$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft File: DflKsHKMejjFDw1hVU1J1lHzOqI.mft (raw, json) Hash identifier: XzEuU1lRGheEsf/Zu0Cruvs5AVo4uD6ygW5+3pss7EI= Subject key identifier: 81:FA:7E:95:6A:B6:3F:A1:3D:CA:0C:18:3E:63:3F:AB:55:C9:31:EF Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0DD3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft Manifest number: 0D70 Signing time: Sat 23 Aug 2025 21:13:58 +0000 Manifest this update: Sat 23 Aug 2025 21:13:58 +0000 Manifest next update: Mon 25 Aug 2025 21:13:58 +0000 Files and hashes: 1: DflKsHKMejjFDw1hVU1J1lHzOqI.crl (hash: +ndiIvr3HT4mh4quJ5tcWIwigXr1DdaPId027D/xvB8=) 2: GZELNOyiVAmLDRR2MW7N8EqLGzE.roa (hash: +EXDQYZC6+0QrGxIPFf4wAysxyAMaPNfctcq9J3KzE0=) 3: Iz5tKcDQZYWT7RYRtjtU31bpn1U.roa (hash: UdokJe6o3UAr2iwc7KOVDMq9BMQTJLTIBPmYAE3iizM=) 4: Jns9QRoKa1WsqmtDocwMDtdMlT0.roa (hash: uEWgzsrUcLvTRdErDyt4Wd2xyJyx9lowSbRb3k5cKSY=) 5: OGy6Nryhc67bLXM5hzr3IRIPEvo.roa (hash: NW//Y5fISaHzjJncfP+fD1Q3i+EyT55jEXflSG250R8=) 6: XQN6OxMUcoAGxpGLooiky-tL7gc.roa (hash: KYlnunaZYM8trExSsCQ39CrmyKf/rWIHR1sdiY7IVHE=) 7: ejBKtQZTLyrE8vnIU0j-t5mEfXs.roa (hash: M2tdeDZvesGE0AAyqOJ1wnm+0nXVcRNFnYM1zMZ0F6E=) 8: f9BkDcTc0Qu7WyPYLc2LkngjCFE.roa (hash: jB+5fmaJQKDYqoyiYqbwVRiRXZtlcUXQIP6LnXyYQY0=) 9: fLu6sD6p_HtqeTeRSjHY_HQ9dr4.roa (hash: 6zwT+S23JAwSbfsfFnx6e0nfZI+pAYVSDBgx4gzVQdk=) 10: sy-areQ-4siOMM_blCu0RxNQJzA.roa (hash: 0IhdcJ+VJpYWoXAKgo1BqUgbH8152ChHGcRjK7P2cdE=) 11: ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa (hash: Q9oQftJcQcvSuPxuHL/R+AP9rCVRyQWOrSl1DN5ds9g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3539 (0xdd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Aug 23 21:13:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=81FA7E956AB63FA13DCA0C183E633FAB55C931EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7e:52:76:a2:e8:51:c1:e7:ab:b3:ef:f9:a1: c4:97:2f:e0:e1:62:81:25:88:34:b3:8d:64:08:9d: 5d:b4:32:cd:06:05:74:a4:fa:a3:fa:8c:f9:f7:93: 7d:86:f8:b3:91:3a:1b:b6:b3:7a:bd:a5:bf:5f:02: f7:76:7a:e5:cf:49:1c:9e:43:2b:a5:5d:bb:9d:9e: 1a:53:26:29:5b:f8:e5:64:3e:52:f1:44:74:29:a0: 81:fe:b9:16:6a:ff:94:fe:2e:52:57:d7:83:11:36: 03:3a:7a:67:a7:c7:58:3c:f7:42:31:14:0f:90:93: 60:91:ac:60:06:42:3c:7b:6d:88:df:b4:37:2c:df: 1d:90:16:44:ff:5a:6f:28:9e:a6:d1:93:48:b3:34: 42:b1:ff:22:86:9a:51:5f:cc:a1:13:e7:fc:78:c2: c8:e7:75:bc:e7:6f:77:0c:07:0d:95:15:bd:90:39: 