$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft File: V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft (raw, json) Hash identifier: qcU0+i193bTxEA5nSTXv6Z8Vv+MuOSiEGOjqCiwJAUk= Subject key identifier: 8E:61:F9:BD:73:B4:7E:E6:DC:34:02:24:64:43:3E:03:E1:A9:71:F6 Authority key identifier: 57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C Certificate issuer: /CN=574D5FD459D0D01C338EF0236122C762EC83283C Certificate serial: 0293 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft Manifest number: 0291 Signing time: Tue 12 Aug 2025 23:10:54 +0000 Manifest this update: Tue 12 Aug 2025 23:10:54 +0000 Manifest next update: Thu 14 Aug 2025 23:10:54 +0000 Files and hashes: 1: GOQABUtCO_JalyBCm2JecyCOhC0.roa (hash: m5On71NAFLAaXbkjbhGSUeJTBsJ96FgZNr3eXDVHZ2w=) 2: V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl (hash: 1RB55HqxcTxPwbc5YmY1GssRRWHoqksza0NpcDe2dDM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 10:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=574D5FD459D0D01C338EF0236122C762EC83283C Validity Not Before: Aug 12 23:10:54 2025 GMT Not After : Oct 8 15:30:19 2025 GMT Subject: CN=8E61F9BD73B47EE6DC34022464433E03E1A971F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dc:b2:ed:58:0f:40:34:2d:f5:a4:c9:d1:2d: 78:91:5a:c7:b1:ad:26:60:c6:0e:2e:0f:f7:e1:c9: c0:d5:57:13:5f:a2:0b:d7:58:55:55:e1:b7:7a:56: cc:e0:ea:d2:45:a7:81:61:4e:5d:44:31:39:0b:0b: 6c:ed:6f:09:a9:77:a5:d5:9f:07:e5:9c:1b:1a:08: 52:c1:71:5c:79:6e:39:a4:4a:9b:f9:b7:e3:34:be: 57:6d:af:db:c2:da:07:d6:0f:14:60:9c:1e:41:fb: ad:75:0a:78:7f:73:f5:5b:9b:20:3e:59:2e:1a:cb: 43:c1:20:e7:db:85:f5:5c:4d:b4:5b:c9:e4:c5:34: 65:54:69:4e:49:c8:e2:58:74:b1:a4:d1:e1:83:67: a8:a3:0e:70:35:68:ba:3f:54:8b:6f:82:f0:98:da: 0a:e1:9a:04:ab:30:80:ce:fb:f0:73:93:62:14:8f: ab:90:c4:95:4e:9b:6b:87:4d:09:99:0b:d9:49:16: c3:4a:fc:13:a1:44:ac:ce:70:7f:b6:a7:aa:f9:a1: 92:a3:06:9a:66:54:fc:61:49:b3:bf:79:5b:c5:33: e9:51:4a:57:7c:19:ce:a3:5a:2f:1a:cd:c3:7f:ed: a6:b9:fb:aa:fb:16:ce:ca:9d:14:47:54:0c:99:55: d8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:61:F9:BD:73:B4:7E:E6:DC:34:02:24:64:43:3E:03:E1:A9:71:F6 X509v3 Authority Key Identifier: keyid:57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:ff:19:6f:59:7a:87:79:02:67:2b:1e:76:fd:ac:99:ed:5a: c0:89:fc:b4:95:8c:b0:12:31:11:6e:7a:20:fb:bd:42:13:f6: fb:8d:5e:e1:4c:94:b8:73:04:d4:ae:c7:75:36:52:98:0e:7b: b2:78:d6:46:a0:c7:f4:67:c7:80:87:9a:40:78:18:50:ce:e3: 45:1f:cb:c4:db:73:b0:84:75:2b:be:46:95:0d:eb:b7:94:97: 64:01:61:76:8b:dc:3d:c2:1c:56:7d:02:e4:14:44:78:7d:e9: 4d:86:df:02:54:64:cd:e5:ec:44:fc:45:2b:94:d1:37:c1:a7: 35:bd:ff:4c:db:ff:46:58:26:e0:94:e7:64:07:18:20:a9:4a: ce:e9:c5:ed:4c:ee:51:94:e3:7f:99:9a:87:2c:b8:63:4b:1d: 1d:a3:1d:02:27:93:d9:5d:13:b8:9d:8c:e1:95:2a:33:d3:6d: f0:53:f7:fb:23:6c:62:26:0a:52:8d:d1:8d:23:d4:02:18:cd: a7:20:4f:b0:41:5b:9b:8b:c0:fe:44:e3:78:71:08:d5:71:4b: 43:9a:88:a2:87:d5:52:85:86:fe:b0:06:37:9c:a4:a8:e0:d9: 96:45:ee:ed:96:09:dc:ef:95:5f:2a:4b:b1:9d:ed:c2:94:ea: 30:a8:5a:7c -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICApMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc0 RDVGRDQ1OUQwRDAxQzMzOEVGMDIzNjEyMkM3NjJFQzgzMjgzQzAeFw0yNTA4MTIy MzEwNTRaFw0yNTEwMDgxNTMwMTlaMDMxMTAvBgNVBAMTKDhFNjFGOUJENzNCNDdF RTZEQzM0MDIyNDY0NDMzRTAzRTFBOTcxRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo3LLtWA9ANC31pMnRLXiRWsexrSZgxg4uD/fhycDVVxNfogvX WFVV4bd6Vszg6tJFp4FhTl1EMTkLC2ztbwmpd6XVnwflnBsaCFLBcVx5bjmkSpv5 t+M0vldtr9vC2gfWDxRgnB5B+611Cnh/c/VbmyA+WS4ay0PBIOfbhfVcTbRbyeTF NGVUaU5JyOJYdLGk0eGDZ6ijDnA1aLo/VItvgvCY2grhmgSrMIDO+/Bzk2IUj6uQ xJVOm2uHTQmZC9lJFsNK/BOhRKzOcH+2p6r5oZKjBppmVPxhSbO/eVvFM+lRSld8 Gc6jWi8azcN/7aa5+6r7Fs7KnRRHVAyZVdhdAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUjmH5vXO0fubcNAIkZEM+A+GpcfYwHwYDVR0jBBgwFoAUV01f1FnQ0BwzjvAj YSLHYuyDKDwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVTU1Z VEVDSC9WMDFmMUZuUTBCd3pqdkFqWVNMSFl1eURLRHcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1YwMWYxRm5RMEJ3emp2QWpZU0xIWXV5REtEdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVU1NWVRFQ0gvVjAxZjFGblEw Qnd6anZBallTTEhZdXlES0R3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIX/GW9Zeod5AmcrHnb9rJntWsCJ/LSVjLASMRFueiD7vUIT9vuNXuFM lLhzBNSux3U2UpgOe7J41kagx/Rnx4CHmkB4GFDO40Ufy8Tbc7CEdSu+RpUN67eU l2QBYXaL3D3CHFZ9AuQURHh96U2G3wJUZM3l7ET8RSuU0TfBpzW9/0zb/0ZYJuCU 52QHGCCpSs7pxe1M7lGU43+ZmocsuGNLHR2jHQInk9ldE7idjOGVKjPTbfBT9/sj bGImClKN0Y0j1AIYzacgT7BBW5uLwP5E43hxCNVxS0OaiKKH1VKFhv6wBjecpKjg 2ZZF7u2WCdzvlV8qS7Gd7cKU6jCoWnw= -----END CERTIFICATE-----Generated at Wed Aug 13 09:48:35 2025 by rpki-client