$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft File: m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft (raw, json) Hash identifier: p3456iyn+GtDMx08zY/FdlV7R6xF7BldnUGEmPsf5X8= Subject key identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Certificate serial: 03D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft Manifest number: 03BE Signing time: Thu 03 Jul 2025 11:02:21 +0000 Manifest this update: Thu 03 Jul 2025 11:02:21 +0000 Manifest next update: Sat 05 Jul 2025 11:02:21 +0000 Files and hashes: 1: OUVLOAWhICb6RKIUUcLjrmm0Y34.roa (hash: I2Osetrg7fASgUaT2feWidPEOjEVokbDhIH5fn7NG7s=) 2: m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl (hash: 7pXF1BVoQn5w/3D7m8X7mRa60/OHPDAjfoxgxOGdsKg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 20:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Validity Not Before: Jul 3 11:02:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=801E850C34B9F9E15E20E5068C97FB8B15063164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:8c:1b:ac:d4:ce:3b:dc:a0:83:31:ba:30: fc:30:4b:d2:0c:75:5a:7c:4f:8e:50:b9:ad:4b:e9: 60:4f:d5:8f:51:ca:c9:f3:40:d9:d1:d2:ee:b8:83: 83:49:b0:2c:a1:74:b6:63:c3:6b:0b:36:af:21:bd: 2f:01:68:ba:e4:c3:ec:a0:0e:7e:ba:cc:c8:9c:6b: e9:4b:db:e5:64:0f:58:f4:ad:31:27:56:ed:f1:ca: ec:06:4e:0a:8c:f0:24:eb:80:08:cc:7d:09:e2:55: b4:01:20:88:fc:ef:21:30:2a:20:49:49:11:4f:7f: 23:26:b2:14:86:3e:c1:89:b8:9a:4f:46:46:f4:53: 54:9f:40:bf:50:3f:c0:11:6a:52:a5:e9:fd:12:b6: c4:0e:2a:c6:15:1d:9f:41:5d:2e:f9:af:f1:c2:d4: 66:02:47:87:cb:c9:31:b8:01:ec:ab:f9:a1:d2:27: c2:96:49:67:15:04:a6:c1:14:13:f2:b2:4c:1b:68: f0:67:33:53:d1:43:96:a4:e5:d5:84:4d:9e:62:cc: cc:e3:6c:b3:67:70:6b:fb:dd:f0:1d:e6:fd:2b:af: 9b:d3:66:eb:28:78:75:c2:58:78:21:77:ad:54:dd: 26:83:b7:25:9c:3b:98:62:0b:e1:44:ab:d2:b3:e7: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 X509v3 Authority Key Identifier: keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:e0:d4:67:6b:de:b1:c2:39:c7:85:ce:28:45:4b:09:a9:c4: 5e:e6:96:1a:7f:ee:46:a4:3c:83:d4:6f:bc:3a:20:54:40:43: d3:07:b5:94:fa:20:cf:da:75:0a:92:14:a4:01:15:ba:85:e7: 46:52:e0:c6:b4:82:58:5c:9c:49:a6:dc:bb:69:eb:2d:f5:68: d4:29:90:19:6b:ce:6b:1c:56:90:ca:c5:74:e1:95:fc:4c:b5: d8:b2:de:ec:97:fa:c3:2c:60:b1:56:f5:a6:7e:3f:c9:b1:8b: 41:51:e9:6d:c0:e0:05:d8:af:3c:ca:c9:8f:5f:06:f4:40:73: de:84:63:7c:a8:d8:6f:42:46:09:6d:d6:65:20:d2:4e:e5:bf: f9:58:38:56:6f:a8:a1:9f:ad:a7:57:64:8b:81:fe:9b:a6:e3: a4:b3:e6:fc:c4:68:00:f6:e6:9f:b8:8b:7b:93:a0:90:f6:da: 95:4a:a8:3d:91:ec:bf:41:8a:da:0b:59:be:e1:64:2c:82:b9: 24:ac:a6:a9:ac:c4:e1:fe:d2:cb:56:12:14:b1:da:aa:a6:a5: ce:05:56:45:9f:fe:f8:28:08:33:24:96:47:af:0c:96:b1:d8: 86:e4:c8:50:0b:ed:a5:c8:e7:df:fc:a9:7c:51:fa:15:8a:cd: ac:6a:d6:95 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI2 MDY5NkQ2ODc3M0FFMkU1MzJGMENENUQxMEZEQzBDODI3M0VBNTAeFw0yNTA3MDMx MTAyMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwMUU4NTBDMzRCOUY5 RTE1RTIwRTUwNjhDOTdGQjhCMTUwNjMxNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnOowbrNTOO9yggzG6MPwwS9IMdVp8T45Qua1L6WBP1Y9Rysnz QNnR0u64g4NJsCyhdLZjw2sLNq8hvS8BaLrkw+ygDn66zMica+lL2+VkD1j0rTEn Vu3xyuwGTgqM8CTrgAjMfQniVbQBIIj87yEwKiBJSRFPfyMmshSGPsGJuJpPRkb0 U1SfQL9QP8ARalKl6f0StsQOKsYVHZ9BXS75r/HC1GYCR4fLyTG4Aeyr+aHSJ8KW SWcVBKbBFBPyskwbaPBnM1PRQ5ak5dWETZ5izMzjbLNncGv73fAd5v0rr5vTZuso eHXCWHghd61U3SaDtyWcO5hiC+FEq9Kz5xxzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUgB6FDDS5+eFeIOUGjJf7ixUGMWQwHwYDVR0jBBgwFoAUm2BpbWh3OuLlMvDN XRD9wMgnPqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20y QnBiV2gzT3VMbE12RE5YUkQ5d01nblBxVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bTJCcGJXaDNPdUxsTXZETlhSRDl3TWduUHFVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20yQnBiV2gzT3VMbE12RE5YUkQ5d01n blBxVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAt4NRna96x wjnHhc4oRUsJqcRe5pYaf+5GpDyD1G+8OiBUQEPTB7WU+iDP2nUKkhSkARW6hedG UuDGtIJYXJxJpty7aest9WjUKZAZa85rHFaQysV04ZX8TLXYst7sl/rDLGCxVvWm fj/JsYtBUeltwOAF2K88ysmPXwb0QHPehGN8qNhvQkYJbdZlINJO5b/5WDhWb6ih n62nV2SLgf6bpuOks+b8xGgA9uafuIt7k6CQ9tqVSqg9key/QYraC1m+4WQsgrkk rKaprMTh/tLLVhIUsdqqpqXOBVZFn/74KAgzJJZHrwyWsdiG5MhQC+2lyOff/Kl8 UfoVis2sataV -----END CERTIFICATE-----Generated at Fri Jul 4 16:09:14 2025 by rpki-client