$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft File: RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft (raw, json) Hash identifier: ZP4QjepYEU2APsXzgfXIqYLZVKKDFviEa6YhwYZrK2g= Subject key identifier: EB:A3:97:2C:CF:2A:C1:97:E5:86:C0:AD:8B:74:0D:C3:6C:79:B1:B3 Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B Certificate serial: 0D59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft Manifest number: 0D39 Signing time: Sat 21 Jun 2025 09:30:26 +0000 Manifest this update: Sat 21 Jun 2025 09:30:26 +0000 Manifest next update: Mon 23 Jun 2025 09:30:26 +0000 Files and hashes: 1: 6AD09RhhSlVX3Bi3hEHBNh8TnIU.roa (hash: nStEV34LU8U3gwUjfCxu9vu81FhZ+DhL680qZHG55H8=) 2: RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl (hash: DEiKpcZRe3G/n+HmqxlZEGsbejFVtINTVDsFDPvoXS0=) 3: sqW9Ss6FGBJ8JZ9xRnDKaYFTNpY.roa (hash: MG4Wy2efkvSpbc1yPWr9rKUgLUOxccXgjAD4AOXxRtc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 18:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B Validity Not Before: Jun 21 09:30:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EBA3972CCF2AC197E586C0AD8B740DC36C79B1B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1c:70:15:e8:47:0b:5c:cf:90:8c:df:cd:69: 20:52:4c:f0:94:21:ba:af:0c:c8:7d:b3:9b:43:3f: a9:ba:1e:ea:bc:53:ef:72:c0:4f:fc:bb:b9:9a:63: 79:52:fb:a7:80:e8:c1:45:c6:9f:2b:43:84:a0:c5: 20:e4:5a:c2:1f:e2:2f:06:cf:d2:d6:16:05:26:af: e6:d6:76:af:7b:84:98:e9:6d:b6:84:92:6e:0b:b1: f7:2a:ab:94:42:e0:f3:c1:28:a4:7d:ce:c5:f8:f3: 9f:b6:1e:78:f0:7f:9b:f2:1d:4e:23:b0:22:0b:cf: 90:b5:e3:4f:ab:e9:1e:9b:c3:da:13:ce:3b:20:c2: 56:9c:d7:48:31:f2:1c:f3:95:6e:63:09:be:69:92: fa:07:ca:5d:c5:72:72:26:72:b5:f9:f5:4b:ac:40: b1:5a:53:c3:7b:be:8c:5e:cd:fb:81:9a:aa:3f:f3: de:98:2d:3e:77:8f:d9:20:67:13:31:1f:47:ad:a1: 87:11:a7:34:8c:72:b1:03:28:9b:b8:7d:4b:28:ed: 0c:37:e8:ea:75:bb:56:19:d8:b9:76:70:39:cc:11: 35:de:13:3d:c1:36:5b:5b:5e:7f:8f:7e:b9:4e:b7: a4:aa:a5:25:16:70:65:b2:40:fa:01:44:f0:f8:7c: 9d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A3:97:2C:CF:2A:C1:97:E5:86:C0:AD:8B:74:0D:C3:6C:79:B1:B3 X509v3 Authority Key Identifier: keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f6:49:84:09:34:1a:6f:25:3d:90:0c:d4:e5:35:af:89:81: 38:3a:c0:97:98:0c:e9:f7:da:64:ad:ea:2c:9b:cb:44:80:db: 7f:78:46:a4:ed:09:28:4e:c1:e0:db:e5:8a:70:e5:20:c8:e2: ef:fb:ef:43:25:20:e0:49:71:4c:77:a2:55:cc:5e:f6:f8:d4: 8e:05:75:95:61:24:ac:d3:33:46:b6:bd:46:09:64:4b:78:20: 36:6c:3f:8f:e3:89:76:46:74:dd:4b:22:c0:34:80:13:96:93: 08:c9:a8:8d:a5:41:51:6e:fc:5e:72:1c:9d:af:54:33:ca:76: 4c:06:6b:cf:f0:64:4a:31:a4:dd:94:6c:48:7e:cb:b6:f8:ae: 20:b1:5e:e6:4a:72:8c:61:d8:ad:04:f0:39:b4:f7:ef:68:25: 99:79:f8:0a:26:ba:bd:cb:28:49:fc:ce:7c:cc:c1:f8:d9:14: 08:0a:d1:27:25:32:3b:bd:4a:c9:3f:94:e6:d8:04:e5:aa:27: 52:15:64:5c:e5:3c:0c:24:c2:ac:c6:0e:a6:74:d9:90:73:ff: 5b:02:16:79:76:a1:98:52:92:2d:fb:20:e8:00:4b:e3:bc:8f: 8a:7e:7f:09:6d:34:38:fe:0f:34:dc:ff:4c:05:00:b6:4d:6c: 69:11:59:38 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDY0 MEQ5ODhFQzgxNDZCQTQzMDU5NjAxMjEyMkQxQTFDRkMxQzM2QjAeFw0yNTA2MjEw OTMwMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCQTM5NzJDQ0YyQUMx OTdFNTg2QzBBRDhCNzQwREMzNkM3OUIxQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqHHAV6EcLXM+QjN/NaSBSTPCUIbqvDMh9s5tDP6m6Huq8U+9y wE/8u7maY3lS+6eA6MFFxp8rQ4SgxSDkWsIf4i8Gz9LWFgUmr+bWdq97hJjpbbaE km4Lsfcqq5RC4PPBKKR9zsX485+2Hnjwf5vyHU4jsCILz5C140+r6R6bw9oTzjsg wlac10gx8hzzlW5jCb5pkvoHyl3FcnImcrX59UusQLFaU8N7voxezfuBmqo/896Y LT53j9kgZxMxH0etoYcRpzSMcrEDKJu4fUso7Qw36Op1u1YZ2Ll2cDnMETXeEz3B NltbXn+PfrlOt6SqpSUWcGWyQPoBRPD4fJ0nAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU66OXLM8qwZflhsCti3QNw2x5sbMwHwYDVR0jBBgwFoAURkDZiOyBRrpDBZYB ISLRoc/Bw2swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVS L1JrRFppT3lCUnJwREJaWUJJU0xSb2NfQncycy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUmtEWmlPeUJScnBEQlpZQklTTFJvY19CdzJzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVSL1JrRFppT3lCUnJwREJaWUJJ U0xSb2NfQncycy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCD 9kmECTQabyU9kAzU5TWviYE4OsCXmAzp99pkreosm8tEgNt/eEak7QkoTsHg2+WK cOUgyOLv++9DJSDgSXFMd6JVzF72+NSOBXWVYSSs0zNGtr1GCWRLeCA2bD+P44l2 RnTdSyLANIATlpMIyaiNpUFRbvxechydr1QzynZMBmvP8GRKMaTdlGxIfsu2+K4g sV7mSnKMYditBPA5tPfvaCWZefgKJrq9yyhJ/M58zMH42RQICtEnJTI7vUrJP5Tm 2ATlqidSFWRc5TwMJMKsxg6mdNmQc/9bAhZ5dqGYUpIt+yDoAEvjvI+Kfn8JbTQ4 /g803P9MBQC2TWxpEVk4 -----END CERTIFICATE-----Generated at Sun Jun 22 15:55:10 2025 by rpki-client