$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft File: govRnvqOvlnvQHu3-raJj3VMfsE.mft (raw, json) Hash identifier: ZoDtvk1MX9aLq/ntgzGDqdyl6kKeNh+ob49XdK81Wm0= Subject key identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 10E9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft Manifest number: 10D0 Signing time: Fri 04 Jul 2025 02:03:04 +0000 Manifest this update: Fri 04 Jul 2025 02:03:04 +0000 Manifest next update: Sun 06 Jul 2025 02:03:04 +0000 Files and hashes: 1: -grOOHa3_jddpy3GH8j4XTJS9wg.roa (hash: eSjletpCySQKYScPYOUNFSI5cKWCEusALNTUcikKXzY=) 2: Zvb97bmc4-h7hYQrJp3v_79V4Lo.roa (hash: RMYNFsjQS/zqZZZ8OO7LqFIRkod97NmqIP5/5eNVbrU=) 3: govRnvqOvlnvQHu3-raJj3VMfsE.crl (hash: g0obFovTjVLXip3a/NCUA/ohXkSI89YOWcFROBWfbEM=) 4: mFwhcovgG2b4DQaGqA9HSehFrEU.roa (hash: hMsYO8BRVxkhA8u0Aqt4DQFRflF7zpOY38Pp5GkkYss=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 05:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4329 (0x10e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Jul 4 02:03:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=199435E3FC72374E8E7AC2AD5B0820DA50D3E8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:3e:fa:9b:5a:dd:40:06:17:54:cf:46:56: c6:00:75:aa:0d:85:0d:78:43:77:58:47:f9:72:9d: ef:f1:76:2d:a0:b1:2c:0e:d4:8c:0e:07:0a:26:79: 1c:06:fa:b5:0c:58:5d:11:7b:e2:92:67:8a:33:a4: a0:bc:ac:2e:35:35:80:48:80:8b:f1:e7:0a:ca:23: 9c:f4:1b:ca:6f:af:e1:a2:1f:69:4d:05:d4:9c:ed: 11:75:0c:bb:76:5c:cf:b8:d4:d8:da:f5:58:75:a0: c4:9b:f5:b2:a5:eb:2e:34:4a:a9:8f:44:66:0c:fe: 6d:d3:6f:68:ab:c2:88:ed:8d:b3:f6:cb:7e:31:69: 9c:88:b0:53:07:b6:7f:85:13:0e:e6:47:a3:33:28: 9b:23:ed:0e:ab:62:df:f8:06:e3:8b:2f:a2:0c:57: e1:3e:db:33:7f:ad:2f:7e:39:71:ac:52:fe:62:f5: 0e:b4:cd:18:f6:65:1d:e7:c3:8b:ee:d3:61:ff:ea: d8:4f:ca:de:81:48:ae:19:24:47:2d:75:1b:18:b3: 5d:46:53:04:0c:21:de:3c:e4:eb:e2:7a:2c:39:22: 83:d6:7c:f3:92:af:c4:11:70:d2:c8:da:a9:8d:49: 7a:cf:f9:3d:1b:03:b3:af:e8:07:04:9d:22:60:a8: 0d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:42:9f:23:74:ba:57:29:0d:9c:13:8d:a3:c5:65:bd:90:03: af:c3:67:87:0a:4c:10:2f:77:c9:12:f8:e5:e5:34:e7:16:5f: b0:82:47:5c:6e:b3:14:fd:78:61:11:20:c8:4b:16:b0:df:4f: dc:a0:52:0c:55:fa:b6:4a:84:85:6d:2a:a2:8c:5f:a8:52:e1: e3:cb:35:37:55:f1:46:7a:40:55:de:68:06:a5:b2:d3:8e:f8: 05:44:62:a7:bf:9f:7b:9d:c4:5a:b8:79:dc:41:bb:c9:ac:4b: c8:83:ad:e9:9a:7e:0a:cd:87:4f:a8:bb:29:31:d9:e5:0b:19: 12:0b:bb:73:8d:30:a9:7f:aa:b1:a9:3a:12:2d:10:9c:20:00: 19:73:4e:1b:88:12:3a:69:0f:d1:4c:e2:57:71:93:38:1d:f2: 49:51:cb:49:4b:20:47:bc:cb:97:ab:a1:a6:40:28:bb:42:1c: 73:b8:ee:03:72:3e:45:f0:13:80:ca:1b:2e:d6:82:40:60:b5: b0:e2:55:06:a9:01:8a:76:31:d7:eb:ff:3c:08:82:39:74:8e: b1:ff:c6:15:cd:c7:bd:50:9a:2f:f2:c9:8d:8e:00:0a:0e:c2: 1c:ce:7f:b4:88:ac:d7:c6:b4:ce:72:20:22:4a:ad:9c:14:71: 5f:54:32:66 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICEOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yNTA3MDQw MjAzMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5OTQzNUUzRkM3MjM3 NEU4RTdBQzJBRDVCMDgyMERBNTBEM0U4RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV2j76m1rdQAYXVM9GVsYAdaoNhQ14Q3dYR/lyne/xdi2gsSwO 1IwOBwomeRwG+rUMWF0Re+KSZ4ozpKC8rC41NYBIgIvx5wrKI5z0G8pvr+GiH2lN BdSc7RF1DLt2XM+41Nja9Vh1oMSb9bKl6y40SqmPRGYM/m3Tb2irwojtjbP2y34x aZyIsFMHtn+FEw7mR6MzKJsj7Q6rYt/4BuOLL6IMV+E+2zN/rS9+OXGsUv5i9Q60 zRj2ZR3nw4vu02H/6thPyt6BSK4ZJEctdRsYs11GUwQMId485Ovieiw5IoPWfPOS r8QRcNLI2qmNSXrP+T0bA7Ov6AcEnSJgqA1zAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUGZQ14/xyN06OesKtWwgg2lDT6NYwHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vZ292Um52cU92bG52UUh1My1yYUpq M1ZNZnNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAA9CnyN0 ulcpDZwTjaPFZb2QA6/DZ4cKTBAvd8kS+OXlNOcWX7CCR1xusxT9eGERIMhLFrDf T9ygUgxV+rZKhIVtKqKMX6hS4ePLNTdV8UZ6QFXeaAalstOO+AVEYqe/n3udxFq4 edxBu8msS8iDremafgrNh0+ouykx2eULGRILu3ONMKl/qrGpOhItEJwgABlzThuI EjppD9FM4ldxkzgd8klRy0lLIEe8y5eroaZAKLtCHHO47gNyPkXwE4DKGy7WgkBg tbDiVQapAYp2Mdfr/zwIgjl0jrH/xhXNx71Qmi/yyY2OAAoOwhzOf7SIrNfGtM5y ICJKrZwUcV9UMmY= -----END CERTIFICATE-----Generated at Sat Jul 5 00:34:30 2025 by rpki-client