$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft File: phUjeyjUzviv-UIYFwShhwsPP3A.mft (raw, json) Hash identifier: OFvmGZabYSpm+PbWI/Iotta7tb8V0w6vylt9wNl6Ptg= Subject key identifier: 46:08:62:5F:4E:05:32:43:3F:66:B0:1A:DC:F4:A5:CF:9A:A9:AA:85 Authority key identifier: A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 Certificate issuer: /CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Certificate serial: 1299 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft Manifest number: 1290 Signing time: Wed 30 Jul 2025 10:08:37 +0000 Manifest this update: Wed 30 Jul 2025 10:08:37 +0000 Manifest next update: Fri 01 Aug 2025 10:08:37 +0000 Files and hashes: 1: KTOs5fi2mqhakEXRSNwYUVVNPB4.roa (hash: wBcb0hHm+8Q8plJeTQVmMcfKIbQf6dY2SkfCZUJ44vU=) 2: phUjeyjUzviv-UIYFwShhwsPP3A.crl (hash: GftQFk8Lc3ResYgf/he6MxpemlKMa8N/LZqIBJzSAm8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4761 (0x1299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Validity Not Before: Jul 30 10:08:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4608625F4E0532433F66B01ADCF4A5CF9AA9AA85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:eb:c1:75:36:53:1b:2b:e4:c7:b8:62:b1:5b: 19:cf:02:5a:f0:47:58:58:56:9b:4b:55:b6:64:8f: ca:13:3d:3f:d7:d0:4b:93:2a:a5:6d:02:cc:8a:80: 43:04:e4:ef:15:d2:51:60:60:f3:af:da:4e:ec:ad: 83:e1:de:61:bc:28:dd:c9:30:bc:7e:84:19:5c:94: 02:9e:cf:05:2b:be:ab:62:69:d0:7c:e8:72:7c:87: 7b:03:a3:47:9a:9a:41:b9:5b:0f:aa:8e:4c:8c:c8: b8:44:45:64:39:af:ce:6c:53:c0:fc:40:3a:9e:d6: 41:2a:e6:7e:db:bc:97:44:d8:06:3b:ca:4a:55:86: 39:7c:3f:ff:da:5e:50:0f:7b:63:2b:a5:f7:3d:dc: 47:7b:20:d9:dc:6b:3b:93:f4:c6:7c:7a:50:7c:7c: 93:73:8d:09:b6:08:e4:5a:b8:d0:e7:5f:cf:13:c4: 99:ac:c9:86:a9:01:7f:6d:96:85:4f:c0:9e:ac:5f: 8a:0d:29:2d:0e:10:ba:ef:8b:00:dd:77:99:3a:aa: 2c:31:69:6b:11:13:04:8e:88:ea:b3:08:11:98:ec: 7d:3f:ac:a1:51:9b:cf:fe:a8:2e:a9:fb:52:7c:98: a8:0c:9e:c5:65:aa:28:64:49:fc:30:6b:a2:6e:ef: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:08:62:5F:4E:05:32:43:3F:66:B0:1A:DC:F4:A5:CF:9A:A9:AA:85 X509v3 Authority Key Identifier: keyid:A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:23:dd:ca:06:8c:d5:1d:d9:a0:ea:76:85:9b:fc:31:5b:49: c0:15:fc:1f:ee:28:f5:5f:a2:99:68:8a:e6:3b:17:59:aa:a2: 64:84:7e:c9:8e:d4:14:c0:96:73:db:c1:bb:26:ec:e1:1c:db: 09:c4:c6:47:e0:b4:29:37:63:4e:d9:cc:b1:c9:75:3f:3b:e8: a1:8d:95:d8:ff:78:99:a6:69:06:ed:bb:34:c9:f4:46:74:26: 96:99:8c:41:80:e0:53:34:3c:51:0d:01:07:f9:2f:33:5b:ce: b5:48:25:cd:02:59:61:e3:fe:24:50:f2:b2:19:3b:72:bb:11: 80:de:4a:ad:68:50:97:ca:8e:7a:00:92:51:06:d1:02:d9:a2: 47:58:80:3d:aa:86:f9:31:87:26:c0:e7:35:c8:9c:4f:2f:9b: fb:33:25:15:d9:30:9c:8e:96:65:ea:37:64:e4:ad:16:c9:f2: 96:dd:54:3c:42:6c:6b:c2:30:c9:32:b0:92:92:49:4d:fb:6c: e1:f6:7d:54:7f:3b:1b:bd:07:07:11:cc:4c:b0:a4:b2:3b:94: 5f:3e:5d:df:79:be:71:32:e1:23:cb:29:df:72:aa:05:66:7b: 06:55:23:4d:92:1c:b3:22:85:7a:c8:64:dd:67:25:cd:47:73: dd:7a:51:da -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICEpkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTYx NTIzN0IyOEQ0Q0VGOEFGRjk0MjE4MTcwNEExODcwQjBGM0Y3MDAeFw0yNTA3MzAx MDA4MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2MDg2MjVGNEUwNTMy NDMzRjY2QjAxQURDRjRBNUNGOUFBOUFBODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy68F1NlMbK+THuGKxWxnPAlrwR1hYVptLVbZkj8oTPT/X0EuT KqVtAsyKgEME5O8V0lFgYPOv2k7srYPh3mG8KN3JMLx+hBlclAKezwUrvqtiadB8 6HJ8h3sDo0eamkG5Ww+qjkyMyLhERWQ5r85sU8D8QDqe1kEq5n7bvJdE2AY7ykpV hjl8P//aXlAPe2Mrpfc93Ed7INncazuT9MZ8elB8fJNzjQm2CORauNDnX88TxJms yYapAX9tloVPwJ6sX4oNKS0OELrviwDdd5k6qiwxaWsREwSOiOqzCBGY7H0/rKFR m8/+qC6p+1J8mKgMnsVlqihkSfwwa6Ju7xQVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQURghiX04FMkM/ZrAa3PSlz5qpqoUwHwYDVR0jBBgwFoAUphUjeyjUzviv+UIY FwShhwsPP3AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRW SVNQL3BoVWpleWpVenZpdi1VSVlGd1NoaHdzUFAzQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGhVamV5alV6dml2LVVJWUZ3U2hod3NQUDNBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRWSVNQL3BoVWpleWpVenZp di1VSVlGd1NoaHdzUFAzQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQB2I93KBozVHdmg6naFm/wxW0nAFfwf7ij1X6KZaIrmOxdZqqJkhH7JjtQU wJZz28G7JuzhHNsJxMZH4LQpN2NO2cyxyXU/O+ihjZXY/3iZpmkG7bs0yfRGdCaW mYxBgOBTNDxRDQEH+S8zW861SCXNAllh4/4kUPKyGTtyuxGA3kqtaFCXyo56AJJR BtEC2aJHWIA9qob5MYcmwOc1yJxPL5v7MyUV2TCcjpZl6jdk5K0WyfKW3VQ8Qmxr wjDJMrCSkklN+2zh9n1UfzsbvQcHEcxMsKSyO5RfPl3feb5xMuEjyynfcqoFZnsG VSNNkhyzIoV6yGTdZyXNR3PdelHa -----END CERTIFICATE-----Generated at Thu Jul 31 18:11:28 2025 by rpki-client