$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft File: g0159BJr-encCzK4Z2Tn1gJRTgE.mft (raw, json) Hash identifier: 38wJhvNvI5Ktd64eoFKqJNYDm1LFEM8O8288rfT+k2w= Subject key identifier: 8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12 Authority key identifier: 83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 Certificate issuer: /CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Certificate serial: 03CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft Manifest number: 03C2 Signing time: Fri 25 Apr 2025 16:17:54 +0000 Manifest this update: Fri 25 Apr 2025 16:17:54 +0000 Manifest next update: Sun 27 Apr 2025 16:17:54 +0000 Files and hashes: 1: 0dSQamXTjS5EC4opGylg1CLQReI.roa (hash: AUCWhAyZUnzgqPvVuGWCc+NEDapb/1BXA4KNBm599ss=) 2: a9vGf-hoH_ilwssf6O9bFlGzHvI.roa (hash: T+B56Q2JOJ2hJZ5av8kEdL7m2kC2yIh5IqjmtmpiyY4=) 3: g0159BJr-encCzK4Z2Tn1gJRTgE.crl (hash: CUt4hnA2qKtc653/9qQbul5NXxH1t1Q0cTWM6HnA0Ns=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 21:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 971 (0x3cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Validity Not Before: Apr 25 16:17:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8DFD7A22673B1B3DC7028FF13499E5786B9F0B12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0c:4a:98:2a:6f:e1:bc:b1:f9:37:00:09:28: 64:c1:83:03:97:c2:e3:ed:62:73:2e:38:7a:79:de: 7c:2e:1a:f4:40:f2:f9:8c:c2:f1:7e:13:1c:a7:b3: a4:1e:82:f6:ac:b3:22:59:ac:7e:ba:22:a1:d1:9a: 7a:be:40:5b:b5:8a:34:b8:32:48:51:45:20:36:47: 76:71:d3:a4:22:70:ff:78:fb:fd:af:c7:e8:e1:9b: 29:1b:83:ad:4d:e9:2c:dc:29:58:30:a4:fb:68:65: 6e:81:31:d0:08:a4:32:6a:7f:73:a1:b1:9c:b4:50: 5e:0f:34:46:c2:72:27:77:c2:84:89:57:26:b6:5d: c9:9b:f3:f1:3e:b6:e2:91:90:1a:e7:01:26:df:13: 2d:b6:9b:2a:90:23:12:28:2f:10:7f:f9:cb:fa:27: 44:1b:6f:7a:e2:48:a9:e9:c2:86:f4:f4:3d:ac:29: 47:2a:81:ac:93:1a:64:7f:c5:db:e6:76:5f:8c:2f: 86:81:c3:fa:ee:5a:c3:c8:79:f6:4a:ef:86:92:d4: ea:3f:8a:6e:4f:98:e3:a1:88:5f:08:40:92:51:87: ca:ad:b4:24:be:3b:14:6d:69:31:29:ad:f3:87:8e: 46:db:4a:b6:af:40:6c:3c:ff:85:5a:e5:18:52:48: 1b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12 X509v3 Authority Key Identifier: keyid:83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:20:47:3f:3c:4b:7e:b6:08:d1:f0:58:e9:cd:85:4a:c6:2c: f6:38:5c:b7:3e:ac:6a:0c:e3:89:47:e7:e2:05:5c:25:62:10: db:73:94:f9:ff:40:22:5d:65:0c:3f:d9:2f:97:08:ac:12:d5: bf:a1:47:a2:5d:dd:71:ab:cb:d0:be:d6:f8:85:e8:04:3e:b9: 6b:df:09:70:c6:7a:1f:5e:12:3c:69:bb:cc:70:c3:e7:69:fa: 11:b2:16:6a:21:ec:4f:54:f0:65:66:e3:76:b1:9b:e3:42:b9: 76:ea:20:ac:71:d0:8f:06:ad:95:1a:73:d3:13:a6:42:1b:9a: 35:6a:ba:00:60:c6:ac:de:73:3f:0b:0d:43:87:85:a7:5f:92: 08:40:9a:db:23:cf:89:09:9a:4f:96:27:78:7a:f6:95:8f:31: 01:e4:54:1d:77:bd:5b:78:fd:f0:d7:34:d5:98:8d:54:9d:e8: 22:bc:02:4e:ab:b0:1b:49:10:40:59:bb:41:41:2e:73:45:1b: 8f:d7:21:16:21:97:34:6f:0a:b9:4b:a8:7e:30:03:21:7e:00: 9c:9b:b1:e8:ac:f3:b1:55:82:9f:1c:18:44:67:f2:0b:2d:1e: a3:f8:b1:fd:07:d0:f7:72:73:30:c5:66:f5:5b:9d:be:87:be: c6:71:ac:d3 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICA8swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODM0 RDc5RjQxMjZCRjlFOURDMEIzMkI4Njc2NEU3RDYwMjUxNEUwMTAeFw0yNTA0MjUx NjE3NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhERkQ3QTIyNjczQjFC M0RDNzAyOEZGMTM0OTlFNTc4NkI5RjBCMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmDEqYKm/hvLH5NwAJKGTBgwOXwuPtYnMuOHp53nwuGvRA8vmM wvF+Exyns6QegvassyJZrH66IqHRmnq+QFu1ijS4MkhRRSA2R3Zx06QicP94+/2v x+jhmykbg61N6SzcKVgwpPtoZW6BMdAIpDJqf3OhsZy0UF4PNEbCcid3woSJVya2 Xcmb8/E+tuKRkBrnASbfEy22myqQIxIoLxB/+cv6J0Qbb3riSKnpwob09D2sKUcq gayTGmR/xdvmdl+ML4aBw/ruWsPIefZK74aS1Oo/im5PmOOhiF8IQJJRh8qttCS+ OxRtaTEprfOHjkbbSravQGw8/4Va5RhSSBsTAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUjf16Imc7Gz3HAo/xNJnleGufCxIwHwYDVR0jBBgwFoAUg0159BJr+encCzK4 Z2Tn1gJRTgEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURO T0RFL2cwMTU5QkpyLWVuY0N6SzRaMlRuMWdKUlRnRS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvZzAxNTlCSnItZW5jQ3pLNFoyVG4xZ0pSVGdFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVUROT0RFL2cwMTU5QkpyLWVu Y0N6SzRaMlRuMWdKUlRnRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAHIEc/PEt+tgjR8FjpzYVKxiz2OFy3PqxqDOOJR+fiBVwlYhDbc5T5/0Ai XWUMP9kvlwisEtW/oUeiXd1xq8vQvtb4hegEPrlr3wlwxnofXhI8abvMcMPnafoR shZqIexPVPBlZuN2sZvjQrl26iCscdCPBq2VGnPTE6ZCG5o1aroAYMas3nM/Cw1D h4WnX5IIQJrbI8+JCZpPlid4evaVjzEB5FQdd71beP3w1zTVmI1UnegivAJOq7Ab SRBAWbtBQS5zRRuP1yEWIZc0bwq5S6h+MAMhfgCcm7HorPOxVYKfHBhEZ/ILLR6j +LH9B9D3cnMwxWb1W52+h77GcazT -----END CERTIFICATE-----Generated at Sat Apr 26 20:33:34 2025 by rpki-client