$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CXT/JxbruJW8hEeVpoTJZz6pgRRXdc4.mft File: JxbruJW8hEeVpoTJZz6pgRRXdc4.mft (raw, json) Hash identifier: Xr0Y2OC1+jWk4DRD9GStYEuJFxqpOZLB/K7rsaB5tis= Subject key identifier: 56:A4:BE:22:68:D3:D2:82:D0:85:47:3F:C7:35:1D:96:6A:18:4F:C7 Authority key identifier: 27:16:EB:B8:95:BC:84:47:95:A6:84:C9:67:3E:A9:81:14:57:75:CE Certificate issuer: /CN=2716EBB895BC844795A684C9673EA981145775CE Certificate serial: 04BA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JxbruJW8hEeVpoTJZz6pgRRXdc4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CXT/JxbruJW8hEeVpoTJZz6pgRRXdc4.mft Manifest number: 04B8 Signing time: Sat 21 Jun 2025 10:59:28 +0000 Manifest this update: Sat 21 Jun 2025 10:59:28 +0000 Manifest next update: Mon 23 Jun 2025 10:59:28 +0000 Files and hashes: 1: JxbruJW8hEeVpoTJZz6pgRRXdc4.crl (hash: ZCgSrvK4MIOgfGLEEaHuItUztEr9p4pwo5BxBtp9K3E=) 2: v8bXGk6pI3vcRxqP3WCGAtq-yB8.roa (hash: roY9TvtTmsFuUR10RzOSWhVlmDzV96rhGFGoHTluRIo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CXT/JxbruJW8hEeVpoTJZz6pgRRXdc4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CXT/JxbruJW8hEeVpoTJZz6pgRRXdc4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JxbruJW8hEeVpoTJZz6pgRRXdc4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 18:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2716EBB895BC844795A684C9673EA981145775CE Validity Not Before: Jun 21 10:59:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=56A4BE2268D3D282D085473FC7351D966A184FC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e0:cb:7c:90:bd:b6:b2:7a:48:54:71:04:b7: 3e:2e:49:a6:9d:3f:d3:85:37:64:a5:40:b5:2c:c6: 81:54:53:ce:bd:89:47:da:54:ab:66:b6:52:2d:09: cd:d8:91:e1:ad:15:5c:eb:46:33:c1:73:5b:90:6d: 68:d9:42:92:de:6d:4d:b2:38:07:32:f6:6e:69:e5: c9:50:49:70:51:ae:27:ce:be:ef:3b:aa:84:ba:7d: 87:e4:ad:10:22:c1:8a:f7:0f:83:ba:36:1d:b1:68: 2c:86:0b:f7:db:fb:0b:e3:e9:df:9c:42:65:a3:5a: 78:b7:07:92:0d:73:ac:2b:a7:40:9c:bc:4f:63:77: 80:ba:d4:61:65:e5:3b:be:d7:68:27:81:29:4e:5e: c1:4c:cc:3c:3a:f5:ec:f0:6b:c7:28:70:17:b0:ba: a2:35:9a:d9:62:15:c7:09:4e:da:c0:7e:38:a0:60: 67:a6:32:cb:cc:9f:c3:50:4f:17:c5:68:29:ca:7f: 4c:be:71:c1:5a:2c:56:e1:81:f0:c5:c4:b7:87:83: 2b:d6:53:44:8f:1a:3a:25:09:d0:e1:82:1e:06:77: b3:6f:b4:a5:fd:b8:f1:ec:98:e4:d6:af:1f:55:32: 2b:e2:ae:fc:39:7c:36:dd:15:36:17:31:12:f0:6f: f4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A4:BE:22:68:D3:D2:82:D0:85:47:3F:C7:35:1D:96:6A:18:4F:C7 X509v3 Authority Key Identifier: