$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft File: KzuJrTLzuVt68WX0yKTNCOdU1as.mft (raw, json) Hash identifier: urfYdE4kQDfPEAcq6tMXKw9orFh8EJsGIFGGC0k4JAM= Subject key identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 Authority key identifier: 2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB Certificate issuer: /CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Certificate serial: 03F7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft Manifest number: 03EF Signing time: Sat 05 Jul 2025 04:32:23 +0000 Manifest this update: Sat 05 Jul 2025 04:32:23 +0000 Manifest next update: Mon 07 Jul 2025 04:32:23 +0000 Files and hashes: 1: KzuJrTLzuVt68WX0yKTNCOdU1as.crl (hash: sBeHFlQ0koKiG1hIImRg0vXvF+XsShsQVTxu8/ovlb8=) 2: kVp4R8VZA5dHUawQHwYJ2c3mP7w.roa (hash: 3mJ8dW3+XenMk2XTVNqAKxZKa7+TExJaqw4B2ihld2U=) 3: qpDvUNdvRke8LBYVnLYGH6AjgpI.roa (hash: zYf+v16KFFJ/aGcnTNGBhhdfIKi5KJtz9utnQx0wPmk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 10:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Validity Not Before: Jul 5 04:32:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DD86409E426F9916CBB6874B07529843D30A48F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:db:89:0b:c5:2c:92:c4:78:96:00:84:64:de: f8:f0:1c:8b:c3:c8:de:56:c3:da:d5:95:d5:f7:c0: 53:aa:d0:a7:3a:75:06:5b:87:0d:f8:b8:55:00:71: b0:30:1c:28:0b:04:b3:7f:53:1b:50:40:0c:14:47: 59:2d:28:9a:c5:ad:cd:af:15:29:eb:49:01:7a:4a: 65:f5:bd:d3:be:12:c8:f7:76:8e:f6:f3:ef:31:98: 26:94:48:0f:7b:30:61:8c:71:08:8e:fb:54:7a:38: fa:16:d6:69:0f:73:4e:0e:7a:a7:88:32:21:95:fc: 1c:7b:64:ff:9c:31:e1:c9:fc:1b:93:7c:ff:bf:52: 47:38:4c:2c:85:96:31:47:c1:27:0d:3c:70:77:da: 14:05:55:d1:e1:93:e1:69:e3:85:ed:17:59:d5:63: 58:8b:a9:a2:34:59:17:ef:96:b7:90:ed:eb:6a:a0: 43:28:c2:bc:73:52:71:95:67:5e:2e:6b:6f:f1:39: 93:2e:d8:fb:2a:6d:b8:60:7f:3b:fb:5f:7b:65:5e: 22:65:45:06:be:5b:6f:0d:0a:e5:b1:68:80:69:c8: 44:a0:7a:43:1c:eb:b7:f6:5c:89:70:bc:f6:5d:b9: 81:0b:f2:a7:9a:cd:04:93:99:24:f6:e6:96:c0:a3: 3b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 X509v3 Authority Key Identifier: keyid:2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:d6:e7:b3:04:8f:13:68:5d:9a:7d:47:4c:ff:9e:d8:09:f8: a7:39:8f:ab:2e:f6:d4:ba:90:cd:93:c0:ca:2d:4b:dc:eb:3c: 5f:76:ee:6f:76:27:c9:e2:b6:82:f2:76:62:4a:fc:2a:bc:56: 81:7c:3d:ba:be:d7:d7:39:ae:f6:3a:32:58:50:49:2a:3a:1d: 0a:b4:75:c9:ae:29:f9:7e:c1:b3:19:c3:09:07:00:ea:f8:19: 3b:64:81:ea:92:04:80:26:dd:77:11:f9:d4:18:04:cf:94:50: 00:a4:09:fa:a7:8d:36:fc:0f:6d:87:52:13:79:a5:1a:ea:24: 7d:97:36:74:00:e4:2d:b3:87:97:37:ba:77:1a:f3:39:06:54: a2:4f:b9:46:22:31:93:01:ac:ed:ce:52:fb:25:48:a7:4c:32: 73:c8:8b:54:51:38:17:12:cd:f7:13:a8:82:cf:ec:c2:2c:1f: f8:1f:9d:82:1d:64:50:8c:d8:09:c3:0d:9d:6a:a1:a9:6d:fa: b8:75:09:85:66:1b:1a:16:1d:e8:9f:3a:3a:a6:84:45:11:34: fc:ba:03:5e:8b:6f:60:17:bf:23:66:43:b5:2a:c1:f1:16:a6: 38:7a:a7:50:c7:f0:04:25:bc:a2:82:6f:bb:a9:79:df:e9:80: 99:75:62:f3 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIz Qjg5QUQzMkYzQjk1QjdBRjE2NUY0QzhBNENEMDhFNzU0RDVBQjAeFw0yNTA3MDUw NDMyMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEREODY0MDlFNDI2Rjk5 MTZDQkI2ODc0QjA3NTI5ODQzRDMwQTQ4RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo24kLxSySxHiWAIRk3vjwHIvDyN5Ww9rVldX3wFOq0Kc6dQZb hw34uFUAcbAwHCgLBLN/UxtQQAwUR1ktKJrFrc2vFSnrSQF6SmX1vdO+Esj3do72 8+8xmCaUSA97MGGMcQiO+1R6OPoW1mkPc04OeqeIMiGV/Bx7ZP+cMeHJ/BuTfP+/ Ukc4TCyFljFHwScNPHB32hQFVdHhk+Fp44XtF1nVY1iLqaI0WRfvlreQ7etqoEMo wrxzUnGVZ14ua2/xOZMu2Psqbbhgfzv7X3tlXiJlRQa+W28NCuWxaIBpyESgekMc 67f2XIlwvPZduYEL8qeazQSTmST25pbAozuVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQU3YZAnkJvmRbLtodLB1KYQ9MKSPEwHwYDVR0jBBgwFoAUKzuJrTLzuVt68WX0 yKTNCOdU1aswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUND VUJFL0t6dUpyVEx6dVZ0NjhXWDB5S1ROQ09kVTFhcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvS3p1SnJUTHp1VnQ2OFdYMHlLVE5DT2RVMWFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUNDVUJFL0t6dUpyVEx6dVZ0 NjhXWDB5S1ROQ09kVTFhcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQA21uezBI8TaF2afUdM/57YCfinOY+rLvbUupDNk8DKLUvc6zxfdu5vdifJ 4raC8nZiSvwqvFaBfD26vtfXOa72OjJYUEkqOh0KtHXJrin5fsGzGcMJBwDq+Bk7 ZIHqkgSAJt13EfnUGATPlFAApAn6p402/A9th1ITeaUa6iR9lzZ0AOQts4eXN7p3 GvM5BlSiT7lGIjGTAaztzlL7JUinTDJzyItUUTgXEs33E6iCz+zCLB/4H52CHWRQ jNgJww2daqGpbfq4dQmFZhsaFh3onzo6poRFETT8ugNei29gF78jZkO1KsHxFqY4 eqdQx/AEJbyigm+7qXnf6YCZdWLz -----END CERTIFICATE-----Generated at Sat Jul 5 06:37:50 2025 by rpki-client