83:f9:e9:0a:3f:32:11:ed:80:d4:ee:d1:80:6d:c7: 96:3e:ae:cf:52:bd:b7:51:e9:a4:b2:9e:a0:b0:93: 1a:73:37:62:42:ce:67:45:39:53:df:65:eb:55:0d: 07:fb:ba:42:66:7d:1a:2d:a2:d7:92:1f:93:9c:85: 4c:72:ce:4c:28:5a:b3:7f:38:42:d9:18:39:88:bf: 7f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FA:7E:95:6A:B6:3F:A1:3D:CA:0C:18:3E:63:3F:AB:55:C9:31:EF X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:80:66:48:eb:cf:21:87:af:1a:20:82:d9:b4:57:62:4a:8a: 9e:5c:0e:c8:c1:0f:ca:da:97:e0:a6:18:2b:ea:9a:d3:5b:2c: 56:a7:ec:01:9e:31:96:78:ef:e6:70:50:70:35:ce:d4:75:a3: c2:82:b7:c0:60:de:a0:05:67:88:b0:0f:dc:6e:9a:91:e6:4f: c0:a0:c5:03:7b:82:af:74:a1:5b:28:18:6a:ac:6d:10:b4:02: 4c:34:8e:c3:d1:67:d8:97:0c:49:13:08:b2:0a:79:64:21:68: 54:27:bc:4e:d1:3b:fc:af:b6:87:e1:0c:a5:f1:ac:0b:7e:2d: d4:eb:33:ee:3d:96:c6:4e:f0:24:cc:fe:c4:6d:49:3b:93:9c: fd:e0:7c:54:2d:1d:19:8b:e4:ef:c2:ba:d9:88:d0:60:4f:c0: be:a8:8a:ef:ab:de:b4:9c:ca:15:40:c5:a9:d9:8e:1c:23:c5: 20:d0:a2:5d:23:25:7d:b1:24:d0:4c:45:bf:e4:d8:b3:b5:bc: 67:18:00:00:67:82:e9:8f:09:23:c5:a6:37:12:79:83:f0:d7: 8b:a4:b4:45:7d:40:0d:77:05:9c:6a:c2:02:01:4b:0f:98:2c: 0b:33:0d:33:24:ac:6f:cd:3f:58:cc:24:e6:b6:95:61:7a:b8: b4:45:08:f7 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA4MjMy MTEzNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgxRkE3RTk1NkFCNjNG QTEzRENBMEMxODNFNjMzRkFCNTVDOTMxRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8flJ2ouhRweers+/5ocSXL+DhYoEliDSzjWQInV20Ms0GBXSk +qP6jPn3k32G+LOROhu2s3q9pb9fAvd2euXPSRyeQyulXbudnhpTJilb+OVkPlLx RHQpoIH+uRZq/5T+LlJX14MRNgM6emenx1g890IxFA+Qk2CRrGAGQjx7bYjftDcs 3x2QFkT/Wm8onqbRk0izNEKx/yKGmlFfzKET5/x4wsjndbznb3cMBw2VFb2QOYP5 6Qo/MhHtgNTu0YBtx5Y+rs9SvbdR6aSynqCwkxpzN2JCzmdFOVPfZetVDQf7ukJm fRototeSH5OchUxyzkwoWrN/OELZGDmIv3+rAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUgfp+lWq2P6E9ygwYPmM/q1XJMe8wHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9EZmxLc0hLTWVqakZE dzFoVlUxSjFsSHpPcUkubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqYBmSOvPIYevGiCC2bRXYkqKnlwOyMEPytqX4KYYK+qa01ssVqfsAZ4xlnjv 5nBQcDXO1HWjwoK3wGDeoAVniLAP3G6akeZPwKDFA3uCr3ShWygYaqxtELQCTDSO w9Fn2JcMSRMIsgp5ZCFoVCe8TtE7/K+2h+EMpfGsC34t1Osz7j2Wxk7wJMz+xG1J O5Oc/eB8VC0dGYvk78K62YjQYE/AvqiK76vetJzKFUDFqdmOHCPFINCiXSMlfbEk 0ExFv+TYs7W8ZxgAAGeC6Y8JI8WmNxJ5g/DXi6S0RX1ADXcFnGrCAgFLD5gsCzMN MySsb80/WMwk5raVYXq4tEUI9w== -----END CERTIFICATE-----Generated at Sun Aug 24 09:06:25 2025 by rpki-client