$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft File: m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft (raw, json) Hash identifier: qp6YfrHyUxz87UwWZ8xuFzticBPIDe5l88x3q61DnpU= Subject key identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 02DF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft Manifest number: 02CE Signing time: Sun 01 Jun 2025 22:27:04 +0000 Manifest this update: Sun 01 Jun 2025 22:27:04 +0000 Manifest next update: Tue 03 Jun 2025 22:27:04 +0000 Files and hashes: 1: 4vIvNBZt31RGQolUnEjDdVMUQlM.roa (hash: jncrR3qqsLLMj8c0fDC0tRu9uOwvP9XStnsvZk7i+bk=) 2: AhpBwA6DigIYFU0kh2opKo3UgoM.roa (hash: EuyROugNb9aotCr1SzAQ/oG/Bx/PzN9KSIT9qy031bI=) 3: H-2A2GhR8QtThMQIuA1DIBKfQPM.roa (hash: qf2hNRs8P8P7Yutye8MGKghfFDmW8UzO/ODUf2TxJTE=) 4: JypRIJVFCDF9nHrztmMuWXOQrVI.roa (hash: Z9anN/46mmAVyxiuIOx7k1jO3hcqWl4sBZVw8E9PbmA=) 5: m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl (hash: glbOOCP598WfKBjqCQR16uCciDFuHTZbLOZIr/Pgs10=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 14:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Jun 1 22:27:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=795D905E77952DD1FEC28C6A56DA1FDDCF1E0C6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:39:bb:30:78:4f:5e:c4:e7:47:9e:70:1b:2a: d2:fc:24:de:98:60:2f:fc:73:5a:7f:3a:94:74:4a: a8:cf:a5:6c:26:b5:7e:90:27:e3:1f:f5:5e:c4:c3: 62:de:e1:c8:07:f8:9f:ed:b9:cc:5c:43:3b:fc:1d: f5:74:12:ab:fe:a6:e9:ec:fb:95:fb:e2:e6:2d:18: 71:14:b8:75:36:f1:25:b0:fa:09:4b:89:28:97:fa: 34:c0:dc:fb:0f:74:e5:e9:82:e3:e3:3c:b9:44:31: ab:d7:ec:25:43:d4:b4:87:5b:bd:66:de:30:b2:1b: 4c:cb:c3:6d:ae:99:12:bc:80:95:46:76:39:e0:59: b1:fb:79:b5:4f:c9:c0:5d:05:a9:4b:e9:48:1c:9c: 47:f4:35:81:7c:72:d5:25:5b:9b:ce:c4:2b:1a:a4: 6f:d6:90:e1:95:bc:19:b1:3e:00:3e:b2:9e:63:b7: b7:64:68:7c:f8:18:2f:6b:8d:fa:11:7c:82:df:8b: 72:7b:1f:9a:fb:7f:17:11:73:42:64:b0:28:70:91: 14:ef:48:da:e9:82:6b:93:03:81:48:fc:03:9f:8a: 36:2e:de:af:ff:2e:01:1e:e2:60:05:62:b5:c5:a4: 3f:8d:d9:fc:77:e5:1c:59:bb:be:67:03:e6:18:d5: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:55:cc:13:a1:39:69:77:a8:96:00:00:59:c3:03:66:74:f1: 3d:5e:b0:02:9e:04:bc:0f:80:85:d4:18:d4:3a:63:9f:ec:f9: e5:e0:ff:5b:89:b6:42:7d:f7:14:39:29:fb:9a:68:be:d2:3d: 10:a7:60:7e:30:e6:8b:d3:7b:c1:df:6b:f6:17:32:84:f1:e7: 4d:f1:a1:d9:0f:05:0f:ad:20:33:06:5f:5e:4f:1a:26:e0:a9: 38:46:81:46:cc:f0:8b:4d:28:e0:7c:05:d8:42:09:e3:6e:ff: b0:4b:e5:28:80:a0:32:4d:90:13:51:a1:88:44:6f:58:0a:d5: fc:a5:26:89:36:ca:da:81:29:6b:3d:2b:6e:5c:bb:31:8d:b7: a9:60:ba:22:d8:7e:1b:75:60:f7:5b:bd:c7:22:50:93:5a:b1: 19:c9:7a:21:5c:a1:3e:83:52:68:25:46:b6:38:db:d1:82:01: e0:b6:46:fc:b3:23:14:6f:93:88:86:9e:27:57:d4:9d:97:e2: fd:e8:b7:fa:42:ca:3c:5f:52:67:7f:6d:2f:38:9c:ba:c6:c3: 94:aa:fc:c8:fb:7a:5d:1a:ba:be:60:68:82:b1:8d:ad:96:cd: c1:ef:7c:df:ad:f6:34:44:ca:7e:ca:4b:94:ce:66:93:ea:aa: ee:d0:ca:12 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNTA2MDEy MjI3MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5NUQ5MDVFNzc5NTJE RDFGRUMyOEM2QTU2REExRkREQ0YxRTBDNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeObsweE9exOdHnnAbKtL8JN6YYC/8c1p/OpR0SqjPpWwmtX6Q J+Mf9V7Ew2Le4cgH+J/tucxcQzv8HfV0Eqv+puns+5X74uYtGHEUuHU28SWw+glL iSiX+jTA3PsPdOXpguPjPLlEMavX7CVD1LSHW71m3jCyG0zLw22umRK8gJVGdjng WbH7ebVPycBdBalL6UgcnEf0NYF8ctUlW5vOxCsapG/WkOGVvBmxPgA+sp5jt7dk aHz4GC9rjfoRfILfi3J7H5r7fxcRc0JksChwkRTvSNrpgmuTA4FI/AOfijYu3q// LgEe4mAFYrXFpD+N2fx35RxZu75nA+YY1ZXPAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUeV2QXneVLdH+woxqVtof3c8eDGswHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vbV96Nm9oQm5R ckxBbWVQMHdxVUVLT1hOWXRNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABRVzBOhOWl3qJYAAFnDA2Z08T1esAKeBLwPgIXUGNQ6Y5/s+eXg/1uJ tkJ99xQ5KfuaaL7SPRCnYH4w5ovTe8Hfa/YXMoTx503xodkPBQ+tIDMGX15PGibg qThGgUbM8ItNKOB8BdhCCeNu/7BL5SiAoDJNkBNRoYhEb1gK1fylJok2ytqBKWs9 K25cuzGNt6lguiLYfht1YPdbvcciUJNasRnJeiFcoT6DUmglRrY429GCAeC2Rvyz IxRvk4iGnidX1J2X4v3ot/pCyjxfUmd/bS84nLrGw5Sq/Mj7el0aur5gaIKxja2W zcHvfN+t9jREyn7KS5TOZpPqqu7QyhI= -----END CERTIFICATE-----Generated at Tue Jun 3 10:08:43 2025 by rpki-client