$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft File: gycg6wvqAFw-3ldOMcCrdWP6DMc.mft (raw, json) Hash identifier: 5Ibgiv0aUlZ82n7/UlZZLkWk8R67IX459LvfvrhccsY= Subject key identifier: D5:0E:33:A0:75:3C:45:A7:3A:48:40:3E:61:BB:59:77:C8:90:FC:5C Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0E1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft Manifest number: 0D51 Signing time: Sat 17 May 2025 21:54:12 +0000 Manifest this update: Sat 17 May 2025 21:54:12 +0000 Manifest next update: Mon 19 May 2025 21:54:12 +0000 Files and hashes: 1: 0I8Z5OK7kcMFLvqAm_GuRrjq9Co.roa (hash: b/wXCHIYDDlWv9EFqk1bQUIbOb17PE4pGzX95Atyjek=) 2: 1aYcfAcNLwgui-N2n8M3DSBTVc8.roa (hash: VDm+H/fJyntt5kDa1r6/bPB/8ivGjrUVug56cxBqe/o=) 3: 2hSF_tSTX6o_hA2GZa69uSr7aYw.roa (hash: 0xknZb1nBEpcxkczaNUmnA6PAHuKCYYJg2j36YRP5+Q=) 4: 3S_Wg0Wwe4wOBPgIyxz_matljRo.roa (hash: RwoqadB7SccFCKH4W664FNOOvNBYL50kkTDujjQfEz8=) 5: 3aLbZG2Y1RSVO7u0W0hr4S9qUY8.roa (hash: jRyl4WeeeWP98fPFMqRBdVRyuKcIkaU8RhSWHO1TefI=) 6: 5P8Iu6qzJrhSwHbjLxz10nouHIU.roa (hash: 2dfrqoOnOnCT2TIwoNpFKqeUidXHK9N7jnYiTE80oNg=) 7: 8BknVL_JZq9EMf0SPwoNjMwXPc4.roa (hash: NAHVsiphkdN3glcsiwhrQ+mW3MMwmiXrrDapeqWRE8g=) 8: 9LNbBTGKkWhZIAFZefop1k8xGYc.roa (hash: Lc2NSLg9tzioJQhrpinsLwIfYjJ0aG1uR7NsG8oBzYI=) 9: Dd0pmsWqtDA6TmIglHrQEIWOXwM.roa (hash: z/SOYGL3Io5NxgC2bwd1hJ4jVXcPUjv+sRshbeMYoZE=) 10: GdMiKceMFJcEGsOX7v8JvvfeuK0.roa (hash: PeIUMFRwKo99vQiyahzZ3lcGyUanjj4p1KLRs8OizcU=) 11: HLxDLhmdHKkZg38vs4lKIUO1uGw.roa (hash: ba0TYIxxAqvWYpSyUzPahMyOJjYKRcLdw/7fcGVerLk=) 12: KFWXAlZ3CqJzTnK7DGSYBBdfdT8.roa (hash: y1TeEWAuGDo2ULut3IisdkE4pt3kC1CDTOV5ullTfm0=) 13: LRFAtIgSxA2dhA3JozBenD8Ae-Q.roa (hash: xnCRZHvlNMCo4zw8mTD4wMlBhDLk3wLbKjjo3VEk4Lo=) 14: N4zTMLr_TdZu5ErHrChE76sUc5E.roa (hash: 01gsXsqHIpNaP0Xi8ecTMIElifmFbVuPD4B4RSJYtbk=) 15: RYKudM5ng4YAEw8SOt5VIttRPFM.roa (hash: IIEniaW1uCybS3xEGSMWNy3xeKQxrLL2dKDvFkgmHj8=) 16: SodZISI9CTwnIRrBalQcBC1d6Xo.roa (hash: kHabac7o2JdKCfK8gTJpMMwwp0oczA3U2wKk1ADHWNk=) 17: V20FQeMvJK1-T0La1dmmNHJ0-Zs.roa (hash: 2JjeoZtgoRaY8PKoqjC4QEQfG62pfk0NhfUwAP7HkNQ=) 18: VE9LWoK3JP5BV-xnNCMwXruNJf0.roa (hash: MqGU7zCdDPc9gUcakaqgTfhtv5T5BXRfkTkOV3YKz2k=) 19: ZwVr2caNFUw7KbzkNKqxxcvKiuo.roa (hash: GRw7IoQYyQsB+bQUgyj9ZZhSx7qtaIv00dZ62o1wf/E=) 