$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft File: DflKsHKMejjFDw1hVU1J1lHzOqI.mft (raw, json) Hash identifier: qjvxgwFa3UT/+mDehzEVyv/lv1AcwFjV/0VGIDfHaxE= Subject key identifier: 81:FA:7E:95:6A:B6:3F:A1:3D:CA:0C:18:3E:63:3F:AB:55:C9:31:EF Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0D87 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft Manifest number: 0D2E Signing time: Sat 17 May 2025 21:22:40 +0000 Manifest this update: Sat 17 May 2025 21:22:40 +0000 Manifest next update: Mon 19 May 2025 21:22:40 +0000 Files and hashes: 1: 1NgrNLb25TniLdKz8nUBbMVIxbk.roa (hash: OgSmizwgUBumZd9dtF4SQbAm4VHJeFo5hL18wcpDClc=) 2: 20OoABMJNA1VKijNncR3bwHb7Bs.roa (hash: VtnhJbOtEgvGq31kfr+JJ3HbDerg8fU9IDWKqcTeYqQ=) 3: DflKsHKMejjFDw1hVU1J1lHzOqI.crl (hash: ZOGFo1AO532+dfoit4fR191B0tKuL+4sqA3lJ5dcnNU=) 4: HOUxlA7g9L4bojO5UZkOMEIicOg.roa (hash: rdP+V9McaIB+pX9vxV8z77FJkwvojlzU8L6jyJSoGV4=) 5: WTiVIOAhQBaf9HLJDZ4od1kpIF0.roa (hash: zBWVouJo4+yalOydS2jbXT0g1fZtxHyjAFPr23GrbZg=) 6: d6rqB04pvgQKQ1p7M9KvFzoaEls.roa (hash: gu6V8DFd6h3tkuQrB6OagKH5qcm9YmVLJj6ZkfRRmsA=) 7: hzi6lvh2qeXl4Wws_taOTxPBGrE.roa (hash: SIhNx+ld6XwdtcW2AoyUTT/DF1cf5jKlC35Cut1K1JE=) 8: k5y55AaITLTLGJblNaDZEgdCpro.roa (hash: uYgM1W1SjLhyU2FO6nMF3lvsFZ7G7Gp7hN7MiC86eo0=) 9: uOz9qBa16A30yErp_lSZHlIoOAQ.roa (hash: 3qoWAnttOLK+Bcx27w08Q6dqdOD5AlIg/aDQ0wjOPEo=) 10: v_gyuObMHrRnypuJf_MWTILhCJk.roa (hash: JvgF0Wg85+mc8pS9g9zYsshv/dsZpDh1/eRnQY3mu5c=) 11: w8xdOGZrEKe1FTioerEbgxzTB3U.roa (hash: zE5XUS07FBghHN5BNLpoQkPKn/e6zvgcoUP9xmgZc1o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 04:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3463 (0xd87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: May 17 21:22:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=81FA7E956AB63FA13DCA0C183E633FAB55C931EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7e:52:76:a2:e8:51:c1:e7:ab:b3:ef:f9:a1: c4:97:2f:e0:e1:62:81:25:88:34:b3:8d:64:08:9d: 5d:b4:32:cd:06:05:74:a4:fa:a3:fa:8c:f9:f7:93: 7d:86:f8:b3:91:3a:1b:b6:b3:7a:bd:a5:bf:5f:02: f7:76:7a:e5:cf:49:1c:9e:43:2b:a5:5d:bb:9d:9e: 1a:53:26:29:5b:f8:e5:64:3e:52:f1:44:74:29:a0: 81:fe:b9:16:6a:ff:94:fe:2e:52:57:d7:83:11:36: 03:3a:7a:67:a7:c7:58:3c:f7:42:31:14:0f:90:93: 60:91:ac:60:06:42:3c:7b:6d:88:df:b4:37:2c:df: 1d:90:16:44:ff:5a:6f:28:9e:a6:d1:93:48:b3:34: 42:b1:ff:22:86:9a:51:5f:cc:a1:13:e7:fc:78:c2: c8:e7:75:bc:e7:6f:77:0c:07:0d:95:15:bd:90:39: 