$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft File: m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft (raw, json) Hash identifier: CJplrp6jzxcEj+T/PPozbSMuTHcj5x6+eKdpBwFI0p8= Subject key identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Certificate serial: 03F9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft Manifest number: 03E1 Signing time: Sat 23 Aug 2025 21:14:06 +0000 Manifest this update: Sat 23 Aug 2025 21:14:06 +0000 Manifest next update: Mon 25 Aug 2025 21:14:06 +0000 Files and hashes: 1: m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl (hash: voPOiW0DYiWaBWkQyo+x3IJ6lQBUrD+tGRsUK87mxc0=) 2: u6i0tW_ykJ-pICROUPFsj8xP22o.roa (hash: TULF4uEKwnvOpgQTfGdGBxkB1FmLvsOohXS1SsP5bQg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Validity Not Before: Aug 23 21:14:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=801E850C34B9F9E15E20E5068C97FB8B15063164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:8c:1b:ac:d4:ce:3b:dc:a0:83:31:ba:30: fc:30:4b:d2:0c:75:5a:7c:4f:8e:50:b9:ad:4b:e9: 60:4f:d5:8f:51:ca:c9:f3:40:d9:d1:d2:ee:b8:83: 83:49:b0:2c:a1:74:b6:63:c3:6b:0b:36:af:21:bd: 2f:01:68:ba:e4:c3:ec:a0:0e:7e:ba:cc:c8:9c:6b: e9:4b:db:e5:64:0f:58:f4:ad:31:27:56:ed:f1:ca: ec:06:4e:0a:8c:f0:24:eb:80:08:cc:7d:09:e2:55: b4:01:20:88:fc:ef:21:30:2a:20:49:49:11:4f:7f: 23:26:b2:14:86:3e:c1:89:b8:9a:4f:46:46:f4:53: 54:9f:40:bf:50:3f:c0:11:6a:52:a5:e9:fd:12:b6: c4:0e:2a:c6:15:1d:9f:41:5d:2e:f9:af:f1:c2:d4: 66:02:47:87:cb:c9:31:b8:01:ec:ab:f9:a1:d2:27: c2:96:49:67:15:04:a6:c1:14:13:f2:b2:4c:1b:68: f0:67:33:53:d1:43:96:a4:e5:d5:84:4d:9e:62:cc: cc:e3:6c:b3:67:70:6b:fb:dd:f0:1d:e6:fd:2b:af: 9b:d3:66:eb:28:78:75:c2:58:78:21:77:ad:54:dd: 26:83:b7:25:9c:3b:98:62:0b:e1:44:ab:d2:b3:e7: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 X509v3 Authority Key Identifier: keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:3e:ae:cc:db:35:5f:01:2e:0d:13:bc:06:41:39:e0:dc:0c: e4:a9:74:7f:82:81:b3:c1:f2:af:92:21:1b:9a:f7:b5:81:a7: 6f:6c:0e:3b:a0:c6:11:a5:3a:16:89:5c:12:da:c4:53:4b:54: 16:9e:c5:84:61:6b:74:9b:5c:3d:61:84:ec:10:87:97:13:2f: f6:3e:47:5a:d4:2c:76:b3:da:b4:2e:65:82:c4:bc:1d:e7:1b: 89:2b:13:1d:88:8b:01:d4:07:ce:09:7c:c3:62:43:c8:8b:3b: 46:7a:c0:ee:9e:6c:ca:75:b5:ec:20:f1:e5:25:8d:97:8c:5c: 85:b8:cd:6c:99:32:5c:8c:74:bd:bd:b3:f3:22:45:a9:ac:26: 04:1a:de:1e:ed:08:ca:4d:5d:63:09:7a:50:63:b1:74:d0:cb: 5f:fe:67:9b:1e:2b:ac:43:59:e2:c3:97:50:f2:7f:96:4f:05: bc:69:52:95:4d:ed:39:b3:ae:7b:5c:db:5e:e1:ec:aa:30:15: 97:2e:43:2c:4d:c9:db:61:34:73:95:7a:6f:2a:00:2a:e1:8e: b4:0a:8a:34:42:0d:a5:8f:6b:5d:cb:90:69:dd:68:93:15:39: 09:1f:1b:89:14:55:3e:5c:3b:1b:18:9e:12:8a:40:cf:07:55: 0d:ae:1c:f0 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI2 MDY5NkQ2ODc3M0FFMkU1MzJGMENENUQxMEZEQzBDODI3M0VBNTAeFw0yNTA4MjMy MTE0MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgwMUU4NTBDMzRCOUY5 RTE1RTIwRTUwNjhDOTdGQjhCMTUwNjMxNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnOowbrNTOO9yggzG6MPwwS9IMdVp8T45Qua1L6WBP1Y9Rysnz QNnR0u64g4NJsCyhdLZjw2sLNq8hvS8BaLrkw+ygDn66zMica+lL2+VkD1j0rTEn Vu3xyuwGTgqM8CTrgAjMfQniVbQBIIj87yEwKiBJSRFPfyMmshSGPsGJuJpPRkb0 U1SfQL9QP8ARalKl6f0StsQOKsYVHZ9BXS75r/HC1GYCR4fLyTG4Aeyr+aHSJ8KW SWcVBKbBFBPyskwbaPBnM1PRQ5ak5dWETZ5izMzjbLNncGv73fAd5v0rr5vTZuso eHXCWHghd61U3SaDtyWcO5hiC+FEq9Kz5xxzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUgB6FDDS5+eFeIOUGjJf7ixUGMWQwHwYDVR0jBBgwFoAUm2BpbWh3OuLlMvDN XRD9wMgnPqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20y QnBiV2gzT3VMbE12RE5YUkQ5d01nblBxVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bTJCcGJXaDNPdUxsTXZETlhSRDl3TWduUHFVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20yQnBiV2gzT3VMbE12RE5YUkQ5d01n blBxVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQChPq7M2zVf AS4NE7wGQTng3AzkqXR/goGzwfKvkiEbmve1gadvbA47oMYRpToWiVwS2sRTS1QW nsWEYWt0m1w9YYTsEIeXEy/2Pkda1Cx2s9q0LmWCxLwd5xuJKxMdiIsB1AfOCXzD YkPIiztGesDunmzKdbXsIPHlJY2XjFyFuM1smTJcjHS9vbPzIkWprCYEGt4e7QjK TV1jCXpQY7F00Mtf/mebHiusQ1niw5dQ8n+WTwW8aVKVTe05s657XNte4eyqMBWX LkMsTcnbYTRzlXpvKgAq4Y60Coo0Qg2lj2tdy5Bp3WiTFTkJHxuJFFU+XDsbGJ4S ikDPB1UNrhzw -----END CERTIFICATE-----Generated at Sun Aug 24 05:17:44 2025 by rpki-client