$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft File: 3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft (raw, json) Hash identifier: hgl+XrpcJFUXhYaiCxVU6rjVQ0kM8JPDaYd+H5Xk+04= Subject key identifier: 14:0D:94:13:D8:96:A1:2C:05:A4:53:2F:32:C6:6F:65:F1:0D:B6:A9 Authority key identifier: DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF Certificate issuer: /CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF Certificate serial: 19 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft Manifest number: 18 Signing time: Sat 05 Jul 2025 00:32:07 +0000 Manifest this update: Sat 05 Jul 2025 00:32:07 +0000 Manifest next update: Sat 05 Jul 2025 06:32:07 +0000 Files and hashes: 1: 3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl (hash: jV0lrKmI46Fx2+yRfOUeElUtxL93c9VMGkGZXHMifGQ=) 2: h3gM3umksJIYEAeAEiPCdJFIFto.roa (hash: P0RBcokTOeWzNU9SKVJvXJAAZk3Gv4yQBEr42Kf75Ew=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 04:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF Validity Not Before: Jul 5 00:32:07 2025 GMT Not After : Jun 30 15:30:18 2026 GMT Subject: CN=140D9413D896A12C05A4532F32C66F65F10DB6A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ff:73:ee:5a:a6:e3:54:27:2b:18:34:ac:07: 9a:f9:21:e7:2e:7f:37:1f:4a:b7:05:b9:a0:ef:f3: 85:f7:6d:92:2e:9a:e9:57:b8:9a:f1:86:ea:5d:82: 6d:48:90:71:57:0b:2c:2a:06:4a:8c:aa:df:bd:ae: 9e:9b:78:1b:f1:d0:4f:c1:3a:24:50:d6:19:ed:5b: 8d:0b:0c:18:fe:f2:1e:9e:49:a5:c8:ce:fe:b1:4e: 7e:98:f6:a9:3f:6b:f2:4d:ee:9e:16:85:48:28:c3: f8:6d:12:a4:7e:17:7d:33:2e:3f:0d:01:6f:4e:52: f7:67:8c:17:1c:46:29:e3:91:6b:14:86:88:64:42: 75:7b:a0:47:b7:c6:1e:1c:96:c2:d4:b4:41:f2:73: 5a:7f:45:cb:8b:18:1b:ac:c2:51:7f:56:85:d8:3d: b5:a6:dd:d6:94:47:6d:a3:36:c0:62:66:e8:67:27: b8:18:f6:c7:89:51:62:7f:53:af:70:5b:b9:97:ca: 41:e0:4b:c1:d6:2a:b2:f2:66:ed:0a:2a:de:de:32: 01:d9:b1:e0:a8:7a:27:5a:82:82:ac:1d:dd:99:d8: 68:09:58:61:ed:cb:cf:17:de:a6:fc:31:36:be:bf: cf:6f:2b:61:15:a7:cd:78:80:d6:76:26:c3:df:02: e3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0D:94:13:D8:96:A1:2C:05:A4:53:2F:32:C6:6F:65:F1:0D:B6:A9 X509v3 Authority Key Identifier: keyid:DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d9:a0:38:ad:0f:32:68:27:35:db:93:b5:84:93:04:0e:0e: 02:c3:6e:c0:5e:08:7d:3c:16:3e:d2:f0:18:4a:e8:51:c3:ba: 5a:ce:75:19:04:b8:ab:73:07:e9:61:63:d8:32:58:46:21:dc: c1:7e:41:63:d0:cc:9c:08:4a:54:3f:b9:e0:66:57:e6:06:a4: 08:ef:53:cc:1f:4b:d1:72:f6:56:09:43:c7:1f:0f:0d:df:e1: 37:5a:b1:1f:cc:fb:18:b4:cd:9d:3f:eb:3b:40:67:85:72:87: 6d:64:61:2b:f2:d6:3f:c3:5e:2f:55:fc:e9:8c:5d:3a:5f:2b: 90:42:4b:e5:7f:98:e4:6d:0a:e3:b6:ab:4d:3e:b7:56:3f:fd: 27:11:ab:07:7d:7d:ad:ca:76:9c:b5:fe:aa:21:1e:02:1f:46: 85:3d:5c:cd:30:16:41:b4:2a:63:a3:61:3a:bc:41:cb:d5:80: 86:2a:9c:b3:64:a1:ca:33:1b:60:ac:a5:25:6b:b8:ad:b2:6c: f2:b3:77:39:12:a7:01:2a:db:c0:69:50:19:6a:e3:79:b0:f5: d1:b7:21:d1:e5:17:67:06:20:18:3c:1a:05:a0:75:99:4e:4c: be:b1:30:1f:86:44:c1:81:e1:b9:1c:73:61:f3:c4:04:a2:96: 0c:a9:c4:ec -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIBGTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEQ0Q0 NTZBMDlENTQxNDBEQkM0MkQzMkIwOUQ2RTc3NzhCNThBQUVGMB4XDTI1MDcwNTAw MzIwN1oXDTI2MDYzMDE1MzAxOFowMzExMC8GA1UEAxMoMTQwRDk0MTNEODk2QTEy QzA1QTQ1MzJGMzJDNjZGNjVGMTBEQjZBOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANT/c+5apuNUJysYNKwHmvkh5y5/Nx9KtwW5oO/zhfdtki6a6Ve4 mvGG6l2CbUiQcVcLLCoGSoyq372unpt4G/HQT8E6JFDWGe1bjQsMGP7yHp5JpcjO /rFOfpj2qT9r8k3unhaFSCjD+G0SpH4XfTMuPw0Bb05S92eMFxxGKeORaxSGiGRC dXugR7fGHhyWwtS0QfJzWn9Fy4sYG6zCUX9Whdg9tabd1pRHbaM2wGJm6GcnuBj2 x4lRYn9Tr3BbuZfKQeBLwdYqsvJm7Qoq3t4yAdmx4Kh6J1qCgqwd3ZnYaAlYYe3L zxfepvwxNr6/z28rYRWnzXiA1nYmw98C410CAwEAAaOCAgUwggIBMB0GA1UdDgQW BBQUDZQT2JahLAWkUy8yxm9l8Q22qTAfBgNVHSMEGDAWgBTc1FagnVQUDbxC0ysJ 1ud3i1iq7zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS8z TlJXb0oxVUZBMjhRdE1yQ2RibmQ0dFlxdTguY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzNOUldvSjFVRkEyOFF0TXJDZGJuZDR0WXF1OC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1JVSUtFLzNOUldvSjFVRkEyOFF0TXJDZGJu ZDR0WXF1OC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAM2aA4 rQ8yaCc125O1hJMEDg4Cw27AXgh9PBY+0vAYSuhRw7paznUZBLircwfpYWPYMlhG IdzBfkFj0MycCEpUP7ngZlfmBqQI71PMH0vRcvZWCUPHHw8N3+E3WrEfzPsYtM2d P+s7QGeFcodtZGEr8tY/w14vVfzpjF06XyuQQkvlf5jkbQrjtqtNPrdWP/0nEasH fX2tynactf6qIR4CH0aFPVzNMBZBtCpjo2E6vEHL1YCGKpyzZKHKMxtgrKUla7it smzys3c5EqcBKtvAaVAZauN5sPXRtyHR5RdnBiAYPBoFoHWZTky+sTAfhkTBgeG5 HHNh88QEopYMqcTs -----END CERTIFICATE-----Generated at Sat Jul 5 02:54:04 2025 by rpki-client