keyid:27:16:EB:B8:95:BC:84:47:95:A6:84:C9:67:3E:A9:81:14:57:75:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CXT/JxbruJW8hEeVpoTJZz6pgRRXdc4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JxbruJW8hEeVpoTJZz6pgRRXdc4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CXT/JxbruJW8hEeVpoTJZz6pgRRXdc4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ae:56:79:ff:ef:bf:b2:f9:a6:91:e2:4c:79:9a:91:c0:97: e7:21:42:5f:95:35:f4:24:19:8a:01:88:31:82:c8:09:6d:31: e0:74:25:4c:d9:ba:9b:2b:05:8f:a3:b4:7d:5d:84:e5:2d:43: 79:6a:f8:a9:95:93:19:e0:37:6c:9c:4b:d8:9b:52:ba:af:57: a0:17:c9:3c:8f:b9:e1:b6:54:ef:fa:af:60:4e:1f:7c:42:84: 76:90:53:4a:83:8d:38:7f:c2:a4:e7:10:1f:c2:84:f4:d7:13: 77:63:60:4c:48:bc:e3:26:0d:90:50:c5:f4:5a:fe:df:53:eb: 27:a3:c1:00:19:1a:d8:d8:c3:aa:b6:69:cc:6c:32:a2:ec:17: ae:a2:cc:3c:20:35:ae:04:67:ae:09:c8:c4:07:2c:6c:dc:47: 5f:2c:f9:32:4a:79:ce:79:0e:48:8e:0d:0a:fb:a7:b2:fd:95: a8:6b:77:36:3a:1c:df:f0:31:3c:74:fd:75:55:0e:61:03:75: 8c:f8:c9:3b:67:78:65:80:1b:06:fd:21:cc:00:79:ab:c5:87: 37:fd:c9:2a:0b:61:b3:c5:18:88:83:11:fe:93:91:38:12:4f: a5:39:52:dc:37:ad:d9:82:67:57:41:69:82:58:ef:35:e1:9b: cf:61:29:35 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICBLowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjcx NkVCQjg5NUJDODQ0Nzk1QTY4NEM5NjczRUE5ODExNDU3NzVDRTAeFw0yNTA2MjEx MDU5MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2QTRCRTIyNjhEM0Qy ODJEMDg1NDczRkM3MzUxRDk2NkExODRGQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI4Mt8kL22snpIVHEEtz4uSaadP9OFN2SlQLUsxoFUU869iUfa VKtmtlItCc3YkeGtFVzrRjPBc1uQbWjZQpLebU2yOAcy9m5p5clQSXBRrifOvu87 qoS6fYfkrRAiwYr3D4O6Nh2xaCyGC/fb+wvj6d+cQmWjWni3B5INc6wrp0CcvE9j d4C61GFl5Tu+12gngSlOXsFMzDw69ezwa8cocBewuqI1mtliFccJTtrAfjigYGem MsvMn8NQTxfFaCnKf0y+ccFaLFbhgfDFxLeHgyvWU0SPGjolCdDhgh4Gd7NvtKX9 uPHsmOTWrx9VMivirvw5fDbdFTYXMRLwb/QdAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUVqS+ImjT0oLQhUc/xzUdlmoYT8cwHwYDVR0jBBgwFoAUJxbruJW8hEeVpoTJ Zz6pgRRXdc4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1hUL0p4 YnJ1Slc4aEVlVnBvVEpaejZwZ1JSWGRjNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev SnhicnVKVzhoRWVWcG9USlp6NnBnUlJYZGM0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvQ1hUL0p4YnJ1Slc4aEVlVnBvVEpaejZwZ1JS WGRjNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAGrlZ5/++/ svmmkeJMeZqRwJfnIUJflTX0JBmKAYgxgsgJbTHgdCVM2bqbKwWPo7R9XYTlLUN5 aviplZMZ4DdsnEvYm1K6r1egF8k8j7nhtlTv+q9gTh98QoR2kFNKg404f8Kk5xAf woT01xN3Y2BMSLzjJg2QUMX0Wv7fU+sno8EAGRrY2MOqtmnMbDKi7Beuosw8IDWu BGeuCcjEByxs3EdfLPkySnnOeQ5Ijg0K+6ey/ZWoa3c2Ohzf8DE8dP11VQ5hA3WM +Mk7Z3hlgBsG/SHMAHmrxYc3/ckqC2GzxRiIgxH+k5E4Ek+lOVLcN63ZgmdXQWmC WO814ZvPYSk1 -----END CERTIFICATE-----Generated at Sun Jun 22 16:14:48 2025 by rpki-client