$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft File: 4CWCsCflcDjqAKPoSE1V3uouGio.mft (raw, json) Hash identifier: BlqaTn7YMpPPwOmJLC352IeQu/V0CK/JHeoHC2ub08A= Subject key identifier: 94:3B:8F:F0:2A:79:12:CE:0F:09:D8:47:BE:42:D0:BA:8D:19:AC:F3 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0DF9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft Manifest number: 0D4E Signing time: Sat 17 May 2025 21:53:51 +0000 Manifest this update: Sat 17 May 2025 21:53:51 +0000 Manifest next update: Mon 19 May 2025 21:53:51 +0000 Files and hashes: 1: -aWiVUWH2huRdD0SJUeYya_ylRA.roa (hash: R8XmZfuWmQ3u74YugA5Mco9y8qNmWAX95yEixozfiNw=) 2: 0u36obiHSZ6yWMBltLYOSggfNrQ.roa (hash: 7gb11x7l2vO7/VxDoyZ3jqU6wLJGBWZ8R7+5lK0Vzsw=) 3: 4CWCsCflcDjqAKPoSE1V3uouGio.crl (hash: sKtpffLrFIS6nODVy/V1Q9d7mL0oYX1bR+GV90UIpTI=) 4: 8Js1DK1N8JCqMFhnt9_K_MAFqtA.roa (hash: 39/XQluNYiTKL6Lp3HPOvicz33wQetPTuGzsc++/CgY=) 5: A4EX6RW63Fh-c5743OscMfZl0AQ.roa (hash: SPjy/LLeNvChRL/XDN9vK6qEBZH1eE0w71RHHsYBHXc=) 6: Br8HB0xT0-VLhFcd9AYGwgDykps.roa (hash: ybjZJA0AsCqGBH0XkY+LOSL0YeTBQAaqffcE2Nu6vTQ=) 7: D9VsMxstBnZ992VQmPJD5sd_bnQ.roa (hash: wsgVKYawekLE4+eu/wQMeA1fsplxEiVN9ykXuykO/2E=) 8: EBzBX-tMa8JlRXe-NzUVM_kQXKU.roa (hash: fNHDVXhNOtk3I5d2c7nUQDlf/N+imtQ+Ff9zOKDVMA0=) 9: EtzpmMPk9OXlb0MJxeYHIjNzlZQ.roa (hash: S+sYZ2Azx0j7y2LYxd2iJMQH14MPU6tkgNz/JiPxxmk=) 10: SkNLLauOU4gkJDQLKMUGw_XUdg4.roa (hash: 5oHpCXaHnMH50ZXYoqACTJRGjV+W5zV4juP+XWmkZDY=) 11: Zh4w6mFHwdUa9ju3BzIc1Vc3lZE.roa (hash: TB6NDPddxbasfrxNpDkKss/Q/oN46xpBeF4K21/a5KQ=) 12: b8f-d8RqPgqOu82eLf3R8il1-o4.roa (hash: ThDJcoSwKXdqVWKOxnJmEAaoDfCZdfbTWtthet1BVII=) 13: bBWEdmUBw8dpoCe0O6U3OWN0MYg.roa (hash: XV8pLOqLODnI6clR4bRaHvvsogx8lNbBzf9TCVPdlsc=) 14: e4DOTkTjr9nQlWSKOZY4bosCAQI.roa (hash: XcnPUT8+KBiB+8UFrU3WOoeXLNGOQhtouILHMq7KIoU=) 15: erDyOAc8Ke5k3qbto1yKiSXTdec.roa (hash: 1LYjniYP7RBDAJGt9QFkonxzOWS/wcM6FYe3QS1jWHw=) 16: ftomGWWLQSbd3A1zAzmEBmhomv4.roa (hash: PbIpDkGUxK9UNcAI+kI3/umB3gHoHtln1PmQQiuf/Kw=) 17: iQO5YHDsKK7YRIU2VhzaGLIfT0g.roa (hash: 3ul2glMUlNsKXEHTNkFXlJ5QEN5e/PMv1LxnCodvKAA=) 18: lXrMXdDAAODIevYVHnwCzpBbYJI.roa (hash: q1uDSbPdpzMxMYA7TK+FRPN15PQRqSwwZA46g8KIe1M=) 19: nkQ_0LmG9Mh9S88Ur7MJmhxrnU4.roa (hash: U3NccPiAgXXZ5Ubp9zuNMRpPJFb4r48NhfKEevNzG3o=) 20: qpWc1HYl_wSnyArGoCbQj1K5XnM.roa (hash: 8CUATLm9X9VC3tv5Ggeefg7MJK5iuqA6H2y3X2iN53Y=) 21: tKewCWbZQZwgfpwq6WNqcJjjgJI.roa (hash: f86MJJahIVoqk7ESsSOvF6ucqdGr2LNQ5rjl9aPfLho=) 22: zZd4tI2U3He9WtcWBC15ig9_010.roa (hash: DsNYAuSrAlGON8ZglDhMAfqrZ28BCvZgG46AmzbS4fc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3577 (0xdf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: May 17 21:53:51 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=943B8FF02A7912CE0F09D847BE42D0BA8D19ACF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:21:51:1d:61:2c:a9:38:49:fc:a7:e2:d5: b4:64:e0:15:75:84:48:55:4b:7f:3f:47:12:1b:f2: