$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft File: TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft (raw, json) Hash identifier: nn2lthMUtN5HCrshVaiNHsPffUHhyReHFLMTEQp1kJo= Subject key identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Certificate serial: 0D72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft Manifest number: 0D67 Signing time: Sat 23 Aug 2025 21:15:36 +0000 Manifest this update: Sat 23 Aug 2025 21:15:36 +0000 Manifest next update: Mon 25 Aug 2025 21:15:36 +0000 Files and hashes: 1: TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl (hash: GIe3/4vzVVVKp7F+VdzMdss2P9Duq84SfYlFdEt9/eM=) 2: snAHs0ITH_XYDtljaq1F5MNbFhg.roa (hash: Ftw6S66K0ExrjZcPVKbM0s5z5qkQPI1+3FZoM1zFe7U=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Validity Not Before: Aug 23 21:15:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D7E8B480C4C7274DFF97F4BDEB57C33F8491C09C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:fd:0e:fe:75:76:0d:6a:27:8d:10:c0:ba: 72:e2:63:52:46:07:b4:a7:77:ff:17:c3:8a:fe:4a: ee:dd:00:b3:78:cc:46:fb:ca:d8:37:66:71:3b:b2: e7:b8:8d:a7:5c:c8:56:6a:90:a2:62:43:21:22:0f: b9:56:83:12:e6:78:7a:e2:fd:87:17:49:4d:be:6f: 1e:e7:24:68:e5:6b:5a:c6:43:4a:e1:48:66:43:ed: 24:26:55:b6:34:61:d9:79:21:8e:74:55:d9:aa:77: a7:0c:3d:b8:a5:8f:9a:d3:f7:2d:c4:db:eb:47:bd: d0:6a:fa:85:b5:c1:0a:19:cf:54:8d:54:76:f4:63: 0d:7f:b8:2a:ad:12:e6:ae:de:e1:a2:ba:be:23:57: e8:1d:3e:82:7c:96:d4:58:44:86:86:29:f2:ba:61: 45:83:ec:63:62:d1:4f:65:cf:b5:7f:1d:94:fc:4b: ef:22:65:f0:c4:d0:4a:7a:00:16:2f:ed:df:48:83: 1e:17:ed:b4:68:aa:74:5c:8e:7a:4d:77:64:37:5a: 30:36:85:57:8a:65:dd:8e:01:30:07:89:04:db:66: c0:45:b4:f4:51:21:e7:2e:ec:9d:38:37:a5:a0:20: 04:ca:b3:82:69:34:91:2e:b7:4c:98:c2:5f:e8:0d: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C X509v3 Authority Key Identifier: keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:3c:09:da:49:2e:8c:38:c6:21:b6:ed:2b:98:61:03:1d:bc: 0e:f7:53:fd:b7:05:fc:16:6d:87:99:35:81:57:58:a0:0d:8e: c8:b4:5c:ee:83:b0:eb:9a:49:d4:d1:78:6f:82:69:eb:0c:ca: c8:9b:0b:e6:b2:6f:e8:ce:c3:5f:90:86:28:bf:2b:ca:a7:3d: 4c:e3:12:8e:36:aa:8c:84:19:3d:9b:5e:f1:31:9f:c0:0a:14: 65:2f:8b:47:2b:b0:44:ce:6d:45:c3:ea:89:07:09:85:e3:7f: bd:37:e6:3e:98:5c:76:71:60:30:10:7e:90:8a:01:af:88:df: 3d:21:11:56:8a:36:90:ab:45:ba:c8:6c:b6:be:5a:0b:4c:b0: c6:0a:b4:30:3e:86:75:61:d8:7f:07:3a:73:c7:24:2c:6c:ad: 1b:29:bc:61:6b:9f:ec:c5:7d:95:72:50:c5:f9:e7:f7:ad:0e: 09:00:c3:a0:54:f7:9b:0e:9b:a4:b5:c3:50:56:4d:d3:05:51: 23:59:78:10:32:6f:69:93:0c:fe:e1:90:49:35:cd:73:75:c4: 55:c1:e0:8e:4c:46:a1:f9:40:ea:f5:00:5c:f5:a1:9e:49:7e: f6:b5:18:1e:8f:81:e8:3a:56:1c:0f:f0:36:af:54:c1:f1:fa: dc:bf:77:0c -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM0 N0RGNzQ4RUMwRkYxNjkxMjI4M0NFQzEwRUMxMEVEMzJEMjQ0RjAeFw0yNTA4MjMy MTE1MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ3RThCNDgwQzRDNzI3 NERGRjk3RjRCREVCNTdDMzNGODQ5MUMwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNuP0O/nV2DWonjRDAunLiY1JGB7Snd/8Xw4r+Su7dALN4zEb7 ytg3ZnE7sue4jadcyFZqkKJiQyEiD7lWgxLmeHri/YcXSU2+bx7nJGjla1rGQ0rh SGZD7SQmVbY0Ydl5IY50Vdmqd6cMPbilj5rT9y3E2+tHvdBq+oW1wQoZz1SNVHb0 Yw1/uCqtEuau3uGiur4jV+gdPoJ8ltRYRIaGKfK6YUWD7GNi0U9lz7V/HZT8S+8i ZfDE0Ep6ABYv7d9Igx4X7bRoqnRcjnpNd2Q3WjA2hVeKZd2OATAHiQTbZsBFtPRR Iecu7J04N6WgIATKs4JpNJEut0yYwl/oDVjdAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU1+i0gMTHJ03/l/S961fDP4SRwJwwHwYDVR0jBBgwFoAUTEffdI7A/xaRIoPO wQ7BDtMtJE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NORVQv VEVmZmRJN0FfeGFSSW9QT3dRN0JEdE10SkU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9URWZmZEk3QV94YVJJb1BPd1E3QkR0TXRKRTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HU05FVC9URWZmZEk3QV94YVJJb1BPd1E3 QkR0TXRKRTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEACTwJ 2kkujDjGIbbtK5hhAx28DvdT/bcF/BZth5k1gVdYoA2OyLRc7oOw65pJ1NF4b4Jp 6wzKyJsL5rJv6M7DX5CGKL8ryqc9TOMSjjaqjIQZPZte8TGfwAoUZS+LRyuwRM5t RcPqiQcJheN/vTfmPphcdnFgMBB+kIoBr4jfPSERVoo2kKtFushstr5aC0ywxgq0 MD6GdWHYfwc6c8ckLGytGym8YWuf7MV9lXJQxfnn960OCQDDoFT3mw6bpLXDUFZN 0wVRI1l4EDJvaZMM/uGQSTXNc3XEVcHgjkxGoflA6vUAXPWhnkl+9rUYHo+B6DpW HA/wNq9UwfH63L93DA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:39 2025 by rpki-client