$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft File: s1TTHFRizuxspNW_1vRhsrcL8LE.mft (raw, json) Hash identifier: Mu9/CkYeKjZ9Ii+9U2Z5w7usKwe1zdsK6JCJalkBSI0= Subject key identifier: 5C:43:9F:D5:D9:98:7F:6B:05:79:7D:86:BB:BA:C4:36:E2:C0:8D:CD Authority key identifier: B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1 Certificate issuer: /CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1 Certificate serial: D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft Manifest number: D2 Signing time: Fri 04 Jul 2025 09:02:38 +0000 Manifest this update: Fri 04 Jul 2025 09:02:38 +0000 Manifest next update: Fri 04 Jul 2025 15:02:38 +0000 Files and hashes: 1: iRKUuh79K81XRDn1kB4T_7QQ_a8.roa (hash: 18urDyn6ICt5b52RQ51LCS6obl5FebXJowDlflhnmgs=) 2: s1TTHFRizuxspNW_1vRhsrcL8LE.crl (hash: G7uszN7F/VIdl0M+TQWxpQfS+PbkZtTUOoji49riOQM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 15:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1 Validity Not Before: Jul 4 09:02:38 2025 GMT Not After : May 23 15:30:20 2026 GMT Subject: CN=5C439FD5D9987F6B05797D86BBBAC436E2C08DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:d0:0d:e2:6c:2a:53:08:22:6c:b2:be:7e: 91:87:87:f9:7b:3c:d8:9a:d9:e9:ad:d8:6f:d4:0e: b2:79:8e:ee:28:a5:7c:e6:50:2e:58:f8:7f:c6:5a: 44:c1:cb:49:4e:33:ac:f8:07:57:86:be:d4:8c:f2: d4:65:2d:70:47:ab:d4:bc:08:c8:7c:bf:3b:6e:60: bb:b8:93:4e:fc:bd:cb:17:78:1a:b6:db:ae:07:c6: e7:a5:6b:f8:e2:0b:b8:67:43:5c:7b:97:17:b9:91: a6:46:03:5f:b3:44:bd:42:46:f7:9c:67:b4:6c:fc: 31:fb:f1:7f:fb:93:39:3f:44:67:16:06:a0:9d:d3: de:e7:18:fe:62:05:5f:d8:b9:49:71:3a:bb:a7:89: 2a:2f:af:1f:75:49:69:7a:5e:3b:89:5b:29:53:41: 08:30:1b:4c:b8:86:f2:80:f4:77:f1:e9:90:1e:71: 78:e6:57:53:eb:71:1d:1d:c0:99:db:7c:5e:37:ff: 03:ec:a0:00:c4:5d:ce:a3:5c:24:df:a8:da:5c:20: 1b:ce:aa:1b:ae:4e:ad:72:0e:fe:10:0d:91:2a:70: e9:6f:a1:ad:2c:5e:c7:be:41:6b:3e:bd:43:1e:6e: e8:0e:74:07:60:fa:eb:9e:13:7b:91:c6:df:9d:44: 7f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:43:9F:D5:D9:98:7F:6B:05:79:7D:86:BB:BA:C4:36:E2:C0:8D:CD X509v3 Authority Key Identifier: keyid:B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e0:5f:0f:76:5d:94:78:3e:c0:18:bb:6b:61:5b:89:54:db: ac:81:90:2d:4d:04:ca:5d:a8:db:99:8f:c6:78:18:13:0d:ec: c3:aa:6d:8c:ee:46:54:e3:13:47:37:1e:cc:e3:a9:db:9a:c2: 73:28:92:ba:c9:45:9b:4f:8f:b6:85:21:c5:2a:ec:a8:0c:58: 00:f8:61:af:e0:cc:17:60:90:a3:83:d1:7e:89:d7:3d:49:5f: c3:12:22:b6:ee:f3:3f:79:b1:c7:3c:a9:db:7d:0d:eb:e1:b6: 33:ac:b8:93:4c:72:85:b3:f7:7e:0f:28:3e:88:b4:c2:eb:f8: 18:17:51:41:6f:ef:ac:fb:69:03:95:da:d2:5a:90:38:35:0b: 5b:8e:14:95:60:fd:90:47:13:50:04:20:32:b7:2a:19:c8:39: 15:93:7c:dc:93:61:92:27:99:05:ac:cf:93:87:1e:4a:58:b1: 76:c1:4a:99:d1:11:ce:63:45:d4:00:70:06:91:bd:60:d2:4e: 53:28:da:9c:60:d1:fa:ca:91:61:b9:78:e1:b7:33:5e:5c:b0: b5:00:96:24:cc:f9:34:4b:df:4d:ed:ed:6f:b9:d5:25:9a:00: a4:db:b4:d6:94:26:06:72:30:43:a2:44:e6:48:4f:48:47:e3: 4f:29:0c:20 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjM1 NEQzMUM1NDYyQ0VFQzZDQTRENUJGRDZGNDYxQjJCNzBCRjBCMTAeFw0yNTA3MDQw OTAyMzhaFw0yNjA1MjMxNTMwMjBaMDMxMTAvBgNVBAMTKDVDNDM5RkQ1RDk5ODdG NkIwNTc5N0Q4NkJCQkFDNDM2RTJDMDhEQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXVdAN4mwqUwgibLK+fpGHh/l7PNia2emt2G/UDrJ5ju4opXzm UC5Y+H/GWkTBy0lOM6z4B1eGvtSM8tRlLXBHq9S8CMh8vztuYLu4k078vcsXeBq2 264Hxuela/jiC7hnQ1x7lxe5kaZGA1+zRL1CRvecZ7Rs/DH78X/7kzk/RGcWBqCd 097nGP5iBV/YuUlxOruniSovrx91SWl6XjuJWylTQQgwG0y4hvKA9Hfx6ZAecXjm V1PrcR0dwJnbfF43/wPsoADEXc6jXCTfqNpcIBvOqhuuTq1yDv4QDZEqcOlvoa0s Xse+QWs+vUMebugOdAdg+uueE3uRxt+dRH8bAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUXEOf1dmYf2sFeX2Gu7rENuLAjc0wHwYDVR0jBBgwFoAUs1TTHFRizuxspNW/ 1vRhsrcL8LEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVVdBWUlP L3MxVFRIRlJpenV4c3BOV18xdlJoc3JjTDhMRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvczFUVEhGUml6dXhzcE5XXzF2UmhzcmNMOExFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVVdBWUlPL3MxVFRIRlJpenV4c3BOV18x dlJoc3JjTDhMRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB2 4F8Pdl2UeD7AGLtrYVuJVNusgZAtTQTKXajbmY/GeBgTDezDqm2M7kZU4xNHNx7M 46nbmsJzKJK6yUWbT4+2hSHFKuyoDFgA+GGv4MwXYJCjg9F+idc9SV/DEiK27vM/ ebHHPKnbfQ3r4bYzrLiTTHKFs/d+Dyg+iLTC6/gYF1FBb++s+2kDldrSWpA4NQtb jhSVYP2QRxNQBCAytyoZyDkVk3zck2GSJ5kFrM+Thx5KWLF2wUqZ0RHOY0XUAHAG kb1g0k5TKNqcYNH6ypFhuXjhtzNeXLC1AJYkzPk0S99N7e1vudUlmgCk27TWlCYG cjBDokTmSE9IR+NPKQwg -----END CERTIFICATE-----Generated at Fri Jul 4 13:28:00 2025 by rpki-client