$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft File: HU149WdQx1mJUzZtRZoStli3_zg.mft (raw, json) Hash identifier: t2FnmTV2zMqegMNSoBFQzgDoPTVzES7Nx/vagRwv6Mk= Subject key identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 0403 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft Manifest number: 03EB Signing time: Sun 01 Jun 2025 21:57:29 +0000 Manifest this update: Sun 01 Jun 2025 21:57:29 +0000 Manifest next update: Tue 03 Jun 2025 21:57:29 +0000 Files and hashes: 1: HU149WdQx1mJUzZtRZoStli3_zg.crl (hash: pik7mGoQtsAfGzcAzxn1A2pxUGwZLi2eW2H16Ead6iQ=) 2: Vp0tdbIyOL4-H32dFyUdVvYVjqk.roa (hash: fkJN8J2uUWuCxVuI2sxY9yfcddz/Lpxc56wJetA5EnA=) 3: pnl-9MozOtSusmGAz1OhVzorX0A.roa (hash: Gx06TmUncl+coumBNPPjHm0sEHr8P4Kyk+T6g5m0MGc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Jun 1 21:57:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B8DE83E99D5444D590FD0C6AE8B9FE4B64A2518F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:c9:c6:04:db:89:a0:26:63:3a:2b:b0:b1: cb:1c:eb:9b:97:90:d0:6f:7b:8b:5e:c6:e8:9f:1d: 53:45:b9:65:57:60:84:31:de:84:07:4e:2a:27:6e: ed:e8:85:8f:29:23:09:4d:4e:2f:f9:bf:6b:ca:a6: 6c:54:03:ef:ca:e0:fb:c1:88:46:3a:3b:ca:0b:95: 89:8b:eb:08:7d:03:06:00:c1:66:2b:c3:91:4f:d9: 73:a5:03:6f:89:30:84:d5:10:58:7f:0a:0a:2f:a8: c4:a3:61:21:5d:eb:05:3a:23:47:40:4a:1d:8b:6d: 11:c4:42:c2:94:81:ab:f2:d7:d1:a5:8e:e7:d2:4a: e4:d6:ea:7f:c4:dc:fe:9e:78:a1:36:8f:0c:a6:19: 32:29:89:fd:b6:5b:ea:64:cc:05:88:2f:4a:53:a5: cc:24:6c:f5:f0:64:f8:fb:f9:53:d1:b5:78:96:bb: 04:5e:b6:8b:ac:cf:5f:03:12:dd:08:dd:88:db:74: 1d:88:5f:36:32:e0:ae:f1:b4:fe:84:b3:f7:ae:d1: 7a:81:82:23:fa:09:4a:a7:c6:f4:d0:79:17:95:d1: 78:5b:43:c0:24:9c:6e:63:1b:1d:37:7b:8b:b6:42: 57:a4:e3:05:30:cd:d4:2b:27:62:38:52:42:a5:7d: 20:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:a5:ea:c6:28:40:c8:20:8c:fb:a0:77:15:b5:75:e1:32:ae: 7d:58:e4:28:e5:b2:e5:69:5b:7c:72:52:f6:2b:e9:14:bd:89: e9:46:6e:a1:55:9b:c9:68:57:fc:16:83:e0:dd:97:2c:84:dc: 48:e0:09:f8:02:2f:c3:e3:e0:63:05:ab:9b:e1:56:68:a3:05: 4c:84:c3:40:86:55:c8:33:2a:cf:5e:4a:b6:6a:b7:c9:73:3f: 86:38:b1:1b:11:3f:aa:c9:4a:11:46:a1:52:76:e4:11:9e:ac: 3c:44:ff:c5:85:5f:27:cb:e6:bf:d8:0c:2c:7e:6f:ee:a4:0e: 3e:02:b2:27:af:36:62:45:ee:a9:53:de:53:57:24:36:35:40: 90:72:4e:e3:99:2b:61:3e:39:6e:f4:20:88:46:75:05:45:45: 50:a0:f3:a9:7b:57:27:0e:8d:97:08:69:d5:06:b4:cd:fa:35: 61:0c:bf:76:d7:bc:1c:d3:d1:41:4d:43:c6:99:07:ff:ea:3e: e6:56:f1:a7:c7:50:c2:67:ba:cf:50:f1:ec:86:22:2d:1f:72: 97:5a:f7:99:18:5a:71:0d:bb:ed:5a:99:a3:3d:28:04:f8:1c: bc:1d:e9:6f:fc:91:3e:03:c3:e2:a0:25:44:2c:d6:a1:ea:b6: 87:49:4c:5a -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNTA2MDEy MTU3MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4REU4M0U5OUQ1NDQ0 RDU5MEZEMEM2QUU4QjlGRTRCNjRBMjUxOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBr8nGBNuJoCZjOiuwscsc65uXkNBve4texuifHVNFuWVXYIQx 3oQHTionbu3ohY8pIwlNTi/5v2vKpmxUA+/K4PvBiEY6O8oLlYmL6wh9AwYAwWYr w5FP2XOlA2+JMITVEFh/CgovqMSjYSFd6wU6I0dASh2LbRHEQsKUgavy19GljufS SuTW6n/E3P6eeKE2jwymGTIpif22W+pkzAWIL0pTpcwkbPXwZPj7+VPRtXiWuwRe tousz18DEt0I3YjbdB2IXzYy4K7xtP6Es/eu0XqBgiP6CUqnxvTQeReV0XhbQ8Ak nG5jGx03e4u2Qlek4wUwzdQrJ2I4UkKlfSBLAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUuN6D6Z1URNWQ/Qxq6Ln+S2SiUY8wHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvSFUxNDlXZFF4MW1KVXpa dFJab1N0bGkzX3pnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB ALCl6sYoQMggjPugdxW1deEyrn1Y5CjlsuVpW3xyUvYr6RS9ielGbqFVm8loV/wW g+DdlyyE3EjgCfgCL8Pj4GMFq5vhVmijBUyEw0CGVcgzKs9eSrZqt8lzP4Y4sRsR P6rJShFGoVJ25BGerDxE/8WFXyfL5r/YDCx+b+6kDj4CsievNmJF7qlT3lNXJDY1 QJByTuOZK2E+OW70IIhGdQVFRVCg86l7VycOjZcIadUGtM36NWEMv3bXvBzT0UFN Q8aZB//qPuZW8afHUMJnus9Q8eyGIi0fcpda95kYWnENu+1amaM9KAT4HLwd6W/8 kT4Dw+KgJUQs1qHqtodJTFo= -----END CERTIFICATE-----Generated at Tue Jun 3 08:16:38 2025 by rpki-client