$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft File: 4CWCsCflcDjqAKPoSE1V3uouGio.mft (raw, json) Hash identifier: pQkXobAe8eoIJVZxFsfvu20Wa0YXzB+HF1hJNDDrqzs= Subject key identifier: 94:3B:8F:F0:2A:79:12:CE:0F:09:D8:47:BE:42:D0:BA:8D:19:AC:F3 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0DDE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft Manifest number: 0D33 Signing time: Mon 07 Apr 2025 09:07:23 +0000 Manifest this update: Mon 07 Apr 2025 09:07:23 +0000 Manifest next update: Wed 09 Apr 2025 09:07:23 +0000 Files and hashes: 1: -aWiVUWH2huRdD0SJUeYya_ylRA.roa (hash: R8XmZfuWmQ3u74YugA5Mco9y8qNmWAX95yEixozfiNw=) 2: 0u36obiHSZ6yWMBltLYOSggfNrQ.roa (hash: 7gb11x7l2vO7/VxDoyZ3jqU6wLJGBWZ8R7+5lK0Vzsw=) 3: 4CWCsCflcDjqAKPoSE1V3uouGio.crl (hash: ECRo7o8u9m6ypj7s49jV7yuAmNElNkTuszphqVEJFc8=) 4: 8Js1DK1N8JCqMFhnt9_K_MAFqtA.roa (hash: 39/XQluNYiTKL6Lp3HPOvicz33wQetPTuGzsc++/CgY=) 5: A4EX6RW63Fh-c5743OscMfZl0AQ.roa (hash: SPjy/LLeNvChRL/XDN9vK6qEBZH1eE0w71RHHsYBHXc=) 6: Br8HB0xT0-VLhFcd9AYGwgDykps.roa (hash: ybjZJA0AsCqGBH0XkY+LOSL0YeTBQAaqffcE2Nu6vTQ=) 7: D9VsMxstBnZ992VQmPJD5sd_bnQ.roa (hash: wsgVKYawekLE4+eu/wQMeA1fsplxEiVN9ykXuykO/2E=) 8: EBzBX-tMa8JlRXe-NzUVM_kQXKU.roa (hash: fNHDVXhNOtk3I5d2c7nUQDlf/N+imtQ+Ff9zOKDVMA0=) 9: EtzpmMPk9OXlb0MJxeYHIjNzlZQ.roa (hash: S+sYZ2Azx0j7y2LYxd2iJMQH14MPU6tkgNz/JiPxxmk=) 10: SkNLLauOU4gkJDQLKMUGw_XUdg4.roa (hash: 5oHpCXaHnMH50ZXYoqACTJRGjV+W5zV4juP+XWmkZDY=) 11: Zh4w6mFHwdUa9ju3BzIc1Vc3lZE.roa (hash: TB6NDPddxbasfrxNpDkKss/Q/oN46xpBeF4K21/a5KQ=) 12: b8f-d8RqPgqOu82eLf3R8il1-o4.roa (hash: ThDJcoSwKXdqVWKOxnJmEAaoDfCZdfbTWtthet1BVII=) 13: bBWEdmUBw8dpoCe0O6U3OWN0MYg.roa (hash: XV8pLOqLODnI6clR4bRaHvvsogx8lNbBzf9TCVPdlsc=) 14: e4DOTkTjr9nQlWSKOZY4bosCAQI.roa (hash: XcnPUT8+KBiB+8UFrU3WOoeXLNGOQhtouILHMq7KIoU=) 15: erDyOAc8Ke5k3qbto1yKiSXTdec.roa (hash: 1LYjniYP7RBDAJGt9QFkonxzOWS/wcM6FYe3QS1jWHw=) 16: ftomGWWLQSbd3A1zAzmEBmhomv4.roa (hash: PbIpDkGUxK9UNcAI+kI3/umB3gHoHtln1PmQQiuf/Kw=) 17: iQO5YHDsKK7YRIU2VhzaGLIfT0g.roa (hash: 3ul2glMUlNsKXEHTNkFXlJ5QEN5e/PMv1LxnCodvKAA=) 18: lXrMXdDAAODIevYVHnwCzpBbYJI.roa (hash: q1uDSbPdpzMxMYA7TK+FRPN15PQRqSwwZA46g8KIe1M=) 19: nkQ_0LmG9Mh9S88Ur7MJmhxrnU4.roa (hash: U3NccPiAgXXZ5Ubp9zuNMRpPJFb4r48NhfKEevNzG3o=) 20: qpWc1HYl_wSnyArGoCbQj1K5XnM.roa (hash: 8CUATLm9X9VC3tv5Ggeefg7MJK5iuqA6H2y3X2iN53Y=) 21: tKewCWbZQZwgfpwq6WNqcJjjgJI.roa (hash: f86MJJahIVoqk7ESsSOvF6ucqdGr2LNQ5rjl9aPfLho=) 22: zZd4tI2U3He9WtcWBC15ig9_010.roa (hash: DsNYAuSrAlGON8ZglDhMAfqrZ28BCvZgG46AmzbS4fc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3550 (0xdde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Apr 7 09:07:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=943B8FF02A7912CE0F09D847BE42D0BA8D19ACF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:21:51:1d:61:2c:a9:38:49:fc:a7:e2:d5: b4:64:e0:15:75:84:48:55:4b:7f:3f:47:12:1b:f2: f8:ed:51:09:08:2d:6c:11:1d:99:14:e2:46:f3:f9: