$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft File: RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft (raw, json) Hash identifier: MeTnfE7FiqTmZw178NKNifLbBEhHeyIY1ZANOnxEOGw= Subject key identifier: E6:66:F7:D9:24:90:F1:A8:BD:F5:57:B9:78:FC:18:F7:0B:1D:D9:B1 Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D Certificate serial: 11F0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft Manifest number: 11DF Signing time: Thu 08 May 2025 20:51:53 +0000 Manifest this update: Thu 08 May 2025 20:51:53 +0000 Manifest next update: Sat 10 May 2025 20:51:53 +0000 Files and hashes: 1: RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl (hash: 11RK+M2k+PLYcNc8t4RXyc5lUT+6JIUbF+wwGuIS/fQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 11:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4592 (0x11f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D Validity Not Before: May 8 20:51:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E666F7D92490F1A8BDF557B978FC18F70B1DD9B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8a:51:8a:02:56:18:ee:65:39:11:38:fb:34: a8:e5:a9:06:89:b7:5e:ad:96:65:a5:6f:0c:16:fa: 84:d3:26:4b:a7:3a:76:ac:64:68:7d:63:2d:42:75: 54:74:f1:bc:d4:49:24:df:85:70:fc:69:bd:1e:43: 13:31:1c:61:cd:cd:03:fb:a2:dc:b3:c4:16:22:fe: 8a:9a:a3:1b:65:6e:1a:55:78:d0:6b:0e:18:90:68: 9a:37:a4:4d:98:52:31:0e:bd:89:f0:39:c1:c3:58: 4f:ec:cd:18:bb:64:2b:a2:71:61:f3:12:9a:4c:1f: 01:90:ff:d7:ed:5f:ca:be:67:b5:c2:e3:de:1a:76: e3:83:f2:63:b8:1d:37:02:57:33:7d:88:83:15:6a: f8:91:9b:b5:c1:d7:1a:ef:53:e9:12:48:64:d3:05: 50:b1:c4:04:d2:bb:61:af:23:03:01:7c:ed:54:fa: 81:9c:be:fb:01:2c:57:89:6b:4f:23:85:4c:ce:4e: 1c:11:3e:a2:a3:f5:a5:c6:55:d1:15:d5:05:b8:c8: d8:b8:e7:87:31:a4:80:ea:bf:65:7b:4e:a7:15:6d: 2e:0b:08:66:82:d6:dc:8d:ba:8f:e1:14:7d:42:6b: 5f:8d:12:a3:75:e8:20:d8:33:1c:c9:20:0b:fc:9a: 1a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:66:F7:D9:24:90:F1:A8:BD:F5:57:B9:78:FC:18:F7:0B:1D:D9:B1 X509v3 Authority Key Identifier: keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:86:c3:33:67:b9:23:d8:c5:e3:da:32:b1:61:e7:14:b5:b0: 61:59:0c:7b:62:3f:30:6d:28:1c:69:dc:39:87:ce:be:63:26: 09:ca:e5:73:62:df:ad:4d:ac:a5:ed:e4:50:8e:51:fa:fc:72: cf:e1:09:8d:cd:8f:3c:54:a4:a9:d3:a3:e0:2d:f6:26:e1:13: b6:90:59:47:51:81:95:08:4f:67:30:0d:1c:de:28:c5:48:43: e8:b3:ce:43:cb:00:80:ba:36:d4:b9:f0:2a:07:cd:55:1e:31: 1b:8d:3d:b1:97:c3:c6:1c:5a:df:26:1e:e0:6b:38:e6:ec:f9: 15:46:d1:2c:c3:5f:6a:de:40:d9:cd:73:1c:3a:a0:b7:a1:b7: a4:a5:7d:23:df:42:b2:d5:61:82:32:37:93:d7:c4:bb:09:06: 7e:07:ed:40:5b:63:28:8c:02:83:4a:eb:1f:83:7e:20:26:c7: 7b:a8:fd:64:31:59:64:7f:ca:48:ce:16:94:78:d3:e3:b6:90: a3:3c:9e:5d:df:6a:a1:e6:6f:68:14:39:c2:87:fd:fa:10:3a: 65:54:e2:c9:4e:a2:f8:5e:fd:f4:76:d1:a6:46:a5:6e:8f:e8: e8:17:c5:10:11:5f:72:75:bb:c2:b5:83:5a:2b:a4:6c:b6:d5: 80:17:47:aa -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgICEfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1 Q0Q1MEQ4Mjk1ODQ5OUZEQUZDQjBBREYxMDI1MUY0Q0FCM0UyRDAeFw0yNTA1MDgy MDUxNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2NjZGN0Q5MjQ5MEYx QThCREY1NTdCOTc4RkMxOEY3MEIxREQ5QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTilGKAlYY7mU5ETj7NKjlqQaJt16tlmWlbwwW+oTTJkunOnas ZGh9Yy1CdVR08bzUSSTfhXD8ab0eQxMxHGHNzQP7otyzxBYi/oqaoxtlbhpVeNBr DhiQaJo3pE2YUjEOvYnwOcHDWE/szRi7ZCuicWHzEppMHwGQ/9ftX8q+Z7XC494a duOD8mO4HTcCVzN9iIMVaviRm7XB1xrvU+kSSGTTBVCxxATSu2GvIwMBfO1U+oGc vvsBLFeJa08jhUzOThwRPqKj9aXGVdEV1QW4yNi454cxpIDqv2V7TqcVbS4LCGaC 1tyNuo/hFH1Ca1+NEqN16CDYMxzJIAv8mhpPAgMBAAGjggIRMIICDTAdBgNVHQ4E FgQU5mb32SSQ8ai99Ve5ePwY9wsd2bEwHwYDVR0jBBgwFoAURVzVDYKVhJn9r8sK 3xAlH0yrPi0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBhBgNVHR8EWjBYMFag VKBShlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVZT05E T1JCSVQvUlZ6VkRZS1ZoSm45cjhzSzN4QWxIMHlyUGkwLmNybDBgBggrBgEFBQcB AQRUMFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kv VFdOSUNDQS9SVnpWRFlLVmhKbjlyOHNLM3hBbEgweXJQaTAuY2VyMA4GA1UdDwEB /wQEAwIHgDCBoQYIKwYBBQUHAQsEgZQwgZEwXAYIKwYBBQUHMAuGUHJzeW5jOi8v cnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CRVlPTkRPUkJJVC9SVnpWRFlL VmhKbjlyOHNLM3hBbEgweXJQaTAubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jy ZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0B AQsFAAOCAQEADYbDM2e5I9jF49oysWHnFLWwYVkMe2I/MG0oHGncOYfOvmMmCcrl c2LfrU2spe3kUI5R+vxyz+EJjc2PPFSkqdOj4C32JuETtpBZR1GBlQhPZzANHN4o xUhD6LPOQ8sAgLo21LnwKgfNVR4xG409sZfDxhxa3yYe4Gs45uz5FUbRLMNfat5A 2c1zHDqgt6G3pKV9I99CstVhgjI3k9fEuwkGfgftQFtjKIwCg0rrH4N+ICbHe6j9 ZDFZZH/KSM4WlHjT47aQozyeXd9qoeZvaBQ5wof9+hA6ZVTiyU6i+F799HbRpkal bo/o6BfFEBFfcnW7wrWDWiukbLbVgBdHqg== -----END CERTIFICATE-----Generated at Sat May 10 09:04:57 2025 by rpki-client