$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft File: U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft (raw, json) Hash identifier: b0zc+ZtWsP7xySjCLuSjk5C7SRkewaaNsDARjxMqDo4= Subject key identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 Authority key identifier: 53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 Certificate issuer: /CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Certificate serial: 17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft Manifest number: 17 Signing time: Fri 04 Jul 2025 23:02:06 +0000 Manifest this update: Fri 04 Jul 2025 23:02:06 +0000 Manifest next update: Sat 05 Jul 2025 05:02:06 +0000 Files and hashes: 1: U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl (hash: QegeRxDQO8KvTJDAf9sACu6VflX1yqP7poGcHhSTmqY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 05:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Validity Not Before: Jul 4 23:02:06 2025 GMT Not After : Jun 30 15:30:18 2026 GMT Subject: CN=8BCF9A1720F5F3385D2E74231DE4571525E4C745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:a5:3f:4b:26:51:f8:59:a2:01:cc:24:7a: 56:fe:69:eb:2d:0e:e9:54:ee:fc:bb:3a:c4:0a:9c: 5a:da:2c:8a:ac:6d:2b:48:9f:68:5f:9a:0b:9f:50: 7e:d5:a1:86:e2:a8:c1:d4:2d:4c:19:5d:09:04:bf: 4d:e8:bf:6d:0a:73:6b:68:52:e8:6f:16:de:39:35: 43:b1:10:97:de:d8:cb:b8:f0:83:d4:d0:20:42:37: 3b:3b:5d:dd:36:0e:73:6f:44:cf:36:22:a9:45:c2: 51:7d:d9:2a:74:a1:4a:b1:2c:05:0d:96:e1:0b:ae: 3c:58:6d:e9:35:80:99:53:1c:61:4c:92:84:53:84: 59:2c:36:bb:b6:32:6f:a6:cb:e7:40:e5:2c:4d:9b: 21:1d:e9:78:14:0b:bf:f8:b0:c4:07:a3:5e:7a:73: 60:84:d4:c2:bd:08:41:da:fe:ad:4e:44:59:9b:f5: ec:b9:5b:21:01:e7:9b:9b:1b:d7:9d:22:3c:c9:1e: 87:a6:d0:02:3a:91:23:b4:94:4e:11:43:b0:5f:d3: c3:a0:c2:e5:db:22:2e:60:bc:19:2e:08:94:25:94: 6b:ff:78:2f:2f:9b:2a:24:99:54:da:76:71:70:26: 8d:5c:07:3a:8b:fa:34:61:44:7e:8d:0f:92:c6:d3: fd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 X509v3 Authority Key Identifier: keyid:53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:44:49:1c:f8:3a:95:02:ad:ab:57:aa:d3:8f:a9:95:ee:e8: 6b:fb:33:de:72:ff:7c:5e:6b:26:2b:fc:82:64:79:76:93:6b: a1:53:1a:8b:94:11:45:c2:95:ef:5e:1f:9a:0f:e8:19:13:16: 7a:83:2e:f7:b8:bd:1a:96:57:95:ce:6b:97:0a:ad:af:c3:bf: 75:18:d4:0a:20:cd:a3:16:2d:d7:74:d8:da:d8:7d:d6:c0:25: c1:17:2f:c2:b4:d3:6c:5a:18:d9:95:e4:84:5c:5f:b2:b7:26: 24:0a:97:da:a4:f2:bf:41:a2:d5:0a:09:58:2d:ce:2e:44:7d: 2f:aa:96:0e:8a:ab:11:bd:90:18:ba:cf:38:83:18:b0:e9:8d: d8:c9:73:83:20:e2:9c:43:f1:65:06:90:5e:17:d4:80:35:e6: 4e:23:97:9d:dc:36:c2:c6:0d:ff:33:3c:02:2a:cb:78:ec:6d: de:29:9f:22:f3:c0:69:2c:44:5c:f6:fb:c1:07:81:4a:0d:c9: f7:00:63:24:0e:cd:49:d7:be:c8:18:09:52:36:d5:7b:17:62: c6:8a:18:05:2c:54:12:42:c5:f4:8a:d3:18:3e:46:78:99:50: 14:c9:e5:b8:1b:66:77:94:0c:7f:46:06:07:f6:0f:13:0d:1e: 04:ce:5e:04 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1Mzkw NkUyRTJFRkU3NDkxREIxOUIxQzIwOUVBMTc4QzM5QTBEQUU1MB4XDTI1MDcwNDIz MDIwNloXDTI2MDYzMDE1MzAxOFowMzExMC8GA1UEAxMoOEJDRjlBMTcyMEY1RjMz ODVEMkU3NDIzMURFNDU3MTUyNUU0Qzc0NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJscpT9LJlH4WaIBzCR6Vv5p6y0O6VTu/Ls6xAqcWtosiqxtK0if aF+aC59QftWhhuKowdQtTBldCQS/Tei/bQpza2hS6G8W3jk1Q7EQl97Yy7jwg9TQ IEI3Oztd3TYOc29EzzYiqUXCUX3ZKnShSrEsBQ2W4QuuPFht6TWAmVMcYUyShFOE WSw2u7Yyb6bL50DlLE2bIR3peBQLv/iwxAejXnpzYITUwr0IQdr+rU5EWZv17Llb IQHnm5sb150iPMkeh6bQAjqRI7SUThFDsF/Tw6DC5dsiLmC8GS4IlCWUa/94Ly+b KiSZVNp2cXAmjVwHOov6NGFEfo0PksbT/f0CAwEAAaOCAgUwggIBMB0GA1UdDgQW BBSLz5oXIPXzOF0udCMd5FcVJeTHRTAfBgNVHSMEGDAWgBRTkG4uLv50kdsZscIJ 6heMOaDa5TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS9V NUJ1TGk3LWRKSGJHYkhDQ2VvWGpEbWcydVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1U1QnVMaTctZEpIYkdiSENDZW9YakRtZzJ1VS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1JVSUtFL1U1QnVMaTctZEpIYkdiSENDZW9Y akRtZzJ1VS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQClREkc +DqVAq2rV6rTj6mV7uhr+zPecv98XmsmK/yCZHl2k2uhUxqLlBFFwpXvXh+aD+gZ ExZ6gy73uL0alleVzmuXCq2vw791GNQKIM2jFi3XdNja2H3WwCXBFy/CtNNsWhjZ leSEXF+ytyYkCpfapPK/QaLVCglYLc4uRH0vqpYOiqsRvZAYus84gxiw6Y3YyXOD IOKcQ/FlBpBeF9SANeZOI5ed3DbCxg3/MzwCKst47G3eKZ8i88BpLERc9vvBB4FK Dcn3AGMkDs1J177IGAlSNtV7F2LGihgFLFQSQsX0itMYPkZ4mVAUyeW4G2Z3lAx/ RgYH9g8TDR4Ezl4E -----END CERTIFICATE-----Generated at Sat Jul 5 00:35:54 2025 by rpki-client