f8:ed:51:09:08:2d:6c:11:1d:99:14:e2:46:f3:f9: e3:e5:18:5a:d8:78:ad:e3:77:71:b6:2e:9a:fa:73: 66:03:c7:d7:eb:28:a8:cc:d6:30:41:dd:d0:26:59: 35:3e:37:81:da:db:e7:d1:2c:45:ab:c8:34:04:f7: 55:bf:d9:de:4e:c1:60:c6:5f:e7:8d:5b:2b:ed:4a: e1:51:a5:27:a8:55:6c:e7:63:07:9f:93:74:50:2f: bb:1e:d4:c2:00:2a:7d:8c:7c:e3:9e:75:f8:b1:46: cf:8b:43:ff:08:0f:60:a6:d9:28:34:bd:7f:17:44: 0c:f6:a0:96:f3:6a:c5:60:d4:b5:9f:93:e2:7b:f6: 6b:6a:03:a3:9d:6b:34:ab:ff:e7:04:77:03:81:5c: ad:a8:1f:b5:9f:b3:42:d3:e0:c5:a8:5c:f4:99:ea: e2:8d:fb:8f:6b:c3:c6:35:f9:cc:15:01:40:5c:28: 1a:dd:a4:15:ec:81:f4:c0:28:be:08:93:83:91:2e: 13:0b:e6:74:c4:71:f3:22:fa:84:f6:d7:42:6f:90: ca:8a:25:c2:a3:14:fd:10:29:43:33:14:9f:93:28: cf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3B:8F:F0:2A:79:12:CE:0F:09:D8:47:BE:42:D0:BA:8D:19:AC:F3 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:be:de:18:1c:5f:21:bc:3c:db:eb:9e:f9:10:21:8b:f1:3f: 4d:58:ad:cb:8b:53:ab:e1:66:e3:0d:21:94:0f:e7:75:42:7f: 10:44:cd:9d:fd:88:f2:6a:4b:81:27:5a:a3:d1:59:fb:ac:4a: 51:29:e0:ee:a4:b2:5e:40:d2:fc:c8:18:21:cf:2f:9b:6f:b2: d5:9c:5e:cb:0d:5a:a8:70:1d:1c:1e:56:ad:1a:ec:88:56:1d: 69:4d:01:fc:f2:fd:b1:fe:20:51:b0:b7:28:f1:a4:6e:8d:25: 56:45:4d:c8:c5:2e:b4:7e:f1:c7:6c:35:4c:e7:ca:37:1c:fd: f5:64:e7:63:e4:d1:59:1f:8a:66:d5:0d:cb:ba:e8:33:ab:a2: 7b:19:61:9e:44:de:89:21:40:87:bc:c7:48:5f:97:c6:c2:f4: 5d:34:01:3b:26:0a:53:29:dd:b4:ef:8a:17:92:be:b6:f7:69: dc:32:ac:52:04:06:3b:a0:8b:1f:fe:27:5c:43:17:e1:f5:23: 75:77:d4:71:c9:b4:3b:92:69:a0:69:79:98:55:91:13:4c:3a: a4:2d:89:86:ec:58:fb:04:32:ec:03:5f:fe:a7:d4:f3:9a:57: a8:77:1f:72:29:33:3f:54:07:74:56:ef:4f:ca:21:d2:f5:1b: 70:2f:47:91 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNTA1MTcy MTUzNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0M0I4RkYwMkE3OTEy Q0UwRjA5RDg0N0JFNDJEMEJBOEQxOUFDRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMeCFRHWEsqThJ/Kfi1bRk4BV1hEhVS38/RxIb8vjtUQkILWwR HZkU4kbz+ePlGFrYeK3jd3G2Lpr6c2YDx9frKKjM1jBB3dAmWTU+N4Ha2+fRLEWr yDQE91W/2d5OwWDGX+eNWyvtSuFRpSeoVWznYwefk3RQL7se1MIAKn2MfOOedfix Rs+LQ/8ID2Cm2Sg0vX8XRAz2oJbzasVg1LWfk+J79mtqA6OdazSr/+cEdwOBXK2o H7Wfs0LT4MWoXPSZ6uKN+49rw8Y1+cwVAUBcKBrdpBXsgfTAKL4Ik4ORLhML5nTE cfMi+oT210JvkMqKJcKjFP0QKUMzFJ+TKM+1AgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUlDuP8Cp5Es4PCdhHvkLQuo0ZrPMwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvNENXQ3NDZmxjRGpxQUtQb1NFMVYz dW91R2lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAH6+3hgc XyG8PNvrnvkQIYvxP01YrcuLU6vhZuMNIZQP53VCfxBEzZ39iPJqS4EnWqPRWfus SlEp4O6ksl5A0vzIGCHPL5tvstWcXssNWqhwHRweVq0a7IhWHWlNAfzy/bH+IFGw tyjxpG6NJVZFTcjFLrR+8cdsNUznyjcc/fVk52Pk0VkfimbVDcu66DOronsZYZ5E 3okhQIe8x0hfl8bC9F00ATsmClMp3bTviheSvrb3adwyrFIEBjugix/+J1xDF+H1 I3V31HHJtDuSaaBpeZhVkRNMOqQtiYbsWPsEMuwDX/6n1POaV6h3H3IpMz9UB3RW 70/KIdL1G3AvR5E= -----END CERTIFICATE-----Generated at Sun May 18 02:09:29 2025 by rpki-client