$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft File: U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft (raw, json) Hash identifier: t3USElE9FeMrK3afTyPbC9tK7l2gNnS7iEUUO7pg1W8= Subject key identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 Authority key identifier: 53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 Certificate issuer: /CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Certificate serial: 15 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft Manifest number: 15 Signing time: Fri 04 Jul 2025 14:02:01 +0000 Manifest this update: Fri 04 Jul 2025 14:02:01 +0000 Manifest next update: Fri 04 Jul 2025 20:02:01 +0000 Files and hashes: 1: U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl (hash: 41+KJ/c07HRXYkikMs71mfLuQhaShLBq3C1wsPIiOC8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 20:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Validity Not Before: Jul 4 14:02:01 2025 GMT Not After : Jun 30 15:30:18 2026 GMT Subject: CN=8BCF9A1720F5F3385D2E74231DE4571525E4C745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:a5:3f:4b:26:51:f8:59:a2:01:cc:24:7a: 56:fe:69:eb:2d:0e:e9:54:ee:fc:bb:3a:c4:0a:9c: 5a:da:2c:8a:ac:6d:2b:48:9f:68:5f:9a:0b:9f:50: 7e:d5:a1:86:e2:a8:c1:d4:2d:4c:19:5d:09:04:bf: 4d:e8:bf:6d:0a:73:6b:68:52:e8:6f:16:de:39:35: 43:b1:10:97:de:d8:cb:b8:f0:83:d4:d0:20:42:37: 3b:3b:5d:dd:36:0e:73:6f:44:cf:36:22:a9:45:c2: 51:7d:d9:2a:74:a1:4a:b1:2c:05:0d:96:e1:0b:ae: 3c:58:6d:e9:35:80:99:53:1c:61:4c:92:84:53:84: 59:2c:36:bb:b6:32:6f:a6:cb:e7:40:e5:2c:4d:9b: 21:1d:e9:78:14:0b:bf:f8:b0:c4:07:a3:5e:7a:73: 60:84:d4:c2:bd:08:41:da:fe:ad:4e:44:59:9b:f5: ec:b9:5b:21:01:e7:9b:9b:1b:d7:9d:22:3c:c9:1e: 87:a6:d0:02:3a:91:23:b4:94:4e:11:43:b0:5f:d3: c3:a0:c2:e5:db:22:2e:60:bc:19:2e:08:94:25:94: 6b:ff:78:2f:2f:9b:2a:24:99:54:da:76:71:70:26: 8d:5c:07:3a:8b:fa:34:61:44:7e:8d:0f:92:c6:d3: fd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 X509v3 Authority Key Identifier: keyid:53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9c:b3:a0:1a:be:20:e9:70:c8:03:ef:d9:02:28:13:ac:87: 9d:3b:ea:df:13:68:a8:99:95:52:44:bd:d7:04:25:10:d9:1b: c6:1f:ae:0e:2c:d6:d3:74:dd:8b:2e:f7:b4:33:7e:fe:ec:4b: f0:20:55:05:da:e0:05:f9:2c:20:de:fa:3c:d0:af:d7:bf:17: b6:98:a7:c5:98:9e:ca:f5:dc:43:77:f2:09:4e:41:a7:31:45: 72:a4:de:b7:b4:7e:24:5f:a7:c9:e2:8f:f7:f2:0b:85:a2:72: 66:e3:10:d5:59:82:07:3d:f6:86:37:d6:a4:86:b5:88:de:58: 0c:3a:54:ef:0f:9b:5e:e4:ba:89:bd:fd:98:9f:93:f1:20:29: 05:54:2e:ce:ed:7b:2a:b9:71:a7:a7:df:cd:5a:20:7e:41:52: 20:ed:c3:c4:db:53:ee:b3:4f:94:9d:15:b9:a8:6c:0d:76:91: e2:9f:b4:90:79:5a:0a:81:7c:fa:2d:30:ec:4b:e8:20:29:9e: d7:05:49:79:ff:c2:4b:58:02:72:a7:17:93:86:5b:1a:f1:a1: 67:40:e3:91:a6:fa:d3:30:ac:a1:4f:7b:44:84:99:33:c4:05: 9d:38:22:3b:73:c3:85:93:e4:13:14:a3:05:f4:30:c3:42:7b: 14:8c:e0:9e -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1Mzkw NkUyRTJFRkU3NDkxREIxOUIxQzIwOUVBMTc4QzM5QTBEQUU1MB4XDTI1MDcwNDE0 MDIwMVoXDTI2MDYzMDE1MzAxOFowMzExMC8GA1UEAxMoOEJDRjlBMTcyMEY1RjMz ODVEMkU3NDIzMURFNDU3MTUyNUU0Qzc0NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJscpT9LJlH4WaIBzCR6Vv5p6y0O6VTu/Ls6xAqcWtosiqxtK0if aF+aC59QftWhhuKowdQtTBldCQS/Tei/bQpza2hS6G8W3jk1Q7EQl97Yy7jwg9TQ IEI3Oztd3TYOc29EzzYiqUXCUX3ZKnShSrEsBQ2W4QuuPFht6TWAmVMcYUyShFOE WSw2u7Yyb6bL50DlLE2bIR3peBQLv/iwxAejXnpzYITUwr0IQdr+rU5EWZv17Llb IQHnm5sb150iPMkeh6bQAjqRI7SUThFDsF/Tw6DC5dsiLmC8GS4IlCWUa/94Ly+b KiSZVNp2cXAmjVwHOov6NGFEfo0PksbT/f0CAwEAAaOCAgUwggIBMB0GA1UdDgQW BBSLz5oXIPXzOF0udCMd5FcVJeTHRTAfBgNVHSMEGDAWgBRTkG4uLv50kdsZscIJ 6heMOaDa5TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS9V NUJ1TGk3LWRKSGJHYkhDQ2VvWGpEbWcydVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1U1QnVMaTctZEpIYkdiSENDZW9YakRtZzJ1VS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1JVSUtFL1U1QnVMaTctZEpIYkdiSENDZW9Y akRtZzJ1VS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQADnLOg Gr4g6XDIA+/ZAigTrIedO+rfE2iomZVSRL3XBCUQ2RvGH64OLNbTdN2LLve0M37+ 7EvwIFUF2uAF+Swg3vo80K/Xvxe2mKfFmJ7K9dxDd/IJTkGnMUVypN63tH4kX6fJ 4o/38guFonJm4xDVWYIHPfaGN9akhrWI3lgMOlTvD5te5LqJvf2Yn5PxICkFVC7O 7XsquXGnp9/NWiB+QVIg7cPE21Pus0+UnRW5qGwNdpHin7SQeVoKgXz6LTDsS+gg KZ7XBUl5/8JLWAJypxeThlsa8aFnQOORpvrTMKyhT3tEhJkzxAWdOCI7c8OFk+QT FKMF9DDDQnsUjOCe -----END CERTIFICATE-----Generated at Fri Jul 4 15:40:59 2025 by rpki-client