$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft File: DflKsHKMejjFDw1hVU1J1lHzOqI.mft (raw, json) Hash identifier: g7/P08Q5h3CWwnZmlrFaw3oMf9IWWST8ba2ITW9QfFA= Subject key identifier: 81:FA:7E:95:6A:B6:3F:A1:3D:CA:0C:18:3E:63:3F:AB:55:C9:31:EF Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0DA7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft Manifest number: 0D4E Signing time: Fri 04 Jul 2025 21:32:23 +0000 Manifest this update: Fri 04 Jul 2025 21:32:23 +0000 Manifest next update: Sun 06 Jul 2025 21:32:23 +0000 Files and hashes: 1: 1NgrNLb25TniLdKz8nUBbMVIxbk.roa (hash: OgSmizwgUBumZd9dtF4SQbAm4VHJeFo5hL18wcpDClc=) 2: 20OoABMJNA1VKijNncR3bwHb7Bs.roa (hash: VtnhJbOtEgvGq31kfr+JJ3HbDerg8fU9IDWKqcTeYqQ=) 3: DflKsHKMejjFDw1hVU1J1lHzOqI.crl (hash: /NgxyP8+fTkLCw4lPL3bCFMpiR/b4JzQjkXysE+CgAU=) 4: HOUxlA7g9L4bojO5UZkOMEIicOg.roa (hash: rdP+V9McaIB+pX9vxV8z77FJkwvojlzU8L6jyJSoGV4=) 5: WTiVIOAhQBaf9HLJDZ4od1kpIF0.roa (hash: zBWVouJo4+yalOydS2jbXT0g1fZtxHyjAFPr23GrbZg=) 6: d6rqB04pvgQKQ1p7M9KvFzoaEls.roa (hash: gu6V8DFd6h3tkuQrB6OagKH5qcm9YmVLJj6ZkfRRmsA=) 7: hzi6lvh2qeXl4Wws_taOTxPBGrE.roa (hash: SIhNx+ld6XwdtcW2AoyUTT/DF1cf5jKlC35Cut1K1JE=) 8: k5y55AaITLTLGJblNaDZEgdCpro.roa (hash: uYgM1W1SjLhyU2FO6nMF3lvsFZ7G7Gp7hN7MiC86eo0=) 9: uOz9qBa16A30yErp_lSZHlIoOAQ.roa (hash: 3qoWAnttOLK+Bcx27w08Q6dqdOD5AlIg/aDQ0wjOPEo=) 10: v_gyuObMHrRnypuJf_MWTILhCJk.roa (hash: JvgF0Wg85+mc8pS9g9zYsshv/dsZpDh1/eRnQY3mu5c=) 11: w8xdOGZrEKe1FTioerEbgxzTB3U.roa (hash: zE5XUS07FBghHN5BNLpoQkPKn/e6zvgcoUP9xmgZc1o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 05:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3495 (0xda7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Jul 4 21:32:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=81FA7E956AB63FA13DCA0C183E633FAB55C931EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7e:52:76:a2:e8:51:c1:e7:ab:b3:ef:f9:a1: c4:97:2f:e0:e1:62:81:25:88:34:b3:8d:64:08:9d: 5d:b4:32:cd:06:05:74:a4:fa:a3:fa:8c:f9:f7:93: 7d:86:f8:b3:91:3a:1b:b6:b3:7a:bd:a5:bf:5f:02: f7:76:7a:e5:cf:49:1c:9e:43:2b:a5:5d:bb:9d:9e: 1a:53:26:29:5b:f8:e5:64:3e:52:f1:44:74:29:a0: 81:fe:b9:16:6a:ff:94:fe:2e:52:57:d7:83:11:36: 03:3a:7a:67:a7:c7:58:3c:f7:42:31:14:0f:90:93: 60:91:ac:60:06:42:3c:7b:6d:88:df:b4:37:2c:df: 1d:90:16:44:ff:5a:6f:28:9e:a6:d1:93:48:b3:34: 42:b1:ff:22:86:9a:51:5f:cc:a1:13:e7:fc:78:c2: c8:e7:75:bc:e7:6f:77:0c:07:0d:95:15:bd:90:39: 83:f9:e9:0a:3f:32:11:ed:80:d4:ee:d1:80:6d:c7: 