$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft File: g0159BJr-encCzK4Z2Tn1gJRTgE.mft (raw, json) Hash identifier: +Qqx2aToI5ez7zl9d+ZhMg1dB9RTKjE6T8xBu2uzVsQ= Subject key identifier: 8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12 Authority key identifier: 83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 Certificate issuer: /CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Certificate serial: 03F0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft Manifest number: 03E7 Signing time: Fri 20 Jun 2025 04:29:33 +0000 Manifest this update: Fri 20 Jun 2025 04:29:33 +0000 Manifest next update: Sun 22 Jun 2025 04:29:33 +0000 Files and hashes: 1: 0dSQamXTjS5EC4opGylg1CLQReI.roa (hash: AUCWhAyZUnzgqPvVuGWCc+NEDapb/1BXA4KNBm599ss=) 2: a9vGf-hoH_ilwssf6O9bFlGzHvI.roa (hash: T+B56Q2JOJ2hJZ5av8kEdL7m2kC2yIh5IqjmtmpiyY4=) 3: g0159BJr-encCzK4Z2Tn1gJRTgE.crl (hash: Qmx9drfXHcJTcYOrXeowkIGXvJwwXQptSACXxaTJ5/s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1008 (0x3f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Validity Not Before: Jun 20 04:29:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8DFD7A22673B1B3DC7028FF13499E5786B9F0B12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0c:4a:98:2a:6f:e1:bc:b1:f9:37:00:09:28: 64:c1:83:03:97:c2:e3:ed:62:73:2e:38:7a:79:de: 7c:2e:1a:f4:40:f2:f9:8c:c2:f1:7e:13:1c:a7:b3: a4:1e:82:f6:ac:b3:22:59:ac:7e:ba:22:a1:d1:9a: 7a:be:40:5b:b5:8a:34:b8:32:48:51:45:20:36:47: 76:71:d3:a4:22:70:ff:78:fb:fd:af:c7:e8:e1:9b: 29:1b:83:ad:4d:e9:2c:dc:29:58:30:a4:fb:68:65: 6e:81:31:d0:08:a4:32:6a:7f:73:a1:b1:9c:b4:50: 5e:0f:34:46:c2:72:27:77:c2:84:89:57:26:b6:5d: c9:9b:f3:f1:3e:b6:e2:91:90:1a:e7:01:26:df:13: 2d:b6:9b:2a:90:23:12:28:2f:10:7f:f9:cb:fa:27: 44:1b:6f:7a:e2:48:a9:e9:c2:86:f4:f4:3d:ac:29: 47:2a:81:ac:93:1a:64:7f:c5:db:e6:76:5f:8c:2f: 86:81:c3:fa:ee:5a:c3:c8:79:f6:4a:ef:86:92:d4: ea:3f:8a:6e:4f:98:e3:a1:88:5f:08:40:92:51:87: ca:ad:b4:24:be:3b:14:6d:69:31:29:ad:f3:87:8e: 46:db:4a:b6:af:40:6c:3c:ff:85:5a:e5:18:52:48: 1b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12 X509v3 Authority Key Identifier: keyid:83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:a9:3f:76:60:f1:78:55:58:78:5c:80:2e:69:bd:a9:18:f5: cf:89:3c:75:12:2c:90:b4:8f:f8:c9:1e:36:e9:20:f4:df:c0: fd:5a:86:42:67:4c:ad:0e:44:dd:24:f3:1f:7a:8c:4b:f6:fc: 09:2e:0d:fc:41:ad:34:cf:4d:37:fe:71:fe:ce:6e:39:06:26: 36:ec:07:ad:3f:33:83:6f:52:72:66:cd:30:17:11:7e:51:96: 44:2a:81:36:81:0c:4c:4e:78:85:03:09:af:34:ef:84:13:18: 89:15:18:33:9f:5e:2b:67:ce:e0:e7:f5:b9:bc:82:38:36:89: 55:b9:38:11:db:0f:6a:16:57:62:16:12:7e:f1:e9:c7:3e:cb: dc:c2:70:0e:4c:da:e6:5e:76:15:d3:1b:ef:ed:0c:b0:fa:28: 1a:02:8e:f9:a6:17:e0:a9:9b:13:66:f6:75:91:2a:95:84:94: 00:20:9f:9a:ee:6e:35:4a:4f:c5:89:53:91:a3:45:17:d4:5d: c5:a0:50:c4:5d:3d:d2:99:f4:61:44:4d:b6:a6:4d:8c:05:c7: 61:48:3c:85:4d:75:cf:24:e2:d1:cd:cb:37:9f:19:60:f9:d1: bc:05:03:5f:8f:3e:48:6f:78:ef:24:15:60:12:98:73:8c:28: 9e:22:00:da -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICA/AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODM0 RDc5RjQxMjZCRjlFOURDMEIzMkI4Njc2NEU3RDYwMjUxNEUwMTAeFw0yNTA2MjAw NDI5MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhERkQ3QTIyNjczQjFC M0RDNzAyOEZGMTM0OTlFNTc4NkI5RjBCMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmDEqYKm/hvLH5NwAJKGTBgwOXwuPtYnMuOHp53nwuGvRA8vmM wvF+Exyns6QegvassyJZrH66IqHRmnq+QFu1ijS4MkhRRSA2R3Zx06QicP94+/2v x+jhmykbg61N6SzcKVgwpPtoZW6BMdAIpDJqf3OhsZy0UF4PNEbCcid3woSJVya2 Xcmb8/E+tuKRkBrnASbfEy22myqQIxIoLxB/+cv6J0Qbb3riSKnpwob09D2sKUcq gayTGmR/xdvmdl+ML4aBw/ruWsPIefZK74aS1Oo/im5PmOOhiF8IQJJRh8qttCS+ OxRtaTEprfOHjkbbSravQGw8/4Va5RhSSBsTAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUjf16Imc7Gz3HAo/xNJnleGufCxIwHwYDVR0jBBgwFoAUg0159BJr+encCzK4 Z2Tn1gJRTgEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURO T0RFL2cwMTU5QkpyLWVuY0N6SzRaMlRuMWdKUlRnRS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvZzAxNTlCSnItZW5jQ3pLNFoyVG4xZ0pSVGdFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVUROT0RFL2cwMTU5QkpyLWVu Y0N6SzRaMlRuMWdKUlRnRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCBqT92YPF4VVh4XIAuab2pGPXPiTx1EiyQtI/4yR426SD038D9WoZCZ0yt DkTdJPMfeoxL9vwJLg38Qa00z003/nH+zm45BiY27AetPzODb1JyZs0wFxF+UZZE KoE2gQxMTniFAwmvNO+EExiJFRgzn14rZ87g5/W5vII4NolVuTgR2w9qFldiFhJ+ 8enHPsvcwnAOTNrmXnYV0xvv7Qyw+igaAo75phfgqZsTZvZ1kSqVhJQAIJ+a7m41 Sk/FiVORo0UX1F3FoFDEXT3SmfRhRE22pk2MBcdhSDyFTXXPJOLRzcs3nxlg+dG8 BQNfjz5Ib3jvJBVgEphzjCieIgDa -----END CERTIFICATE-----Generated at Sat Jun 21 12:34:17 2025 by rpki-client