$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft File: FZ1fiXJ28N7IV-fi3t1kmHbopII.mft (raw, json) Hash identifier: POA/N9I7yTcZnenSk2UbJMdEO0rb3FWDV6PzZfFgoQE= Subject key identifier: EC:ED:EF:DA:3A:35:A5:E8:26:6A:8B:49:47:B1:72:84:A2:57:03:1B Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Certificate serial: 0F04 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft Manifest number: 0EF5 Signing time: Fri 04 Jul 2025 21:32:53 +0000 Manifest this update: Fri 04 Jul 2025 21:32:53 +0000 Manifest next update: Sun 06 Jul 2025 21:32:53 +0000 Files and hashes: 1: 1wHRAQnQEW_7tIaKg7pUVLN-CF0.roa (hash: MEWzf3O5JdXCpxBr/p7o4PLpUI4nsRKrUvbLl6Hv6e8=) 2: FZ1fiXJ28N7IV-fi3t1kmHbopII.crl (hash: tHPHjiSexRN+qknC393TH1GwUyMqbFNDwnFmRMgb84Y=) 3: NXmCSBxMG5k0oNgtuj3mKPaTP08.roa (hash: vGaAFBszi6LTDW8XvxDTt0KMpL95OLFCgT8pR66oT8E=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 10:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3844 (0xf04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Validity Not Before: Jul 4 21:32:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ECEDEFDA3A35A5E8266A8B4947B17284A257031B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ff:4d:0f:f3:d7:59:03:e4:c9:59:01:5d:3d: cd:75:8e:8e:e3:31:40:83:d7:72:54:47:51:d0:ec: af:4b:cd:75:2e:f5:d0:5d:29:80:d5:62:ce:1b:a2: ed:ec:db:24:2f:1e:07:39:75:b3:fb:2e:c0:80:41: b2:cf:52:44:14:76:d7:6d:e7:30:f4:ce:85:4b:95: 29:43:bd:a1:28:84:49:6b:66:0a:5f:0b:71:29:7b: 2e:54:86:93:61:27:e1:ac:8b:97:73:27:65:8a:fc: 95:0c:fc:4f:e0:1f:31:ee:90:d2:e1:03:f2:3e:9d: ea:18:27:5e:61:cd:63:a0:e9:7d:17:71:2f:22:f9: 35:5d:36:ec:08:e1:aa:55:cb:64:13:4a:1e:de:e5: e0:d9:ed:78:b9:29:64:32:fc:a5:3a:60:65:83:5d: 25:7b:b5:61:42:dd:01:2c:57:8a:65:f1:1c:42:9d: ab:40:22:dd:72:1d:fb:99:f5:2e:75:a3:6a:b8:7e: cf:55:95:cf:f6:c2:6c:8c:58:6f:f4:77:f4:7e:bb: 20:b9:0e:98:ec:c5:27:da:43:ed:b1:bb:40:8d:01: ec:ca:98:f4:b0:a8:42:6c:46:92:7b:ea:86:3b:0b: e9:22:be:2e:64:d8:46:02:d4:69:30:7d:72:2f:20: e2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:ED:EF:DA:3A:35:A5:E8:26:6A:8B:49:47:B1:72:84:A2:57:03:1B X509v3 Authority Key Identifier: keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:3d:78:aa:a7:dd:23:6f:c9:98:7d:4a:cd:14:e9:14:28:93: 7b:b4:4c:9f:4b:a2:e2:c2:28:ab:e1:ae:93:cc:6c:50:f7:8d: c1:35:0c:dd:5e:36:24:9d:24:d5:ff:cf:c7:a9:ba:a6:60:a6: 55:f3:3f:18:f6:a3:17:6e:44:cb:8f:3d:0b:b9:c2:80:83:b4: 32:7e:ab:cd:b4:9c:6e:be:64:94:31:42:a6:29:38:d2:b3:88: e3:62:5e:e8:1f:94:b9:22:25:6c:08:33:46:6f:df:85:ee:74: e3:e9:85:7a:95:20:01:d2:eb:37:f2:64:0b:5e:d8:54:7b:05: 3f:94:e6:f8:12:ed:26:96:10:68:4d:37:87:be:3c:6d:09:e2: d3:fc:7c:ae:f5:2f:9f:64:69:3a:4f:64:e8:e8:4b:e7:ef:6f: 2d:0f:31:57:4e:66:5a:db:85:b8:96:73:d4:9b:f9:03:d1:5d: 68:f1:53:e3:e8:52:30:fb:23:06:85:12:3e:22:d4:5c:d3:e5: 8c:5c:aa:9a:17:f0:4f:30:57:84:52:16:f1:5f:94:51:2f:37: c9:0d:96:97:a5:a4:09:7c:37:a5:45:bb:07:64:14:ee:3b:f4: 90:97:5d:ca:70:51:20:94:21:a7:e1:ae:1e:4c:fa:b1:15:22: 5f:63:d4:6d -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDwQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTU5 RDVGODk3Mjc2RjBERUM4NTdFN0UyREVERDY0OTg3NkU4QTQ4MjAeFw0yNTA3MDQy MTMyNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVDRURFRkRBM0EzNUE1 RTgyNjZBOEI0OTQ3QjE3Mjg0QTI1NzAzMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV/00P89dZA+TJWQFdPc11jo7jMUCD13JUR1HQ7K9LzXUu9dBd KYDVYs4bou3s2yQvHgc5dbP7LsCAQbLPUkQUdtdt5zD0zoVLlSlDvaEohElrZgpf C3Epey5UhpNhJ+Gsi5dzJ2WK/JUM/E/gHzHukNLhA/I+neoYJ15hzWOg6X0XcS8i +TVdNuwI4apVy2QTSh7e5eDZ7Xi5KWQy/KU6YGWDXSV7tWFC3QEsV4pl8RxCnatA It1yHfuZ9S51o2q4fs9Vlc/2wmyMWG/0d/R+uyC5DpjsxSfaQ+2xu0CNAezKmPSw qEJsRpJ76oY7C+kivi5k2EYC1GkwfXIvIOKlAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQU7O3v2jo1pegmaotJR7FyhKJXAxswHwYDVR0jBBgwFoAUFZ1fiXJ28N7IV+fi 3t1kmHbopIIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9SREFU Vy9GWjFmaVhKMjhON0lWLWZpM3Qxa21IYm9wSUkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0ZaMWZpWEoyOE43SVYtZmkzdDFrbUhib3BJSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PUkRBVFcvRloxZmlYSjI4TjdJVi1m aTN0MWttSGJvcElJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB ALo9eKqn3SNvyZh9Ss0U6RQok3u0TJ9LouLCKKvhrpPMbFD3jcE1DN1eNiSdJNX/ z8epuqZgplXzPxj2oxduRMuPPQu5woCDtDJ+q820nG6+ZJQxQqYpONKziONiXugf lLkiJWwIM0Zv34XudOPphXqVIAHS6zfyZAte2FR7BT+U5vgS7SaWEGhNN4e+PG0J 4tP8fK71L59kaTpPZOjoS+fvby0PMVdOZlrbhbiWc9Sb+QPRXWjxU+PoUjD7IwaF Ej4i1FzT5YxcqpoX8E8wV4RSFvFflFEvN8kNlpelpAl8N6VFuwdkFO479JCXXcpw USCUIafhrh5M+rEVIl9j1G0= -----END CERTIFICATE-----Generated at Sat Jul 5 06:40:51 2025 by rpki-client