e3:e5:18:5a:d8:78:ad:e3:77:71:b6:2e:9a:fa:73: 66:03:c7:d7:eb:28:a8:cc:d6:30:41:dd:d0:26:59: 35:3e:37:81:da:db:e7:d1:2c:45:ab:c8:34:04:f7: 55:bf:d9:de:4e:c1:60:c6:5f:e7:8d:5b:2b:ed:4a: e1:51:a5:27:a8:55:6c:e7:63:07:9f:93:74:50:2f: bb:1e:d4:c2:00:2a:7d:8c:7c:e3:9e:75:f8:b1:46: cf:8b:43:ff:08:0f:60:a6:d9:28:34:bd:7f:17:44: 0c:f6:a0:96:f3:6a:c5:60:d4:b5:9f:93:e2:7b:f6: 6b:6a:03:a3:9d:6b:34:ab:ff:e7:04:77:03:81:5c: ad:a8:1f:b5:9f:b3:42:d3:e0:c5:a8:5c:f4:99:ea: e2:8d:fb:8f:6b:c3:c6:35:f9:cc:15:01:40:5c:28: 1a:dd:a4:15:ec:81:f4:c0:28:be:08:93:83:91:2e: 13:0b:e6:74:c4:71:f3:22:fa:84:f6:d7:42:6f:90: ca:8a:25:c2:a3:14:fd:10:29:43:33:14:9f:93:28: cf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3B:8F:F0:2A:79:12:CE:0F:09:D8:47:BE:42:D0:BA:8D:19:AC:F3 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:69:26:e8:45:87:f1:61:d2:d3:99:32:e5:51:03:3a:88:f9: 28:91:1f:0e:90:e5:74:ed:b4:1d:ad:1c:cf:ad:7e:6d:cf:83: c0:bd:fd:33:1b:4d:1f:ea:e5:46:db:46:e3:4c:05:14:2b:c5: bf:db:1f:c6:6a:ae:90:65:22:1e:c2:96:d6:63:b5:94:cf:12: ab:02:05:0f:63:2b:9e:61:8e:58:d2:7b:25:b9:6c:f8:db:2b: 1c:6d:7e:91:df:a8:e2:50:23:fc:76:e3:0d:5a:ac:05:b2:24: 3d:e1:0b:8d:62:69:2d:f5:75:0e:e1:46:69:12:b4:5a:76:88: cf:12:5f:63:6c:21:b3:6f:30:48:56:a1:4c:f7:27:d9:b1:4c: 9f:30:e8:3e:87:fb:65:82:d8:08:dd:8f:ca:5f:70:75:f1:d6: ab:3e:6f:a7:9a:56:8c:39:4f:fd:10:b7:66:5b:45:7a:d0:8e: 63:7f:56:64:aa:58:c0:15:47:68:ba:d1:90:1b:e0:c1:d1:97: 7e:a4:9b:9f:d2:bb:55:8c:0a:e9:e1:39:a9:7c:4d:4e:e6:03: 04:c6:4d:ee:2b:f7:1d:d4:d2:48:29:79:f8:65:25:1e:8c:84: 0b:10:0c:aa:c8:4c:d6:6e:83:46:aa:f9:8f:31:12:84:7e:38: de:54:cb:26 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDd4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA0MDcw OTA3MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0M0I4RkYwMkE3OTEy Q0UwRjA5RDg0N0JFNDJEMEJBOEQxOUFDRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMeCFRHWEsqThJ/Kfi1bRk4BV1hEhVS38/RxIb8vjtUQkILWwR HZkU4kbz+ePlGFrYeK3jd3G2Lpr6c2YDx9frKKjM1jBB3dAmWTU+N4Ha2+fRLEWr yDQE91W/2d5OwWDGX+eNWyvtSuFRpSeoVWznYwefk3RQL7se1MIAKn2MfOOedfix Rs+LQ/8ID2Cm2Sg0vX8XRAz2oJbzasVg1LWfk+J79mtqA6OdazSr/+cEdwOBXK2o H7Wfs0LT4MWoXPSZ6uKN+49rw8Y1+cwVAUBcKBrdpBXsgfTAKL4Ik4ORLhML5nTE cfMi+oT210JvkMqKJcKjFP0QKUMzFJ+TKM+1AgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUlDuP8Cp5Es4PCdhHvkLQuo0ZrPMwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvNENXQ3NDZmxjRGpxQUtQb1NFMVYz dW91R2lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJtpJuhF h/Fh0tOZMuVRAzqI+SiRHw6Q5XTttB2tHM+tfm3Pg8C9/TMbTR/q5UbbRuNMBRQr xb/bH8ZqrpBlIh7CltZjtZTPEqsCBQ9jK55hjljSeyW5bPjbKxxtfpHfqOJQI/x2 4w1arAWyJD3hC41iaS31dQ7hRmkStFp2iM8SX2NsIbNvMEhWoUz3J9mxTJ8w6D6H +2WC2Ajdj8pfcHXx1qs+b6eaVow5T/0Qt2ZbRXrQjmN/VmSqWMAVR2i60ZAb4MHR l36km5/Su1WMCunhOal8TU7mAwTGTe4r9x3U0kgpefhlJR6MhAsQDKrITNZug0aq +Y8xEoR+ON5UyyY= -----END CERTIFICATE-----Generated at Mon Apr 7 19:39:12 2025 by rpki-client