$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.mft File: wJahbCg9FgC_MmvP68HRHQoGPZ4.mft (raw, json) Hash identifier: noEB+26pwNiuY04dyTKUCsadSLX6c/21KZ9yPVHbkiQ= Subject key identifier: 1B:3A:DA:B5:BB:67:F7:78:04:F1:63:57:A6:49:7C:F0:AB:0F:F9:DB Authority key identifier: C0:96:A1:6C:28:3D:16:00:BF:32:6B:CF:EB:C1:D1:1D:0A:06:3D:9E Certificate issuer: /CN=C096A16C283D1600BF326BCFEBC1D11D0A063D9E Certificate serial: 01AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wJahbCg9FgC_MmvP68HRHQoGPZ4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.mft Manifest number: 01AB Signing time: Tue 08 Apr 2025 21:36:10 +0000 Manifest this update: Tue 08 Apr 2025 21:36:10 +0000 Manifest next update: Thu 10 Apr 2025 21:36:10 +0000 Files and hashes: 1: wJahbCg9FgC_MmvP68HRHQoGPZ4.crl (hash: 80xw0cneXICg4ND1dC8ZWUhi+szLzSIpoMZ/yaJ5X6I=) 2: wTfPiLCSAdkk3FDX2ayM5ViIXck.roa (hash: mrUGXWx+6DjRhJBHQi1oUIkBO2vJiX79l5sdzNEYhNg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wJahbCg9FgC_MmvP68HRHQoGPZ4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C096A16C283D1600BF326BCFEBC1D11D0A063D9E Validity Not Before: Apr 8 21:36:10 2025 GMT Not After : Nov 7 15:30:19 2025 GMT Subject: CN=1B3ADAB5BB67F77804F16357A6497CF0AB0FF9DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:25:8c:0b:10:be:25:fe:df:be:81:39:71:41: f3:56:3a:1a:c0:2e:52:a6:5b:72:55:fd:4d:bd:bc: 77:7b:e1:41:86:f7:57:fa:b6:d0:c9:e4:a8:c7:32: 79:20:b3:82:48:c2:6d:17:e9:81:44:bd:92:86:4c: f1:52:e3:aa:04:24:e7:ac:c4:4b:b8:97:b0:61:26: 64:ab:ef:17:c2:76:fe:74:c8:e3:93:0a:51:c8:ab: 85:c9:de:fb:2e:17:1c:98:fd:7d:b4:f4:dc:d2:da: 58:3f:1f:2c:6c:57:d8:3d:d9:62:2e:ef:3b:45:29: 37:6c:be:9a:74:ea:d1:e0:81:9b:91:88:35:4d:06: c7:b6:c3:1d:e9:cf:3c:44:d7:eb:05:68:e4:47:32: ad:58:95:87:60:d3:a5:08:1d:e0:1c:e3:e6:a4:0f: 8e:92:8e:89:ba:95:2d:26:24:a1:c7:af:c7:ad:fb: a2:21:cb:4b:35:7c:9c:ea:57:82:8e:a2:ce:65:2f: ca:92:8e:2a:8c:42:11:27:56:cb:49:49:70:6b:4d: 75:04:fa:0a:3d:fc:bd:7f:ac:13:78:dc:05:77:ef: 22:82:12:b7:af:fe:28:d6:5e:aa:ed:c1:f6:42:46: 8d:86:fb:4e:a8:f3:f1:8d:12:8f:57:a0:c7:a7:6b: 40:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3A:DA:B5:BB:67:F7:78:04:F1:63:57:A6:49:7C:F0:AB:0F:F9:DB X509v3 Authority Key Identifier: keyid:C0:96:A1:6C:28:3D:16:00:BF:32:6B:CF:EB:C1:D1:1D:0A:06:3D:9E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wJahbCg9FgC_MmvP68HRHQoGPZ4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/wJahbCg9FgC_MmvP68HRHQoGPZ4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:51:b2:48:31:a3:71:47:33:53:6c:fa:32:fa:7c:e2:f9:fe: