$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft File: RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft (raw, json) Hash identifier: SALz7KAfaq17+Ukp5Zfkk+hqBeb7tGJSxAsNxpYFreE= Subject key identifier: E6:66:F7:D9:24:90:F1:A8:BD:F5:57:B9:78:FC:18:F7:0B:1D:D9:B1 Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D Certificate serial: 120F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft Manifest number: 11FE Signing time: Tue 24 Jun 2025 09:01:21 +0000 Manifest this update: Tue 24 Jun 2025 09:01:21 +0000 Manifest next update: Thu 26 Jun 2025 09:01:21 +0000 Files and hashes: 1: RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl (hash: qKl6QGz8WPhCgovHB1BxBNsm0zs4PEGjK5dJiRWMZYY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4623 (0x120f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D Validity Not Before: Jun 24 09:01:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E666F7D92490F1A8BDF557B978FC18F70B1DD9B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8a:51:8a:02:56:18:ee:65:39:11:38:fb:34: a8:e5:a9:06:89:b7:5e:ad:96:65:a5:6f:0c:16:fa: 84:d3:26:4b:a7:3a:76:ac:64:68:7d:63:2d:42:75: 54:74:f1:bc:d4:49:24:df:85:70:fc:69:bd:1e:43: 13:31:1c:61:cd:cd:03:fb:a2:dc:b3:c4:16:22:fe: 8a:9a:a3:1b:65:6e:1a:55:78:d0:6b:0e:18:90:68: 9a:37:a4:4d:98:52:31:0e:bd:89:f0:39:c1:c3:58: 4f:ec:cd:18:bb:64:2b:a2:71:61:f3:12:9a:4c:1f: 01:90:ff:d7:ed:5f:ca:be:67:b5:c2:e3:de:1a:76: e3:83:f2:63:b8:1d:37:02:57:33:7d:88:83:15:6a: f8:91:9b:b5:c1:d7:1a:ef:53:e9:12:48:64:d3:05: 50:b1:c4:04:d2:bb:61:af:23:03:01:7c:ed:54:fa: 81:9c:be:fb:01:2c:57:89:6b:4f:23:85:4c:ce:4e: 1c:11:3e:a2:a3:f5:a5:c6:55:d1:15:d5:05:b8:c8: d8:b8:e7:87:31:a4:80:ea:bf:65:7b:4e:a7:15:6d: 2e:0b:08:66:82:d6:dc:8d:ba:8f:e1:14:7d:42:6b: 5f:8d:12:a3:75:e8:20:d8:33:1c:c9:20:0b:fc:9a: 1a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:66:F7:D9:24:90:F1:A8:BD:F5:57:B9:78:FC:18:F7:0B:1D:D9:B1 X509v3 Authority Key Identifier: keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:ed:4a:75:19:d0:03:ed:76:14:99:11:3c:ee:42:72:a5:b4: 31:61:67:38:8d:67:f9:b0:f2:89:e4:75:a7:0a:9d:8a:2f:e4: 0f:b2:ce:ed:23:a4:e9:33:f6:49:99:34:03:90:57:1d:51:c9: 16:46:30:00:d8:cb:29:cb:4b:b0:88:2f:35:d9:59:d3:b8:e7: 8f:57:f7:31:9d:84:41:10:11:fc:36:9f:48:cb:6c:f9:17:25: 4c:bb:54:15:00:a2:15:8e:06:fa:97:f2:1a:66:c1:57:7a:5e: 30:cc:31:e7:4c:80:e4:ac:46:96:99:af:b1:e5:b7:2e:1b:7f: 4f:b4:41:d0:80:f4:11:70:68:de:e6:bc:2b:fe:01:6e:ca:35: bf:7d:db:7d:8a:e6:2b:c7:55:fc:ba:e6:55:ac:51:dc:84:4e: f2:e9:0f:69:a5:76:3a:db:3c:60:e4:0b:0e:c4:60:4a:6c:d1: 04:26:ad:77:a3:0b:12:36:77:13:6c:7c:bc:ac:f1:da:87:72: 88:ab:8c:e7:86:6c:46:73:66:b0:56:9e:9e:bb:df:cf:9a:6b: 0a:87:f4:62:47:ba:17:48:19:af:7c:8c:16:4e:98:13:f4:75: 36:4b:e5:61:c4:8f:87:36:68:da:8f:f0:c9:c0:fb:4f:4f:3c: c6:6e:fb:d8 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgICEg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1 Q0Q1MEQ4Mjk1ODQ5OUZEQUZDQjBBREYxMDI1MUY0Q0FCM0UyRDAeFw0yNTA2MjQw OTAxMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2NjZGN0Q5MjQ5MEYx QThCREY1NTdCOTc4RkMxOEY3MEIxREQ5QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTilGKAlYY7mU5ETj7NKjlqQaJt16tlmWlbwwW+oTTJkunOnas ZGh9Yy1CdVR08bzUSSTfhXD8ab0eQxMxHGHNzQP7otyzxBYi/oqaoxtlbhpVeNBr DhiQaJo3pE2YUjEOvYnwOcHDWE/szRi7ZCuicWHzEppMHwGQ/9ftX8q+Z7XC494a duOD8mO4HTcCVzN9iIMVaviRm7XB1xrvU+kSSGTTBVCxxATSu2GvIwMBfO1U+oGc vvsBLFeJa08jhUzOThwRPqKj9aXGVdEV1QW4yNi454cxpIDqv2V7TqcVbS4LCGaC 1tyNuo/hFH1Ca1+NEqN16CDYMxzJIAv8mhpPAgMBAAGjggIRMIICDTAdBgNVHQ4E FgQU5mb32SSQ8ai99Ve5ePwY9wsd2bEwHwYDVR0jBBgwFoAURVzVDYKVhJn9r8sK 3xAlH0yrPi0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBhBgNVHR8EWjBYMFag VKBShlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVZT05E T1JCSVQvUlZ6VkRZS1ZoSm45cjhzSzN4QWxIMHlyUGkwLmNybDBgBggrBgEFBQcB AQRUMFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kv VFdOSUNDQS9SVnpWRFlLVmhKbjlyOHNLM3hBbEgweXJQaTAuY2VyMA4GA1UdDwEB /wQEAwIHgDCBoQYIKwYBBQUHAQsEgZQwgZEwXAYIKwYBBQUHMAuGUHJzeW5jOi8v cnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CRVlPTkRPUkJJVC9SVnpWRFlL VmhKbjlyOHNLM3hBbEgweXJQaTAubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jy ZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0B AQsFAAOCAQEASu1KdRnQA+12FJkRPO5CcqW0MWFnOI1n+bDyieR1pwqdii/kD7LO 7SOk6TP2SZk0A5BXHVHJFkYwANjLKctLsIgvNdlZ07jnj1f3MZ2EQRAR/DafSMts +RclTLtUFQCiFY4G+pfyGmbBV3peMMwx50yA5KxGlpmvseW3Lht/T7RB0ID0EXBo 3ua8K/4Bbso1v33bfYrmK8dV/LrmVaxR3IRO8ukPaaV2Ots8YOQLDsRgSmzRBCat d6MLEjZ3E2x8vKzx2odyiKuM54ZsRnNmsFaenrvfz5prCof0Yke6F0gZr3yMFk6Y E/R1NkvlYcSPhzZo2o/wycD7T088xm772A== -----END CERTIFICATE-----Generated at Tue Jun 24 20:46:04 2025 by rpki-client