$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft File: dK8EAv71bDShktHSGF5vtUaqcCw.mft (raw, json) Hash identifier: 4or3a6nOtdVJ9CFeeW0eSqTtyb1k7rZc010NqqAVZcc= Subject key identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 0283 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft Manifest number: 0270 Signing time: Sat 10 May 2025 08:51:52 +0000 Manifest this update: Sat 10 May 2025 08:51:52 +0000 Manifest next update: Mon 12 May 2025 08:51:52 +0000 Files and hashes: 1: 2TblsBKiiohYgYRCsXYZMAeHMe4.roa (hash: Cchh/qLAW+/z6TruQPMK8gI7oZt/p6iJiWjrggV/meI=) 2: BfQBfL9LSprNl9EZAXrAIboGiKY.roa (hash: mEpCP3OGvwRJ3bwOX9vtt5WWbJ/elSaSHS5mHsk1Aks=) 3: IbUF4ZRCl6bFITVhTgdFKDF-RKk.roa (hash: dT5Ls122OnJK3bTe8K8muQ+IjN8yA0f7fBZl5SWw7L0=) 4: dK8EAv71bDShktHSGF5vtUaqcCw.crl (hash: SM7jPiiMAvK4izpkub9O0MBSchqm8DBwLL/Xj0WRJLs=) 5: iZz3TgAK8_Ju7MyS42n4NVyylwI.roa (hash: LYzJphGnq9HJKkjD6vGryLpEhwuIp2C5R3E+VeNIl5w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: May 10 08:51:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CCC70A975446801E0FE8168A608C146CE672AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a0:e4:88:4d:a9:1a:71:46:16:af:b3:15:e3: d4:dc:08:95:8f:cf:40:fb:64:58:39:3f:a6:a7:53: 3d:90:7b:d3:fe:8c:66:29:ce:a3:07:f8:fd:8d:82: 40:9f:2f:9d:42:7a:88:f5:92:75:20:4e:60:df:f2: 7a:0b:d8:a2:e3:5f:c9:60:95:9b:34:69:9e:a7:cc: ab:b4:85:99:ee:d5:63:a8:b0:7a:b0:78:9e:dd:5f: 9d:24:fc:2d:ce:f2:2f:ec:a8:14:8a:19:55:dc:29: 09:92:bb:f8:06:a7:a9:b5:22:c5:fe:30:c2:e3:4f: 66:cd:7f:62:30:dd:76:7f:f5:1d:36:22:8f:6c:33: 8a:a0:41:a4:b5:43:8f:b4:df:c6:7d:e1:ea:a8:49: 8a:07:d6:5f:db:b2:cc:db:48:05:c4:f9:55:69:c4: b4:94:b9:ee:54:5d:7f:13:46:f3:1f:f9:90:90:11: b4:1f:ac:c2:1d:1c:b3:26:52:99:26:89:1a:e8:ef: b4:47:90:5c:15:8b:6c:64:92:d1:70:5b:49:44:cc: 32:23:19:8a:4e:08:04:a6:fd:64:38:3f:6b:a8:a3: 0f:7d:99:a4:f2:20:53:bb:20:62:96:3b:b5:39:90: 62:90:30:0c:dd:59:eb:e5:c4:53:48:e0:ba:13:fd: ac:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:a3:7f:27:02:48:8b:d7:a9:40:96:8d:45:bf:d5:f8:9c:bd: 85:53:3d:8b:67:0c:2e:1e:9b:3f:5e:8d:82:85:5a:5a:18:53: 68:cd:b7:24:bd:b2:70:da:68:26:eb:9c:1d:53:fc:c6:b2:5f: 0f:36:6f:ef:16:0f:0f:7a:eb:49:2e:df:58:80:9d:5d:a4:cd: 23:91:3c:73:b9:c3:e8:df:4b:8d:e8:50:ca:cb:11:d2:e0:c6: 41:e9:46:7d:a0:8c:9c:04:84:3f:df:d9:8f:8a:09:90:bf:be: e9:49:46:63:99:ce:32:ec:a1:34:aa:e2:59:37:f4:c4:47:b2: 45:44:2d:94:3c:7f:4e:e3:0a:7e:43:96:60:4c:fb:ed:38:c9: 2b:1b:5a:e4:9e:e3:e7:1a:b7:1e:b4:f6:67:e4:88:af:12:70: 82:75:91:dd:77:c8:76:72:59:fa:4a:6b:3c:da:91:d3:0e:f3: 96:d6:38:88:8f:36:77:b6:1e:fb:b0:39:8c:f8:eb:8a:5e:03: ad:2d:0b:a1:5b:0f:91:04:87:ac:fa:3a:84:2e:3f:dc:f3:c8: b9:4c:61:de:28:0b:3b:1d:42:c4:01:e2:c8:c0:ea:e1:d8:0c: e2:fd:cd:fd:c8:87:a9:cd:48:94:64:68:4a:87:59:bb:01:a1: 49:27:c1:e0 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTA1MTAw ODUxNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDQ0M3MEE5NzU0NDY4 MDFFMEZFODE2OEE2MDhDMTQ2Q0U2NzJBQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHoOSITakacUYWr7MV49TcCJWPz0D7ZFg5P6anUz2Qe9P+jGYp zqMH+P2NgkCfL51Ceoj1knUgTmDf8noL2KLjX8lglZs0aZ6nzKu0hZnu1WOosHqw eJ7dX50k/C3O8i/sqBSKGVXcKQmSu/gGp6m1IsX+MMLjT2bNf2Iw3XZ/9R02Io9s M4qgQaS1Q4+038Z94eqoSYoH1l/bsszbSAXE+VVpxLSUue5UXX8TRvMf+ZCQEbQf rMIdHLMmUpkmiRro77RHkFwVi2xkktFwW0lEzDIjGYpOCASm/WQ4P2uoow99maTy IFO7IGKWO7U5kGKQMAzdWevlxFNI4LoT/azbAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUPMxwqXVEaAHg/oFopgjBRs5nKqgwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9kSzhFQXY3MWJEU2hrdEhTR0Y1 dnRVYXFjQ3cubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEApqN/ JwJIi9epQJaNRb/V+Jy9hVM9i2cMLh6bP16NgoVaWhhTaM23JL2ycNpoJuucHVP8 xrJfDzZv7xYPD3rrSS7fWICdXaTNI5E8c7nD6N9LjehQyssR0uDGQelGfaCMnASE P9/Zj4oJkL++6UlGY5nOMuyhNKriWTf0xEeyRUQtlDx/TuMKfkOWYEz77TjJKxta 5J7j5xq3HrT2Z+SIrxJwgnWR3XfIdnJZ+kprPNqR0w7zltY4iI82d7Ye+7A5jPjr il4DrS0LoVsPkQSHrPo6hC4/3PPIuUxh3igLOx1CxAHiyMDq4dgM4v3N/ciHqc1I lGRoSodZuwGhSSfB4A== -----END CERTIFICATE-----Generated at Sat May 10 12:05:03 2025 by rpki-client