$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft File: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft (raw, json) Hash identifier: lwDc9/CPo6IH9GVqLbF1TUTOcYcigcDr+oO/1U2vQwo= Subject key identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D Authority key identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 Certificate issuer: /CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Certificate serial: 0D4E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft Manifest number: 0D4E Signing time: Fri 04 Jul 2025 21:32:43 +0000 Manifest this update: Fri 04 Jul 2025 21:32:43 +0000 Manifest next update: Sun 06 Jul 2025 21:32:43 +0000 Files and hashes: 1: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl (hash: DO9KiocP830bCl3URXCMwOsuRTBtUrm1WdCkTJb/61s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 05:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3406 (0xd4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Validity Not Before: Jul 4 21:32:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1EC72123E465344F84D2FE29F93E7BF5CF9C9F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:fc:f4:2b:c9:3f:10:90:3c:4f:2f:e1:61: 0c:e9:0d:dc:f4:4e:2e:05:8a:5f:5b:2c:20:5a:a5: 11:10:ec:6f:5d:0e:a3:83:43:05:13:d7:cf:60:c3: 6f:d8:4f:fb:ab:f2:33:5a:09:6c:38:99:c3:81:d5: a3:7b:68:1d:e8:f9:ab:57:a2:45:ab:29:3d:a5:68: e0:c1:0f:73:42:c6:39:21:15:23:49:a2:ef:93:d5: 1e:d0:50:a2:6c:d6:0f:a4:5c:43:7f:63:dc:42:da: c7:42:df:91:b3:cc:b7:d5:1b:a4:df:8f:f9:fa:fa: 46:24:0c:fe:e6:54:ae:76:3a:3b:dd:bb:5f:b8:f3: 6e:e6:38:ed:f0:e6:bd:57:37:06:ac:f7:1c:d8:af: a9:12:c4:31:67:76:7a:6f:ad:b4:b6:b8:10:23:78: 47:96:29:61:17:0c:60:87:6e:fc:e0:83:a9:f4:d3: ed:21:5f:91:42:76:b3:9b:1b:cd:c7:7c:0e:e4:5b: 26:6e:81:58:bc:1e:99:75:ae:32:0d:4a:98:4f:aa: 04:a4:0d:e1:14:9a:fe:08:e0:c2:db:30:e5:fe:80: 92:fb:4c:7e:1b:ff:d7:e5:a7:e2:7e:ed:73:2a:bb: 17:1a:ed:1c:09:f0:9a:bb:2a:01:bc:05:80:16:0d: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D X509v3 Authority Key Identifier: keyid:9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:f6:1c:bc:df:c5:e4:89:84:6f:6f:c6:ff:b1:5c:43:78:24: ca:c1:48:e6:f5:71:24:96:ad:4d:93:8c:b3:c1:7c:83:3a:6a: c2:e6:8a:59:1f:d6:53:52:a4:6d:a0:a6:cf:d6:9f:b2:c7:8e: 55:76:ca:f0:18:e0:17:18:d0:50:bc:cc:b0:6f:d1:95:a5:c1: ba:af:a9:dc:05:f3:00:5f:35:95:de:dc:c7:da:4b:fe:6c:c5: 36:c0:87:36:18:d4:48:ac:01:29:26:9c:88:51:ed:ea:9a:3d: 88:78:fc:c3:0a:09:92:9e:e9:3b:86:e3:e7:09:84:bc:70:55: 0a:df:2a:1c:8e:c8:b2:ae:5a:8e:bc:39:46:51:88:44:ba:a1: c3:71:f8:14:90:43:bc:45:46:6e:22:49:08:5c:96:28:e7:7a: 36:b0:02:f2:c6:8b:42:4b:eb:cf:a2:7d:20:a3:3e:4b:e4:8f: 0f:40:81:13:cf:19:e6:a6:60:a8:32:8e:36:13:50:bb:4c:f0: aa:5b:16:6a:90:46:42:3b:16:82:a3:e6:46:8b:ad:24:6a:0b: 38:8f:14:e4:80:c1:44:1e:ee:0f:9e:72:70:40:e0:5f:2a:fa: 85:1e:1c:bc:ea:3b:b3:1c:83:f0:a9:66:7e:b1:e1:78:df:5d: 93:9f:64:d4 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUZF NzQwRkQwQzY0OTJGRUM5MkYzRTQ0Q0U2MzZFRTE4QjhEMzUxNzAeFw0yNTA3MDQy MTMyNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFQzcyMTIzRTQ2NTM0 NEY4NEQyRkUyOUY5M0U3QkY1Q0Y5QzlGNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0mPz0K8k/EJA8Ty/hYQzpDdz0Ti4Fil9bLCBapREQ7G9dDqOD QwUT189gw2/YT/ur8jNaCWw4mcOB1aN7aB3o+atXokWrKT2laODBD3NCxjkhFSNJ ou+T1R7QUKJs1g+kXEN/Y9xC2sdC35GzzLfVG6Tfj/n6+kYkDP7mVK52Ojvdu1+4 827mOO3w5r1XNwas9xzYr6kSxDFndnpvrbS2uBAjeEeWKWEXDGCHbvzgg6n00+0h X5FCdrObG83HfA7kWyZugVi8Hpl1rjINSphPqgSkDeEUmv4I4MLbMOX+gJL7TH4b /9flp+J+7XMquxca7RwJ8Jq7KgG8BYAWDRjHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUHschI+RlNE+E0v4p+T579c+cn00wHwYDVR0jBBgwFoAUn+dA/Qxkkv7JLz5E zmNu4YuNNRcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JF L24tZEFfUXhra3Y3Skx6NUV6bU51NFl1Tk5SYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evbi1kQV9ReGtrdjdKTHo1RXptTnU0WXVOTlJjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JFL24tZEFfUXhra3Y3Skx6NUV6 bU51NFl1Tk5SYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAV 9hy838XkiYRvb8b/sVxDeCTKwUjm9XEklq1Nk4yzwXyDOmrC5opZH9ZTUqRtoKbP 1p+yx45VdsrwGOAXGNBQvMywb9GVpcG6r6ncBfMAXzWV3tzH2kv+bMU2wIc2GNRI rAEpJpyIUe3qmj2IePzDCgmSnuk7huPnCYS8cFUK3yocjsiyrlqOvDlGUYhEuqHD cfgUkEO8RUZuIkkIXJYo53o2sALyxotCS+vPon0goz5L5I8PQIETzxnmpmCoMo42 E1C7TPCqWxZqkEZCOxaCo+ZGi60kags4jxTkgMFEHu4PnnJwQOBfKvqFHhy86juz HIPwqWZ+seF4312Tn2TU -----END CERTIFICATE-----Generated at Sat Jul 5 00:23:18 2025 by rpki-client