$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft File: lMbd_dS6pQQA86EZpYM84AIb2y4.mft (raw, json) Hash identifier: 7xU5ikDISC3zHzyN/Mnk+l1ywUIVuvDhc7qWfI9ee7E= Subject key identifier: 2E:C6:D3:38:9E:43:45:78:E6:C0:A0:DD:06:05:3E:F1:33:A3:C1:67 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0D91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft Manifest number: 0D53 Signing time: Fri 04 Jul 2025 22:03:04 +0000 Manifest this update: Fri 04 Jul 2025 22:03:04 +0000 Manifest next update: Sun 06 Jul 2025 22:03:04 +0000 Files and hashes: 1: B9M25b-vBa_-1HAIQWWegNkVjIg.roa (hash: 8+Crmbe/Mv9Ia8EZr4BXvo6dceoO908d4JqOOFWOI5s=) 2: BIub320nYdPatc4C_iYQhKhbhgk.roa (hash: 7fn9eSiLfYMIym6l1wiQJS98aF5GRRL9E3MdabOvfeI=) 3: Dq0mA7lRxSzJwUvxrR7bGXQEimI.roa (hash: ShCHHhfAIy3vUkZ3fzAc6FFc/EWLdJ+N/9plaJ2gVcs=) 4: FqX27lpwcMdNX-WM38Ewb556jQw.roa (hash: 1DoMKBDoKj31eBNVsfzg4Gs/8XYE4ex8itWkGmXcQd4=) 5: TtI5eZI0m9QVvxkjVTDpyc9wn4M.roa (hash: 62KrG0lj7CMHCIxXI6WqEQyOhtDozHeEvLbv9FsKDVY=) 6: UKmTSZiUQRVBiY__M8DuBnhysm8.roa (hash: UE+undVFYb6mmUhtLEeauEBG/vnQBqnHG99HBZMQ2JI=) 7: XK8cYSmmP7C6dZgjg1k27NrlqoI.roa (hash: EdnC1tzjWDDJ48ZQu+rrvkqgutv0hTZxZz6H2tGiI9U=) 8: lMbd_dS6pQQA86EZpYM84AIb2y4.crl (hash: gAYBxKubaStRsjadLbpT8iqWBZ//GOWYPHpdlMnecVY=) 9: rnlCDzNXcPjhb9z5Fk6lE1XWtPY.roa (hash: 2k/XcAuUpabVSSsPUi3LRCI4gJZtEjWxGxsIKhl8foQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 00:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3473 (0xd91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Jul 4 22:03:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2EC6D3389E434578E6C0A0DD06053EF133A3C167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:97:ca:ab:8e:41:76:f1:d1:ea:d3:1e:52:ef: b5:2c:d1:24:94:30:d1:03:4b:91:45:ed:91:a3:fc: a9:8d:d2:9b:a0:cb:d9:95:18:a3:c7:ee:c0:02:3f: 0e:5b:82:b5:88:c9:68:5b:7c:06:8f:8a:49:08:e8: 5f:e2:fa:03:66:91:b8:b9:d8:dd:65:f5:bf:47:3f: 10:69:19:d3:98:62:03:61:14:5f:9d:35:e0:41:12: b0:18:89:4b:ff:5f:8f:67:e6:c6:13:14:26:f6:b9: f7:bd:42:ee:4f:2b:ec:f1:96:b5:1a:fd:32:73:42: 79:75:04:9d:f8:f9:5f:45:e1:75:b3:ef:7d:9c:a0: ac:5f:54:22:76:b5:b4:73:91:d4:50:8a:8f:6e:7a: 05:25:fc:56:a1:df:44:fc:40:48:41:55:69:c8:d8: 9c:74:89:2a:87:f9:5c:3f:a3:44:b7:61:9b:11:0a: 38:2c:1b:29:2c:43:67:7c:4f:f6:27:7f:ba:87:e6: 05:1c:d1:40:2d:3f:5f:d1:11:49:40:8f:c4:37:f0: aa:f5:a8:9e:b6:9c:a9:cb:65:6a:cf:09:10:52:1d: 4c:bc:74:58:27:d2:e1:02:47:84:90:3a:b4:9f:84: 2e:c3:5c:29:da:c2:64:38:b2:4b:97:a5:9d:6f:4f: f7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C6:D3:38:9E:43:45:78:E6:C0:A0:DD:06:05:3E:F1:33:A3:C1:67 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:7e:b5:93:89:52:4f:08:68:f7:c9:d7:9a:b8:12:89:35:72: 84:5d:69:62:37:c2:2c:86:aa:f9:f2:77:5a:aa:91:bf:07:6d: a3:e5:aa:70:01:6c:38:42:09:55:1d:df:29:47:41:50:68:5a: f0:19:a3:2b:bd:54:cb:95:39:a3:53:ee:00:a8:47:e6:a9:16: 24:d1:5b:54:98:ef:30:91:e4:30:76:bd:c8:30:47:81:8e:dd: dd:81:87:68:00:20:50:bd:24:dc:a0:77:ce:57:c1:7e:b3:d2: 7a:7a:9b:2d:40:5a:7b:86:3e:f2:0e:87:f6:eb:01:0f:f0:e9: 79:9a:60:a3:40:43:76:a1:6b:75:46:e6:f4:a0:ab:27:b3:51: 6f:12:f9:21:84:af:40:55:a4:7b:43:64:61:c9:c5:bc:6e:1c: a7:94:0c:14:2d:ad:3e:19:74:5b:0e:68:d8:a0:b0:be:aa:f8: 73:b1:a4:e9:54:8a:6b:d4:38:9f:e9:e2:a9:bd:69:c8:e3:1c: 98:15:74:0e:2b:6e:f5:fb:11:37:5f:84:1e:14:08:3a:d8:d2: dd:6e:38:03:ea:af:e8:ba:b5:ff:b9:93:5e:47:a9:b8:fa:9c: 51:c2:fd:e7:bf:c8:8d:29:16:15:a8:8d:4e:9e:41:9a:16:e9: eb:1e:9b:25 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNTA3MDQy MjAzMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFQzZEMzM4OUU0MzQ1 NzhFNkMwQTBERDA2MDUzRUYxMzNBM0MxNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMl8qrjkF28dHq0x5S77Us0SSUMNEDS5FF7ZGj/KmN0pugy9mV GKPH7sACPw5bgrWIyWhbfAaPikkI6F/i+gNmkbi52N1l9b9HPxBpGdOYYgNhFF+d NeBBErAYiUv/X49n5sYTFCb2ufe9Qu5PK+zxlrUa/TJzQnl1BJ34+V9F4XWz732c oKxfVCJ2tbRzkdRQio9uegUl/Fah30T8QEhBVWnI2Jx0iSqH+Vw/o0S3YZsRCjgs GyksQ2d8T/Ynf7qH5gUc0UAtP1/REUlAj8Q38Kr1qJ62nKnLZWrPCRBSHUy8dFgn 0uECR4SQOrSfhC7DXCnawmQ4skuXpZ1vT/fnAgMBAAGjggIFMIICATAdBgNVHQ4E FgQULsbTOJ5DRXjmwKDdBgU+8TOjwWcwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9sTWJkX2RTNnBRUUE4NkVacFlN ODRBSWIyeTQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4H61 k4lSTwho98nXmrgSiTVyhF1pYjfCLIaq+fJ3WqqRvwdto+WqcAFsOEIJVR3fKUdB UGha8BmjK71Uy5U5o1PuAKhH5qkWJNFbVJjvMJHkMHa9yDBHgY7d3YGHaAAgUL0k 3KB3zlfBfrPSenqbLUBae4Y+8g6H9usBD/DpeZpgo0BDdqFrdUbm9KCrJ7NRbxL5 IYSvQFWke0NkYcnFvG4cp5QMFC2tPhl0Ww5o2KCwvqr4c7Gk6VSKa9Q4n+niqb1p yOMcmBV0Ditu9fsRN1+EHhQIOtjS3W44A+qv6Lq1/7mTXkepuPqcUcL957/IjSkW FaiNTp5Bmhbp6x6bJQ== -----END CERTIFICATE-----Generated at Fri Jul 4 23:20:35 2025 by rpki-client