$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft File: fhfZI6oLxrCgi1oYe-6crejVDq8.mft (raw, json) Hash identifier: no1coezoK6vLusSyMX3erxG78o5bUqjathuJh3wxRMA= Subject key identifier: 8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 03A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft Manifest number: 0381 Signing time: Sat 17 May 2025 21:52:56 +0000 Manifest this update: Sat 17 May 2025 21:52:56 +0000 Manifest next update: Mon 19 May 2025 21:52:56 +0000 Files and hashes: 1: -KVZdqfw1TN2i3nKOLqdm-ysA2M.roa (hash: W3vzqLxl+G2vFqFdjTKRgAjHgXzMOpK0YktXUFQmCa4=) 2: 3KvH1C10YjGR_CTiq0Paig8OeNA.roa (hash: jpMT0FBGX4b9lxXoNgglyy9sj59EWhuBhZq2UJaa1ec=) 3: _JKYKOMP8fAan4-aCND8lEV2y00.roa (hash: G512pV6KSHYqRDz0AOB6d945lCqdxHqUSGgqEMzWHNA=) 4: eeR-mAu1VZVCqx0Do0kWOfN1PGY.roa (hash: u9QfT1pYfOnpnVGdwzeDUB/6vx8Me97dZIKPWbDuGjI=) 5: fhfZI6oLxrCgi1oYe-6crejVDq8.crl (hash: DK7IvYe4ar/Jzcj/zXZSk9JSRoC7AOvKqWYyAFhfeIc=) 6: jd0kF1vNgBYUjmPvxIAJhPf-jCc.roa (hash: FeRX4AVR2piyJdpYT+x7RHXTiaCulresY6GRiRbvQoY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 23:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: May 17 21:52:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F2938B77D183341E78D0634733686AFC3EB0CE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bd:d5:fc:40:18:6f:d9:55:36:f2:f7:b3:9e: f6:07:fb:50:4b:28:74:dc:2c:5d:cc:06:a6:36:f1: fa:ed:3d:1d:3c:8a:57:57:5d:df:96:18:8d:1e:d0: b2:57:60:65:65:00:b7:8f:51:d5:2b:df:db:5c:0b: b5:9e:f8:45:58:da:2b:15:8a:2e:ef:0b:c1:69:ea: 4f:de:47:eb:f4:14:63:52:fc:bd:d0:6f:76:d9:9c: 01:94:50:df:fc:0c:d8:fc:18:53:63:9f:d4:99:d9: 47:52:1c:95:46:57:dc:eb:3a:e0:33:b4:ac:cd:8c: e0:83:58:de:d9:b6:1f:0a:7c:7f:87:4d:d9:7c:2c: 9b:b7:69:6b:17:75:fd:fd:f4:a0:c5:a3:e9:85:0a: 93:f8:c0:3a:00:65:05:81:22:d7:3a:94:c1:8e:3d: 50:cb:62:84:24:69:5c:3d:ec:eb:52:37:4e:65:d5: aa:e3:b1:38:2b:93:77:54:9d:89:50:f0:91:9a:44: d7:27:8f:83:5f:ef:b2:54:af:b2:59:57:59:92:64: d3:c4:17:7c:d4:b6:55:ae:78:8d:2f:f3:33:84:c8: fe:b2:36:73:9d:41:01:ca:30:bb:02:87:58:b4:09: c7:9c:09:22:5d:f5:bb:ed:ae:ba:e0:17:f9:df:d3: c0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6 X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2a:99:00:2e:b8:70:af:16:42:e4:5d:da:ee:2a:95:3c:30: ef:13:2c:1d:e8:8c:1d:ab:25:68:2c:b6:33:1e:97:74:13:42: 16:11:8d:99:03:99:a9:3e:d7:54:66:60:73:b6:8e:16:8b:f3: f9:fb:52:36:76:7f:f5:b6:43:fe:64:ca:32:1b:b5:73:dc:44: 52:ec:69:e3:41:a8:11:d3:e9:69:57:c9:6d:08:42:46:48:44: 2e:4b:12:b7:37:47:7c:fa:19:c2:86:43:d5:5e:6b:36:74:8d: 1c:0b:ad:54:5d:49:cf:8a:9b:e2:3e:98:28:35:d1:a1:cb:1d: f1:3f:90:50:53:f8:3c:2f:06:53:32:c4:2b:fa:17:5a:3e:9e: 1d:ac:7d:6f:7c:2e:5f:76:fb:80:8e:b4:d7:53:bd:78:6f:f7: 46:ee:4b:cb:11:06:07:0c:52:15:b1:a9:a3:38:93:3d:4f:ed: 6c:4a:cb:64:9e:fc:e7:f4:a4:1f:7b:b4:6e:db:1e:1d:bb:c4: ae:65:9c:d9:45:fb:52:8b:23:f7:9f:bb:93:00:90:5b:6d:b3: 05:40:d0:c2:ef:be:d9:a1:e6:0a:b4:0e:ff:cf:c0:42:e9:eb: c1:8e:21:e7:6c:d6:b4:ff:46:90:a4:3e:9b:b1:72:59:91:a3: 3a:9d:b3:39 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNTA1MTcy MTUyNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGMjkzOEI3N0QxODMz NDFFNzhEMDYzNDczMzY4NkFGQzNFQjBDRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSvdX8QBhv2VU28veznvYH+1BLKHTcLF3MBqY28frtPR08ildX Xd+WGI0e0LJXYGVlALePUdUr39tcC7We+EVY2isVii7vC8Fp6k/eR+v0FGNS/L3Q b3bZnAGUUN/8DNj8GFNjn9SZ2UdSHJVGV9zrOuAztKzNjOCDWN7Zth8KfH+HTdl8 LJu3aWsXdf399KDFo+mFCpP4wDoAZQWBItc6lMGOPVDLYoQkaVw97OtSN05l1arj sTgrk3dUnYlQ8JGaRNcnj4Nf77JUr7JZV1mSZNPEF3zUtlWueI0v8zOEyP6yNnOd QQHKMLsCh1i0CcecCSJd9bvtrrrgF/nf08AjAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUjyk4t30YM0HnjQY0czaGr8PrDOYwHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL2ZoZlpJNm9MeHJDZ2kxb1ll LTZjcmVqVkRxOC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBf KpkALrhwrxZC5F3a7iqVPDDvEywd6IwdqyVoLLYzHpd0E0IWEY2ZA5mpPtdUZmBz to4Wi/P5+1I2dn/1tkP+ZMoyG7Vz3ERS7GnjQagR0+lpV8ltCEJGSEQuSxK3N0d8 +hnChkPVXms2dI0cC61UXUnPipviPpgoNdGhyx3xP5BQU/g8LwZTMsQr+hdaPp4d rH1vfC5fdvuAjrTXU714b/dG7kvLEQYHDFIVsamjOJM9T+1sSstknvzn9KQfe7Ru 2x4du8SuZZzZRftSiyP3n7uTAJBbbbMFQNDC777ZoeYKtA7/z8BC6evBjiHnbNa0 /0aQpD6bsXJZkaM6nbM5 -----END CERTIFICATE-----Generated at Sun May 18 22:12:09 2025 by rpki-client