$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft File: e4JX_9x80ctBlhKc1ASTNSvIO7k.mft (raw, json) Hash identifier: qABx4Wal7aWQieAnIuTN+y2CXitzpVXQP4Cx5hNKKtA= Subject key identifier: BF:F9:66:CC:34:DB:9F:8E:2C:AE:59:69:35:E3:1A:9A:DD:5D:70:87 Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Certificate serial: 043B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft Manifest number: 042D Signing time: Sun 01 Jun 2025 21:56:50 +0000 Manifest this update: Sun 01 Jun 2025 21:56:50 +0000 Manifest next update: Tue 03 Jun 2025 21:56:50 +0000 Files and hashes: 1: CeMkpZ8HxNQGFu4bP1lsOxUY-_Q.roa (hash: jRkWDxakz+suU8WzElFrv1eo1YG7jwJCXNrbU8SO0zQ=) 2: Dh1Q-mCi6rVOEQacifIZfxW3g0w.roa (hash: gTD6usTiIP8l1Xlw+iXZdWMh/Dvh0Vy0TRM60Yq3MIU=) 3: e4JX_9x80ctBlhKc1ASTNSvIO7k.crl (hash: WMnl/rRs9ZNu1Z8VT4XANNyp77i6BYuibmGsaFpE2ks=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Validity Not Before: Jun 1 21:56:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BFF966CC34DB9F8E2CAE596935E31A9ADD5D7087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:17:80:b7:5b:78:9c:3e:48:9e:3c:ca:f7:cf: 66:5b:63:f0:47:3d:88:8b:c4:77:32:5d:70:85:b9: 9e:83:35:83:60:17:cb:96:8e:d5:ec:bb:dc:67:50: 42:9d:86:bf:b5:e1:10:0d:fe:1d:0e:12:ed:77:3d: d3:34:01:68:d0:fc:2a:0e:73:b6:d6:a1:80:72:2d: 89:a7:46:58:93:21:a8:dc:8d:8e:23:db:e2:cb:6c: 29:fe:f2:e5:22:a2:f6:f3:24:41:71:0b:51:34:28: 7f:08:8f:7b:02:7a:21:01:0d:ad:fa:01:3a:1d:5c: 74:1a:4f:9a:7b:63:07:20:a9:32:d7:4f:28:f5:fd: 10:80:80:62:d0:3a:85:66:2a:32:0d:22:f2:a2:64: 12:3b:10:52:d8:32:f8:18:8d:54:9f:1c:db:b3:39: 0d:0d:ae:7c:1f:06:06:4a:9c:d4:de:c5:12:74:0d: ed:01:2a:0f:49:a1:8d:10:5e:77:4f:8c:42:c8:83: db:5b:bb:86:09:ec:9a:72:6e:e0:49:c6:cd:30:1a: 9c:42:f0:3a:a3:d1:d1:cb:c9:53:3b:a4:39:3d:ba: 22:eb:b2:7f:ea:54:6b:08:51:d3:11:a3:3f:1e:1c: 28:f5:24:84:60:0a:55:7e:db:67:d3:01:6e:c1:37: 1f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F9:66:CC:34:DB:9F:8E:2C:AE:59:69:35:E3:1A:9A:DD:5D:70:87 X509v3 Authority Key Identifier: keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:4b:ce:30:a5:38:1d:7f:00:c3:68:6c:75:34:78:3c:ec:67: 9e:7f:f3:7a:7d:07:54:5e:27:66:b2:e5:d5:07:c2:de:f9:db: a2:ae:16:c7:ef:98:9d:86:bf:1a:dc:4f:c7:b0:4b:7f:7a:6d: d6:bd:60:1a:f2:66:89:3d:5f:76:98:55:0d:b2:7c:48:94:fc: 0d:8d:93:a1:fe:6a:84:47:f7:15:20:19:c2:16:7c:86:59:12: b1:4d:af:11:17:2c:f5:11:88:a0:f7:9d:d8:35:04:52:1a:48: 04:d0:64:15:10:6f:f4:f6:81:2a:df:7b:2b:a0:be:a6:29:3d: 11:ff:c0:b3:4f:6d:f6:b2:c7:78:a8:a6:f4:14:47:bb:bb:a1: 6e:de:ec:77:7a:f0:c3:ce:e9:44:b5:0d:77:f4:4d:4a:52:64: c0:1c:24:ff:23:9c:08:b2:a0:b9:51:ee:72:ae:3d:79:a5:a1: 20:7e:b8:b7:94:81:82:36:42:82:96:a1:81:91:a1:c3:c9:01: ab:9f:c3:79:a9:76:59:64:60:94:87:17:7d:89:e3:de:c1:2d: ab:77:86:30:9d:11:6c:96:98:e0:26:03:7a:bd:8f:43:d4:42: 20:ad:5a:99:e0:93:2e:9d:8c:c5:a0:fd:76:9c:1e:8f:6d:ca: a5:de:0c:b2 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICBDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0I4 MjU3RkZEQzdDRDFDQjQxOTYxMjlDRDQwNDkzMzUyQkM4M0JCOTAeFw0yNTA2MDEy MTU2NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJGRjk2NkNDMzREQjlG OEUyQ0FFNTk2OTM1RTMxQTlBREQ1RDcwODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyF4C3W3icPkiePMr3z2ZbY/BHPYiLxHcyXXCFuZ6DNYNgF8uW jtXsu9xnUEKdhr+14RAN/h0OEu13PdM0AWjQ/CoOc7bWoYByLYmnRliTIajcjY4j 2+LLbCn+8uUiovbzJEFxC1E0KH8Ij3sCeiEBDa36ATodXHQaT5p7YwcgqTLXTyj1 /RCAgGLQOoVmKjINIvKiZBI7EFLYMvgYjVSfHNuzOQ0NrnwfBgZKnNTexRJ0De0B Kg9JoY0QXndPjELIg9tbu4YJ7JpybuBJxs0wGpxC8Dqj0dHLyVM7pDk9uiLrsn/q VGsIUdMRoz8eHCj1JIRgClV+22fTAW7BNx+PAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUv/lmzDTbn44srllpNeMamt1dcIcwHwYDVR0jBBgwFoAUe4JX/9x80ctBlhKc 1ASTNSvIO7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFSQU1J VEEvZTRKWF85eDgwY3RCbGhLYzFBU1ROU3ZJTzdrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lNEpYXzl4ODBjdEJsaEtjMUFTVE5TdklPN2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQVJBTUlUQS9lNEpYXzl4ODBjdEJs aEtjMUFTVE5TdklPN2subWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnUvOMKU4HX8Aw2hsdTR4POxnnn/zen0HVF4nZrLl1QfC3vnboq4Wx++YnYa/ GtxPx7BLf3pt1r1gGvJmiT1fdphVDbJ8SJT8DY2Tof5qhEf3FSAZwhZ8hlkSsU2v ERcs9RGIoPed2DUEUhpIBNBkFRBv9PaBKt97K6C+pik9Ef/As09t9rLHeKim9BRH u7uhbt7sd3rww87pRLUNd/RNSlJkwBwk/yOcCLKguVHucq49eaWhIH64t5SBgjZC gpahgZGhw8kBq5/Deal2WWRglIcXfYnj3sEtq3eGMJ0RbJaY4CYDer2PQ9RCIK1a meCTLp2MxaD9dpwej23Kpd4Msg== -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:43 2025 by rpki-client