$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft File: H31if-NqLr9pgJvIR7VDO_Q-N-g.mft (raw, json) Hash identifier: s4Ei6phBk8gvlT60OvnTtclK1Xvv6KadmGmxs4Jc3rc= Subject key identifier: 27:5C:C2:56:94:0E:51:F3:12:8E:1D:6E:DB:74:51:7A:A9:AF:C2:31 Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Certificate serial: 016E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft Manifest number: 0164 Signing time: Mon 14 Apr 2025 20:37:58 +0000 Manifest this update: Mon 14 Apr 2025 20:37:58 +0000 Manifest next update: Wed 16 Apr 2025 20:37:58 +0000 Files and hashes: 1: 6U2F1T0apyKE_s6KjVTtn1ngCPM.roa (hash: T6Wekowtjx5HTVqLi5LQgaYJZqcoVmMpZasCEkrrxIw=) 2: H31if-NqLr9pgJvIR7VDO_Q-N-g.crl (hash: e3AGdZFDgP3K5Hcab2X5nQs5jmIev1ea6S/TvcJcGKY=) 3: N-gjgYlWMDGqdQ2nkVTKjiHMzIY.roa (hash: h9AfKnLubyMCMrK9zicrcaOKGGYE8n9yoUqLKuu2900=) 4: Yntbw-USYk856WNU8EElzSPWBdo.roa (hash: fs0JsH7V9nQ2QlDggHDOKuXkABqnkhYmDsoZKaYP6lE=) 5: ZZriLYLN89RKpRrPPoWbNOg-Drw.roa (hash: dJfoYpAcbLUL3dKXtP/JqT6iLtS+lGV8N+zRPUPTNVc=) 6: uRI5gHEQikWEx19BuluUhbg1CyU.roa (hash: eDXj8CJFc6oOu3dG1DvOfKjAY66n3EWlHuxVx4Q965Q=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 09:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Validity Not Before: Apr 14 20:37:58 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=275CC256940E51F3128E1D6EDB74517AA9AFC231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b4:34:3c:96:ec:88:b4:cc:dd:85:31:50:d3: 7a:8c:ad:83:30:6e:97:a2:f4:93:49:e0:86:5b:42: 34:6e:53:5c:4b:5d:41:9e:06:77:c2:c3:68:0b:f6: ba:e6:68:8f:8d:42:31:20:2c:0a:3b:00:c3:91:4f: b7:2e:e7:e7:1a:6b:09:9c:19:25:80:f1:d2:38:e5: 18:46:1f:a4:ad:90:4d:82:42:8f:25:bb:ef:69:ad: 73:9b:da:54:b8:81:36:98:e0:ef:da:5c:9c:ce:fe: a6:03:5f:06:24:ff:6b:72:78:7a:bb:a8:d3:42:f4: 3e:46:c8:80:72:ba:74:a7:56:61:2e:c1:4a:e8:e4: 0a:91:b2:50:bc:a1:9e:81:c9:7b:3a:2f:ab:89:83: f4:41:72:45:14:b1:f2:63:b9:a4:8e:ea:36:63:96: 17:45:3f:c8:b0:4b:46:7d:36:43:36:43:f5:f2:10: 92:c4:83:02:b9:8f:c6:d3:5b:10:ea:11:e7:68:f0: d9:2f:3a:9e:14:e1:14:14:09:99:e4:e3:23:0f:42: 94:13:f4:63:a4:2d:22:4d:0a:3e:b1:ac:de:e7:2f: 98:c7:72:b3:9b:c2:9f:46:24:04:b9:56:3d:8f:7d: cb:dd:7b:3b:7d:78:ac:f8:71:92:0b:e4:89:14:39: fb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5C:C2:56:94:0E:51:F3:12:8E:1D:6E:DB:74:51:7A:A9:AF:C2:31 X509v3 Authority Key Identifier: keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:54:b9:db:d1:8d:6a:af:16:b0:54:56:c7:ae:17:a0:c9:20: 1b:11:35:d5:a4:ff:8e:89:ca:d5:15:06:cb:ee:d5:fa:71:2c: ee:8a:a1:1e:1c:c3:5b:72:3c:06:eb:83:09:1b:ef:d9:48:3f: 85:91:74:8b:11:83:7a:ec:0b:f2:85:1c:cb:40:ee:6d:4c:d8: 03:9b:53:04:be:a3:02:e7:29:d0:44:f6:f2:3f:1e:f2:d0:22: c7:7d:4d:34:3a:e7:8a:55:5a:06:4f:dd:73:a5:44:71:1e:a5: 5f:e8:a2:a2:ed:4d:b3:7c:df:85:d8:7a:7a:c2:b5:ec:e7:df: 3f:4a:81:54:c3:3a:fa:35:18:9c:f9:b6:ef:9a:3a:d2:4b:26: 99:74:c3:23:5d:ea:81:fc:5d:f4:51:b6:dc:d3:47:98:21:7e: 7f:3d:17:f0:47:0f:e6:5d:93:d1:10:82:26:72:d2:ea:8e:e0: 87:65:0f:19:e6:02:9e:27:33:cf:6d:38:dd:2c:3c:bc:40:b2: ee:3f:75:1a:c4:11:86:73:12:55:7e:0a:97:7d:35:b5:82:6f: fe:3c:07:71:86:f1:23:43:11:a2:e6:7a:e5:ee:89:c7:a4:e8: 50:b9:1e:b5:d0:2d:ef:c1:f7:4c:30:11:f0:bf:7c:c7:db:bd: a7:cf:1a:5b -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY3 RDYyN0ZFMzZBMkVCRjY5ODA5QkM4NDdCNTQzM0JGNDNFMzdFODAeFw0yNTA0MTQy MDM3NThaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKDI3NUNDMjU2OTQwRTUx RjMxMjhFMUQ2RURCNzQ1MTdBQTlBRkMyMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPtDQ8luyItMzdhTFQ03qMrYMwbpei9JNJ4IZbQjRuU1xLXUGe BnfCw2gL9rrmaI+NQjEgLAo7AMORT7cu5+caawmcGSWA8dI45RhGH6StkE2CQo8l u+9prXOb2lS4gTaY4O/aXJzO/qYDXwYk/2tyeHq7qNNC9D5GyIByunSnVmEuwUro 5AqRslC8oZ6ByXs6L6uJg/RBckUUsfJjuaSO6jZjlhdFP8iwS0Z9NkM2Q/XyEJLE gwK5j8bTWxDqEedo8NkvOp4U4RQUCZnk4yMPQpQT9GOkLSJNCj6xrN7nL5jHcrOb wp9GJAS5Vj2Pfcvdezt9eKz4cZIL5IkUOfstAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUJ1zCVpQOUfMSjh1u23RReqmvwjEwHwYDVR0jBBgwFoAUH31if+NqLr9pgJvI R7VDO/Q+N+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvSDMxaWYtTnFMcjlwZ0p2SVI3VkRPX1EtTi1nLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9IMzFpZi1OcUxyOXBnSnZJUjdWRE9fUS1OLWcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9IMzFpZi1OcUxyOXBn SnZJUjdWRE9fUS1OLWcubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjlS529GNaq8WsFRWx64XoMkgGxE11aT/jonK1RUGy+7V+nEs7oqhHhzDW3I8 BuuDCRvv2Ug/hZF0ixGDeuwL8oUcy0DubUzYA5tTBL6jAucp0ET28j8e8tAix31N NDrnilVaBk/dc6VEcR6lX+iiou1Ns3zfhdh6esK17OffP0qBVMM6+jUYnPm275o6 0ksmmXTDI13qgfxd9FG23NNHmCF+fz0X8EcP5l2T0RCCJnLS6o7gh2UPGeYCnicz z2043Sw8vECy7j91GsQRhnMSVX4Kl301tYJv/jwHcYbxI0MRouZ65e6Jx6ToULke tdAt78H3TDAR8L98x9u9p88aWw== -----END CERTIFICATE-----Generated at Wed Apr 16 06:03:31 2025 by rpki-client