$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft File: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft (raw, json) Hash identifier: lTqXrIDknmr+D9GoKeFlZBfYbNcXuKg6bk416mwKU1k= Subject key identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D Authority key identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 Certificate issuer: /CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Certificate serial: 0D2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft Manifest number: 0D2E Signing time: Sat 17 May 2025 21:23:01 +0000 Manifest this update: Sat 17 May 2025 21:23:01 +0000 Manifest next update: Mon 19 May 2025 21:23:01 +0000 Files and hashes: 1: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl (hash: Br8zqcIfn4BU9ldrVPkvqAPMymPXwPWAiMh2QiPkpgs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3374 (0xd2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Validity Not Before: May 17 21:23:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1EC72123E465344F84D2FE29F93E7BF5CF9C9F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:fc:f4:2b:c9:3f:10:90:3c:4f:2f:e1:61: 0c:e9:0d:dc:f4:4e:2e:05:8a:5f:5b:2c:20:5a:a5: 11:10:ec:6f:5d:0e:a3:83:43:05:13:d7:cf:60:c3: 6f:d8:4f:fb:ab:f2:33:5a:09:6c:38:99:c3:81:d5: a3:7b:68:1d:e8:f9:ab:57:a2:45:ab:29:3d:a5:68: e0:c1:0f:73:42:c6:39:21:15:23:49:a2:ef:93:d5: 1e:d0:50:a2:6c:d6:0f:a4:5c:43:7f:63:dc:42:da: c7:42:df:91:b3:cc:b7:d5:1b:a4:df:8f:f9:fa:fa: 46:24:0c:fe:e6:54:ae:76:3a:3b:dd:bb:5f:b8:f3: 6e:e6:38:ed:f0:e6:bd:57:37:06:ac:f7:1c:d8:af: a9:12:c4:31:67:76:7a:6f:ad:b4:b6:b8:10:23:78: 47:96:29:61:17:0c:60:87:6e:fc:e0:83:a9:f4:d3: ed:21:5f:91:42:76:b3:9b:1b:cd:c7:7c:0e:e4:5b: 26:6e:81:58:bc:1e:99:75:ae:32:0d:4a:98:4f:aa: 04:a4:0d:e1:14:9a:fe:08:e0:c2:db:30:e5:fe:80: 92:fb:4c:7e:1b:ff:d7:e5:a7:e2:7e:ed:73:2a:bb: 17:1a:ed:1c:09:f0:9a:bb:2a:01:bc:05:80:16:0d: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D X509v3 Authority Key Identifier: keyid:9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:61:28:f6:ec:22:7e:c1:ee:03:05:00:00:25:c7:ee:01:2f: 10:8a:e3:23:be:b2:7e:93:49:9a:80:86:21:1f:e1:0e:4c:3a: aa:e6:0b:49:df:8c:ef:a3:95:3d:03:27:8f:87:59:b2:f7:d6: 1b:f9:be:96:79:df:99:ae:99:24:3a:07:5f:9e:c1:c3:35:ee: 29:15:fe:6d:82:9a:8b:d0:5c:53:cb:0c:68:6e:39:20:b0:4e: ec:c0:dd:f3:53:71:cd:19:f8:fc:56:17:68:a8:31:69:f1:e4: cb:25:3c:6a:c9:1a:8f:11:3d:8c:89:20:0e:88:75:5f:2e:2f: 91:fe:08:a6:cf:93:aa:f2:30:7f:cb:a9:c1:95:a1:f7:e8:d2: b1:a9:91:da:78:36:bf:83:bf:30:85:a5:56:0d:b9:c7:fd:2e: a8:68:db:52:bf:43:c6:47:ce:d0:d2:7e:e8:f9:26:e8:5f:9c: d4:67:e7:c0:a4:e4:bb:62:7d:b9:5c:ec:63:95:50:92:6c:c2: 46:89:96:9d:a0:eb:b0:9c:b7:92:5c:d8:8e:31:90:3b:b4:7b: 62:d0:2c:16:47:eb:a3:cf:22:49:d2:99:54:f0:46:82:54:63: c9:b3:20:39:14:01:b2:94:a1:33:b9:8e:e1:82:e7:dd:56:f6: 93:fd:03:32 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUZF NzQwRkQwQzY0OTJGRUM5MkYzRTQ0Q0U2MzZFRTE4QjhEMzUxNzAeFw0yNTA1MTcy MTIzMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFQzcyMTIzRTQ2NTM0 NEY4NEQyRkUyOUY5M0U3QkY1Q0Y5QzlGNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0mPz0K8k/EJA8Ty/hYQzpDdz0Ti4Fil9bLCBapREQ7G9dDqOD QwUT189gw2/YT/ur8jNaCWw4mcOB1aN7aB3o+atXokWrKT2laODBD3NCxjkhFSNJ ou+T1R7QUKJs1g+kXEN/Y9xC2sdC35GzzLfVG6Tfj/n6+kYkDP7mVK52Ojvdu1+4 827mOO3w5r1XNwas9xzYr6kSxDFndnpvrbS2uBAjeEeWKWEXDGCHbvzgg6n00+0h X5FCdrObG83HfA7kWyZugVi8Hpl1rjINSphPqgSkDeEUmv4I4MLbMOX+gJL7TH4b /9flp+J+7XMquxca7RwJ8Jq7KgG8BYAWDRjHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUHschI+RlNE+E0v4p+T579c+cn00wHwYDVR0jBBgwFoAUn+dA/Qxkkv7JLz5E zmNu4YuNNRcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JF L24tZEFfUXhra3Y3Skx6NUV6bU51NFl1Tk5SYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evbi1kQV9ReGtrdjdKTHo1RXptTnU0WXVOTlJjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JFL24tZEFfUXhra3Y3Skx6NUV6 bU51NFl1Tk5SYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAj YSj27CJ+we4DBQAAJcfuAS8QiuMjvrJ+k0magIYhH+EOTDqq5gtJ34zvo5U9AyeP h1my99Yb+b6Wed+ZrpkkOgdfnsHDNe4pFf5tgpqL0FxTywxobjkgsE7swN3zU3HN Gfj8VhdoqDFp8eTLJTxqyRqPET2MiSAOiHVfLi+R/gimz5Oq8jB/y6nBlaH36NKx qZHaeDa/g78whaVWDbnH/S6oaNtSv0PGR87Q0n7o+SboX5zUZ+fApOS7Yn25XOxj lVCSbMJGiZadoOuwnLeSXNiOMZA7tHti0CwWR+ujzyJJ0plU8EaCVGPJsyA5FAGy lKEzuY7hgufdVvaT/QMy -----END CERTIFICATE-----Generated at Mon May 19 08:04:37 2025 by rpki-client