$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft File: TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft (raw, json) Hash identifier: 81qTmTt3yQKaPPPnSFQI2Ji7X2aMyP/qXq2OuERoDvk= Subject key identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Certificate serial: 0D4E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft Manifest number: 0D44 Signing time: Thu 03 Jul 2025 11:03:12 +0000 Manifest this update: Thu 03 Jul 2025 11:03:12 +0000 Manifest next update: Sat 05 Jul 2025 11:03:12 +0000 Files and hashes: 1: TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl (hash: LvPSmAQ4OEWlh9kYKxnfpFvkSFfnzk6mAnh5pOm+lGQ=) 2: TmtOrpS7o28ER7oLjnOBZLdWcgM.roa (hash: mQz/hV7i4zdeNwzhSThQr7qIHt69JvQ2KxLsJS+vAxM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 20:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3406 (0xd4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Validity Not Before: Jul 3 11:03:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7E8B480C4C7274DFF97F4BDEB57C33F8491C09C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:fd:0e:fe:75:76:0d:6a:27:8d:10:c0:ba: 72:e2:63:52:46:07:b4:a7:77:ff:17:c3:8a:fe:4a: ee:dd:00:b3:78:cc:46:fb:ca:d8:37:66:71:3b:b2: e7:b8:8d:a7:5c:c8:56:6a:90:a2:62:43:21:22:0f: b9:56:83:12:e6:78:7a:e2:fd:87:17:49:4d:be:6f: 1e:e7:24:68:e5:6b:5a:c6:43:4a:e1:48:66:43:ed: 24:26:55:b6:34:61:d9:79:21:8e:74:55:d9:aa:77: a7:0c:3d:b8:a5:8f:9a:d3:f7:2d:c4:db:eb:47:bd: d0:6a:fa:85:b5:c1:0a:19:cf:54:8d:54:76:f4:63: 0d:7f:b8:2a:ad:12:e6:ae:de:e1:a2:ba:be:23:57: e8:1d:3e:82:7c:96:d4:58:44:86:86:29:f2:ba:61: 45:83:ec:63:62:d1:4f:65:cf:b5:7f:1d:94:fc:4b: ef:22:65:f0:c4:d0:4a:7a:00:16:2f:ed:df:48:83: 1e:17:ed:b4:68:aa:74:5c:8e:7a:4d:77:64:37:5a: 30:36:85:57:8a:65:dd:8e:01:30:07:89:04:db:66: c0:45:b4:f4:51:21:e7:2e:ec:9d:38:37:a5:a0:20: 04:ca:b3:82:69:34:91:2e:b7:4c:98:c2:5f:e8:0d: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C X509v3 Authority Key Identifier: keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:54:eb:72:0a:da:33:92:f7:e2:9b:cc:c5:14:94:8b:40:79: 1c:0d:86:92:b8:f8:94:3d:cd:6d:14:9d:99:eb:08:aa:90:d8: 9b:9e:43:32:48:a7:e0:6e:77:5e:a3:fc:bf:83:c0:1a:fa:bf: 77:26:68:b2:e3:ff:23:33:a7:90:d6:d3:c6:40:7c:79:0a:f6: 82:ed:03:86:9c:57:b2:c5:81:72:25:44:fe:4f:96:f3:5e:14: 31:e8:78:06:d9:e2:4c:cd:cd:77:17:14:21:dc:ac:31:f1:d5: 5b:64:ab:f0:97:8e:f8:bf:e3:3d:0a:5b:f0:40:e8:4d:48:2e: 7a:f0:c2:c5:61:71:cc:58:4d:fa:6c:1a:4a:75:85:d0:e8:6e: b6:77:fb:a1:44:1a:7c:ba:90:35:c2:70:b5:51:8b:8c:b2:46: 7d:5e:14:27:7e:6b:e6:91:ed:f3:3a:ec:48:aa:f5:10:23:d6: de:27:7a:3a:08:89:78:0b:b4:57:2f:8d:3d:ca:66:3c:35:e0: 41:a1:ed:1e:3a:2e:91:09:ce:a1:26:86:29:40:62:0c:17:d4: 4a:c1:8e:31:bb:5f:f7:5d:9a:78:1d:48:90:be:e5:a5:23:0a: 51:3c:83:0d:14:6f:cb:18:3a:ad:83:a5:74:97:a8:ab:3b:f8: 13:a2:48:7f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM0 N0RGNzQ4RUMwRkYxNjkxMjI4M0NFQzEwRUMxMEVEMzJEMjQ0RjAeFw0yNTA3MDMx MTAzMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3RThCNDgwQzRDNzI3 NERGRjk3RjRCREVCNTdDMzNGODQ5MUMwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNuP0O/nV2DWonjRDAunLiY1JGB7Snd/8Xw4r+Su7dALN4zEb7 ytg3ZnE7sue4jadcyFZqkKJiQyEiD7lWgxLmeHri/YcXSU2+bx7nJGjla1rGQ0rh SGZD7SQmVbY0Ydl5IY50Vdmqd6cMPbilj5rT9y3E2+tHvdBq+oW1wQoZz1SNVHb0 Yw1/uCqtEuau3uGiur4jV+gdPoJ8ltRYRIaGKfK6YUWD7GNi0U9lz7V/HZT8S+8i ZfDE0Ep6ABYv7d9Igx4X7bRoqnRcjnpNd2Q3WjA2hVeKZd2OATAHiQTbZsBFtPRR Iecu7J04N6WgIATKs4JpNJEut0yYwl/oDVjdAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU1+i0gMTHJ03/l/S961fDP4SRwJwwHwYDVR0jBBgwFoAUTEffdI7A/xaRIoPO wQ7BDtMtJE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NORVQv VEVmZmRJN0FfeGFSSW9QT3dRN0JEdE10SkU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9URWZmZEk3QV94YVJJb1BPd1E3QkR0TXRKRTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HU05FVC9URWZmZEk3QV94YVJJb1BPd1E3 QkR0TXRKRTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl1Tr cgraM5L34pvMxRSUi0B5HA2Gkrj4lD3NbRSdmesIqpDYm55DMkin4G53XqP8v4PA Gvq/dyZosuP/IzOnkNbTxkB8eQr2gu0DhpxXssWBciVE/k+W814UMeh4BtniTM3N dxcUIdysMfHVW2Sr8JeO+L/jPQpb8EDoTUguevDCxWFxzFhN+mwaSnWF0Ohutnf7 oUQafLqQNcJwtVGLjLJGfV4UJ35r5pHt8zrsSKr1ECPW3id6OgiJeAu0Vy+NPcpm PDXgQaHtHjoukQnOoSaGKUBiDBfUSsGOMbtf912aeB1IkL7lpSMKUTyDDRRvyxg6 rYOldJeoqzv4E6JIfw== -----END CERTIFICATE-----Generated at Fri Jul 4 16:17:26 2025 by rpki-client