20: _a5_rsTZQmTRFEQX8zb9fFZL-HE.roa (hash: lkleLGg/Pwlvcxxncw2jks3Mp2GuaCsZ2LE4yKQf5Ws=) 21: cG0rp8sU5YPI2enpTCgZ7mnL-oE.roa (hash: Dj1i/1AdRA13RqX/WNcmJpj3+Me1MKHAw1Uy9nuNGQc=) 22: ciru1rpoutQlXOtJdiM27oK93fs.roa (hash: WMIxprQ2XFLPzgvC22DVbXoBQnCPjO96rJoPA3pdlPk=) 23: g5lqS9gh2jdNy4-gBlkXqkNlb20.roa (hash: 64WxhEbotKoRJOtgxVyQWdTtLid8/n3q0EeTEMYuEnA=) 24: gycg6wvqAFw-3ldOMcCrdWP6DMc.crl (hash: nIKbQOjV41+mRr5YpSKI2QXAD085T63oKro4C8ql4tg=) 25: hYyepMDIpBY-JHorYEhIMB-ANW4.roa (hash: 3WB6jlJPGMPg7wIcwtP7oU3R9Bwxw/9ND8vEnS2H624=) 26: icJfYpIQH2DbBMM4UrAQ9cGoOhA.roa (hash: CDsd8sCsUoopPDwo6FQuvBqfiV3V9errSwsfa30pSyw=) 27: ixbMn-cB0RySdpn3AhNWw7OrVS8.roa (hash: Dy3msUluRFSYGGOa551tQkuUTUvvjpMzPyxHAwx/Z6E=) 28: mSTL50iIgvS692ofhwIVFRbv-14.roa (hash: 8ZOkULwx6k2NokqJ+pQE3L5fiuF1dtpuPmtAVBatI5I=) 29: q9tQ-jxNkGfoVAFwFVLi41xkgvM.roa (hash: 9yLHoxIPXahVXXJ8Fq+h0Ykk4ONrpDHU2IV4s9jMl+g=) 30: sIB1YfG9KJwlSa7L_HKqR1uKapg.roa (hash: j2w2tl9RXyWKvCyO0ipDhK9OPLKNEPRR6gP+rOlQ8Fc=) 31: tqbxU1vAja7QeseNFY_9hEUO4q8.roa (hash: 2QOrwYiBWBafR6qXAnc1EhdLVO9vSwce00JY4UHzNb0=) 32: uUtDEQh2i-X9AoE1gVqnL5Sszmw.roa (hash: dxLIcgK0A7a9fn+Aob8yBRSXqWBU9XFVGD28LWsncXk=) 33: urrFJWzReN7Zl4rTxMF9DwnMTr0.roa (hash: 9r7smf2QkYfXGKNv5qNfEAWEojBQkT1wsP34ypO7oYA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: May 17 21:54:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D50E33A0753C45A73A48403E61BB5977C890FC5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f2:3d:04:37:8d:ae:2d:d7:c8:3d:8f:38:55: 81:4a:b6:1e:0a:48:99:01:e3:57:1a:a3:4e:9d:40: 82:73:f5:9b:53:e9:9e:d1:d5:e3:34:d8:75:e5:68: 66:7c:ec:00:f7:73:57:64:af:61:23:74:2f:41:1f: 8e:84:bc:6d:2b:a3:22:a4:a3:3d:a5:e0:35:f0:84: 0b:41:32:05:09:41:2e:17:30:38:69:17:15:84:46: 08:cd:52:bb:49:a4:2a:0f:82:03:47:c0:8a:a4:63: 17:d1:da:b7:01:8d:cf:62:c3:f5:70:83:68:5c:00: 71:25:60:a9:3c:60:50:76:65:a2:1e:b0:33:38:b1: 67:06:3d:aa:3e:ce:dd:8b:cf:ed:57:92:cb:1e:f7: 25:69:ee:e2:e5:97:36:ac:74:77:4f:7b:22:3e:ba: 99:38:e9:bf:82:b6:d4:2c:da:8a:6e:27:d4:5c:f2: 1a:e4:3d:bd:5c:f0:a6:53:f1:b7:19:3f:66:25:94: ab:4b:80:d0:a6:09:31:64:2b:5c:55:09:2f:c6:3a: 15:bf:14:91:20:a5:97:dc:91:34:9d:1f:6d:df:a6: 7c:ed:e2:a9:4c:b5:dd:3b:ab:e8:6f:3f:a8:54:53: d8:04:39:cc:c8:cf:ff:04:0e:57:e8:af:d6:04:e6: 89:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0E:33:A0:75:3C:45:A7:3A:48:40:3E:61:BB:59:77:C8:90:FC:5C X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9d:2e:0b:f7:b9:d0:e7:b8:89:b1:88:1c:58:6d:d0:06:5b: 53:b3:10:e5:80:13:88:87:df:85:b7:5d:a3:cd:49:5f:8c:49: 88:ab:b4:c6:36:1e:b9:a3:71:5a:9b:3a:70:9d:f9:2e:a2:b5: 71:16:67:57:3e:ab:b7:7a:1d:27:14:49:db:97:37:c1:3f:6a: 0f:eb:9b:c1:75:48:29:3f:49:5a:cc:fa:40:f9:7a:51:d5:84: fc:59:8e:ca:c5:a8:88:7c:04:ac:4e:3a:08:d5:32:55:8b:30: 50:0a:7d:cd:16:ca:8b:a4:2a:b4:12:69:09:25:4b:c7:ce:15: e7:fa:a4:d5:17:e4:bc:7f:55:c3:d4:ab:67:34:d7:66:b4:ac: d1:e5:2b:ce:98:62:56:d6:2d:ab:7a:a7:9a:1f:86:17:7b:f4: e0:81:e1:08:d3:f6:de:fa:60:ec:14:5d:da:bd:27:56:e0:ce: 81:cc:c5:50:d7:47:08:9f:a5:bd:6f:e6:d2:8a:4c:32:06:78: ab:8c:0a:e5:b3:34:ce:b1:29:4c:56:5b:21:bc:fb:9c:ba:ae: d7:a5:89:ec:a5:68:de:dc:84:2b:a8:88:88:98:e6:7b:2e:8d: 73:b1:f6:91:20:29:f2:e5:ff:41:8b:bb:11:ef:18:bc:5f:4b: 42:84:c9:f2 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDhswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTA1MTcy MTU0MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1MEUzM0EwNzUzQzQ1 QTczQTQ4NDAzRTYxQkI1OTc3Qzg5MEZDNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs8j0EN42uLdfIPY84VYFKth4KSJkB41cao06dQIJz9ZtT6Z7R 1eM02HXlaGZ87AD3c1dkr2EjdC9BH46EvG0royKkoz2l4DXwhAtBMgUJQS4XMDhp FxWERgjNUrtJpCoPggNHwIqkYxfR2rcBjc9iw/Vwg2hcAHElYKk8YFB2ZaIesDM4 sWcGPao+zt2Lz+1Xksse9yVp7uLllzasdHdPeyI+upk46b+CttQs2opuJ9Rc8hrk Pb1c8KZT8bcZP2YllKtLgNCmCTFkK1xVCS/GOhW/FJEgpZfckTSdH23fpnzt4qlM td07q+hvP6hUU9gEOczIz/8EDlfor9YE5on9AgMBAAGjggIFMIICATAdBgNVHQ4E FgQU1Q4zoHU8Rac6SEA+YbtZd8iQ/FwwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9neWNnNnd2cUFGdy0zbGRPTWND cmRXUDZETWMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmJ0u C/e50Oe4ibGIHFht0AZbU7MQ5YATiIffhbddo81JX4xJiKu0xjYeuaNxWps6cJ35 LqK1cRZnVz6rt3odJxRJ25c3wT9qD+ubwXVIKT9JWsz6QPl6UdWE/FmOysWoiHwE rE46CNUyVYswUAp9zRbKi6QqtBJpCSVLx84V5/qk1RfkvH9Vw9SrZzTXZrSs0eUr zphiVtYtq3qnmh+GF3v04IHhCNP23vpg7BRd2r0nVuDOgczFUNdHCJ+lvW/m0opM MgZ4q4wK5bM0zrEpTFZbIbz7nLqu16WJ7KVo3tyEK6iIiJjmey6Nc7H2kSAp8uX/ QYu7Ee8YvF9LQoTJ8g== -----END CERTIFICATE-----Generated at Sun May 18 04:53:01 2025 by rpki-client