$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft File: dK8EAv71bDShktHSGF5vtUaqcCw.mft (raw, json) Hash identifier: lok42Tv8QN32qzSc6o3L8dpm4VmRRSRJhEeA43zePBk= Subject key identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 02C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft Manifest number: 02AE Signing time: Mon 11 Aug 2025 09:11:02 +0000 Manifest this update: Mon 11 Aug 2025 09:11:02 +0000 Manifest next update: Wed 13 Aug 2025 09:11:02 +0000 Files and hashes: 1: 2TblsBKiiohYgYRCsXYZMAeHMe4.roa (hash: Cchh/qLAW+/z6TruQPMK8gI7oZt/p6iJiWjrggV/meI=) 2: BfQBfL9LSprNl9EZAXrAIboGiKY.roa (hash: mEpCP3OGvwRJ3bwOX9vtt5WWbJ/elSaSHS5mHsk1Aks=) 3: IbUF4ZRCl6bFITVhTgdFKDF-RKk.roa (hash: dT5Ls122OnJK3bTe8K8muQ+IjN8yA0f7fBZl5SWw7L0=) 4: dK8EAv71bDShktHSGF5vtUaqcCw.crl (hash: A6CdJ6GUWk9CvhfxNqwmx85e/WlBWwEj+cdFl4qR2ZE=) 5: iZz3TgAK8_Ju7MyS42n4NVyylwI.roa (hash: LYzJphGnq9HJKkjD6vGryLpEhwuIp2C5R3E+VeNIl5w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Aug 11 09:11:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CCC70A975446801E0FE8168A608C146CE672AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a0:e4:88:4d:a9:1a:71:46:16:af:b3:15:e3: d4:dc:08:95:8f:cf:40:fb:64:58:39:3f:a6:a7:53: 3d:90:7b:d3:fe:8c:66:29:ce:a3:07:f8:fd:8d:82: 40:9f:2f:9d:42:7a:88:f5:92:75:20:4e:60:df:f2: 7a:0b:d8:a2:e3:5f:c9:60:95:9b:34:69:9e:a7:cc: ab:b4:85:99:ee:d5:63:a8:b0:7a:b0:78:9e:dd:5f: 9d:24:fc:2d:ce:f2:2f:ec:a8:14:8a:19:55:dc:29: 09:92:bb:f8:06:a7:a9:b5:22:c5:fe:30:c2:e3:4f: 66:cd:7f:62:30:dd:76:7f:f5:1d:36:22:8f:6c:33: 8a:a0:41:a4:b5:43:8f:b4:df:c6:7d:e1:ea:a8:49: 8a:07:d6:5f:db:b2:cc:db:48:05:c4:f9:55:69:c4: b4:94:b9:ee:54:5d:7f:13:46:f3:1f:f9:90:90:11: b4:1f:ac:c2:1d:1c:b3:26:52:99:26:89:1a:e8:ef: b4:47:90:5c:15:8b:6c:64:92:d1:70:5b:49:44:cc: 32:23:19:8a:4e:08:04:a6:fd:64:38:3f:6b:a8:a3: 0f:7d:99:a4:f2:20:53:bb:20:62:96:3b:b5:39:90: 62:90:30:0c:dd:59:eb:e5:c4:53:48:e0:ba:13:fd: ac:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:14:9b:00:b0:1e:52:94:06:35:b8:74:00:98:c6:d6:c8:30: 51:88:2b:5f:c0:18:f0:f4:85:44:21:be:62:54:06:c4:fa:e0: 11:89:cb:6a:c8:74:bf:00:c7:33:2d:83:32:47:f1:08:b5:a2: 35:7e:80:a8:6a:40:bc:24:aa:98:b4:02:82:ff:95:61:c0:35: 56:47:6c:99:38:62:e4:82:71:7a:a2:08:ab:a3:f2:c8:53:3c: 0a:d2:fb:3b:71:97:7c:e1:4e:7b:34:cd:26:1c:29:c0:17:da: db:3b:36:1e:36:a2:a4:52:6d:47:49:ea:33:f1:5a:95:97:89: ae:6c:12:14:cb:47:9c:87:3f:bd:10:29:90:70:d3:ce:54:85: 98:76:ad:45:a0:91:ee:f9:bc:0d:28:8a:3a:ab:20:1e:4b:5d: 32:a2:d1:28:d3:56:84:ad:d1:e5:ef:4c:fa:ca:6f:c3:7f:34: 2e:28:c7:66:1f:05:14:73:02:44:36:fe:69:ed:f8:1c:0b:46: 76:cd:fc:8d:55:b9:f0:7d:f0:76:d0:e7:5f:4c:e5:29:5f:34: 68:6f:50:67:1b:ec:6b:72:74:c2:d6:c5:cd:d5:83:80:96:b2: 10:89:04:07:51:9d:af:fe:40:7e:fa:f4:e1:72:c8:ff:05:da: f0:c0:ac:e0 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTA4MTEw OTExMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDQ0M3MEE5NzU0NDY4 MDFFMEZFODE2OEE2MDhDMTQ2Q0U2NzJBQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHoOSITakacUYWr7MV49TcCJWPz0D7ZFg5P6anUz2Qe9P+jGYp zqMH+P2NgkCfL51Ceoj1knUgTmDf8noL2KLjX8lglZs0aZ6nzKu0hZnu1WOosHqw eJ7dX50k/C3O8i/sqBSKGVXcKQmSu/gGp6m1IsX+MMLjT2bNf2Iw3XZ/9R02Io9s M4qgQaS1Q4+038Z94eqoSYoH1l/bsszbSAXE+VVpxLSUue5UXX8TRvMf+ZCQEbQf rMIdHLMmUpkmiRro77RHkFwVi2xkktFwW0lEzDIjGYpOCASm/WQ4P2uoow99maTy IFO7IGKWO7U5kGKQMAzdWevlxFNI4LoT/azbAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUPMxwqXVEaAHg/oFopgjBRs5nKqgwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9kSzhFQXY3MWJEU2hrdEhTR0Y1 dnRVYXFjQ3cubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOhSb ALAeUpQGNbh0AJjG1sgwUYgrX8AY8PSFRCG+YlQGxPrgEYnLash0vwDHMy2DMkfx CLWiNX6AqGpAvCSqmLQCgv+VYcA1VkdsmThi5IJxeqIIq6PyyFM8CtL7O3GXfOFO ezTNJhwpwBfa2zs2HjaipFJtR0nqM/FalZeJrmwSFMtHnIc/vRApkHDTzlSFmHat RaCR7vm8DSiKOqsgHktdMqLRKNNWhK3R5e9M+spvw380LijHZh8FFHMCRDb+ae34 HAtGds38jVW58H3wdtDnX0zlKV80aG9QZxvsa3J0wtbFzdWDgJayEIkEB1Gdr/5A fvr04XLI/wXa8MCs4A== -----END CERTIFICATE-----Generated at Mon Aug 11 10:40:13 2025 by rpki-client