$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft File: ma5DqX1RxaFOESh6mAJMNqWZN3s.mft (raw, json) Hash identifier: 7EjFes573f8fyPzl7CZ/I8RKWefOxa+ANXg9k81sjK8= Subject key identifier: 16:12:C5:FC:BD:EF:C3:5F:62:80:34:BC:D2:93:E4:49:B8:F5:FD:FF Authority key identifier: 99:AE:43:A9:7D:51:C5:A1:4E:11:28:7A:98:02:4C:36:A5:99:37:7B Certificate issuer: /CN=99AE43A97D51C5A14E11287A98024C36A599377B Certificate serial: 0253 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ma5DqX1RxaFOESh6mAJMNqWZN3s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft Manifest number: 0251 Signing time: Sat 10 May 2025 09:21:48 +0000 Manifest this update: Sat 10 May 2025 09:21:48 +0000 Manifest next update: Mon 12 May 2025 09:21:48 +0000 Files and hashes: 1: Ri4EDmMU8hnITkeGSJh6Bfsklyc.roa (hash: 3e8cDVdQdP9DH/+zuYx+YgQLHjdmoY/V5+6TGb93H2M=) 2: ma5DqX1RxaFOESh6mAJMNqWZN3s.crl (hash: Qk+K064KQ5fydlyBf2bCFhaKomTeVpSUdBor6rFKwew=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ma5DqX1RxaFOESh6mAJMNqWZN3s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99AE43A97D51C5A14E11287A98024C36A599377B Validity Not Before: May 10 09:21:48 2025 GMT Not After : Oct 8 15:30:19 2025 GMT Subject: CN=1612C5FCBDEFC35F628034BCD293E449B8F5FDFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:a6:39:79:46:b9:74:65:4b:8b:c9:dc:7a:d8: b4:dc:e8:61:fe:fb:11:55:eb:60:a1:3b:73:b3:fa: 8e:b4:33:e3:0e:60:cb:b5:5d:40:48:50:f7:01:eb: 51:b6:ec:bd:ae:32:8f:7d:33:8b:ce:32:b7:2b:a5: 61:89:ad:49:19:d6:26:05:27:bc:5c:28:b6:42:17: 46:27:a7:16:f6:f0:6d:9a:bc:ab:da:01:74:33:69: 8b:bc:f7:67:2d:9f:ca:a3:aa:2c:1b:c0:db:8b:ff: 5c:56:8f:3a:10:5f:39:b2:d2:9c:74:76:c2:5c:43: fc:4d:03:1d:9b:00:57:b3:3b:cf:87:ef:a3:59:58: 10:fe:09:88:06:dc:e6:41:51:0d:d8:d8:13:11:68: 55:b7:53:10:aa:e8:ce:eb:f5:5d:4f:bb:b2:e2:66: c3:83:5a:c7:1c:dc:33:76:66:c4:0e:9e:31:12:a1: 5e:42:23:18:c9:95:e3:1d:81:ee:c1:fe:83:50:14: 46:d8:23:ba:4d:18:39:8d:1f:ee:42:fd:1b:05:fe: a6:24:93:b9:0f:8f:02:25:0c:ed:1b:4c:d5:d5:28: cc:d6:46:40:13:f3:48:96:ec:fc:50:dc:57:c9:da: b4:eb:a3:6b:e1:91:57:fa:bc:ee:70:4e:02:d4:44: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:12:C5:FC:BD:EF:C3:5F:62:80:34:BC:D2:93:E4:49:B8:F5:FD:FF X509v3 Authority Key Identifier: keyid:99:AE:43:A9:7D:51:C5:A1:4E:11:28:7A:98:02:4C:36:A5:99:37:7B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ma5DqX1RxaFOESh6mAJMNqWZN3s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:1f:92:2e:bc:79:03:83:67:75:3f:0d:21:fb:c4:19:62:c2: