$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft File: TwAMtt3TdIem3h9-rb2hJwjrLBk.mft (raw, json) Hash identifier: 7/W4VIvW1XSl9gZgsaRaKhsSEBLEWJ6HxCdJUQY/95k= Subject key identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 Authority key identifier: 4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 Certificate issuer: /CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Certificate serial: 01E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft Manifest number: 01E5 Signing time: Thu 03 Jul 2025 10:32:06 +0000 Manifest this update: Thu 03 Jul 2025 10:32:06 +0000 Manifest next update: Sat 05 Jul 2025 10:32:06 +0000 Files and hashes: 1: TwAMtt3TdIem3h9-rb2hJwjrLBk.crl (hash: cHR9hBe1N496vKrJlwAuQCWwn/a5mLJO6gO7Z5N35WA=) 2: uRSqFV58E3nH1p3jiHvKc4lbTUI.roa (hash: CnbYGl41BRGfMBBfC9/Hho6CwbwlpDvFOtjleXqKaI8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 19:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Validity Not Before: Jul 3 10:32:06 2025 GMT Not After : Nov 7 15:30:19 2025 GMT Subject: CN=6BA0B4DA6503A1532D5360C18EB1A32EBAA66400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:5d:3b:a1:99:c6:fb:3b:7a:74:a4:7e:e8: 5a:72:42:8e:25:eb:10:33:c3:96:55:5b:d2:40:e7: 21:01:fa:e3:1d:64:7e:e0:b5:b8:7a:de:05:10:27: 88:10:c4:88:8b:76:b3:fb:b3:98:fc:c7:2e:45:ba: 3e:4d:f3:cc:5a:c3:45:13:4a:8c:de:59:79:85:6f: c7:ed:14:0d:fb:9d:cd:4a:27:96:94:13:5b:2a:5a: c5:37:40:d8:78:84:88:fb:2a:90:27:fb:70:2a:9a: b3:ec:e5:34:d3:1c:48:37:6f:84:0b:e5:23:fe:b8: e4:55:82:0c:70:55:91:9a:87:e1:9c:f5:5d:94:e6: 76:d7:b8:ab:c8:f5:06:ef:f8:66:29:51:6b:07:7a: 21:fa:de:af:82:f0:c2:5a:1d:3e:91:24:4e:d2:67: 2e:9a:42:d1:1d:72:1a:5b:dd:ee:c5:2e:54:c7:59: df:c7:dd:5f:b4:1f:6f:95:76:d8:4b:e1:12:ad:2b: 08:8d:9d:2b:9d:7a:eb:da:f6:3e:d0:83:30:38:5d: 4c:4e:f1:fc:c3:30:9a:05:bf:fa:16:d7:1e:3c:fc: bc:4d:83:8a:1f:5e:cb:5b:73:c2:47:72:92:83:5b: 15:57:fa:95:85:6c:8f:7d:22:03:31:ec:22:d8:39: 0c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 X509v3 Authority Key Identifier: keyid:4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:bc:c4:e6:77:99:fa:d2:8c:c7:5b:1c:64:d9:2c:b3:c1:45: 3b:78:d0:32:f2:73:37:e2:b2:77:9a:af:1d:ea:a6:6d:b3:5a: 10:37:23:4a:e2:55:f9:89:da:3d:ba:0a:e9:25:b9:dc:d2:95: 44:c1:ed:8f:b7:c1:7b:11:42:02:f1:13:5c:29:a2:ee:a9:52: 74:da:a4:28:2a:57:c0:18:4a:e2:dd:c9:86:fe:40:30:36:48: 3c:c4:54:f9:7b:c5:24:5a:02:d7:fe:b8:41:be:b0:4c:c8:29: c4:61:f7:b3:50:0b:a6:80:4a:ba:e4:4d:59:4e:ab:59:f4:c1: 6d:d4:ae:73:cd:25:9d:d2:98:92:ac:22:a4:43:84:bd:78:42: 30:4d:8a:3b:a1:01:86:5a:15:13:03:95:c8:1d:7c:01:6c:70: d6:9a:4f:2c:57:ec:e0:3b:5c:b4:2f:7b:c8:50:69:9b:7f:82: 19:91:85:af:1d:8d:e7:6d:ac:49:96:e7:5d:d5:68:1d:4d:7f: e5:c7:98:bd:18:07:eb:5d:91:8c:f6:2b:a0:f9:68:8a:6c:4a: c9:9a:10:2f:bc:12:68:73:17:45:5f:04:5f:e8:29:23:28:e4: 0a:9e:50:e6:9f:3f:9f:c2:46:d4:31:95:1a:af:45:56:36:33: d6:93:f1:1f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEYw MDBDQjZEREQzNzQ4N0E2REUxRjdFQURCREExMjcwOEVCMkMxOTAeFw0yNTA3MDMx MDMyMDZaFw0yNTExMDcxNTMwMTlaMDMxMTAvBgNVBAMTKDZCQTBCNERBNjUwM0Ex NTMyRDUzNjBDMThFQjFBMzJFQkFBNjY0MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoHl07oZnG+zt6dKR+6FpyQo4l6xAzw5ZVW9JA5yEB+uMdZH7g tbh63gUQJ4gQxIiLdrP7s5j8xy5Fuj5N88xaw0UTSozeWXmFb8ftFA37nc1KJ5aU E1sqWsU3QNh4hIj7KpAn+3AqmrPs5TTTHEg3b4QL5SP+uORVggxwVZGah+Gc9V2U 5nbXuKvI9Qbv+GYpUWsHeiH63q+C8MJaHT6RJE7SZy6aQtEdchpb3e7FLlTHWd/H 3V+0H2+VdthL4RKtKwiNnSudeuva9j7QgzA4XUxO8fzDMJoFv/oW1x48/LxNg4of Xstbc8JHcpKDWxVX+pWFbI99IgMx7CLYOQwLAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUa6C02mUDoVMtU2DBjrGjLrqmZAAwHwYDVR0jBBgwFoAUTwAMtt3TdIem3h9+ rb2hJwjrLBkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv VHdBTXR0M1RkSWVtM2g5LXJiMmhKd2pyTEJrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Ud0FNdHQzVGRJZW0zaDktcmIyaEp3anJMQmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS9Ud0FNdHQzVGRJZW0zaDktcmIy aEp3anJMQmsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbzE 5neZ+tKMx1scZNkss8FFO3jQMvJzN+Kyd5qvHeqmbbNaEDcjSuJV+YnaPboK6SW5 3NKVRMHtj7fBexFCAvETXCmi7qlSdNqkKCpXwBhK4t3Jhv5AMDZIPMRU+XvFJFoC 1/64Qb6wTMgpxGH3s1ALpoBKuuRNWU6rWfTBbdSuc80lndKYkqwipEOEvXhCME2K O6EBhloVEwOVyB18AWxw1ppPLFfs4DtctC97yFBpm3+CGZGFrx2N522sSZbnXdVo HU1/5ceYvRgH612RjPYroPloimxKyZoQL7wSaHMXRV8EX+gpIyjkCp5Q5p8/n8JG 1DGVGq9FVjYz1pPxHw== -----END CERTIFICATE-----Generated at Fri Jul 4 18:40:55 2025 by rpki-client