$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft File: V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft (raw, json) Hash identifier: +iyzdyrTv1ILIMFMEAWIsM+/Yi96+rQbclZ3o/Yv5NA= Subject key identifier: 8E:61:F9:BD:73:B4:7E:E6:DC:34:02:24:64:43:3E:03:E1:A9:71:F6 Authority key identifier: 57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C Certificate issuer: /CN=574D5FD459D0D01C338EF0236122C762EC83283C Certificate serial: 0254 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft Manifest number: 0252 Signing time: Sat 10 May 2025 09:21:48 +0000 Manifest this update: Sat 10 May 2025 09:21:48 +0000 Manifest next update: Mon 12 May 2025 09:21:48 +0000 Files and hashes: 1: GOQABUtCO_JalyBCm2JecyCOhC0.roa (hash: m5On71NAFLAaXbkjbhGSUeJTBsJ96FgZNr3eXDVHZ2w=) 2: V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl (hash: iPCHCMkdAXs7SOETDbSmvXq9ga7cOykYPIqebNsFeWI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=574D5FD459D0D01C338EF0236122C762EC83283C Validity Not Before: May 10 09:21:48 2025 GMT Not After : Oct 8 15:30:19 2025 GMT Subject: CN=8E61F9BD73B47EE6DC34022464433E03E1A971F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dc:b2:ed:58:0f:40:34:2d:f5:a4:c9:d1:2d: 78:91:5a:c7:b1:ad:26:60:c6:0e:2e:0f:f7:e1:c9: c0:d5:57:13:5f:a2:0b:d7:58:55:55:e1:b7:7a:56: cc:e0:ea:d2:45:a7:81:61:4e:5d:44:31:39:0b:0b: 6c:ed:6f:09:a9:77:a5:d5:9f:07:e5:9c:1b:1a:08: 52:c1:71:5c:79:6e:39:a4:4a:9b:f9:b7:e3:34:be: 57:6d:af:db:c2:da:07:d6:0f:14:60:9c:1e:41:fb: ad:75:0a:78:7f:73:f5:5b:9b:20:3e:59:2e:1a:cb: 43:c1:20:e7:db:85:f5:5c:4d:b4:5b:c9:e4:c5:34: 65:54:69:4e:49:c8:e2:58:74:b1:a4:d1:e1:83:67: a8:a3:0e:70:35:68:ba:3f:54:8b:6f:82:f0:98:da: 0a:e1:9a:04:ab:30:80:ce:fb:f0:73:93:62:14:8f: ab:90:c4:95:4e:9b:6b:87:4d:09:99:0b:d9:49:16: c3:4a:fc:13:a1:44:ac:ce:70:7f:b6:a7:aa:f9:a1: 92:a3:06:9a:66:54:fc:61:49:b3:bf:79:5b:c5:33: e9:51:4a:57:7c:19:ce:a3:5a:2f:1a:cd:c3:7f:ed: a6:b9:fb:aa:fb:16:ce:ca:9d:14:47:54:0c:99:55: d8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:61:F9:BD:73:B4:7E:E6:DC:34:02:24:64:43:3E:03:E1:A9:71:F6 X509v3 Authority Key Identifier: keyid:57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:c7:34:a9:af:09:2c:9c:c6:38:3f:25:be:65:d6:79:33:89: a9:f8:e0:31:0a:0b:77:1f:b0:9c:ac:66:b5:18:77:25:e1:57: ab:8a:46:8d:f6:b2:e3:66:bd:49:51:ab:a5:e8:b4:22:28:b8: 26:b2:13:ee:4a:05:48:c7:5f:d8:eb:3f:08:74:28:20:2d:ae: 2d:75:14:c5:5e:91:6f:10:90:33:02:5f:76:77:00:6d:c9:2f: 53:76:03:45:55:85:16:27:c5:f2:c5:49:9c:93:81:31:74:05: 54:d4:33:46:d5:19:36:43:bf:ba:9a:f9:f2:bb:b7:b2:72:d7: 58:bd:ed:7e:2b:77:6d:19:a8:8c:78:8f:f2:12:00:dc:5b:95: 0e:a5:1d:4f:fa:fc:67:44:52:af:bb:b2:c2:17:f5:e4:3f:ec: 74:d1:86:a1:c9:9b:28:75:aa:4e:13:0a:1b:79:48:42:89:d1: 7f:15:69:91:33:a3:65:22:e6:23:35:da:e9:7e:a3:1d:d8:da: 5f:ae:38:34:68:f0:bf:a3:8c:e1:21:03:40:aa:8b:93:f6:32: 3a:ee:9a:f8:d4:52:96:28:22:16:17:3d:c7:58:f0:f7:bc:57: c1:ce:f9:ca:5c:62:a8:8c:f5:8c:5a:51:37:bf:e2:3e:67:14: ab:e2:e9:8e -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc0 RDVGRDQ1OUQwRDAxQzMzOEVGMDIzNjEyMkM3NjJFQzgzMjgzQzAeFw0yNTA1MTAw OTIxNDhaFw0yNTEwMDgxNTMwMTlaMDMxMTAvBgNVBAMTKDhFNjFGOUJENzNCNDdF RTZEQzM0MDIyNDY0NDMzRTAzRTFBOTcxRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo3LLtWA9ANC31pMnRLXiRWsexrSZgxg4uD/fhycDVVxNfogvX WFVV4bd6Vszg6tJFp4FhTl1EMTkLC2ztbwmpd6XVnwflnBsaCFLBcVx5bjmkSpv5 t+M0vldtr9vC2gfWDxRgnB5B+611Cnh/c/VbmyA+WS4ay0PBIOfbhfVcTbRbyeTF NGVUaU5JyOJYdLGk0eGDZ6ijDnA1aLo/VItvgvCY2grhmgSrMIDO+/Bzk2IUj6uQ xJVOm2uHTQmZC9lJFsNK/BOhRKzOcH+2p6r5oZKjBppmVPxhSbO/eVvFM+lRSld8 Gc6jWi8azcN/7aa5+6r7Fs7KnRRHVAyZVdhdAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUjmH5vXO0fubcNAIkZEM+A+GpcfYwHwYDVR0jBBgwFoAUV01f1FnQ0BwzjvAj YSLHYuyDKDwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVTU1Z VEVDSC9WMDFmMUZuUTBCd3pqdkFqWVNMSFl1eURLRHcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1YwMWYxRm5RMEJ3emp2QWpZU0xIWXV5REtEdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVU1NWVRFQ0gvVjAxZjFGblEw Qnd6anZBallTTEhZdXlES0R3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADnHNKmvCSycxjg/Jb5l1nkzian44DEKC3cfsJysZrUYdyXhV6uKRo32 suNmvUlRq6XotCIouCayE+5KBUjHX9jrPwh0KCAtri11FMVekW8QkDMCX3Z3AG3J L1N2A0VVhRYnxfLFSZyTgTF0BVTUM0bVGTZDv7qa+fK7t7Jy11i97X4rd20ZqIx4 j/ISANxblQ6lHU/6/GdEUq+7ssIX9eQ/7HTRhqHJmyh1qk4TCht5SEKJ0X8VaZEz o2Ui5iM12ul+ox3Y2l+uODRo8L+jjOEhA0Cqi5P2MjrumvjUUpYoIhYXPcdY8Pe8 V8HO+cpcYqiM9YxaUTe/4j5nFKvi6Y4= -----END CERTIFICATE-----Generated at Sat May 10 13:29:53 2025 by rpki-client