$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft File: agoWUzfc-5EnxghAxFy8641tv3U.mft (raw, json) Hash identifier: 3ozc/4uShKJWo7pytUqdOgyupGlQHwqKGdplIlMIP5g= Subject key identifier: 65:79:98:3B:90:AB:DC:26:D8:11:75:53:DF:21:66:FA:E0:26:43:31 Authority key identifier: 6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75 Certificate issuer: /CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75 Certificate serial: 013D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft Manifest number: 0138 Signing time: Sun 01 Jun 2025 22:55:29 +0000 Manifest this update: Sun 01 Jun 2025 22:55:29 +0000 Manifest next update: Tue 03 Jun 2025 22:55:29 +0000 Files and hashes: 1: DB-O3n79QQj9pIYjdqOAaLLCN1I.roa (hash: F8eL7hPbWjBcpbFvkkdCvqvNQzvEQnbMaw/uuBlv+KM=) 2: KXW_c5qtOcinxq7VIqHa1IhDjtM.roa (hash: gT5qK0N7xXYLq4DHFAsMPDPog1cnYa16anwPDmieZyc=) 3: agoWUzfc-5EnxghAxFy8641tv3U.crl (hash: 0SxV6VWcwyvT/GF4AhzeC5LFUGFQh+J/tTY02pN77iI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75 Validity Not Before: Jun 1 22:55:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6579983B90ABDC26D8117553DF2166FAE0264331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bd:10:3b:86:1d:66:1c:ce:de:2d:4c:b7:47: 50:ba:71:34:f6:62:55:1b:10:ce:6f:f1:c3:9f:17: fc:d3:2f:31:d0:15:0d:28:93:33:b1:c1:a2:79:3b: 22:6b:3d:63:3c:76:b9:9c:3c:22:77:2e:6c:bd:b8: f8:69:f0:61:1f:6c:ff:59:10:6d:86:1b:b7:4b:e6: cd:00:73:32:2e:e6:b1:1a:4f:87:7e:7f:50:80:55: 0e:91:3e:ee:7e:7b:bd:45:5d:5a:1d:1e:a0:a3:d8: fc:40:79:81:fa:8f:14:77:e4:70:ea:00:c2:cb:9c: 6b:b6:dd:7c:8c:91:01:3d:7f:98:5e:b9:36:23:d1: f8:44:4d:a5:8a:fe:ea:3e:4b:20:b4:37:ec:89:15: 39:ea:97:86:46:97:13:73:2d:36:66:77:cb:ed:91: 53:79:fe:32:c4:24:52:52:d1:45:4b:30:f4:f9:6e: 38:12:73:1c:2b:44:dc:97:07:f0:91:76:b8:07:6e: c9:80:d1:2b:cb:6f:14:1c:15:ef:c1:2f:5d:00:f0: f4:44:93:2a:c4:b3:ec:a0:b6:bf:2c:ba:1e:55:60: a3:4f:ea:73:4e:55:94:4e:76:86:55:9f:f7:9a:4d: 50:c0:7f:b0:9a:bd:8f:8d:63:02:38:f7:e9:f6:54: 16:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:79:98:3B:90:AB:DC:26:D8:11:75:53:DF:21:66:FA:E0:26:43:31 X509v3 Authority Key Identifier: keyid:6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:f7:62:18:74:00:ec:ad:6e:9b:7b:39:6f:1a:47:c3:94:92: 8f:51:23:c0:a3:e2:ba:44:55:b9:33:dc:4d:a5:4c:ef:35:50: 1f:9c:21:92:0f:36:2c:f8:0e:2b:09:2b:7a:7b:62:76:ab:de: 4a:30:ed:f6:6a:e1:ee:65:c1:cf:9b:9a:1d:d7:f0:09:9f:8e: 7a:0a:04:ff:b3:d9:c7:1a:a5:6d:93:0c:68:4e:9e:0f:14:b9: 7a:93:6b:42:d6:f1:ca:5e:73:29:b0:28:b1:d6:8e:d5:76:ae: 9e:e2:7e:60:17:b7:07:25:6c:0f:be:35:56:01:fa:67:a2:09: 0b:08:f6:31:1a:1c:70:95:01:1d:ee:b7:0a:56:dd:22:b7:0d: 4a:45:70:2b:1b:94:09:49:bb:6b:8f:cc:81:ee:41:ae:5b:e8: 08:fa:f9:7d:3e:b9:b5:3f:63:2f:10:ce:09:7b:be:85:af:aa: 20:55:f6:cd:62:fb:9d:cd:99:39:73:94:8b:93:1f:7c:88:6c: 28:9f:7e:ec:f8:7d:c6:09:80:0e:41:2e:e4:e8:77:38:3c:72: 50:e3:73:3e:47:77:27:1a:ff:fd:08:ed:f8:e8:7e:db:0d:45: 8e:c5:d2:93:a9:ac:4e:1f:aa:4b:4a:71:e7:9f:fd:97:73:5e: 6c:04:e8:22 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEw QTE2NTMzN0RDRkI5MTI3QzYwODQwQzQ1Q0JDRUI4RDZEQkY3NTAeFw0yNTA2MDEy MjU1MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1Nzk5ODNCOTBBQkRD MjZEODExNzU1M0RGMjE2NkZBRTAyNjQzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClvRA7hh1mHM7eLUy3R1C6cTT2YlUbEM5v8cOfF/zTLzHQFQ0o kzOxwaJ5OyJrPWM8drmcPCJ3Lmy9uPhp8GEfbP9ZEG2GG7dL5s0AczIu5rEaT4d+ f1CAVQ6RPu5+e71FXVodHqCj2PxAeYH6jxR35HDqAMLLnGu23XyMkQE9f5heuTYj 0fhETaWK/uo+SyC0N+yJFTnql4ZGlxNzLTZmd8vtkVN5/jLEJFJS0UVLMPT5bjgS cxwrRNyXB/CRdrgHbsmA0SvLbxQcFe/BL10A8PREkyrEs+ygtr8suh5VYKNP6nNO VZROdoZVn/eaTVDAf7CavY+NYwI49+n2VBY5AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUZXmYO5Cr3CbYEXVT3yFm+uAmQzEwHwYDVR0jBBgwFoAUagoWUzfc+5EnxghA xFy8641tv3UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExF L2Fnb1dVemZjLTVFbnhnaEF4Rnk4NjQxdHYzVS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvYWdvV1V6ZmMtNUVueGdoQXhGeTg2NDF0djNVLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExFL2Fnb1dVemZjLTVFbnhnaEF4 Rnk4NjQxdHYzVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAH 92IYdADsrW6bezlvGkfDlJKPUSPAo+K6RFW5M9xNpUzvNVAfnCGSDzYs+A4rCSt6 e2J2q95KMO32auHuZcHPm5od1/AJn456CgT/s9nHGqVtkwxoTp4PFLl6k2tC1vHK XnMpsCix1o7Vdq6e4n5gF7cHJWwPvjVWAfpnogkLCPYxGhxwlQEd7rcKVt0itw1K RXArG5QJSbtrj8yB7kGuW+gI+vl9Prm1P2MvEM4Je76Fr6ogVfbNYvudzZk5c5SL kx98iGwon37s+H3GCYAOQS7k6Hc4PHJQ43M+R3cnGv/9CO346H7bDUWOxdKTqaxO H6pLSnHnn/2Xc15sBOgi -----END CERTIFICATE-----Generated at Tue Jun 3 08:13:40 2025 by rpki-client