$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft File: 0SSAw3OkqF1efXJZMUQ137NEBEA.mft (raw, json) Hash identifier: DHMFhEf8EKTjb4yWCjrogI6hFVR1EtKelK+FsH9ywgQ= Subject key identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 Authority key identifier: D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 Certificate issuer: /CN=D12480C373A4A85D5E7D7259314435DFB3440440 Certificate serial: 0D18 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft Manifest number: 0D18 Signing time: Sat 17 May 2025 21:53:38 +0000 Manifest this update: Sat 17 May 2025 21:53:38 +0000 Manifest next update: Mon 19 May 2025 21:53:38 +0000 Files and hashes: 1: 0SSAw3OkqF1efXJZMUQ137NEBEA.crl (hash: 6Z6jSm90iPA+1M4tU+s3pjkZks2cowTi8j3Pj7r9kKA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3352 (0xd18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D12480C373A4A85D5E7D7259314435DFB3440440 Validity Not Before: May 17 21:53:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=679553EAF718165E2C6F7C23CBA05EE3F79704A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:89:34:5d:8d:6a:29:a5:8f:c4:e1:db:fd: 5d:46:b9:22:d4:cb:84:17:df:78:5f:fb:c6:e8:46: ae:67:c7:aa:e8:45:a2:86:6b:21:1b:6e:1b:4e:82: ae:2e:50:8b:90:c0:07:27:82:10:ea:a5:5a:5d:7b: 46:e1:ce:0c:e8:ef:51:c6:de:54:4a:aa:da:0e:7e: ef:84:b7:8d:33:b9:ec:19:3a:94:4a:32:79:9f:11: cc:25:86:49:e2:df:63:af:ab:f1:f8:ab:12:c6:9d: 6e:6c:fe:46:67:c5:b1:4b:0d:47:6e:f8:1d:03:bb: 56:7e:1b:4b:5c:ea:67:45:e5:9f:d5:6b:e0:27:14: 57:b9:a9:07:9b:0c:93:c4:f1:17:37:20:cf:d6:5b: 24:32:d8:93:e6:0d:01:50:89:93:11:28:ff:9c:30: 2a:de:9f:d7:47:11:32:73:ad:16:08:5a:b0:53:5f: 67:98:f1:04:7f:56:e8:7f:62:95:23:a0:f6:5b:5b: 5f:ba:18:a3:c4:6e:67:99:61:7d:0c:d8:cc:f9:7a: 81:cd:c5:3b:ec:61:db:ac:bf:9c:50:2b:8f:8d:69: 1d:2a:8c:8d:61:5a:a5:f7:bb:69:09:54:49:77:8d: 47:41:22:a8:92:43:e5:3c:90:83:b7:fe:39:39:18: 68:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 X509v3 Authority Key Identifier: keyid:D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:86:5e:ab:e9:bd:52:10:be:e2:81:d4:d5:bb:5d:1c:f9:3b: 95:72:19:e3:ff:ec:b5:53:4b:a2:fd:6a:f1:ba:9c:b9:8e:e5: 5f:f0:fe:9d:56:54:ce:7f:ea:79:c6:d8:f3:88:51:4b:fa:d2: 1a:56:96:6e:11:21:e6:c9:76:5a:03:d0:f0:29:c4:32:db:84: 51:5d:95:2a:56:b2:05:f4:17:4b:e5:0c:d2:42:62:b3:46:e0: 83:95:8e:1a:21:ae:a5:50:5f:dc:20:d4:a1:d3:6c:48:3f:2e: 57:0a:fd:d7:c8:3a:f5:25:41:0c:88:d3:67:bc:a1:08:02:f7: 51:63:87:91:2c:2c:26:26:ed:8d:8d:58:8c:ed:b1:94:ec:99: 97:61:cb:be:e3:40:9c:fa:7b:77:bc:f8:e4:6a:40:f3:2b:22: f9:4a:0c:ee:a0:f9:0f:5c:60:f6:cf:43:af:ef:ce:d4:b3:13: c7:0e:63:c1:d0:14:b3:68:2c:00:1e:7b:1e:c8:9d:6c:38:6b: 8d:ca:5a:a4:97:b0:72:e5:28:cd:79:c3:d3:fc:57:2c:03:fb: a3:47:77:f6:47:49:08:37:3c:60:b7:9e:51:fd:3d:bb:1f:7b: b0:27:d0:9b:52:b4:50:da:36:01:50:c1:45:cc:51:78:b7:6a: 9c:5f:cc:9a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDRgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEy NDgwQzM3M0E0QTg1RDVFN0Q3MjU5MzE0NDM1REZCMzQ0MDQ0MDAeFw0yNTA1MTcy MTUzMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3OTU1M0VBRjcxODE2 NUUyQzZGN0MyM0NCQTA1RUUzRjc5NzA0QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2BYk0XY1qKaWPxOHb/V1GuSLUy4QX33hf+8boRq5nx6roRaKG ayEbbhtOgq4uUIuQwAcnghDqpVpde0bhzgzo71HG3lRKqtoOfu+Et40zuewZOpRK MnmfEcwlhkni32Ovq/H4qxLGnW5s/kZnxbFLDUdu+B0Du1Z+G0tc6mdF5Z/Va+An FFe5qQebDJPE8Rc3IM/WWyQy2JPmDQFQiZMRKP+cMCren9dHETJzrRYIWrBTX2eY 8QR/Vuh/YpUjoPZbW1+6GKPEbmeZYX0M2Mz5eoHNxTvsYdusv5xQK4+NaR0qjI1h WqX3u2kJVEl3jUdBIqiSQ+U8kIO3/jk5GGjVAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUZ5VT6vcYFl4sb3wjy6Be4/eXBKcwHwYDVR0jBBgwFoAU0SSAw3OkqF1efXJZ MUQ137NEBEAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0VUT1Av MFNTQXczT2txRjFlZlhKWk1VUTEzN05FQkVBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8wU1NBdzNPa3FGMWVmWEpaTVVRMTM3TkVCRUEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HRVRPUC8wU1NBdzNPa3FGMWVmWEpaTVVR MTM3TkVCRUEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhoZe q+m9UhC+4oHU1btdHPk7lXIZ4//stVNLov1q8bqcuY7lX/D+nVZUzn/qecbY84hR S/rSGlaWbhEh5sl2WgPQ8CnEMtuEUV2VKlayBfQXS+UM0kJis0bgg5WOGiGupVBf 3CDUodNsSD8uVwr918g69SVBDIjTZ7yhCAL3UWOHkSwsJibtjY1YjO2xlOyZl2HL vuNAnPp7d7z45GpA8ysi+UoM7qD5D1xg9s9Dr+/O1LMTxw5jwdAUs2gsAB57Hsid bDhrjcpapJewcuUozXnD0/xXLAP7o0d39kdJCDc8YLeeUf09ux97sCfQm1K0UNo2 AVDBRcxReLdqnF/Mmg== -----END CERTIFICATE-----Generated at Mon May 19 04:23:06 2025 by rpki-client