$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft File: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft (raw, json) Hash identifier: zTss6Vp9gCmGUqkt/9ij4dcIjEqq1mBWQyFvMQwK31M= Subject key identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A Authority key identifier: D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 Certificate issuer: /CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Certificate serial: 0240 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft Manifest number: 0238 Signing time: Fri 04 Jul 2025 23:02:43 +0000 Manifest this update: Fri 04 Jul 2025 23:02:43 +0000 Manifest next update: Sun 06 Jul 2025 23:02:43 +0000 Files and hashes: 1: 0WIZ85G7yFQ60emLIg4hjQZdrGE.roa (hash: AQvi+KvtOt59jfwnIZ4fki3nEzFXCZcQUpbLAYIdd8c=) 2: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl (hash: 6NiL6PrRML9DJey0NCFsdXksuwTsttZhnVe7I12PxI4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 05:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Validity Not Before: Jul 4 23:02:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=770707B2FDD87DCEE7497AC682964243F898389A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:b9:82:cf:c5:d4:72:69:c6:f5:70:48:14: 0a:c1:74:e9:f2:9a:34:17:2b:3b:04:30:4a:0c:da: 27:91:c6:e5:6f:35:35:03:da:31:3c:e1:53:24:31: c5:97:ee:50:f9:02:71:04:88:08:11:9c:6e:b8:e8: d9:e6:8c:93:54:a2:d9:0a:3e:ed:37:ca:07:85:14: 3a:90:de:5b:6a:0f:21:d3:f8:a0:22:02:51:c5:58: f2:35:7a:16:0f:b0:c3:4d:ed:2f:41:9b:ec:b0:30: 47:14:ad:f6:0f:ac:97:42:6f:f7:6c:c0:60:56:2b: 7a:0b:91:e0:a2:6f:82:6d:4d:59:02:59:88:01:50: b2:28:e5:97:cd:a3:8c:09:68:0d:84:d7:b4:30:2b: 82:3b:68:5e:13:3d:c9:6f:6d:bd:c3:8c:0d:3e:6f: bd:61:6c:7e:97:65:0a:5e:01:7d:66:47:26:37:af: 1a:44:61:0c:43:93:00:e2:38:1f:c5:d6:37:42:49: a9:cd:bb:30:1e:a8:1c:b5:3a:f7:96:bb:e2:07:fc: a9:0b:e0:01:de:9f:e3:51:dd:57:71:bd:15:81:71: da:60:5b:a7:2e:0e:e5:2d:04:60:d7:c6:39:44:95: 84:a1:47:85:7c:dd:08:2c:5c:9d:93:45:78:7e:e1: 2e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A X509v3 Authority Key Identifier: keyid:D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:75:02:7e:4d:7c:5b:23:83:28:d2:f5:e7:62:b8:53:4c:36: b4:00:6b:7a:c6:23:e7:74:ed:2d:02:14:a5:42:1b:ea:33:2c: de:d3:aa:93:5e:81:3d:38:5f:e8:4b:91:01:8b:1f:71:3e:f1: 86:67:05:e0:80:51:d3:d9:1d:89:b4:f7:07:0a:1c:b1:93:bf: 36:64:d2:4c:99:f1:7e:f2:c4:4c:59:5a:a0:b5:ca:90:bd:08: ef:96:cc:17:17:75:b9:ee:f4:39:af:69:e9:29:a8:a9:66:5d: c4:f9:62:7a:1d:4f:2c:df:f3:53:49:04:a9:7c:8c:38:ea:45: 4a:75:04:4b:4d:d4:4f:67:be:c2:a5:6d:7a:db:0a:bc:f3:f3: 25:e4:37:a9:ad:10:ed:6c:dd:06:99:d2:14:fa:c5:f4:93:98: d5:2a:2c:48:70:c7:b3:1d:cd:a6:1b:94:42:02:c0:f2:14:33: 91:5f:e6:9f:98:b1:54:2f:d1:85:88:ed:6f:e4:f9:23:a8:d2: b3:d9:7e:4e:6f:9a:0c:14:6c:be:42:1b:92:93:e5:12:ee:74: fa:70:6a:43:39:fb:67:8d:58:e2:51:2c:05:3e:fe:82:58:49: 6b:6d:76:fe:0c:f8:c6:47:44:d8:43:ff:6f:a2:60:b4:f2:7f: c4:49:0d:8e -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDMz MEJDNEUxMzdCMTUxMkUyRTQ1MDY4MDZCODcwQTRFQUE4NjBENzAeFw0yNTA3MDQy MzAyNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc3MDcwN0IyRkREODdE Q0VFNzQ5N0FDNjgyOTY0MjQzRjg5ODM4OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIKLmCz8XUcmnG9XBIFArBdOnymjQXKzsEMEoM2ieRxuVvNTUD 2jE84VMkMcWX7lD5AnEEiAgRnG646NnmjJNUotkKPu03ygeFFDqQ3ltqDyHT+KAi AlHFWPI1ehYPsMNN7S9Bm+ywMEcUrfYPrJdCb/dswGBWK3oLkeCib4JtTVkCWYgB ULIo5ZfNo4wJaA2E17QwK4I7aF4TPclvbb3DjA0+b71hbH6XZQpeAX1mRyY3rxpE YQxDkwDiOB/F1jdCSanNuzAeqBy1OveWu+IH/KkL4AHen+NR3VdxvRWBcdpgW6cu DuUtBGDXxjlElYShR4V83QgsXJ2TRXh+4S6hAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUdwcHsv3Yfc7nSXrGgpZCQ/iYOJowHwYDVR0jBBgwFoAU0zC8ThN7FRLi5FBo BrhwpOqoYNcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJB U0lTLzB6QzhUaE43RlJMaTVGQm9Ccmh3cE9xb1lOYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMHpDOFRoTjdGUkxpNUZCb0JyaHdwT3FvWU5jLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJBU0lTLzB6QzhUaE43RlJM aTVGQm9Ccmh3cE9xb1lOYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQDddQJ+TXxbI4Mo0vXnYrhTTDa0AGt6xiPndO0tAhSlQhvqMyze06qTXoE9 OF/oS5EBix9xPvGGZwXggFHT2R2JtPcHChyxk782ZNJMmfF+8sRMWVqgtcqQvQjv lswXF3W57vQ5r2npKaipZl3E+WJ6HU8s3/NTSQSpfIw46kVKdQRLTdRPZ77CpW16 2wq88/Ml5DeprRDtbN0GmdIU+sX0k5jVKixIcMezHc2mG5RCAsDyFDORX+afmLFU L9GFiO1v5PkjqNKz2X5Ob5oMFGy+QhuSk+US7nT6cGpDOftnjVjiUSwFPv6CWElr bXb+DPjGR0TYQ/9vomC08n/ESQ2O -----END CERTIFICATE-----Generated at Sat Jul 5 02:35:21 2025 by rpki-client