$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft File: gFHy7O_CQumvnx5FSk-3llkbjas.mft (raw, json) Hash identifier: afuIAYgqxnkeG3xY6kQihEEXtJxdZxRwi1/OB/hNemg= Subject key identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Certificate serial: 1429 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft Manifest number: 1403 Signing time: Sat 07 Jun 2025 22:56:58 +0000 Manifest this update: Sat 07 Jun 2025 22:56:58 +0000 Manifest next update: Mon 09 Jun 2025 22:56:58 +0000 Files and hashes: 1: CMtNfEqoaxzZVXUoX0vFCzMDUQ8.roa (hash: KBIMFHXmtb2KTM9mOywLs3zir9rfuxD8zwmyjrw79WQ=) 2: GzUJ7BJRyddbvdZMQgmyOPmrPi8.roa (hash: y93nksV+cDrr98AW8ZxY2f1433nfld8K+X79w2SmzRA=) 3: Hp-d_Pj5QiY96JFEe9Z2yKltrzw.roa (hash: 5mIDZ8eZlRXbwmWvhSYQriF01/iZkRigu9IcQWN3K18=) 4: b611R99amO_DQEAss6-ZJZbbpaQ.roa (hash: pEH21bUs1vGrEYk7zpiTRwSPE6J3hvlWxzEjOOXm79I=) 5: gFHy7O_CQumvnx5FSk-3llkbjas.crl (hash: Iu4YBRFOnvhfn6KJEPobzq7NVZH1m7jtuxHw3OwoW/w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5161 (0x1429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Validity Not Before: Jun 7 22:56:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B3F41E4BD412F0371844B230AC07B4A4B34E4E0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:c8:a4:92:b6:18:8b:21:23:0d:eb:65:b6: c0:c0:b2:90:1b:32:af:50:df:84:ca:45:a1:f7:48: 3d:96:c1:e1:de:d5:74:1b:67:9b:23:75:d1:bc:f0: e2:bb:aa:14:7e:15:63:3c:af:29:d2:2b:76:82:cf: 8c:a5:56:b6:29:d1:b9:68:30:68:90:d6:d3:70:f1: c7:9c:48:b5:37:e0:e4:2a:97:63:be:22:97:d7:47: 19:69:af:ee:c0:8b:75:ad:c6:db:68:7d:5f:e2:7e: 25:c6:bc:81:a5:29:9b:09:f0:94:d5:64:a8:9d:a9: 82:68:20:84:69:5b:56:c2:9b:dc:92:4e:b6:6e:50: 06:be:7c:10:4b:a1:05:9e:34:f7:40:86:e6:5c:d9: 49:a8:df:d8:39:3d:92:2b:0b:75:3f:b6:9c:1e:8a: 96:79:24:3c:d5:3c:2f:1c:0c:2d:c3:9e:dd:fe:c6: 79:27:f0:5f:7d:19:39:26:90:63:67:6b:92:c7:a7: 2c:dd:0a:c6:8c:f4:4b:11:0c:43:28:f3:91:b7:e2: f5:7e:f6:35:20:01:8c:78:67:a5:f5:ee:56:af:63: 0c:9b:69:c1:b5:a9:a1:f3:10:5d:e1:ab:58:33:31: e4:55:38:bb:d5:cc:95:6f:ec:62:e2:ef:d5:15:07: 89:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F X509v3 Authority Key Identifier: keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:88:7c:85:90:fb:20:d0:6b:77:2c:07:65:e1:93:36:ce:f8: 82:d5:d7:10:cd:f4:cf:bf:99:48:02:4f:49:9a:31:67:60:b4: 98:00:fc:27:1d:a8:f6:99:be:79:a7:40:56:05:d3:37:82:58: 84:d0:0d:d6:4c:2f:12:12:37:eb:6e:fc:0c:58:1a:d2:d6:7e: 0d:0a:cc:a7:11:c0:ef:2d:8a:f3:88:7b:de:c5:2a:97:16:0a: 2d:c4:35:c6:8f:6f:7f:09:b1:84:5b:84:4a:28:20:50:39:a4: f7:90:3b:c8:16:69:a3:b5:2f:56:0b:a8:51:22:06:e4:ee:ed: 2f:b4:52:99:b1:fa:7f:e6:2f:85:08:89:2e:17:28:87:1b:ec: ad:28:29:09:32:62:b5:14:97:49:1a:af:5d:dc:e9:0a:8b:1a: 4d:3b:8c:d5:f0:cb:eb:a3:57:d5:36:ea:a5:6e:e6:50:41:bb: e2:78:20:31:fb:bf:d2:37:14:5a:bd:1e:f9:e0:30:45:fb:81: 4e:df:cd:13:70:b8:f3:d4:2e:34:1e:46:d9:61:a1:a0:f6:5a: d4:f4:11:f7:9d:55:a9:92:87:a1:37:04:8f:fa:f2:a4:aa:05: d0:f1:cf:dd:44:6c:98:1d:80:a5:71:0a:0e:63:88:30:bd:b9: 37:fa:a4:4f -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICFCkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODA1 MUYyRUNFRkMyNDJFOUFGOUYxRTQ1NEE0RkI3OTY1OTFCOERBQjAeFw0yNTA2MDcy MjU2NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzRjQxRTRCRDQxMkYw MzcxODQ0QjIzMEFDMDdCNEE0QjM0RTRFMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVu8ikkrYYiyEjDetltsDAspAbMq9Q34TKRaH3SD2WweHe1XQb Z5sjddG88OK7qhR+FWM8rynSK3aCz4ylVrYp0bloMGiQ1tNw8cecSLU34OQql2O+ IpfXRxlpr+7Ai3WtxttofV/ifiXGvIGlKZsJ8JTVZKidqYJoIIRpW1bCm9ySTrZu UAa+fBBLoQWeNPdAhuZc2Umo39g5PZIrC3U/tpweipZ5JDzVPC8cDC3Dnt3+xnkn 8F99GTkmkGNna5LHpyzdCsaM9EsRDEMo85G34vV+9jUgAYx4Z6X17lavYwybacG1 qaHzEF3hq1gzMeRVOLvVzJVv7GLi79UVB4k9AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUs/QeS9QS8DcYRLIwrAe0pLNOTg8wHwYDVR0jBBgwFoAUgFHy7O/CQumvnx5F Sk+3llkbjaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVU L2dGSHk3T19DUXVtdm54NUZTay0zbGxrYmphcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZ0ZIeTdPX0NRdW12bng1RlNrLTNsbGtiamFzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVUL2dGSHk3T19DUXVtdm54NUZT ay0zbGxrYmphcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCO iHyFkPsg0Gt3LAdl4ZM2zviC1dcQzfTPv5lIAk9JmjFnYLSYAPwnHaj2mb55p0BW BdM3gliE0A3WTC8SEjfrbvwMWBrS1n4NCsynEcDvLYrziHvexSqXFgotxDXGj29/ CbGEW4RKKCBQOaT3kDvIFmmjtS9WC6hRIgbk7u0vtFKZsfp/5i+FCIkuFyiHG+yt KCkJMmK1FJdJGq9d3OkKixpNO4zV8Mvro1fVNuqlbuZQQbvieCAx+7/SNxRavR75 4DBF+4FO380TcLjz1C40HkbZYaGg9lrU9BH3nVWpkoehNwSP+vKkqgXQ8c/dRGyY HYClcQoOY4gwvbk3+qRP -----END CERTIFICATE-----Generated at Mon Jun 9 03:18:48 2025 by rpki-client