$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft File: 4hRiP9Epy5cnQNOR2vORlvKt8r0.mft (raw, json) Hash identifier: l7gLQlVJGiGBzCLaZFLAbCVeBX+hL0Gm/W/4J/Jlsi4= Subject key identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB Authority key identifier: E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD Certificate issuer: /CN=E214623FD129CB972740D391DAF39196F2ADF2BD Certificate serial: 0157 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft Manifest number: 0154 Signing time: Mon 11 Aug 2025 10:12:24 +0000 Manifest this update: Mon 11 Aug 2025 10:12:24 +0000 Manifest next update: Wed 13 Aug 2025 10:12:24 +0000 Files and hashes: 1: 4hRiP9Epy5cnQNOR2vORlvKt8r0.crl (hash: 4KEEI9pvBnQeFYoMEu8fgRs3PBRp9APLiLzAxTmV0S8=) 2: vFNe51u904S3-M7htoYMKJ7ZwUw.roa (hash: M+gBWKxVU0r9iprZD9GVyq5DolhE47weX3yvCFfsIso=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 12:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E214623FD129CB972740D391DAF39196F2ADF2BD Validity Not Before: Aug 11 10:12:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5F4E013E8588F20D7604DFEA79DAC4D64B88E9AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:a8:8c:da:a4:d9:95:81:48:9d:98:2f:23: 36:0a:90:d7:70:72:d0:66:3b:92:cc:47:d1:62:8a: 61:2c:f3:fe:e2:cc:00:9b:2c:62:ff:19:9f:43:0a: 49:75:35:66:ab:6b:2a:9c:c6:38:70:dd:11:a3:c8: ed:c0:34:19:e9:f6:84:d1:18:53:59:fd:90:94:4a: 1f:75:c2:cb:4f:40:04:94:aa:04:17:48:7d:db:b3: ba:94:c3:97:d1:b5:c7:a1:a1:fa:97:cd:48:b6:b9: de:2f:2d:0d:97:e1:75:ba:6c:26:fd:a6:a6:3c:a5: 7e:e5:59:c2:5d:8a:3a:37:5a:ff:df:a2:2d:28:46: 8a:47:d6:e6:88:b8:d2:90:68:42:b2:40:76:b4:90: 0f:03:92:34:db:47:05:77:c8:95:eb:8d:b2:05:0e: a8:c7:47:57:4a:7a:47:f4:44:89:27:b7:ae:0d:bb: aa:c8:ff:14:93:de:ae:4c:e6:94:b5:e7:e7:7d:95: 0e:bd:b2:86:37:c0:03:26:fe:de:77:54:ff:99:08: 47:0d:74:88:b6:31:5a:1d:02:e0:13:89:c5:4b:0d: 13:ab:39:5a:f7:3d:b6:d1:a7:cb:e5:19:37:bf:18: 1b:34:58:ee:dd:33:56:ac:0b:83:53:d2:f6:dc:28: fc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB X509v3 Authority Key Identifier: keyid:E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:17:16:43:7a:11:eb:aa:07:c1:85:29:29:e0:ca:f4:b9:69: 5a:a4:52:99:58:c8:9c:f1:68:2b:fa:48:0b:65:9f:55:b7:d5: c7:38:ef:4a:0c:9c:6a:1e:f0:87:b0:b8:f1:de:c0:94:d1:8e: 8d:e7:c4:64:17:bd:16:b2:7e:b2:ca:fd:55:26:d2:b0:cd:f2: bb:ca:5e:4d:7a:84:78:62:3b:4e:fb:d3:9f:a8:0f:46:2b:08: de:41:db:ea:2e:ac:0a:cf:0c:d8:fb:ab:04:db:b6:b9:8b:cd: 3e:d3:b1:8a:18:9e:be:5f:9b:5d:7e:a0:22:5c:97:60:0c:e5: 00:13:74:98:95:16:5f:7a:99:90:73:0d:2e:d9:02:6d:56:fb: 25:ab:d2:5d:35:6e:7d:e1:fe:9f:8f:f6:91:fe:2c:62:06:0c: 4b:ef:78:74:a6:97:d3:63:0d:b0:02:19:6f:6a:e0:bb:2f:c3: 3e:81:29:97:6b:41:f9:53:b8:4d:54:bf:f2:21:46:fb:f4:66: b7:a6:cd:69:81:36:36:4f:02:47:87:59:ea:00:35:13:5c:6a: 60:76:ff:86:a5:6e:ee:35:ca:74:9e:c4:85:16:0e:51:c1:4b: 57:a2:8e:ae:e9:02:ad:c5:6f:37:39:d7:b0:95:07:5e:c6:c5: b5:91:16:d3 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTIx NDYyM0ZEMTI5Q0I5NzI3NDBEMzkxREFGMzkxOTZGMkFERjJCRDAeFw0yNTA4MTEx MDEyMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGNEUwMTNFODU4OEYy MEQ3NjA0REZFQTc5REFDNEQ2NEI4OEU5QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWO6iM2qTZlYFInZgvIzYKkNdwctBmO5LMR9FiimEs8/7izACb LGL/GZ9DCkl1NWarayqcxjhw3RGjyO3ANBnp9oTRGFNZ/ZCUSh91wstPQASUqgQX SH3bs7qUw5fRtcehofqXzUi2ud4vLQ2X4XW6bCb9pqY8pX7lWcJdijo3Wv/foi0o RopH1uaIuNKQaEKyQHa0kA8DkjTbRwV3yJXrjbIFDqjHR1dKekf0RIknt64Nu6rI /xST3q5M5pS15+d9lQ69soY3wAMm/t53VP+ZCEcNdIi2MVodAuATicVLDROrOVr3 PbbRp8vlGTe/GBs0WO7dM1asC4NT0vbcKPx/AgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUX04BPoWI8g12BN/qedrE1kuI6aswHwYDVR0jBBgwFoAU4hRiP9Epy5cnQNOR 2vORlvKt8r0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0pNRS80 aFJpUDlFcHk1Y25RTk9SMnZPUmx2S3Q4cjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRoUmlQOUVweTVjblFOT1Iydk9SbHZLdDhyMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NKTUUvNGhSaVA5RXB5NWNuUU5PUjJ2T1Js dkt0OHIwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAI0XFkN6 EeuqB8GFKSngyvS5aVqkUplYyJzxaCv6SAtln1W31cc470oMnGoe8IewuPHewJTR jo3nxGQXvRayfrLK/VUm0rDN8rvKXk16hHhiO07705+oD0YrCN5B2+ourArPDNj7 qwTbtrmLzT7TsYoYnr5fm11+oCJcl2AM5QATdJiVFl96mZBzDS7ZAm1W+yWr0l01 bn3h/p+P9pH+LGIGDEvveHSml9NjDbACGW9q4Lsvwz6BKZdrQflTuE1Uv/IhRvv0 ZremzWmBNjZPAkeHWeoANRNcamB2/4albu41ynSexIUWDlHBS1eijq7pAq3Fbzc5 17CVB17GxbWRFtM= -----END CERTIFICATE-----Generated at Mon Aug 11 11:48:21 2025 by rpki-client