eb:e0:63:5c:6d:70:9a:1d:2c:db:52:32:b8:e6:28:76:5f:1f: 4c:36:06:87:02:5d:cb:bf:99:f8:af:b2:63:3d:d9:3f:d5:d6: 1b:92:ea:3b:43:c6:74:c0:00:50:b1:44:6b:0d:6c:c4:ff:5b: a5:6d:23:41:31:ad:09:86:33:94:39:e1:10:ef:40:7d:27:21: 36:37:92:b9:81:ce:91:18:2a:bc:70:cf:04:b2:3c:2e:0c:1a: be:3d:2c:78:94:d3:74:95:ab:f7:77:e9:95:8d:9c:98:f4:c5: ab:eb:3b:71:52:fb:97:57:08:9f:7d:81:82:57:16:d4:8d:c2: 97:0e:9b:63:41:b7:b9:f1:06:63:11:f9:5e:71:07:74:05:aa: 43:fa:71:11:6b:41:fc:40:10:9a:76:3e:b2:47:bc:fb:12:73: 27:88:8c:cf:ad:b6:9f:ab:76:14:ef:69:a2:b3:ce:29:cf:86: 95:39:99:40:8e:52:f2:da:c6:7a:39:37:04:38:fd:72:60:7f: 85:9a:0a:18:9e:db:b9:7e:fe:65:44:7d:b6:38:39:ce:96:98: 25:1d:24:0a:7d:9f:91:b8:3d:56:81:e1:ce:a0:23:8a:93:5f: 84:39:45:ac -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTlB RTQzQTk3RDUxQzVBMTRFMTEyODdBOTgwMjRDMzZBNTk5Mzc3QjAeFw0yNTA1MTAw OTIxNDhaFw0yNTEwMDgxNTMwMTlaMDMxMTAvBgNVBAMTKDE2MTJDNUZDQkRFRkMz NUY2MjgwMzRCQ0QyOTNFNDQ5QjhGNUZERkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3pjl5Rrl0ZUuLydx62LTc6GH++xFV62ChO3Oz+o60M+MOYMu1 XUBIUPcB61G27L2uMo99M4vOMrcrpWGJrUkZ1iYFJ7xcKLZCF0Ynpxb28G2avKva AXQzaYu892ctn8qjqiwbwNuL/1xWjzoQXzmy0px0dsJcQ/xNAx2bAFezO8+H76NZ WBD+CYgG3OZBUQ3Y2BMRaFW3UxCq6M7r9V1Pu7LiZsODWscc3DN2ZsQOnjESoV5C IxjJleMdge7B/oNQFEbYI7pNGDmNH+5C/RsF/qYkk7kPjwIlDO0bTNXVKMzWRkAT 80iW7PxQ3FfJ2rTro2vhkVf6vO5wTgLURED3AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUFhLF/L3vw19igDS80pPkSbj1/f8wHwYDVR0jBBgwFoAUma5DqX1RxaFOESh6 mAJMNqWZN3swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVTU1Z VEVDSC9tYTVEcVgxUnhhRk9FU2g2bUFKTU5xV1pOM3MuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21hNURxWDFSeGFGT0VTaDZtQUpNTnFXWk4zcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVU1NWVRFQ0gvbWE1RHFYMVJ4 YUZPRVNoNm1BSk1OcVdaTjNzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKgfki68eQODZ3U/DSH7xBliwuvgY1xtcJodLNtSMrjmKHZfH0w2BocC Xcu/mfivsmM92T/V1huS6jtDxnTAAFCxRGsNbMT/W6VtI0ExrQmGM5Q54RDvQH0n ITY3krmBzpEYKrxwzwSyPC4MGr49LHiU03SVq/d36ZWNnJj0xavrO3FS+5dXCJ99 gYJXFtSNwpcOm2NBt7nxBmMR+V5xB3QFqkP6cRFrQfxAEJp2PrJHvPsScyeIjM+t tp+rdhTvaaKzzinPhpU5mUCOUvLaxno5NwQ4/XJgf4WaChie27l+/mVEfbY4Oc6W mCUdJAp9n5G4PVaB4c6gI4qTX4Q5Raw= -----END CERTIFICATE-----Generated at Sat May 10 11:30:35 2025 by rpki-client