96:3e:ae:cf:52:bd:b7:51:e9:a4:b2:9e:a0:b0:93: 1a:73:37:62:42:ce:67:45:39:53:df:65:eb:55:0d: 07:fb:ba:42:66:7d:1a:2d:a2:d7:92:1f:93:9c:85: 4c:72:ce:4c:28:5a:b3:7f:38:42:d9:18:39:88:bf: 7f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FA:7E:95:6A:B6:3F:A1:3D:CA:0C:18:3E:63:3F:AB:55:C9:31:EF X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ab:17:0f:f5:94:6c:5b:fc:92:d4:ca:4f:bf:58:bb:83:50: 82:ab:7e:13:68:91:c1:e1:37:bb:3b:f4:3f:96:06:5b:fb:a1: 51:4b:ed:56:9d:9f:c4:dd:27:1c:e0:d8:fb:88:39:c4:ae:bd: c3:c7:7c:a6:2b:ed:a3:f9:2d:26:cf:0f:a0:6c:13:da:17:60: 71:8e:4e:eb:49:6f:75:0a:52:c5:2d:d6:3e:d4:0d:73:49:2e: d5:84:09:41:13:94:21:d5:73:c6:de:b7:8c:52:65:b6:12:2c: a9:fd:a8:34:47:69:92:64:4c:50:d1:40:4b:36:ca:b1:e1:13: 95:85:c1:1c:a6:0c:7e:e4:6b:74:61:a3:3f:68:69:c8:9d:a6: bc:a9:62:da:e4:24:c6:db:3c:e7:3d:42:e4:78:7c:29:91:83: 21:f1:0d:63:13:e1:11:e2:48:66:71:9b:8c:65:d0:00:33:c2: 7b:4c:e2:d4:39:a6:72:91:3b:80:b1:91:52:b9:fb:90:aa:c0: 53:a7:fa:1e:ce:3f:fa:19:44:e0:16:2d:1a:99:4a:00:80:ff: 85:b4:7f:8f:67:17:64:bd:7c:b8:61:29:06:6e:eb:bc:d9:33: 5a:7d:44:a3:77:7c:40:2b:5a:13:7a:85:ed:4d:6a:ca:b3:4d: 69:17:9f:e2 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDacwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA3MDQy MTMyMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgxRkE3RTk1NkFCNjNG QTEzRENBMEMxODNFNjMzRkFCNTVDOTMxRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8flJ2ouhRweers+/5ocSXL+DhYoEliDSzjWQInV20Ms0GBXSk +qP6jPn3k32G+LOROhu2s3q9pb9fAvd2euXPSRyeQyulXbudnhpTJilb+OVkPlLx RHQpoIH+uRZq/5T+LlJX14MRNgM6emenx1g890IxFA+Qk2CRrGAGQjx7bYjftDcs 3x2QFkT/Wm8onqbRk0izNEKx/yKGmlFfzKET5/x4wsjndbznb3cMBw2VFb2QOYP5 6Qo/MhHtgNTu0YBtx5Y+rs9SvbdR6aSynqCwkxpzN2JCzmdFOVPfZetVDQf7ukJm fRototeSH5OchUxyzkwoWrN/OELZGDmIv3+rAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUgfp+lWq2P6E9ygwYPmM/q1XJMe8wHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9EZmxLc0hLTWVqakZE dzFoVlUxSjFsSHpPcUkubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm6sXD/WUbFv8ktTKT79Yu4NQgqt+E2iRweE3uzv0P5YGW/uhUUvtVp2fxN0n HODY+4g5xK69w8d8pivto/ktJs8PoGwT2hdgcY5O60lvdQpSxS3WPtQNc0ku1YQJ QROUIdVzxt63jFJlthIsqf2oNEdpkmRMUNFASzbKseETlYXBHKYMfuRrdGGjP2hp yJ2mvKli2uQkxts85z1C5Hh8KZGDIfENYxPhEeJIZnGbjGXQADPCe0zi1DmmcpE7 gLGRUrn7kKrAU6f6Hs4/+hlE4BYtGplKAID/hbR/j2cXZL18uGEpBm7rvNkzWn1E o3d8QCtaE3qF7U1qyrNNaRef4g== -----END CERTIFICATE-----Generated at Sat Jul 5 00:11:55 2025 by rpki-client