$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft File: FZ1fiXJ28N7IV-fi3t1kmHbopII.mft (raw, json) Hash identifier: 8Jw/Cb1wWYy+ag3XHC2ZMQzTS6aiUQ4GqcYKDR2BKSY= Subject key identifier: EC:ED:EF:DA:3A:35:A5:E8:26:6A:8B:49:47:B1:72:84:A2:57:03:1B Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Certificate serial: 0F28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft Manifest number: 0F17 Signing time: Sat 23 Aug 2025 21:14:15 +0000 Manifest this update: Sat 23 Aug 2025 21:14:15 +0000 Manifest next update: Mon 25 Aug 2025 21:14:15 +0000 Files and hashes: 1: FZ1fiXJ28N7IV-fi3t1kmHbopII.crl (hash: Xf4koP7WrSGpZEj2FY++DU+0JTgyExsgsIatJrPqa0I=) 2: SlnNaiCccQ8zn4CI4o9x6H7ksNg.roa (hash: 0ENT54SRlYz1XAFM4Z6dLnKV4rSdXQFHNFm67zeWqag=) 3: _IQ76khn0eZnlWoN5Y8WkMsAUOI.roa (hash: vOGSGQpmBJoTUnERx4ebB+yM9pGNPNEB1BDRF36w4v8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3880 (0xf28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Validity Not Before: Aug 23 21:14:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ECEDEFDA3A35A5E8266A8B4947B17284A257031B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ff:4d:0f:f3:d7:59:03:e4:c9:59:01:5d:3d: cd:75:8e:8e:e3:31:40:83:d7:72:54:47:51:d0:ec: af:4b:cd:75:2e:f5:d0:5d:29:80:d5:62:ce:1b:a2: ed:ec:db:24:2f:1e:07:39:75:b3:fb:2e:c0:80:41: b2:cf:52:44:14:76:d7:6d:e7:30:f4:ce:85:4b:95: 29:43:bd:a1:28:84:49:6b:66:0a:5f:0b:71:29:7b: 2e:54:86:93:61:27:e1:ac:8b:97:73:27:65:8a:fc: 95:0c:fc:4f:e0:1f:31:ee:90:d2:e1:03:f2:3e:9d: ea:18:27:5e:61:cd:63:a0:e9:7d:17:71:2f:22:f9: 35:5d:36:ec:08:e1:aa:55:cb:64:13:4a:1e:de:e5: e0:d9:ed:78:b9:29:64:32:fc:a5:3a:60:65:83:5d: 25:7b:b5:61:42:dd:01:2c:57:8a:65:f1:1c:42:9d: ab:40:22:dd:72:1d:fb:99:f5:2e:75:a3:6a:b8:7e: cf:55:95:cf:f6:c2:6c:8c:58:6f:f4:77:f4:7e:bb: 20:b9:0e:98:ec:c5:27:da:43:ed:b1:bb:40:8d:01: ec:ca:98:f4:b0:a8:42:6c:46:92:7b:ea:86:3b:0b: e9:22:be:2e:64:d8:46:02:d4:69:30:7d:72:2f:20: e2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:ED:EF:DA:3A:35:A5:E8:26:6A:8B:49:47:B1:72:84:A2:57:03:1B X509v3 Authority Key Identifier: keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:bb:22:8f:d0:71:6c:60:ab:0f:cc:10:64:b0:1c:50:2e:6e: f2:45:db:c0:bb:cf:0b:b3:7e:6f:aa:2d:1c:90:eb:90:47:40: b6:3e:5b:dc:b7:70:4c:3b:e1:b3:dd:6c:70:77:46:14:17:84: e0:54:93:fd:e1:bb:e3:ae:f3:30:47:97:ef:2c:a8:89:79:85: 49:04:2f:b0:3d:9d:70:3b:ce:74:bb:18:5d:b8:79:a3:c0:c6: 23:af:69:77:ac:b0:d3:73:f6:6b:77:05:0d:cc:c9:cc:2e:5f: f5:49:17:ce:05:20:76:36:f2:64:21:10:5e:91:ca:bb:83:69: d0:4e:c8:70:e3:c5:87:bc:6a:fb:06:7c:ec:7d:07:2c:0e:6b: 39:a1:ca:4b:af:97:4d:29:9f:25:1a:22:89:16:d7:89:03:84: 0c:53:6c:ac:98:25:56:a3:0e:77:b7:6c:20:a0:1c:8b:29:79: b0:90:09:e4:87:1c:62:14:c8:0e:9f:65:c6:01:1d:91:cf:53: a1:c4:64:1f:99:1c:95:40:5b:e1:c3:f7:2f:83:38:f2:41:ff: 38:61:16:d8:c3:e9:78:6a:09:c2:3b:48:23:1c:c7:06:a5:c3: 3d:80:1f:84:fe:50:50:1a:92:dd:67:b5:69:84:9e:ce:56:07: ea:5e:bd:a9 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDygwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTU5 RDVGODk3Mjc2RjBERUM4NTdFN0UyREVERDY0OTg3NkU4QTQ4MjAeFw0yNTA4MjMy MTE0MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDRURFRkRBM0EzNUE1 RTgyNjZBOEI0OTQ3QjE3Mjg0QTI1NzAzMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV/00P89dZA+TJWQFdPc11jo7jMUCD13JUR1HQ7K9LzXUu9dBd KYDVYs4bou3s2yQvHgc5dbP7LsCAQbLPUkQUdtdt5zD0zoVLlSlDvaEohElrZgpf C3Epey5UhpNhJ+Gsi5dzJ2WK/JUM/E/gHzHukNLhA/I+neoYJ15hzWOg6X0XcS8i +TVdNuwI4apVy2QTSh7e5eDZ7Xi5KWQy/KU6YGWDXSV7tWFC3QEsV4pl8RxCnatA It1yHfuZ9S51o2q4fs9Vlc/2wmyMWG/0d/R+uyC5DpjsxSfaQ+2xu0CNAezKmPSw qEJsRpJ76oY7C+kivi5k2EYC1GkwfXIvIOKlAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQU7O3v2jo1pegmaotJR7FyhKJXAxswHwYDVR0jBBgwFoAUFZ1fiXJ28N7IV+fi 3t1kmHbopIIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9SREFU Vy9GWjFmaVhKMjhON0lWLWZpM3Qxa21IYm9wSUkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0ZaMWZpWEoyOE43SVYtZmkzdDFrbUhib3BJSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PUkRBVFcvRloxZmlYSjI4TjdJVi1m aTN0MWttSGJvcElJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AAy7Io/QcWxgqw/MEGSwHFAubvJF28C7zwuzfm+qLRyQ65BHQLY+W9y3cEw74bPd bHB3RhQXhOBUk/3hu+Ou8zBHl+8sqIl5hUkEL7A9nXA7znS7GF24eaPAxiOvaXes sNNz9mt3BQ3MycwuX/VJF84FIHY28mQhEF6RyruDadBOyHDjxYe8avsGfOx9BywO azmhykuvl00pnyUaIokW14kDhAxTbKyYJVajDne3bCCgHIspebCQCeSHHGIUyA6f ZcYBHZHPU6HEZB+ZHJVAW+HD9y+DOPJB/zhhFtjD6XhqCcI7SCMcxwalwz2AH4T+ UFAakt1ntWmEns5WB+pevak= -----END CERTIFICATE-----Generated at Sun Aug 24 03:24:00 2025 by rpki-client