83:f9:e9:0a:3f:32:11:ed:80:d4:ee:d1:80:6d:c7: 96:3e:ae:cf:52:bd:b7:51:e9:a4:b2:9e:a0:b0:93: 1a:73:37:62:42:ce:67:45:39:53:df:65:eb:55:0d: 07:fb:ba:42:66:7d:1a:2d:a2:d7:92:1f:93:9c:85: 4c:72:ce:4c:28:5a:b3:7f:38:42:d9:18:39:88:bf: 7f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FA:7E:95:6A:B6:3F:A1:3D:CA:0C:18:3E:63:3F:AB:55:C9:31:EF X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:80:52:8e:91:1a:cc:46:e7:64:dc:33:0c:3e:32:df:d5:b6: f0:73:4b:7f:15:92:a6:ee:b0:ff:94:67:a2:9f:f8:54:49:27: 19:6f:05:d1:57:77:4d:5a:a1:74:04:7e:1f:2e:e5:83:a5:26: 8c:3e:46:68:01:3a:e9:e7:0e:d7:e2:67:55:bf:7c:90:ba:a6: 25:72:f6:2a:b5:bf:e6:0e:c0:3e:14:09:7a:05:d2:83:cd:01: 22:0b:79:e4:cd:03:2f:74:23:f4:3e:54:2f:97:c2:1f:42:90: dc:91:ac:4f:77:e2:e1:ea:56:ab:22:df:f8:d6:a5:11:46:2d: e0:6b:e8:22:d2:bf:c5:5e:03:f1:27:b1:6e:57:3c:a2:d5:7c: a7:19:64:68:4e:38:8d:6c:c1:8e:20:b7:36:73:16:ae:68:13: 76:c3:a5:09:a3:01:83:44:35:58:c3:7c:90:e4:31:77:65:0f: c8:30:2f:74:0d:a8:27:1e:09:a2:1c:4b:44:73:8f:41:1e:35: df:59:ac:7c:99:bc:ce:e0:26:4c:a5:2d:42:85:f7:b0:e1:04: 6a:07:77:9d:80:06:7e:e9:32:55:59:d7:17:0d:41:b0:e4:e5: 6b:a8:84:73:ad:6a:84:02:12:4f:75:a0:f6:9d:7e:da:8a:5a: d5:4c:91:b8 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNTA1MTcy MTIyNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgxRkE3RTk1NkFCNjNG QTEzRENBMEMxODNFNjMzRkFCNTVDOTMxRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8flJ2ouhRweers+/5ocSXL+DhYoEliDSzjWQInV20Ms0GBXSk +qP6jPn3k32G+LOROhu2s3q9pb9fAvd2euXPSRyeQyulXbudnhpTJilb+OVkPlLx RHQpoIH+uRZq/5T+LlJX14MRNgM6emenx1g890IxFA+Qk2CRrGAGQjx7bYjftDcs 3x2QFkT/Wm8onqbRk0izNEKx/yKGmlFfzKET5/x4wsjndbznb3cMBw2VFb2QOYP5 6Qo/MhHtgNTu0YBtx5Y+rs9SvbdR6aSynqCwkxpzN2JCzmdFOVPfZetVDQf7ukJm fRototeSH5OchUxyzkwoWrN/OELZGDmIv3+rAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUgfp+lWq2P6E9ygwYPmM/q1XJMe8wHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9EZmxLc0hLTWVqakZE dzFoVlUxSjFsSHpPcUkubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfoBSjpEazEbnZNwzDD4y39W28HNLfxWSpu6w/5Rnop/4VEknGW8F0Vd3TVqh dAR+Hy7lg6UmjD5GaAE66ecO1+JnVb98kLqmJXL2KrW/5g7APhQJegXSg80BIgt5 5M0DL3Qj9D5UL5fCH0KQ3JGsT3fi4epWqyLf+NalEUYt4GvoItK/xV4D8Sexblc8 otV8pxlkaE44jWzBjiC3NnMWrmgTdsOlCaMBg0Q1WMN8kOQxd2UPyDAvdA2oJx4J ohxLRHOPQR4131msfJm8zuAmTKUtQoX3sOEEagd3nYAGfukyVVnXFw1BsOTla6iE c61qhAIST3Wg9p1+2opa1UyRuA== -----END CERTIFICATE-----Generated at Mon May 19 02:46:07 2025 by rpki-client