$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft File: gCumEj6hI_Q52pHKPeWlrgqkE3g.mft (raw, json) Hash identifier: 7zIX7SLfzm/mILGvuihes9JegDv5j7bCZAvNGNOSmOo= Subject key identifier: FE:8C:F9:6E:D5:15:83:CF:93:7E:6E:FE:BF:5F:DF:F6:7B:A5:27:66 Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78 Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378 Certificate serial: 0D34 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft Manifest number: 0D25 Signing time: Sat 10 May 2025 09:50:49 +0000 Manifest this update: Sat 10 May 2025 09:50:49 +0000 Manifest next update: Mon 12 May 2025 09:50:49 +0000 Files and hashes: 1: gCumEj6hI_Q52pHKPeWlrgqkE3g.crl (hash: 9Vq9D7Yms0xjZaMRqj9Tvm2HAMCpNZrh2GQiPCtDBls=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3380 (0xd34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378 Validity Not Before: May 10 09:50:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FE8CF96ED51583CF937E6EFEBF5FDFF67BA52766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:58:dd:ab:0e:e4:02:ae:39:eb:fc:31:1d:eb: 27:bd:c9:c3:b7:66:ee:a3:67:57:cd:67:ca:65:cb: 71:7e:b4:09:cb:47:fe:bb:46:91:09:51:36:b3:2e: 2a:b6:13:8a:51:fd:c3:62:f5:11:00:c5:17:7d:ca: 49:da:86:f7:7b:e6:f4:20:4d:fd:13:0d:22:23:b2: 22:1c:bf:81:ae:1a:e8:f0:ae:ee:bc:09:3e:2e:5b: d0:ac:d3:dd:d4:e4:cd:d7:e2:3b:0b:0a:26:80:d1: b1:33:05:91:39:9d:3a:56:d4:6a:73:a9:df:17:f5: c3:5e:50:a9:63:ad:cf:00:93:66:8e:0e:b7:6d:89: 89:87:10:3e:5e:bc:93:27:f5:ed:b0:e6:05:12:49: 0e:82:c8:2f:f2:d1:08:c8:bb:0a:7f:c4:fc:5b:ca: 00:1f:aa:1c:2c:a2:41:d1:e4:76:11:94:72:99:e4: f4:b4:c4:ff:75:f2:73:45:9d:1d:22:42:57:59:ca: 49:ce:7e:a2:99:c3:0b:a8:6d:d6:e2:09:5d:52:03: ac:91:66:72:02:2f:16:34:6d:b8:44:8c:4b:5b:07: 95:21:9e:e3:08:74:d2:7a:32:d6:07:9f:62:5f:57: 7c:d2:87:91:49:62:87:63:17:99:3c:23:ea:9f:cd: b6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8C:F9:6E:D5:15:83:CF:93:7E:6E:FE:BF:5F:DF:F6:7B:A5:27:66 X509v3 Authority Key Identifier: keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:5b:24:ff:e3:12:e3:8a:b1:3d:3b:89:03:ce:c8:34:98:f5: 4e:e4:6b:22:aa:ff:bb:90:20:d4:b8:a3:bf:31:57:9e:1a:28: 2d:d6:fa:32:e3:31:aa:fb:3e:18:5a:27:11:3b:a4:5d:49:67: 3d:96:20:7f:df:60:c9:3c:8c:39:72:bd:f8:d6:66:02:8f:74: 6e:80:03:99:fe:90:8f:59:d4:4c:be:58:53:39:91:94:76:f7: d9:a2:82:b3:a9:7e:32:fe:4a:71:01:b6:61:8d:0d:9e:60:36: 82:74:b7:9c:f7:5c:88:48:e7:25:62:e5:84:c6:0d:64:38:90: b0:51:b2:67:4e:3e:ad:a7:61:c4:92:c7:0f:a1:76:b5:04:d1: e5:09:19:20:04:b9:71:ba:23:49:48:59:02:64:20:83:55:e0: 40:77:b3:0e:05:07:84:99:26:9d:17:86:6d:f6:66:6b:e4:9e: 69:7e:81:f2:b7:1c:04:63:7c:1f:1c:a8:88:37:9c:cc:fb:d6: d8:7c:d7:0f:99:dc:56:96:48:ba:06:92:94:1d:6f:82:9a:6f: 25:6f:d2:b8:f5:db:e4:bf:3a:67:df:df:02:f3:1b:ac:73:bb: d9:51:b7:6e:2b:ab:45:4e:09:ce:32:59:14:2e:5f:48:5f:39: fc:4c:c7:3b -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODAy QkE2MTIzRUExMjNGNDM5REE5MUNBM0RFNUE1QUUwQUE0MTM3ODAeFw0yNTA1MTAw OTUwNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFOENGOTZFRDUxNTgz Q0Y5MzdFNkVGRUJGNUZERkY2N0JBNTI3NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4WN2rDuQCrjnr/DEd6ye9ycO3Zu6jZ1fNZ8ply3F+tAnLR/67 RpEJUTazLiq2E4pR/cNi9REAxRd9yknahvd75vQgTf0TDSIjsiIcv4GuGujwru68 CT4uW9Cs093U5M3X4jsLCiaA0bEzBZE5nTpW1Gpzqd8X9cNeUKljrc8Ak2aODrdt iYmHED5evJMn9e2w5gUSSQ6CyC/y0QjIuwp/xPxbygAfqhwsokHR5HYRlHKZ5PS0 xP918nNFnR0iQldZyknOfqKZwwuobdbiCV1SA6yRZnICLxY0bbhEjEtbB5UhnuMI dNJ6MtYHn2JfV3zSh5FJYodjF5k8I+qfzbZfAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU/oz5btUVg8+Tfm7+v1/f9nulJ2YwHwYDVR0jBBgwFoAUgCumEj6hI/Q52pHK PeWlrgqkE3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU5TT05O RVQvZ0N1bUVqNmhJX1E1MnBIS1BlV2xyZ3FrRTNnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9nQ3VtRWo2aElfUTUycEhLUGVXbHJncWtFM2cuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BTlNPTk5FVC9nQ3VtRWo2aElfUTUy cEhLUGVXbHJncWtFM2cubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY1sk/+MS44qxPTuJA87INJj1TuRrIqr/u5Ag1LijvzFXnhooLdb6MuMxqvs+ GFonETukXUlnPZYgf99gyTyMOXK9+NZmAo90boADmf6Qj1nUTL5YUzmRlHb32aKC s6l+Mv5KcQG2YY0NnmA2gnS3nPdciEjnJWLlhMYNZDiQsFGyZ04+radhxJLHD6F2 tQTR5QkZIAS5cbojSUhZAmQgg1XgQHezDgUHhJkmnReGbfZma+SeaX6B8rccBGN8 HxyoiDeczPvW2HzXD5ncVpZIugaSlB1vgppvJW/SuPXb5L86Z9/fAvMbrHO72VG3 biurRU4JzjJZFC5fSF85/EzHOw== -----END CERTIFICATE-----Generated at Sat May 10 12:29:49 2025 by rpki-client