$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft File: x1hCDPdi5IrXyqYOs53NYisftPY.mft (raw, json) Hash identifier: dopzeJN1lSzzuSvCOryUjYKMy2pLk3t8G/SRwcqFsSo= Subject key identifier: 3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33 Authority key identifier: C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 Certificate issuer: /CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Certificate serial: 0128 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft Manifest number: 0127 Signing time: Wed 04 Jun 2025 17:56:57 +0000 Manifest this update: Wed 04 Jun 2025 17:56:57 +0000 Manifest next update: Fri 06 Jun 2025 17:56:57 +0000 Files and hashes: 1: YaQpCWAKC9tUppCHG9-rOfTu6bg.roa (hash: FMHp4ON7Uq3Fg/+iT+yTBDOUIs/Z7ZOuEXB1WvJ+5jM=) 2: x1hCDPdi5IrXyqYOs53NYisftPY.crl (hash: 6cJg+V8g+etYCR/beXQLiXT7o/SKxwijcbHvzKG+HO8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 21:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Validity Not Before: Jun 4 17:56:57 2025 GMT Not After : Jan 10 15:30:20 2026 GMT Subject: CN=3B2E1528E75A4B9A454579558F70254185675633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1c:1f:bc:16:1d:9c:c6:2f:56:f4:ff:ba:2b: b1:61:05:0c:4e:14:c0:9c:13:62:be:3b:df:1a:59: cb:cd:fd:61:c0:19:fb:93:ab:60:63:c7:76:cc:39: d8:3a:0b:9a:a2:36:65:53:87:76:e5:66:ec:6a:14: 02:39:f0:02:2b:ce:80:59:ab:34:53:30:8f:90:74: 46:c6:98:c9:40:8d:c7:ef:66:f9:0a:ed:63:06:0d: bc:a2:b8:ff:ce:72:47:4a:2a:b4:87:aa:50:c2:c0: c7:b3:24:54:c7:dc:9f:85:94:77:8c:94:eb:f3:74: 00:bc:5f:1b:71:75:f4:3e:c1:3d:44:9a:e8:50:96: 6e:5f:e8:f8:fb:78:08:0f:4e:bb:ec:a8:d5:ec:5e: d3:04:6f:f3:13:2e:55:7a:48:f1:42:df:6e:eb:c0: 35:87:5e:0e:53:c8:c1:52:27:0d:de:34:32:6a:66: fb:9b:71:f2:98:b6:fa:97:39:b3:6e:ed:9a:4e:1f: 8d:b4:ed:d7:58:20:d0:98:49:39:6c:b5:92:b9:54: 0f:b2:5a:d8:00:96:3e:d5:62:81:8a:67:a3:f5:68: c5:92:a5:cf:1a:dd:ee:5f:55:54:60:73:dc:6d:41: 09:c8:87:f3:e2:18:b5:55:42:38:20:97:12:c5:f9: 7b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33 X509v3 Authority Key Identifier: keyid:C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:9a:ad:7b:f1:14:fe:68:8a:09:27:8f:4c:95:f0:10:bb:db: 1f:42:37:76:cf:b5:d2:10:bc:49:bc:ab:67:31:b1:b3:19:7d: 4e:f0:59:17:ec:91:8f:12:fe:d5:22:6d:65:e9:a2:8a:f5:5c: bd:64:77:71:11:83:69:88:0d:02:dc:0c:90:34:90:b5:bc:e1: fc:b4:ed:e2:4e:b8:2d:34:d0:49:51:28:81:e7:4a:b5:76:ef: f5:19:c5:69:ee:57:ca:42:30:28:80:54:07:2b:08:c9:94:27: 83:b0:81:00:e7:f1:63:9b:8e:22:e0:b7:ed:96:03:37:47:c6: 81:42:6d:e6:e7:cf:bc:bf:25:1a:d2:43:0e:8b:c3:da:31:10: ac:a1:6e:79:9c:42:d7:9e:53:0c:38:02:0f:69:d7:37:9a:61: 72:24:82:8d:0a:a5:f7:ed:67:26:a7:0b:8c:08:83:17:2f:6f: 88:ee:4f:3b:09:b5:68:69:b8:0c:bd:bb:bd:78:a9:20:2f:23: 08:a6:81:c6:29:23:e2:2b:31:dc:50:6c:4a:76:82:9f:7f:ce: 5b:00:f1:88:a4:f8:e9:a8:ee:05:ae:8c:de:54:a7:c9:26:9c: 44:a3:de:c1:63:37:e3:c5:7f:f5:19:2c:d9:c0:dd:b7:7b:de: 0f:18:c0:0b -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICASgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzc1 ODQyMENGNzYyRTQ4QUQ3Q0FBNjBFQjM5RENENjIyQjFGQjRGNjAeFw0yNTA2MDQx NzU2NTdaFw0yNjAxMTAxNTMwMjBaMDMxMTAvBgNVBAMTKDNCMkUxNTI4RTc1QTRC OUE0NTQ1Nzk1NThGNzAyNTQxODU2NzU2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYHB+8Fh2cxi9W9P+6K7FhBQxOFMCcE2K+O98aWcvN/WHAGfuT q2Bjx3bMOdg6C5qiNmVTh3blZuxqFAI58AIrzoBZqzRTMI+QdEbGmMlAjcfvZvkK 7WMGDbyiuP/OckdKKrSHqlDCwMezJFTH3J+FlHeMlOvzdAC8XxtxdfQ+wT1EmuhQ lm5f6Pj7eAgPTrvsqNXsXtMEb/MTLlV6SPFC327rwDWHXg5TyMFSJw3eNDJqZvub cfKYtvqXObNu7ZpOH4207ddYINCYSTlstZK5VA+yWtgAlj7VYoGKZ6P1aMWSpc8a 3e5fVVRgc9xtQQnIh/PiGLVVQjgglxLF+XuHAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUOy4VKOdaS5pFRXlVj3AlQYVnVjMwHwYDVR0jBBgwFoAUx1hCDPdi5IrXyqYO s53NYisftPYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL3gx aENEUGRpNUlyWHlxWU9zNTNOWWlzZnRQWS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev eDFoQ0RQZGk1SXJYeXFZT3M1M05ZaXNmdFBZLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL3gxaENEUGRpNUlyWHlxWU9zNTNOWWlz ZnRQWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBZmq178RT+ aIoJJ49MlfAQu9sfQjd2z7XSELxJvKtnMbGzGX1O8FkX7JGPEv7VIm1l6aKK9Vy9 ZHdxEYNpiA0C3AyQNJC1vOH8tO3iTrgtNNBJUSiB50q1du/1GcVp7lfKQjAogFQH KwjJlCeDsIEA5/Fjm44i4LftlgM3R8aBQm3m58+8vyUa0kMOi8PaMRCsoW55nELX nlMMOAIPadc3mmFyJIKNCqX37WcmpwuMCIMXL2+I7k87CbVoabgMvbu9eKkgLyMI poHGKSPiKzHcUGxKdoKff85bAPGIpPjpqO4FrozeVKfJJpxEo97BYzfjxX/1GSzZ wN23e94PGMAL -----END CERTIFICATE-----Generated at Thu Jun 5 20:18:14 2025 by rpki-client