$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft File: U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft (raw, json) Hash identifier: KXcSeuc5Oi72YUhQnabniWZf7TGoai3PJNc5p5otOQQ= Subject key identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 Authority key identifier: 53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 Certificate issuer: /CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Certificate serial: 0121 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft Manifest number: 0121 Signing time: Sat 23 Aug 2025 21:43:15 +0000 Manifest this update: Sat 23 Aug 2025 21:43:14 +0000 Manifest next update: Sun 24 Aug 2025 03:43:14 +0000 Files and hashes: 1: U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl (hash: BhleFoki3yZq0mKU8vTYhXitWlxc8XXo3UQMaLtDbx4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 03:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Validity Not Before: Aug 23 21:43:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8BCF9A1720F5F3385D2E74231DE4571525E4C745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:a5:3f:4b:26:51:f8:59:a2:01:cc:24:7a: 56:fe:69:eb:2d:0e:e9:54:ee:fc:bb:3a:c4:0a:9c: 5a:da:2c:8a:ac:6d:2b:48:9f:68:5f:9a:0b:9f:50: 7e:d5:a1:86:e2:a8:c1:d4:2d:4c:19:5d:09:04:bf: 4d:e8:bf:6d:0a:73:6b:68:52:e8:6f:16:de:39:35: 43:b1:10:97:de:d8:cb:b8:f0:83:d4:d0:20:42:37: 3b:3b:5d:dd:36:0e:73:6f:44:cf:36:22:a9:45:c2: 51:7d:d9:2a:74:a1:4a:b1:2c:05:0d:96:e1:0b:ae: 3c:58:6d:e9:35:80:99:53:1c:61:4c:92:84:53:84: 59:2c:36:bb:b6:32:6f:a6:cb:e7:40:e5:2c:4d:9b: 21:1d:e9:78:14:0b:bf:f8:b0:c4:07:a3:5e:7a:73: 60:84:d4:c2:bd:08:41:da:fe:ad:4e:44:59:9b:f5: ec:b9:5b:21:01:e7:9b:9b:1b:d7:9d:22:3c:c9:1e: 87:a6:d0:02:3a:91:23:b4:94:4e:11:43:b0:5f:d3: c3:a0:c2:e5:db:22:2e:60:bc:19:2e:08:94:25:94: 6b:ff:78:2f:2f:9b:2a:24:99:54:da:76:71:70:26: 8d:5c:07:3a:8b:fa:34:61:44:7e:8d:0f:92:c6:d3: fd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 X509v3 Authority Key Identifier: keyid:53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:91:71:74:6a:17:21:fd:9d:22:94:9f:80:25:73:6b:4a:5c: d5:96:1a:63:9e:d0:5a:18:d0:15:d2:56:1f:2a:08:0e:b6:9b: e3:2f:07:7b:a5:a8:3d:53:90:97:02:c0:d9:16:5a:c7:f6:c9: 75:d6:62:c8:ce:07:dd:ae:f0:a9:5d:ef:a5:03:60:fb:f7:23: 3f:19:87:3e:dd:51:ed:f1:87:74:2d:76:93:15:85:1e:1f:df: c8:31:06:39:a5:bd:90:74:8f:1e:18:64:5c:6c:fc:37:ad:52: df:40:5e:cf:57:8a:c2:13:56:8e:e5:aa:04:d5:78:10:e8:6a: ef:b4:75:05:94:29:42:09:71:ee:03:a2:04:62:ac:dc:a4:e4: 4a:e8:ed:b8:a9:7c:7b:9e:73:ad:68:b3:34:1d:3d:62:dd:ff: ff:1d:87:ac:d7:e3:dc:99:64:53:94:2f:a2:df:4e:8f:20:6a: 83:0d:91:57:ee:3c:8d:7a:31:e0:be:f2:de:cc:a3:d4:17:c2: 8e:11:c9:f2:4b:f2:18:e9:5c:67:69:89:ba:33:10:8c:eb:bb: 93:0a:0e:f8:a1:91:26:5c:60:11:ae:06:9a:ad:0b:b6:79:4a: 94:bd:4c:6e:17:a1:25:e2:81:4a:2d:b8:25:16:fb:05:3d:3b: 8e:7b:1b:82 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICASEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM5 MDZFMkUyRUZFNzQ5MURCMTlCMUMyMDlFQTE3OEMzOUEwREFFNTAeFw0yNTA4MjMy MTQzMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhCQ0Y5QTE3MjBGNUYz Mzg1RDJFNzQyMzFERTQ1NzE1MjVFNEM3NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbHKU/SyZR+FmiAcwkelb+aestDulU7vy7OsQKnFraLIqsbStI n2hfmgufUH7VoYbiqMHULUwZXQkEv03ov20Kc2toUuhvFt45NUOxEJfe2Mu48IPU 0CBCNzs7Xd02DnNvRM82IqlFwlF92Sp0oUqxLAUNluELrjxYbek1gJlTHGFMkoRT hFksNru2Mm+my+dA5SxNmyEd6XgUC7/4sMQHo156c2CE1MK9CEHa/q1ORFmb9ey5 WyEB55ubG9edIjzJHoem0AI6kSO0lE4RQ7Bf08OgwuXbIi5gvBkuCJQllGv/eC8v myokmVTadnFwJo1cBzqL+jRhRH6ND5LG0/39AgMBAAGjggIFMIICATAdBgNVHQ4E FgQUi8+aFyD18zhdLnQjHeRXFSXkx0UwHwYDVR0jBBgwFoAUU5BuLi7+dJHbGbHC CeoXjDmg2uUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUlVJS0Uv VTVCdUxpNy1kSkhiR2JIQ0Nlb1hqRG1nMnVVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VNUJ1TGk3LWRKSGJHYkhDQ2VvWGpEbWcydVUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS9VNUJ1TGk3LWRKSGJHYkhDQ2Vv WGpEbWcydVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmJFx dGoXIf2dIpSfgCVza0pc1ZYaY57QWhjQFdJWHyoIDrab4y8He6WoPVOQlwLA2RZa x/bJddZiyM4H3a7wqV3vpQNg+/cjPxmHPt1R7fGHdC12kxWFHh/fyDEGOaW9kHSP HhhkXGz8N61S30Bez1eKwhNWjuWqBNV4EOhq77R1BZQpQglx7gOiBGKs3KTkSujt uKl8e55zrWizNB09Yt3//x2HrNfj3JlkU5Qvot9OjyBqgw2RV+48jXox4L7y3syj 1BfCjhHJ8kvyGOlcZ2mJujMQjOu7kwoO+KGRJlxgEa4Gmq0LtnlKlL1MbhehJeKB Si24JRb7BT07jnsbgg== -----END CERTIFICATE-----Generated at Sun Aug 24 03:36:12 2025 by rpki-client