ee:d5:79:d7:d7:14:c6:de:61:8e:94:14:23:86:c2:83:e8:0e: c7:b7:30:71:5b:17:b0:19:6f:99:57:e9:d2:1d:c6:4f:71:bd: f7:6c:f1:7b:7b:2b:df:d9:ae:63:6b:d8:96:fb:e1:65:03:6a: 87:f5:cc:91:8a:5f:38:e6:d3:dd:7b:c2:22:5a:b5:ab:0d:85: 61:a3:a7:c5:1a:7c:c1:7d:93:e5:8b:53:a9:84:db:86:c8:ec: 53:2f:70:5f:72:8e:be:87:8c:5b:ea:fb:28:cb:51:33:e3:e9: 44:54:1d:04:9e:17:03:89:ac:0a:01:90:cb:2f:df:97:4f:be: 4e:a5:aa:1b:d8:89:ca:46:5a:b3:5c:f3:cd:8e:9e:d9:34:99: 14:df:9a:bf:74:32:be:fe:f3:71:61:9c:a8:b3:89:6d:5a:eb: 2c:69:53:fa:b8:a1:81:64:30:0d:3d:df:24:6e:b5:b7:66:95: 35:fb:6b:38:b9:41:8b:76:65:56:86:a3:72:0c:d1:c1:31:cc: 0a:e3:91:ad:36:66:35:d2:af:d4:f1:64:77:9a:1b:82:1d:fe: de:c6:d9:23:4f:14:43:f1:3a:28:99:84:1e:5e:1f:36:e6:9b: ad:9a:50:c3 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzA5 NkExNkMyODNEMTYwMEJGMzI2QkNGRUJDMUQxMUQwQTA2M0Q5RTAeFw0yNTA0MDgy MTM2MTBaFw0yNTExMDcxNTMwMTlaMDMxMTAvBgNVBAMTKDFCM0FEQUI1QkI2N0Y3 NzgwNEYxNjM1N0E2NDk3Q0YwQUIwRkY5REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuJYwLEL4l/t++gTlxQfNWOhrALlKmW3JV/U29vHd74UGG91f6 ttDJ5KjHMnkgs4JIwm0X6YFEvZKGTPFS46oEJOesxEu4l7BhJmSr7xfCdv50yOOT ClHIq4XJ3vsuFxyY/X209NzS2lg/HyxsV9g92WIu7ztFKTdsvpp06tHggZuRiDVN Bse2wx3pzzxE1+sFaORHMq1YlYdg06UIHeAc4+akD46Sjom6lS0mJKHHr8et+6Ih y0s1fJzqV4KOos5lL8qSjiqMQhEnVstJSXBrTXUE+go9/L1/rBN43AV37yKCErev /ijWXqrtwfZCRo2G+06o8/GNEo9XoMena0DpAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUGzratbtn93gE8WNXpkl88KsP+dswHwYDVR0jBBgwFoAUwJahbCg9FgC/MmvP 68HRHQoGPZ4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv d0phaGJDZzlGZ0NfTW12UDY4SFJIUW9HUFo0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93SmFoYkNnOUZnQ19NbXZQNjhIUkhRb0dQWjQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS93SmFoYkNnOUZnQ19NbXZQNjhI UkhRb0dQWjQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlGy SDGjcUczU2z6Mvp84vn+7tV519cUxt5hjpQUI4bCg+gOx7cwcVsXsBlvmVfp0h3G T3G992zxe3sr39muY2vYlvvhZQNqh/XMkYpfOObT3XvCIlq1qw2FYaOnxRp8wX2T 5YtTqYTbhsjsUy9wX3KOvoeMW+r7KMtRM+PpRFQdBJ4XA4msCgGQyy/fl0++TqWq G9iJykZas1zzzY6e2TSZFN+av3Qyvv7zcWGcqLOJbVrrLGlT+rihgWQwDT3fJG61 t2aVNftrOLlBi3ZlVoajcgzRwTHMCuORrTZmNdKv1PFkd5obgh3+3sbZI08UQ/E6 KJmEHl4fNuabrZpQww== -----END CERTIFICATE-----Generated at Wed Apr 9 01:33:20 2025 by rpki-client