$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft File: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft (raw, json) Hash identifier: IjlfywTI4tCjdU9FQUhEPpI2NEoiTrUtwssx6ARhmyk= Subject key identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 Authority key identifier: BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 Certificate issuer: /CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Certificate serial: 0171 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft Manifest number: 016F Signing time: Thu 03 Jul 2025 10:03:42 +0000 Manifest this update: Thu 03 Jul 2025 10:03:42 +0000 Manifest next update: Sat 05 Jul 2025 10:03:42 +0000 Files and hashes: 1: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl (hash: cJ+0HwKzjonY52SMlk1qdIAx3UKCRFtYEDFyhAIhupw=) 2: w_KewT6KWsZuHTgvBMYnYFPhchY.roa (hash: vA7vcHpZZT9NqWFZlSoCmScIUZDx16ZMpEGvj2tJDZ0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 23:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Validity Not Before: Jul 3 10:03:42 2025 GMT Not After : Jan 9 15:30:20 2026 GMT Subject: CN=5F2EA8F6BC2A32CE1819AD42C2E60E2DB6EDB008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0c:a3:25:d5:73:fe:23:56:af:9f:31:3d:98: 9c:39:b9:09:f9:35:63:31:52:3d:49:d4:d4:a8:e8: 4e:93:97:6f:59:a1:fc:73:d5:e2:fd:e7:17:f0:da: 95:a1:9c:24:cf:bb:13:2b:9e:52:3e:52:31:25:ea: ce:28:a9:b3:20:9f:63:91:81:ae:e4:db:31:6a:ee: 83:db:1a:c0:08:c9:83:bd:78:f2:cc:9f:c1:98:57: bc:64:9e:43:11:9b:4b:48:bf:f8:41:7e:af:15:b3: 18:c4:be:35:21:e7:68:9e:9d:ee:3c:6d:d5:3e:1d: 2e:ae:7a:48:9a:8d:b3:be:d6:05:9d:86:e2:83:48: a6:e8:56:c6:04:6f:2f:25:9c:17:a1:f6:50:9a:29: 7c:35:13:d2:ad:b3:37:7d:e9:80:63:11:e4:fd:b0: 76:6a:3c:2e:9a:ba:d1:78:b0:7a:20:5f:83:37:64: 5b:51:de:28:73:e2:9d:2b:ae:56:9b:7f:89:a1:5a: 6d:05:ec:69:f7:01:eb:8d:b0:9a:37:ff:63:38:8e: 8b:e7:a8:8a:16:0f:84:c5:85:59:b6:a0:c6:94:c5: 41:5e:39:d6:26:28:ea:63:90:f9:4b:7b:f2:6b:f6: 81:9b:bf:f0:a7:c7:d2:3b:4e:6d:a6:9a:1c:11:93: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 X509v3 Authority Key Identifier: keyid:BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:2f:29:77:a6:66:c6:eb:76:eb:16:ee:46:c8:f3:82:f8:90: 1f:60:fd:4d:0e:e4:c4:e8:21:7b:08:94:b8:ae:55:3a:dc:ea: a7:62:a3:96:20:55:b6:3f:30:ae:7b:af:40:ab:dd:ff:a9:45: cf:bc:f3:f0:17:28:1f:bd:2c:78:00:00:25:9f:07:0c:12:e6: d1:9c:d2:fb:ee:9c:07:3c:e5:6d:03:31:1f:69:49:4a:f8:7a: 9c:64:f2:5c:2f:56:42:71:46:26:ba:aa:01:b8:3e:9c:d7:20: d1:f1:71:1f:4e:36:53:b3:18:92:af:a4:18:60:01:6e:f2:f9: 44:f1:5e:0d:9f:68:0e:61:4e:36:e0:73:37:ac:bb:e0:d0:c0: 66:71:06:e8:b6:0f:b5:18:c4:39:38:6d:2a:1a:a9:1f:8e:9d: a1:94:ae:35:51:1f:92:7e:7c:3d:82:08:aa:c7:e9:b3:04:68: dd:00:21:1a:2c:64:90:37:d5:66:fc:6c:7d:65:04:95:74:80: 02:9a:6a:38:29:b1:98:5f:3b:9a:90:9c:08:06:47:01:c2:8a: 35:13:84:91:f5:84:5d:de:be:04:8d:d3:73:0e:a6:60:b8:61: 91:d1:6f:6a:04:08:35:41:ec:e5:b0:e2:d6:80:25:e2:c6:d1: d6:eb:30:ce -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJG OEU1MzUyMjQwOTcxNzg3ODA2QTNFNTNBODkwNDg1OUE5RjBFNzAeFw0yNTA3MDMx MDAzNDJaFw0yNjAxMDkxNTMwMjBaMDMxMTAvBgNVBAMTKDVGMkVBOEY2QkMyQTMy Q0UxODE5QUQ0MkMyRTYwRTJEQjZFREIwMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoDKMl1XP+I1avnzE9mJw5uQn5NWMxUj1J1NSo6E6Tl29Zofxz 1eL95xfw2pWhnCTPuxMrnlI+UjEl6s4oqbMgn2ORga7k2zFq7oPbGsAIyYO9ePLM n8GYV7xknkMRm0tIv/hBfq8VsxjEvjUh52iene48bdU+HS6uekiajbO+1gWdhuKD SKboVsYEby8lnBeh9lCaKXw1E9Ktszd96YBjEeT9sHZqPC6autF4sHogX4M3ZFtR 3ihz4p0rrlabf4mhWm0F7Gn3AeuNsJo3/2M4jovnqIoWD4TFhVm2oMaUxUFeOdYm KOpjkPlLe/Jr9oGbv/Cnx9I7Tm2mmhwRk/FfAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUXy6o9rwqMs4YGa1CwuYOLbbtsAgwHwYDVR0jBBgwFoAUu/jlNSJAlxeHgGo+ U6iQSFmp8OcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3Vf amxOU0pBbHhlSGdHby1VNmlRU0ZtcDhPYy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev dV9qbE5TSkFseGVIZ0dvLVU2aVFTRm1wOE9jLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3VfamxOU0pBbHhlSGdHby1VNmlRU0Zt cDhPYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA8Lyl3pmbG 63brFu5GyPOC+JAfYP1NDuTE6CF7CJS4rlU63OqnYqOWIFW2PzCue69Aq93/qUXP vPPwFygfvSx4AAAlnwcMEubRnNL77pwHPOVtAzEfaUlK+HqcZPJcL1ZCcUYmuqoB uD6c1yDR8XEfTjZTsxiSr6QYYAFu8vlE8V4Nn2gOYU424HM3rLvg0MBmcQbotg+1 GMQ5OG0qGqkfjp2hlK41UR+Sfnw9ggiqx+mzBGjdACEaLGSQN9Vm/Gx9ZQSVdIAC mmo4KbGYXzuakJwIBkcBwoo1E4SR9YRd3r4EjdNzDqZguGGR0W9qBAg1QezlsOLW gCXixtHW6zDO -----END CERTIFICATE-----Generated at Fri Jul 4 19:36:00 2025 by rpki-client