$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft File: m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft (raw, json) Hash identifier: zAB5p8BwuZeHmo+Y0pQMpgJDuHSsTCqcw6Yj6BjzNi4= Subject key identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Certificate serial: 03B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft Manifest number: 039F Signing time: Sat 17 May 2025 21:53:23 +0000 Manifest this update: Sat 17 May 2025 21:53:23 +0000 Manifest next update: Mon 19 May 2025 21:53:23 +0000 Files and hashes: 1: OUVLOAWhICb6RKIUUcLjrmm0Y34.roa (hash: I2Osetrg7fASgUaT2feWidPEOjEVokbDhIH5fn7NG7s=) 2: m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl (hash: d5Sm2U/KpHboLYeTrCCA6NGaj06sScob3tt6IQxMvUM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 04:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Validity Not Before: May 17 21:53:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=801E850C34B9F9E15E20E5068C97FB8B15063164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:8c:1b:ac:d4:ce:3b:dc:a0:83:31:ba:30: fc:30:4b:d2:0c:75:5a:7c:4f:8e:50:b9:ad:4b:e9: 60:4f:d5:8f:51:ca:c9:f3:40:d9:d1:d2:ee:b8:83: 83:49:b0:2c:a1:74:b6:63:c3:6b:0b:36:af:21:bd: 2f:01:68:ba:e4:c3:ec:a0:0e:7e:ba:cc:c8:9c:6b: e9:4b:db:e5:64:0f:58:f4:ad:31:27:56:ed:f1:ca: ec:06:4e:0a:8c:f0:24:eb:80:08:cc:7d:09:e2:55: b4:01:20:88:fc:ef:21:30:2a:20:49:49:11:4f:7f: 23:26:b2:14:86:3e:c1:89:b8:9a:4f:46:46:f4:53: 54:9f:40:bf:50:3f:c0:11:6a:52:a5:e9:fd:12:b6: c4:0e:2a:c6:15:1d:9f:41:5d:2e:f9:af:f1:c2:d4: 66:02:47:87:cb:c9:31:b8:01:ec:ab:f9:a1:d2:27: c2:96:49:67:15:04:a6:c1:14:13:f2:b2:4c:1b:68: f0:67:33:53:d1:43:96:a4:e5:d5:84:4d:9e:62:cc: cc:e3:6c:b3:67:70:6b:fb:dd:f0:1d:e6:fd:2b:af: 9b:d3:66:eb:28:78:75:c2:58:78:21:77:ad:54:dd: 26:83:b7:25:9c:3b:98:62:0b:e1:44:ab:d2:b3:e7: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 X509v3 Authority Key Identifier: keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:8f:1c:05:c1:ba:b8:e6:86:40:86:97:9f:c8:1e:32:9a:34: 1f:bf:6d:62:9e:19:43:89:79:c2:fe:b1:25:0d:57:59:31:6c: 18:18:5e:8f:68:cb:86:5f:ae:a6:d3:83:ed:81:9e:93:1a:b7: 1b:1f:80:63:9c:14:48:a8:92:64:95:32:2d:69:3d:69:25:82: b3:80:b6:a4:ac:88:de:d5:6c:08:50:8b:09:dc:34:12:e5:22: 47:f2:be:db:d9:5d:a9:62:17:bc:4a:51:9f:dd:f8:94:b7:7d: 95:cd:27:da:3f:e9:7b:c8:47:8e:9e:76:60:fa:59:d7:16:39: 22:b7:a0:2e:a6:2d:09:dd:26:42:ac:05:ac:12:15:35:75:06: 74:3e:f3:45:b8:e1:50:62:1f:16:42:5d:58:d5:a5:37:74:f2: b4:57:cf:d2:d6:b8:ab:57:ea:f2:19:6f:c1:53:2d:ab:6a:d3: 46:4b:55:4d:b3:dc:8c:ec:44:0e:d1:2b:07:53:0d:2d:cd:14: 88:0d:88:ed:43:35:e4:f0:db:da:9e:40:66:1e:d2:11:d3:ce: ce:33:62:1a:ee:ec:89:35:ab:70:a5:37:62:41:3b:16:fc:35: 45:cb:84:0c:e1:ff:7b:10:94:21:f9:27:e9:18:72:e8:9d:85: b4:aa:2b:06 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI2 MDY5NkQ2ODc3M0FFMkU1MzJGMENENUQxMEZEQzBDODI3M0VBNTAeFw0yNTA1MTcy MTUzMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwMUU4NTBDMzRCOUY5 RTE1RTIwRTUwNjhDOTdGQjhCMTUwNjMxNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnOowbrNTOO9yggzG6MPwwS9IMdVp8T45Qua1L6WBP1Y9Rysnz QNnR0u64g4NJsCyhdLZjw2sLNq8hvS8BaLrkw+ygDn66zMica+lL2+VkD1j0rTEn Vu3xyuwGTgqM8CTrgAjMfQniVbQBIIj87yEwKiBJSRFPfyMmshSGPsGJuJpPRkb0 U1SfQL9QP8ARalKl6f0StsQOKsYVHZ9BXS75r/HC1GYCR4fLyTG4Aeyr+aHSJ8KW SWcVBKbBFBPyskwbaPBnM1PRQ5ak5dWETZ5izMzjbLNncGv73fAd5v0rr5vTZuso eHXCWHghd61U3SaDtyWcO5hiC+FEq9Kz5xxzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUgB6FDDS5+eFeIOUGjJf7ixUGMWQwHwYDVR0jBBgwFoAUm2BpbWh3OuLlMvDN XRD9wMgnPqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20y QnBiV2gzT3VMbE12RE5YUkQ5d01nblBxVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bTJCcGJXaDNPdUxsTXZETlhSRDl3TWduUHFVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20yQnBiV2gzT3VMbE12RE5YUkQ5d01n blBxVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCZjxwFwbq4 5oZAhpefyB4ymjQfv21inhlDiXnC/rElDVdZMWwYGF6PaMuGX66m04PtgZ6TGrcb H4BjnBRIqJJklTItaT1pJYKzgLakrIje1WwIUIsJ3DQS5SJH8r7b2V2pYhe8SlGf 3fiUt32VzSfaP+l7yEeOnnZg+lnXFjkit6Aupi0J3SZCrAWsEhU1dQZ0PvNFuOFQ Yh8WQl1Y1aU3dPK0V8/S1rirV+ryGW/BUy2ratNGS1VNs9yM7EQO0SsHUw0tzRSI DYjtQzXk8NvankBmHtIR087OM2Ia7uyJNatwpTdiQTsW/DVFy4QM4f97EJQh+Sfp GHLonYW0qisG -----END CERTIFICATE-----Generated at Mon May 19 01:34:41 2025 by rpki-client