$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft File: aMrB-gTYDP4-K-l8erGFK2ZWU18.mft (raw, json) Hash identifier: /r5TnyX0fiym91AUsktGrtd11R/IMTZLKgSKKzlq9f4= Subject key identifier: 06:C2:74:CC:25:B5:C7:36:BD:BE:A4:AD:32:37:AF:D5:46:1B:69:09 Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Certificate serial: 13A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft Manifest number: 1390 Signing time: Sat 23 Aug 2025 21:14:05 +0000 Manifest this update: Sat 23 Aug 2025 21:14:05 +0000 Manifest next update: Mon 25 Aug 2025 21:14:05 +0000 Files and hashes: 1: 6XGvDhhCQBa13ub_Oe5hYLv8zMM.roa (hash: Z1Gx766UgoSnBYLl2jt8suotvAI/pJir5o3p/czJyzk=) 2: aMrB-gTYDP4-K-l8erGFK2ZWU18.crl (hash: xq1UT0RxoCRo8+FJolaUbRgoXYFcZ33w2jEVtW9lqgQ=) 3: sARw9pMu_RpcSMhi8ubdIQCRQa8.roa (hash: kyDTvc/E2K4lbKvS33fEfyUu1GnXr626zoGtZ35HhX4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5025 (0x13a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Validity Not Before: Aug 23 21:14:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=06C274CC25B5C736BDBEA4AD3237AFD5461B6909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d5:87:c4:0b:a7:37:be:2d:dd:5c:55:39:28: 31:c9:ca:ac:20:56:97:9a:40:08:e1:0e:b0:b4:9b: 15:3f:da:29:fd:41:72:26:82:fd:dc:23:f8:89:06: 98:f9:bf:5c:89:dd:f2:87:c3:74:4f:c2:0d:4b:f1: 0e:36:f4:dc:0b:9c:5d:15:66:d3:c2:ed:67:e2:e3: aa:68:4d:f1:c4:a0:52:1c:5b:7d:d0:da:b9:23:83: 55:2e:71:36:db:a6:cf:97:7f:25:cb:7f:0a:50:1c: d7:cf:09:08:e5:bd:63:95:f7:b9:c8:9e:ba:d0:79: 53:ac:69:e6:b2:23:3f:8e:95:7c:26:c6:e7:2d:19: e2:e5:13:8b:a3:70:ce:26:36:ed:12:70:ed:6d:42: 1a:3c:2f:b5:49:45:4d:49:8c:50:a5:5c:88:16:53: df:f6:9c:3e:eb:f6:4d:9f:3b:f6:4c:6c:eb:ea:47: 80:69:19:b5:df:15:ec:fd:8c:04:70:0b:ab:41:8a: 7a:2a:71:21:8a:50:f6:50:c7:d5:a4:3e:a8:3e:e6: 7c:86:6c:e7:8b:69:fc:f7:f0:55:8c:69:f5:ca:c8: a7:d6:2c:c4:f4:56:2f:e8:b2:f2:e1:39:fb:41:49: 1b:40:4f:63:3a:31:4d:9d:48:3f:ea:4b:35:fd:d7: 13:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C2:74:CC:25:B5:C7:36:BD:BE:A4:AD:32:37:AF:D5:46:1B:69:09 X509v3 Authority Key Identifier: keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:72:8e:5e:b3:14:bb:7d:1d:ae:e0:99:7d:ff:c2:c4:b6:5b: 5e:a4:09:ba:ed:6d:c9:95:dc:23:af:dd:35:d8:0c:ec:28:d8: 57:b0:91:f5:05:ad:16:12:cf:63:a4:c2:af:21:35:b0:04:f1: bd:c0:6d:cf:76:e9:0d:d6:a4:74:31:62:ce:92:ed:e4:54:d8: 4e:ab:c4:89:9b:91:9f:1e:15:b2:c0:13:44:77:16:75:f3:6e: eb:0b:e2:3e:4a:e6:5a:ed:a1:78:9b:71:43:65:d8:41:6d:a6: 49:e7:77:08:c0:36:cf:ef:a8:09:9b:5a:b7:3b:77:fc:5e:7a: 85:40:14:ae:29:5d:e3:f8:c3:48:e2:3b:69:97:c7:e6:1c:80: af:f3:16:bd:82:6e:87:3d:2e:d7:ec:82:90:31:4a:80:e1:af: 8b:ae:63:d0:f8:84:50:ca:dc:a3:0f:d9:fe:3a:00:53:7b:e7: 38:34:76:05:4b:e9:8b:96:c1:2a:47:fc:ca:54:18:ef:d5:13: 2c:07:c0:18:fa:28:40:22:b9:c6:ae:82:9e:71:9a:75:3f:cd: 50:d7:dc:a3:e1:8a:7c:ed:06:ac:4a:bf:ad:40:f5:0f:a1:77: 81:94:2b:8d:30:c6:ac:7e:01:9a:02:e3:41:b8:88:89:59:bc: 5c:b1:00:f0 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICE6EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjhD QUMxRkEwNEQ4MENGRTNFMkJFOTdDN0FCMTg1MkI2NjU2NTM1RjAeFw0yNTA4MjMy MTE0MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA2QzI3NENDMjVCNUM3 MzZCREJFQTRBRDMyMzdBRkQ1NDYxQjY5MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT1YfEC6c3vi3dXFU5KDHJyqwgVpeaQAjhDrC0mxU/2in9QXIm gv3cI/iJBpj5v1yJ3fKHw3RPwg1L8Q429NwLnF0VZtPC7Wfi46poTfHEoFIcW33Q 2rkjg1UucTbbps+XfyXLfwpQHNfPCQjlvWOV97nInrrQeVOsaeayIz+OlXwmxuct GeLlE4ujcM4mNu0ScO1tQho8L7VJRU1JjFClXIgWU9/2nD7r9k2fO/ZMbOvqR4Bp GbXfFez9jARwC6tBinoqcSGKUPZQx9WkPqg+5nyGbOeLafz38FWMafXKyKfWLMT0 Vi/osvLhOftBSRtAT2M6MU2dSD/qSzX91xN/AgMBAAGjggILMIICBzAdBgNVHQ4E FgQUBsJ0zCW1xza9vqStMjev1UYbaQkwHwYDVR0jBBgwFoAUaMrB+gTYDP4+K+l8 erGFK2ZWU18wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0lHQUJZ VEUvYU1yQi1nVFlEUDQtSy1sOGVyR0ZLMlpXVTE4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9hTXJCLWdUWURQNC1LLWw4ZXJHRksyWldVMTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HSUdBQllURS9hTXJCLWdUWURQNC1L LWw4ZXJHRksyWldVMTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqHKOXrMUu30druCZff/CxLZbXqQJuu1tyZXcI6/dNdgM7CjYV7CR9QWtFhLP Y6TCryE1sATxvcBtz3bpDdakdDFizpLt5FTYTqvEiZuRnx4VssATRHcWdfNu6wvi PkrmWu2heJtxQ2XYQW2mSed3CMA2z++oCZtatzt3/F56hUAUrild4/jDSOI7aZfH 5hyAr/MWvYJuhz0u1+yCkDFKgOGvi65j0PiEUMrcow/Z/joAU3vnODR2BUvpi5bB Kkf8ylQY79UTLAfAGPooQCK5xq6CnnGadT/NUNfco+GKfO0GrEq/rUD1D6F3gZQr jTDGrH4BmgLjQbiIiVm8XLEA8A== -----END CERTIFICATE-----Generated at Sun Aug 24 01:29:53 2025 by rpki-client