$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft File: aisTlsFC2mcRUYh16QxK7JCw9cQ.mft (raw, json) Hash identifier: PI3mpwSeEAGqXnv3UXVY1nkNkaGLGZ+X8Z0VyUlQfz4= Subject key identifier: 9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8 Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Certificate serial: 03B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft Manifest number: 03B1 Signing time: Fri 04 Jul 2025 22:02:10 +0000 Manifest this update: Fri 04 Jul 2025 22:02:10 +0000 Manifest next update: Sun 06 Jul 2025 22:02:10 +0000 Files and hashes: 1: WPCDryNAk5NkAWpGy7MQmm_WC1I.roa (hash: hXfnFDjGFgvVMa/VXwbJuZzPNTjNGozvF2aXMOz7Msk=) 2: aisTlsFC2mcRUYh16QxK7JCw9cQ.crl (hash: TDLgsX0LfmjQEtg+Ocd0fU+vCxHaBdHLq6tVBZnBoAA=) 3: z-H2E_TH0q2gzkcFxIBMZ9V7Wu8.roa (hash: kUEhDixYI/i3vdN+mSXb3mi/8wrHM8TPrKE2FwoBz5s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 04:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Validity Not Before: Jul 4 22:02:10 2025 GMT Not After : Sep 23 15:30:20 2025 GMT Subject: CN=9F4734C3CD3594AB905D6D7839043EE0FA3205A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d4:c0:17:a9:80:f0:17:d6:5d:7b:06:2e:93: f9:fe:04:dc:02:7f:1f:bf:f1:f6:a0:03:c6:e9:09: bd:0f:e0:61:54:43:72:e7:64:30:ec:35:13:3f:ef: 38:5e:48:e2:18:e1:9c:de:af:a6:27:04:ca:24:e7: 99:db:51:e3:4b:d8:dc:74:83:3f:9a:7d:e3:5d:c0: 14:b5:61:8f:7c:33:69:59:33:a8:bd:c8:8e:6c:24: bc:c2:1f:59:25:5d:ed:fd:8b:7a:01:75:13:e3:8e: d2:7c:ad:13:d1:46:3c:ae:9b:55:bf:a0:63:a6:aa: ca:bb:b1:c4:5c:f0:73:4c:b6:76:dd:3a:4b:dd:96: 30:9d:85:a9:b1:b2:a7:b3:5a:b6:19:ec:16:76:cf: 7a:dd:d1:64:4d:25:51:72:6d:f0:4e:53:2d:65:a0: 1c:9a:67:d3:97:65:83:9a:d6:07:a0:36:9a:9f:e2: d1:88:77:c0:a9:9d:ed:90:a6:26:55:dd:9a:a1:ac: 9c:82:53:f8:b0:1f:db:4b:4a:4b:a2:f5:cc:93:43: 38:5e:d6:a5:32:d5:95:2f:bd:21:1d:2f:b0:15:70: f0:d8:6d:96:b5:1e:f8:c3:3a:7c:38:1f:f1:78:a2: 5b:a5:83:98:0c:b2:c9:08:52:39:86:ed:f9:f7:b6: 23:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:47:34:C3:CD:35:94:AB:90:5D:6D:78:39:04:3E:E0:FA:32:05:A8 X509v3 Authority Key Identifier: keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:37:70:8f:86:ae:6d:d0:f4:14:f3:c4:a3:68:b2:8a:30:ea: de:3f:64:e3:e9:ef:a9:42:3c:91:d4:46:5b:08:c2:4e:e7:a0: 65:b1:41:c7:41:d4:26:19:1c:17:21:5f:61:58:a9:e6:66:e0: c8:66:23:54:2f:64:94:3a:e5:57:ee:91:2b:fa:75:d0:d2:bd: ff:f8:d4:35:8c:72:6b:47:58:b3:67:e2:df:98:a6:4d:4b:3a: a9:bb:93:b8:42:f8:d1:8e:9e:47:3e:2c:16:2e:54:82:67:f8: 42:26:a2:3e:f1:a3:59:17:f5:be:94:b2:f0:e1:8d:e1:5d:48: 7f:be:13:0c:6e:a8:f8:03:57:7e:2c:27:8a:38:3c:29:08:d7: 61:0d:36:4b:d3:8d:f3:16:7a:d3:2d:b1:52:2d:a1:f0:1f:44: f6:a1:f7:24:46:0f:69:95:37:e9:c7:64:b5:43:19:db:0f:54: 53:8b:ee:79:66:db:e3:d2:91:56:d6:8b:1a:16:c2:0d:52:58: 20:88:1c:ac:dc:02:7e:b0:8b:9b:ff:81:ef:5e:cd:b0:af:ff: ac:d0:bf:c9:dc:66:f9:1b:5d:b9:30:e7:da:ca:99:cd:08:33: 4d:c5:96:f5:8c:e9:d5:1b:33:43:d0:e0:bf:93:bc:83:95:c3: 2c:d3:a0:1b -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEy QjEzOTZDMTQyREE2NzExNTE4ODc1RTkwQzRBRUM5MEIwRjVDNDAeFw0yNTA3MDQy MjAyMTBaFw0yNTA5MjMxNTMwMjBaMDMxMTAvBgNVBAMTKDlGNDczNEMzQ0QzNTk0 QUI5MDVENkQ3ODM5MDQzRUUwRkEzMjA1QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq1MAXqYDwF9ZdewYuk/n+BNwCfx+/8fagA8bpCb0P4GFUQ3Ln ZDDsNRM/7zheSOIY4Zzer6YnBMok55nbUeNL2Nx0gz+afeNdwBS1YY98M2lZM6i9 yI5sJLzCH1klXe39i3oBdRPjjtJ8rRPRRjyum1W/oGOmqsq7scRc8HNMtnbdOkvd ljCdhamxsqezWrYZ7BZ2z3rd0WRNJVFybfBOUy1loByaZ9OXZYOa1gegNpqf4tGI d8Cpne2QpiZV3ZqhrJyCU/iwH9tLSkui9cyTQzhe1qUy1ZUvvSEdL7AVcPDYbZa1 HvjDOnw4H/F4olulg5gMsskIUjmG7fn3tiMzAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUn0c0w801lKuQXW14OQQ+4PoyBagwHwYDVR0jBBgwFoAUaisTlsFC2mcRUYh1 6QxK7JCw9cQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9UX1RG Tl9DTy9haXNUbHNGQzJtY1JVWWgxNlF4SzdKQ3c5Y1EuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2Fpc1Rsc0ZDMm1jUlVZaDE2UXhLN0pDdzljUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PVF9URk5fQ08vYWlzVGxzRkMy bWNSVVloMTZReEs3SkN3OWNRLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIs3cI+Grm3Q9BTzxKNosoow6t4/ZOPp76lCPJHURlsIwk7noGWxQcdB 1CYZHBchX2FYqeZm4MhmI1QvZJQ65VfukSv6ddDSvf/41DWMcmtHWLNn4t+Ypk1L Oqm7k7hC+NGOnkc+LBYuVIJn+EImoj7xo1kX9b6UsvDhjeFdSH++EwxuqPgDV34s J4o4PCkI12ENNkvTjfMWetMtsVItofAfRPah9yRGD2mVN+nHZLVDGdsPVFOL7nlm 2+PSkVbWixoWwg1SWCCIHKzcAn6wi5v/ge9ezbCv/6zQv8ncZvkbXbkw59rKmc0I M03FlvWM6dUbM0PQ4L+TvIOVwyzToBs= -----END CERTIFICATE-----Generated at Sat Jul 5 23:25:42 2025 by rpki-client