$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft File: HU149WdQx1mJUzZtRZoStli3_zg.mft (raw, json) Hash identifier: xbUgvX8D72BQHgF2LRzlIV5IJ/7h9ObL8euIgiRAcRw= Subject key identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 042A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft Manifest number: 0412 Signing time: Wed 30 Jul 2025 10:09:17 +0000 Manifest this update: Wed 30 Jul 2025 10:09:17 +0000 Manifest next update: Fri 01 Aug 2025 10:09:17 +0000 Files and hashes: 1: HU149WdQx1mJUzZtRZoStli3_zg.crl (hash: ky6fzOROd6q/7YjFAhT1GhcVbWt125EvfEz0xApZh+o=) 2: Vp0tdbIyOL4-H32dFyUdVvYVjqk.roa (hash: fkJN8J2uUWuCxVuI2sxY9yfcddz/Lpxc56wJetA5EnA=) 3: pnl-9MozOtSusmGAz1OhVzorX0A.roa (hash: Gx06TmUncl+coumBNPPjHm0sEHr8P4Kyk+T6g5m0MGc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Jul 30 10:09:17 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B8DE83E99D5444D590FD0C6AE8B9FE4B64A2518F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:c9:c6:04:db:89:a0:26:63:3a:2b:b0:b1: cb:1c:eb:9b:97:90:d0:6f:7b:8b:5e:c6:e8:9f:1d: 53:45:b9:65:57:60:84:31:de:84:07:4e:2a:27:6e: ed:e8:85:8f:29:23:09:4d:4e:2f:f9:bf:6b:ca:a6: 6c:54:03:ef:ca:e0:fb:c1:88:46:3a:3b:ca:0b:95: 89:8b:eb:08:7d:03:06:00:c1:66:2b:c3:91:4f:d9: 73:a5:03:6f:89:30:84:d5:10:58:7f:0a:0a:2f:a8: c4:a3:61:21:5d:eb:05:3a:23:47:40:4a:1d:8b:6d: 11:c4:42:c2:94:81:ab:f2:d7:d1:a5:8e:e7:d2:4a: e4:d6:ea:7f:c4:dc:fe:9e:78:a1:36:8f:0c:a6:19: 32:29:89:fd:b6:5b:ea:64:cc:05:88:2f:4a:53:a5: cc:24:6c:f5:f0:64:f8:fb:f9:53:d1:b5:78:96:bb: 04:5e:b6:8b:ac:cf:5f:03:12:dd:08:dd:88:db:74: 1d:88:5f:36:32:e0:ae:f1:b4:fe:84:b3:f7:ae:d1: 7a:81:82:23:fa:09:4a:a7:c6:f4:d0:79:17:95:d1: 78:5b:43:c0:24:9c:6e:63:1b:1d:37:7b:8b:b6:42: 57:a4:e3:05:30:cd:d4:2b:27:62:38:52:42:a5:7d: 20:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:5e:b5:b7:3b:98:8d:37:80:fa:6f:d9:cc:48:ed:9c:9f:78: 9c:a5:43:fa:61:11:55:2c:02:78:8c:1c:3e:8f:ee:08:f3:1b: 79:70:24:e6:55:9d:4b:6f:8c:0b:4f:a7:8a:04:62:52:8c:ab: ff:01:9f:37:aa:34:48:44:42:12:8f:43:2d:43:12:30:8a:02: 5c:d1:13:91:ef:93:0b:78:e5:26:30:1c:16:30:86:f1:a2:9e: 33:73:18:27:97:fd:ed:aa:d0:6e:49:c1:a7:e0:58:82:1b:f9: f9:4b:af:b5:a1:30:10:48:51:0f:cc:5e:7e:ef:1a:c6:80:97: 90:5d:2e:db:1e:64:dd:e3:eb:3b:0b:b9:79:9f:df:ba:a0:b5: eb:ed:75:f5:53:c6:32:07:6d:83:7c:d6:07:1d:3d:81:71:ad: cf:d5:b2:95:a6:a0:93:11:bb:86:b4:d8:fa:50:18:83:3e:50: 12:2a:80:0f:32:22:b9:c9:a3:88:77:98:c9:e9:25:04:3a:38: 93:60:88:cd:7f:7b:05:9c:2f:9c:97:12:39:e1:0f:73:e0:a9: d3:9f:f1:f1:f8:90:77:65:89:c9:60:a0:3a:fd:72:91:67:70: 33:55:8b:e0:16:20:99:b9:71:82:0e:86:06:e2:8b:78:19:96: e9:36:3e:6d -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICBCowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNTA3MzAx MDA5MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4REU4M0U5OUQ1NDQ0 RDU5MEZEMEM2QUU4QjlGRTRCNjRBMjUxOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBr8nGBNuJoCZjOiuwscsc65uXkNBve4texuifHVNFuWVXYIQx 3oQHTionbu3ohY8pIwlNTi/5v2vKpmxUA+/K4PvBiEY6O8oLlYmL6wh9AwYAwWYr w5FP2XOlA2+JMITVEFh/CgovqMSjYSFd6wU6I0dASh2LbRHEQsKUgavy19GljufS SuTW6n/E3P6eeKE2jwymGTIpif22W+pkzAWIL0pTpcwkbPXwZPj7+VPRtXiWuwRe tousz18DEt0I3YjbdB2IXzYy4K7xtP6Es/eu0XqBgiP6CUqnxvTQeReV0XhbQ8Ak nG5jGx03e4u2Qlek4wUwzdQrJ2I4UkKlfSBLAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUuN6D6Z1URNWQ/Qxq6Ln+S2SiUY8wHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvSFUxNDlXZFF4MW1KVXpa dFJab1N0bGkzX3pnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AKJetbc7mI03gPpv2cxI7ZyfeJylQ/phEVUsAniMHD6P7gjzG3lwJOZVnUtvjAtP p4oEYlKMq/8BnzeqNEhEQhKPQy1DEjCKAlzRE5Hvkwt45SYwHBYwhvGinjNzGCeX /e2q0G5JwafgWIIb+flLr7WhMBBIUQ/MXn7vGsaAl5BdLtseZN3j6zsLuXmf37qg tevtdfVTxjIHbYN81gcdPYFxrc/VspWmoJMRu4a02PpQGIM+UBIqgA8yIrnJo4h3 mMnpJQQ6OJNgiM1/ewWcL5yXEjnhD3PgqdOf8fH4kHdliclgoDr9cpFncDNVi+AW IJm5cYIOhgbii3gZluk2Pm0= -----END CERTIFICATE-----Generated at Thu Jul 31 18:16:35 2025 by rpki-client