$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft File: 9aRLXgeIZbrvk1E2nZYda6JVbUc.mft (raw, json) Hash identifier: TtvWDU844Q27XVdmOX9TaD5m9dqeFYxLWvKE825nfUU= Subject key identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 0285 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft Manifest number: 0277 Signing time: Sun 01 Jun 2025 20:56:31 +0000 Manifest this update: Sun 01 Jun 2025 20:56:31 +0000 Manifest next update: Tue 03 Jun 2025 20:56:31 +0000 Files and hashes: 1: 9aRLXgeIZbrvk1E2nZYda6JVbUc.crl (hash: 1qjvsXnaqvX8/UBKjk78Wud4L0Yut6KYvRgRVNmloHQ=) 2: NY5wzuJxuVmMFi_IwIxTNP4saek.roa (hash: xQ4d6x7zo55ES5KNqL32EwVPPnbwgna7L+N3Lksa0zY=) 3: WsgN_xKfukmQhWxbg9-JwMoPmmY.roa (hash: 3TM0yfRdg6Wy/SOcYgYDK4CwMu53s+7ClRK6A8imPMw=) 4: cHwrVBpkzhU0BMJWAgCeMMcVDq4.roa (hash: MRbSBzjrJIEl4FUSKBgsZ+2gFsZlWT2y0TzPf5wpW/0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Jun 1 20:56:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=78C626456BAE94BA36466BD1EDB2D798BFFF017C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:a1:96:40:32:ef:af:64:da:c6:70:cd:e5: 42:ce:86:f9:47:4a:20:bb:49:3a:e0:39:71:3a:e3: 82:0d:d6:09:bf:c6:fa:b6:6e:89:79:fc:ee:b7:0f: 73:6b:5b:e8:3e:1e:c6:f9:03:f5:e5:59:ba:8b:2b: b0:13:41:63:52:26:bf:34:d4:ed:13:62:42:8e:9c: 0a:ab:de:43:8b:df:92:61:a3:6a:7a:10:02:56:8f: 87:27:ca:b9:16:e7:5a:77:c1:89:3b:6f:fa:3c:ab: 25:47:5c:ed:7a:86:a0:f0:d4:23:e4:e9:ce:b9:b3: 1f:82:98:57:6d:05:51:1a:d9:48:17:79:e7:82:f2: 8e:b1:37:76:d4:ad:dd:40:19:0d:fc:8e:ed:2a:a6: 37:bb:2b:a8:72:f5:e4:0a:b4:0a:7e:07:12:2b:5c: cb:d7:90:6b:21:4f:73:12:64:dd:ec:40:84:c8:5f: ca:a0:a7:49:09:36:02:ba:d5:d8:67:f8:48:e2:00: 54:dc:b8:c1:34:db:01:17:58:a8:8d:03:d2:78:78: 06:f8:0f:1a:2b:07:4c:18:23:43:c8:05:89:43:d2: a9:fb:06:3d:35:71:ec:8b:8a:e6:37:7b:bd:52:81: 83:3c:e4:39:8f:2f:97:b3:8a:d1:3b:f1:b8:82:76: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:e0:7c:02:9d:db:6c:31:22:8e:18:75:ac:c1:67:95:5e:39: 48:d4:cd:e5:97:0b:fb:c2:2e:9f:f2:af:2f:5b:f1:86:4b:26: 47:bb:3a:14:4b:7d:5c:37:c8:5a:25:1b:5b:03:d5:d4:b5:c7: 3b:af:d2:e5:11:5a:f8:39:30:e0:94:db:ce:e7:be:73:58:27: 37:a4:08:3d:79:42:c0:56:00:e0:44:18:2a:e3:8f:1d:2d:00: ac:35:da:b5:01:bc:4f:ae:6e:92:d6:75:58:07:83:5c:dd:9e: 62:9e:52:65:53:13:bd:d5:dc:46:bf:19:34:ad:7b:26:d0:d1: bd:b2:6a:f5:7b:ef:29:99:ba:f6:5b:8c:89:67:d8:98:5e:49: d0:65:41:e2:7b:81:49:8d:6b:a3:b5:ad:a1:b2:25:19:fb:48: 1d:4f:c6:72:3e:d2:a2:33:68:f4:c6:e5:3b:c7:28:38:ad:fd: fc:06:ab:a9:65:86:16:31:b5:09:38:ee:18:e0:e8:41:ab:f7: 93:c9:68:b7:b6:d1:b2:5e:99:9b:9c:77:7e:33:b3:1f:75:29: a1:06:06:82:a4:6e:2a:c4:bd:55:75:a7:1c:5f:96:49:ce:34: 4e:e8:ee:de:c6:75:20:3d:13:28:a1:dd:ba:30:9d:f6:dd:a4: a8:7c:ac:ba -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNTA2MDEy MDU2MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4QzYyNjQ1NkJBRTk0 QkEzNjQ2NkJEMUVEQjJENzk4QkZGRjAxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC20qGWQDLvr2TaxnDN5ULOhvlHSiC7STrgOXE644IN1gm/xvq2 bol5/O63D3NrW+g+Hsb5A/XlWbqLK7ATQWNSJr801O0TYkKOnAqr3kOL35Jho2p6 EAJWj4cnyrkW51p3wYk7b/o8qyVHXO16hqDw1CPk6c65sx+CmFdtBVEa2UgXeeeC 8o6xN3bUrd1AGQ38ju0qpje7K6hy9eQKtAp+BxIrXMvXkGshT3MSZN3sQITIX8qg p0kJNgK61dhn+EjiAFTcuME02wEXWKiNA9J4eAb4DxorB0wYI0PIBYlD0qn7Bj01 ceyLiuY3e71SgYM85DmPL5ezitE78biCdvPjAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUeMYmRWuulLo2RmvR7bLXmL//AXwwHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFLzlhUkxYZ2VJWmJy dmsxRTJuWllkYTZKVmJVYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQDA4HwCndtsMSKOGHWswWeVXjlI1M3llwv7wi6f8q8vW/GGSyZHuzoUS31c N8haJRtbA9XUtcc7r9LlEVr4OTDglNvO575zWCc3pAg9eULAVgDgRBgq448dLQCs Ndq1AbxPrm6S1nVYB4Nc3Z5inlJlUxO91dxGvxk0rXsm0NG9smr1e+8pmbr2W4yJ Z9iYXknQZUHie4FJjWujta2hsiUZ+0gdT8ZyPtKiM2j0xuU7xyg4rf38BqupZYYW MbUJOO4Y4OhBq/eTyWi3ttGyXpmbnHd+M7MfdSmhBgaCpG4qxL1VdaccX5ZJzjRO 6O7exnUgPRMood26MJ323aSofKy6 -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:29 2025 by rpki-client