhZuD8oMrHY7OsRxa5Dh/mWXWXJf3No=) 6: a2tZ2h6DsgcHPuu3jQgg9RbZ5Xk.roa (hash: QI3VPerdJ0LTEhCIdEalfY2PE7ODbtni9sLreA5Jyxk=) 7: duqV8FxZ95KRYR751h5qzBS0aHg.roa (hash: j3REByZ4MCyzVRj7pQqHxOD8KIPya9+Kt2eOAtT6ntw=) 8: jnLQjztvxw9vQpc1H9FsDKf_E28.roa (hash: UNqaMyebJwnnkFcFbVd/JSZ1xnycNNp4ET9j/8dspfU=) 9: oY6zd90DGK5GXY8_fW4K0KTp7R4.crl (hash: zpx527ilY602pMP/wFjIgSocMVSECgvZm4i06uQC27Q=) 10: oZ0HOj-IIICDSmMM-bVg0uF-ExI.roa (hash: +olRDMCOl4Hqwh/5HCNbK0MSdexq5rC0Qa6SgeCyYsQ=) 11: rD5Vxk_ynOoj6-6JFCzfQBQldRM.roa (hash: 54MeS1mlwqytYpiLo8OUyb1hGtFaPS0BAz6Lrllk5Is=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3999 (0xf9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Jun 3 03:26:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B0FBBD3D590D48A1A30B70313F514E1E038590C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:27:d7:0b:a8:24:ea:9c:4f:c1:43:11:ca: b3:45:5d:08:03:35:03:49:a0:63:2f:7a:09:e3:80: 9c:4f:c5:61:3c:d1:62:1c:e0:93:96:bf:bb:7b:87: 5c:61:54:b9:2a:d1:73:a3:9d:2d:e9:81:14:76:05: d3:3d:00:3a:67:60:6d:b2:5a:13:2a:84:3f:cb:5e: 58:e4:7d:48:c2:d5:0f:ae:8d:99:de:65:4f:c5:6f: f7:37:21:8d:17:05:58:7a:17:eb:d9:c9:bd:d2:98: 1f:c6:60:6a:8a:e9:3c:fb:ba:0b:f2:99:2e:c5:2b: a0:5b:70:1b:de:cb:9c:39:af:ce:74:0c:93:94:e3: 31:a4:0c:77:48:7b:d9:cd:52:3f:89:88:f0:47:de: 82:9e:2e:9a:87:09:94:7f:47:62:ef:2b:f5:8d:38: 42:30:35:46:5b:62:b5:26:4e:f4:e3:d1:9d:05:e6: 81:31:69:38:05:6c:99:91:9d:2d:c4:ca:21:06:43: 14:10:1e:82:6d:0c:02:d1:1a:af:b3:92:46:31:5a: 5f:f7:5b:df:c4:a3:7a:15:11:2b:46:78:06:89:b1: b2:7a:07:d4:7b:e9:14:06:77:f6:f4:65:a1:d3:4e: 68:59:cc:85:a2:fa:f6:bd:e8:9c:3f:f0:3a:b5:8f: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:a1:0f:4d:e8:11:47:17:36:a2:a2:34:7f:e2:36:9b:4f:68: 1c:4d:1e:b1:53:a7:55:4d:6a:09:2e:c3:0d:7c:23:2d:80:f3: f9:a5:76:d9:c2:31:df:36:31:9f:39:73:8e:c3:a2:37:ef:99: 90:1f:1d:81:13:df:e1:db:ef:09:be:0f:cc:f8:0c:a6:8c:3a: 04:ef:d8:10:b5:64:78:3c:b2:22:98:ec:61:4b:db:b4:2d:88: 85:dc:b7:66:00:1a:76:7c:12:8f:c4:fe:c4:4d:af:ba:ce:7c: f3:14:7d:38:29:5d:08:63:55:cd:7a:42:74:ce:ea:3c:21:64: 95:04:cb:e5:08:dd:41:f7:7d:36:c9:a8:6e:74:6f:27:6b:27: e3:72:6a:28:5b:bb:9c:0e:66:91:ec:38:0e:d1:7c:ab:be:2c: 44:99:30:ae:a0:c3:5c:72:bf:bb:e4:36:db:46:e4:e7:bc:47: f1:93:10:7e:06:a6:d2:4b:ab:c1:b4:38:5f:d2:ef:74:0b:6b: f4:31:2b:6f:88:3b:21:06:83:30:6c:c8:61:a0:8a:3c:95:ae: 1c:6e:1a:a0:2d:54:bf:42:50:43:67:fc:e5:33:c6:ba:3b:fb: 27:03:0e:11:8b:e6:b3:81:02:ee:bf:45:5f:36:41:63:20:70: 9b:65:06:e8 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICD58wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA2MDMw MzI2MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwRkJCRDNENTkwRDQ4 QTFBMzBCNzAzMTNGNTE0RTFFMDM4NTkwQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYyfXC6gk6pxPwUMRyrNFXQgDNQNJoGMvegnjgJxPxWE80WIc 4JOWv7t7h1xhVLkq0XOjnS3pgRR2BdM9ADpnYG2yWhMqhD/LXljkfUjC1Q+ujZne ZU/Fb/c3IY0XBVh6F+vZyb3SmB/GYGqK6Tz7ugvymS7FK6BbcBvey5w5r850DJOU 4zGkDHdIe9nNUj+JiPBH3oKeLpqHCZR/R2LvK/WNOEIwNUZbYrUmTvTj0Z0F5oEx aTgFbJmRnS3EyiEGQxQQHoJtDALRGq+zkkYxWl/3W9/Eo3oVEStGeAaJsbJ6B9R7 6RQGd/b0ZaHTTmhZzIWi+va96Jw/8Dq1j0IxAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsPu9PVkNSKGjC3AxP1FOHgOFkMgwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vb1k2emQ5MERH SzVHWFk4X2ZXNEswS1RwN1I0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC6hD03oEUcXNqKiNH/iNptPaBxNHrFTp1VNagkuww18Iy2A8/mldtnC Md82MZ85c47DojfvmZAfHYET3+Hb7wm+D8z4DKaMOgTv2BC1ZHg8siKY7GFL27Qt iIXct2YAGnZ8Eo/E/sRNr7rOfPMUfTgpXQhjVc16QnTO6jwhZJUEy+UI3UH3fTbJ qG50bydrJ+Nyaihbu5wOZpHsOA7RfKu+LESZMK6gw1xyv7vkNttG5Oe8R/GTEH4G ptJLq8G0OF/S73QLa/QxK2+IOyEGgzBsyGGgijyVrhxuGqAtVL9CUENn/OUzxro7 +ycDDhGL5rOBAu6/RV82QWMgcJtlBug= -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:50 2025 by rpki-client