$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft File: mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft (raw, json) Hash identifier: sKcmbQzE3rr9LCrVP5+aBYRode7Ttmq5m+2RbwDAHw4= Subject key identifier: B1:4F:CA:ED:DE:09:C7:ED:F4:B2:AD:6D:75:B2:10:5C:13:E5:10:DA Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0D73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft Manifest number: 0D3B Signing time: Wed 30 Jul 2025 13:38:00 +0000 Manifest this update: Wed 30 Jul 2025 13:38:00 +0000 Manifest next update: Fri 01 Aug 2025 13:38:00 +0000 Files and hashes: 1: mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl (hash: Fk0TowOflvcvnxH8/kB0HcnixG7uVgrYs4kIr13jfjw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3443 (0xd73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Jul 30 13:38:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B14FCAEDDE09C7EDF4B2AD6D75B2105C13E510DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:7d:d7:f2:fb:38:76:98:a8:cf:87:5e:96: a4:87:e0:8f:41:48:98:04:bc:be:35:bc:f7:92:9d: e4:0a:e6:f8:a4:64:5a:d6:b3:ca:59:71:9e:cc:36: 00:6d:63:4e:48:f9:b4:ea:93:18:84:d1:6b:9d:74: 15:c8:71:5a:a6:72:c0:17:fc:21:4d:41:d3:59:25: ce:3a:38:05:ec:ce:1f:16:f6:31:3a:a9:9c:df:d9: 95:ae:e7:05:48:77:df:cf:54:7b:d8:14:6e:d6:9a: e7:8e:dc:ce:8b:2e:36:aa:ee:c3:1a:76:25:b1:0b: 59:a3:e9:64:77:65:f4:2e:97:22:54:1b:1e:51:99: 72:f2:92:59:e0:49:03:48:9f:8b:93:ec:32:f1:1b: b3:c4:92:25:4c:00:e8:8e:87:4f:71:27:15:28:e4: 60:cd:f8:cd:ef:a2:30:8e:6b:f5:09:0d:e8:f1:10: 55:cf:ca:f3:16:c9:2d:d6:07:cb:d3:b3:e3:f4:38: b3:70:c7:3c:c3:d3:c3:01:9f:72:14:5c:00:7c:a7: 27:20:f5:1e:ab:7d:3e:83:78:4b:75:f3:bd:86:90: 24:15:90:31:7d:b6:69:2a:ee:c0:ad:cf:5d:17:4d: 0b:74:36:1b:c2:4a:c8:1d:c5:91:d7:66:7c:fd:6f: 45:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4F:CA:ED:DE:09:C7:ED:F4:B2:AD:6D:75:B2:10:5C:13:E5:10:DA X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:2e:af:cb:85:a7:06:c7:ef:90:ae:e9:96:b7:37:f2:b4:70: 33:6d:94:4e:dc:6d:18:d1:8f:5f:41:eb:cc:bd:8a:0f:ff:fb: fb:ac:1c:c4:56:7f:4a:a0:b7:10:9a:88:70:99:10:4b:68:6b: 57:8d:e1:7b:69:95:ca:60:bb:93:2b:0c:2c:ee:f2:81:b7:3f: ca:9b:05:bf:57:1c:f3:e1:9c:da:32:75:22:f0:88:84:d5:e6: df:38:9c:db:e0:1a:9d:99:0c:a0:73:ed:79:dd:26:e3:71:14: 23:c6:7c:6a:31:a3:b8:da:2d:43:46:08:ae:e4:95:58:e9:40: 24:67:7e:05:75:49:99:ea:68:4b:36:29:bd:3c:25:2f:7f:e4: a0:82:84:d3:98:4c:1d:58:92:40:9f:5d:21:15:ac:2d:91:d7: b0:c9:fb:2d:17:9c:f2:2f:a0:22:b6:2a:74:5c:01:d0:0c:dc: 1c:1c:54:1a:b6:09:e9:f7:86:97:e6:18:7e:c7:ef:64:32:55: 8e:20:31:57:e4:da:85:94:8b:ca:9c:48:f9:70:de:f2:27:33: 55:08:8b:27:91:a9:67:dd:fc:11:40:d2:c5:d3:07:ce:37:05: 76:78:3d:c5:b5:89:13:82:a9:d3:d4:6c:dc:d2:fe:ea:28:ce: 2f:1a:4b:bd -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNTA3MzAx MzM4MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxNEZDQUVEREUwOUM3 RURGNEIyQUQ2RDc1QjIxMDVDMTNFNTEwREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9H33X8vs4dpioz4delqSH4I9BSJgEvL41vPeSneQK5vikZFrW s8pZcZ7MNgBtY05I+bTqkxiE0WuddBXIcVqmcsAX/CFNQdNZJc46OAXszh8W9jE6 qZzf2ZWu5wVId9/PVHvYFG7WmueO3M6LLjaq7sMadiWxC1mj6WR3ZfQulyJUGx5R mXLyklngSQNIn4uT7DLxG7PEkiVMAOiOh09xJxUo5GDN+M3vojCOa/UJDejxEFXP yvMWyS3WB8vTs+P0OLNwxzzD08MBn3IUXAB8pycg9R6rfT6DeEt1872GkCQVkDF9 tmkq7sCtz10XTQt0NhvCSsgdxZHXZnz9b0X9AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsU/K7d4Jx+30sq1tdbIQXBPlENowHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvbVQ5eWdQSDV0 bFE1M1dXdC0yaktEV3ladnNVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI8ur8uFpwbH75Cu6Za3N/K0cDNtlE7cbRjRj19B68y9ig//+/usHMRW f0qgtxCaiHCZEEtoa1eN4Xtplcpgu5MrDCzu8oG3P8qbBb9XHPPhnNoydSLwiITV 5t84nNvgGp2ZDKBz7XndJuNxFCPGfGoxo7jaLUNGCK7klVjpQCRnfgV1SZnqaEs2 Kb08JS9/5KCChNOYTB1YkkCfXSEVrC2R17DJ+y0XnPIvoCK2KnRcAdAM3BwcVBq2 Cen3hpfmGH7H72QyVY4gMVfk2oWUi8qcSPlw3vInM1UIiyeRqWfd/BFA0sXTB843 BXZ4PcW1iROCqdPUbNzS/uoozi8aS70= -----END CERTIFICATE-----Generated at Thu Jul 31 18:18:07 2025 by rpki-client