$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft File: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft (raw, json) Hash identifier: G8IR+vw2uZWmkIwndZBg0elIDOtr807KDoiHAzQv4gc= Subject key identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 0160 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft Manifest number: 015C Signing time: Tue 03 Jun 2025 10:26:15 +0000 Manifest this update: Tue 03 Jun 2025 10:26:15 +0000 Manifest next update: Thu 05 Jun 2025 10:26:15 +0000 Files and hashes: 1: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl (hash: MFJfTE9LV7sh7vNfdjNDfK6AePCTZcrAd+FoNXSAyP8=) 2: fEH3PIH7RUd9nJzW8JfLOhdpLNI.roa (hash: muFD/lFtctqWF861xVW+D8Zvxbe/Y7pk++Wrh0btEN0=) 3: p3N5Ghgzf-DT-hecBbNcXZ-TmnQ.roa (hash: Zn8Ujm7IAAM1HS6xnfKm69dBkYRCG07vcUNy+amrapM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Jun 3 10:26:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EAF2BE883EF8ED0C1C90C3D05D111B8539F37A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b5:3e:8b:b8:23:d0:67:20:07:ec:8a:ac:1d: e4:82:63:90:b5:bd:e0:39:64:00:a9:a4:04:a5:e8: 32:34:38:0f:ad:0b:f1:dd:bf:6d:52:4d:5e:98:cd: bd:83:9d:40:9a:ae:40:0e:c6:e6:df:2f:ca:36:02: 96:ba:a1:3d:b3:d1:66:f9:3c:2e:63:d4:3a:95:c4: 4d:b9:cc:57:07:4c:72:12:e1:15:50:6c:14:72:41: 58:79:2d:09:03:55:e3:f8:65:8b:9f:28:9a:09:80: 6b:ef:6b:4c:4d:2d:cc:9c:3b:39:00:3f:99:35:00: f9:2a:92:95:51:e8:42:56:64:12:94:d2:43:f5:60: 79:65:56:27:e6:20:8d:0f:30:0c:92:fe:6c:2e:f4: 1f:09:0f:ab:9c:22:2d:e2:73:ef:dd:09:97:d3:35: 83:ef:81:75:33:60:63:83:81:2b:91:1c:55:f8:8c: 48:7e:db:af:79:b6:82:ba:65:79:cd:98:36:a9:b4: dd:28:ef:8d:bd:e7:46:d5:da:79:d5:30:58:89:5c: 58:95:a8:1b:d0:57:e1:7e:d7:ce:1d:80:99:ee:ae: 00:20:12:45:a5:f3:37:69:71:b6:27:45:32:46:55: 8c:f9:ea:86:77:07:bd:c9:68:9c:15:29:02:f2:d5: df:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:ae:05:7e:dd:fb:cf:b7:31:25:3c:64:bd:05:3b:0a:8a:f5: c1:95:42:08:09:04:c9:75:f9:17:18:c1:f5:8c:ad:89:46:ba: 8b:d8:91:42:2b:28:8a:28:fb:11:d7:72:66:27:47:80:e1:0c: f0:a3:a3:05:d8:87:29:35:d2:a5:6a:11:ee:89:29:34:50:02: cc:e9:6b:92:ac:a2:a0:9b:2d:20:35:45:af:b9:d0:6f:34:25: f0:2a:60:66:58:72:27:60:82:a2:1c:95:49:9a:bb:fd:f0:53: cc:07:59:17:8c:dc:79:0d:77:1f:57:a4:85:55:75:62:dc:ad: f0:ca:55:ba:10:41:da:05:07:1c:c3:fb:3a:af:67:1e:1d:42: b6:30:42:ba:56:43:a6:7d:35:42:d2:af:73:11:5c:70:a9:7a: d1:b8:93:02:e7:83:75:8a:2c:36:27:fd:d0:67:94:ca:93:24: 49:ac:d3:c1:01:2f:6f:01:93:2d:76:70:75:19:d4:89:68:e2: 4a:77:d2:33:21:71:3b:f8:31:93:3f:55:03:41:92:fe:3c:22: 84:4c:d6:a5:54:c4:5f:4b:23:c3:83:7b:ef:31:13:c6:69:d0: 75:a1:b1:72:70:87:0e:88:9e:bc:17:60:2f:d3:37:92:4d:d5: c2:38:cd:f4 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNF QkQzOUZCNTE4QjU1REEwMDc0MkFFRUM3QjBEQTZBQUJBNjFGNzAeFw0yNTA2MDMx MDI2MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVBRjJCRTg4M0VGOEVE MEMxQzkwQzNEMDVEMTExQjg1MzlGMzdBNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDftT6LuCPQZyAH7IqsHeSCY5C1veA5ZACppASl6DI0OA+tC/Hd v21STV6Yzb2DnUCarkAOxubfL8o2Apa6oT2z0Wb5PC5j1DqVxE25zFcHTHIS4RVQ bBRyQVh5LQkDVeP4ZYufKJoJgGvva0xNLcycOzkAP5k1APkqkpVR6EJWZBKU0kP1 YHllVifmII0PMAyS/mwu9B8JD6ucIi3ic+/dCZfTNYPvgXUzYGODgSuRHFX4jEh+ 2695toK6ZXnNmDaptN0o742950bV2nnVMFiJXFiVqBvQV+F+184dgJnurgAgEkWl 8zdpcbYnRTJGVYz56oZ3B73JaJwVKQLy1d+BAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU6vK+iD747QwckMPQXREbhTnzemkwHwYDVR0jBBgwFoAUQ+vTn7UYtV2gB0Ku 7HsNpqq6YfcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FFTFcv US12VG43VVl0VjJnQjBLdTdIc05wcXE2WWZjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9RLXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9RLXZUbjdVWXRWMmdCMEt1N0hz TnBxcTZZZmMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAq4F ft37z7cxJTxkvQU7Cor1wZVCCAkEyXX5FxjB9YytiUa6i9iRQisoiij7EddyZidH gOEM8KOjBdiHKTXSpWoR7okpNFACzOlrkqyioJstIDVFr7nQbzQl8CpgZlhyJ2CC ohyVSZq7/fBTzAdZF4zceQ13H1ekhVV1Ytyt8MpVuhBB2gUHHMP7Oq9nHh1CtjBC ulZDpn01QtKvcxFccKl60biTAueDdYosNif90GeUypMkSazTwQEvbwGTLXZwdRnU iWjiSnfSMyFxO/gxkz9VA0GS/jwihEzWpVTEX0sjw4N77zETxmnQdaGxcnCHDoie vBdgL9M3kk3VwjjN9A== -----END CERTIFICATE-----Generated at Wed Jun 4 01:31:03 2025 by rpki-client