$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft File: phUjeyjUzviv-UIYFwShhwsPP3A.mft (raw, json) Hash identifier: DLseb5L9SSA/IVBpGyLwqjgrYW9E0+fvOpgGKNDmkZw= Subject key identifier: 46:08:62:5F:4E:05:32:43:3F:66:B0:1A:DC:F4:A5:CF:9A:A9:AA:85 Authority key identifier: A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 Certificate issuer: /CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Certificate serial: 1272 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft Manifest number: 1269 Signing time: Sun 01 Jun 2025 21:56:47 +0000 Manifest this update: Sun 01 Jun 2025 21:56:47 +0000 Manifest next update: Tue 03 Jun 2025 21:56:47 +0000 Files and hashes: 1: KTOs5fi2mqhakEXRSNwYUVVNPB4.roa (hash: wBcb0hHm+8Q8plJeTQVmMcfKIbQf6dY2SkfCZUJ44vU=) 2: phUjeyjUzviv-UIYFwShhwsPP3A.crl (hash: vgxlhGFHGpR83R5oZRAIYUlU+2Q5bSxaolR5tGrz1m8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4722 (0x1272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Validity Not Before: Jun 1 21:56:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4608625F4E0532433F66B01ADCF4A5CF9AA9AA85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:eb:c1:75:36:53:1b:2b:e4:c7:b8:62:b1:5b: 19:cf:02:5a:f0:47:58:58:56:9b:4b:55:b6:64:8f: ca:13:3d:3f:d7:d0:4b:93:2a:a5:6d:02:cc:8a:80: 43:04:e4:ef:15:d2:51:60:60:f3:af:da:4e:ec:ad: 83:e1:de:61:bc:28:dd:c9:30:bc:7e:84:19:5c:94: 02:9e:cf:05:2b:be:ab:62:69:d0:7c:e8:72:7c:87: 7b:03:a3:47:9a:9a:41:b9:5b:0f:aa:8e:4c:8c:c8: b8:44:45:64:39:af:ce:6c:53:c0:fc:40:3a:9e:d6: 41:2a:e6:7e:db:bc:97:44:d8:06:3b:ca:4a:55:86: 39:7c:3f:ff:da:5e:50:0f:7b:63:2b:a5:f7:3d:dc: 47:7b:20:d9:dc:6b:3b:93:f4:c6:7c:7a:50:7c:7c: 93:73:8d:09:b6:08:e4:5a:b8:d0:e7:5f:cf:13:c4: 99:ac:c9:86:a9:01:7f:6d:96:85:4f:c0:9e:ac:5f: 8a:0d:29:2d:0e:10:ba:ef:8b:00:dd:77:99:3a:aa: 2c:31:69:6b:11:13:04:8e:88:ea:b3:08:11:98:ec: 7d:3f:ac:a1:51:9b:cf:fe:a8:2e:a9:fb:52:7c:98: a8:0c:9e:c5:65:aa:28:64:49:fc:30:6b:a2:6e:ef: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:08:62:5F:4E:05:32:43:3F:66:B0:1A:DC:F4:A5:CF:9A:A9:AA:85 X509v3 Authority Key Identifier: keyid:A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:27:81:91:d0:03:c5:4d:c7:ab:8d:49:9c:75:25:0a:70:03: 82:bd:15:4b:f8:c7:2e:e7:b8:90:0b:aa:5e:b4:69:f5:fc:da: 26:ef:bc:b4:73:68:12:10:a7:35:ae:f1:b1:6a:bc:62:27:44: 44:5c:9c:ab:22:49:a7:25:fc:a4:ab:af:15:11:82:11:50:84: 48:76:6d:5d:cb:cc:66:30:c4:34:ec:c6:27:c6:21:cd:2c:83: 8d:36:5d:ce:f2:d5:c7:53:b0:92:fc:4c:d1:5d:a8:48:4a:1a: 4a:70:aa:64:88:9f:99:04:78:7a:4a:3e:82:4b:4d:a0:72:69: 63:07:7e:72:9c:8a:51:50:a2:11:db:e2:28:05:36:67:14:24: 17:2b:39:46:1d:42:25:8c:c6:db:ad:ca:19:47:13:40:b0:04: ee:23:15:f8:98:2d:4e:42:66:43:80:5d:a7:58:e8:3d:30:34: 8b:1a:fb:7d:48:93:a7:d7:e7:35:1b:7d:c1:0e:33:f8:df:ad: 86:59:dd:1c:29:30:09:c3:8f:4e:d4:77:80:ae:44:df:6c:66: 09:0f:9a:b3:a4:cb:c1:da:25:04:69:35:ec:f8:d7:30:a1:a1: a9:8b:73:bb:8a:d2:bc:dd:9c:07:93:a0:aa:1f:66:bd:38:36: 26:f6:cc:1e -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICEnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTYx NTIzN0IyOEQ0Q0VGOEFGRjk0MjE4MTcwNEExODcwQjBGM0Y3MDAeFw0yNTA2MDEy MTU2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2MDg2MjVGNEUwNTMy NDMzRjY2QjAxQURDRjRBNUNGOUFBOUFBODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy68F1NlMbK+THuGKxWxnPAlrwR1hYVptLVbZkj8oTPT/X0EuT KqVtAsyKgEME5O8V0lFgYPOv2k7srYPh3mG8KN3JMLx+hBlclAKezwUrvqtiadB8 6HJ8h3sDo0eamkG5Ww+qjkyMyLhERWQ5r85sU8D8QDqe1kEq5n7bvJdE2AY7ykpV hjl8P//aXlAPe2Mrpfc93Ed7INncazuT9MZ8elB8fJNzjQm2CORauNDnX88TxJms yYapAX9tloVPwJ6sX4oNKS0OELrviwDdd5k6qiwxaWsREwSOiOqzCBGY7H0/rKFR m8/+qC6p+1J8mKgMnsVlqihkSfwwa6Ju7xQVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQURghiX04FMkM/ZrAa3PSlz5qpqoUwHwYDVR0jBBgwFoAUphUjeyjUzviv+UIY FwShhwsPP3AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRW SVNQL3BoVWpleWpVenZpdi1VSVlGd1NoaHdzUFAzQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGhVamV5alV6dml2LVVJWUZ3U2hod3NQUDNBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRWSVNQL3BoVWpleWpVenZp di1VSVlGd1NoaHdzUFAzQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCgJ4GR0APFTcerjUmcdSUKcAOCvRVL+Mcu57iQC6petGn1/Nom77y0c2gS EKc1rvGxarxiJ0REXJyrIkmnJfykq68VEYIRUIRIdm1dy8xmMMQ07MYnxiHNLION Nl3O8tXHU7CS/EzRXahIShpKcKpkiJ+ZBHh6Sj6CS02gcmljB35ynIpRUKIR2+Io BTZnFCQXKzlGHUIljMbbrcoZRxNAsATuIxX4mC1OQmZDgF2nWOg9MDSLGvt9SJOn 1+c1G33BDjP4362GWd0cKTAJw49O1HeArkTfbGYJD5qzpMvB2iUEaTXs+NcwoaGp i3O7itK83ZwHk6CqH2a9ODYm9swe -----END CERTIFICATE-----Generated at Tue Jun 3 08:10:40 2025 by rpki-client