$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft File: -FjQAAx8RqmGsuuWgV8GriaTqdA.mft (raw, json) Hash identifier: hiadPn0fjtEnGeTQHpysVyxfJGmhAN5vFzk/zTEuwLc= Subject key identifier: F2:EC:2A:9B:B1:6F:DF:9E:E2:25:92:79:BC:60:C2:12:E6:E9:E6:6E Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Certificate serial: 0D6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft Manifest number: 0D56 Signing time: Fri 09 May 2025 23:20:45 +0000 Manifest this update: Fri 09 May 2025 23:20:45 +0000 Manifest next update: Sun 11 May 2025 23:20:45 +0000 Files and hashes: 1: -FjQAAx8RqmGsuuWgV8GriaTqdA.crl (hash: ihkbuHIsT9NhRADrOLtCts729jiRZ8OygUS5zASayNU=) 2: 6M67JmSEoaeUKxvtWpD-49a5JGo.roa (hash: 5IVv+j9HV8IsUWqwbiGKgH1ePVhxkXF8oORytispBLM=) 3: iUv9_WKZnnKO1LrJjOFge-ueXCU.roa (hash: xGKLcVSQpMXj9CPj5AclUmYYElMlKOlPw/NOLDN07gQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 06:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Validity Not Before: May 9 23:20:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F2EC2A9BB16FDF9EE2259279BC60C212E6E9E66E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:76:f7:15:1f:f2:f9:59:9b:e6:61:5a:6a:74: df:af:6a:ea:40:c0:55:37:66:9d:94:7f:b2:bc:ae: 73:48:48:14:3e:ad:81:6e:cf:c5:d4:d2:ea:cd:27: d2:95:ff:cf:4c:fe:53:9e:77:94:6a:14:64:57:d9: ab:d4:5b:3b:65:d7:45:da:7b:7c:59:f0:93:b5:9b: a0:37:3c:12:00:e6:c7:22:67:05:a2:df:fe:e1:d2: 1b:09:57:16:d2:8b:ed:22:ff:ff:58:e5:ac:c3:4a: 3b:6a:63:1a:16:a2:58:0d:bb:b8:7e:53:f0:4b:8a: fd:52:e1:b6:60:1d:f6:02:b5:54:f6:ae:0b:66:b3: 4b:a5:af:d6:be:fe:a1:78:c6:fb:5b:41:6d:42:79: 45:9c:c7:fe:71:9c:37:e8:64:14:5b:d0:9f:5f:e8: e0:19:74:e8:24:fb:50:b1:c3:24:18:7f:81:ae:2c: 10:21:06:ec:10:ff:a8:0d:99:08:a1:36:d2:5b:19: 3f:3f:a4:d9:2b:27:74:39:ab:d1:3f:0d:a0:5a:31: fd:9b:34:68:c9:04:06:7a:0d:4f:70:de:53:f5:18: c8:a5:0c:1a:16:4e:41:50:b8:a9:c4:41:b3:96:b2: 47:4b:8a:2e:78:0e:16:60:b7:b9:bc:d9:96:27:8e: 93:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EC:2A:9B:B1:6F:DF:9E:E2:25:92:79:BC:60:C2:12:E6:E9:E6:6E X509v3 Authority Key Identifier: keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:bf:94:e1:79:06:bf:5c:dd:2d:60:01:d3:39:57:8e:97:02: ef:f6:5c:dc:6c:f8:08:e1:6f:9a:1c:08:05:c0:31:b5:0a:95: 89:d4:fa:e6:8f:54:0f:fb:c1:1a:b6:f0:1d:80:b8:f4:ec:0b: e3:ef:58:e4:e0:5e:f0:3a:c2:a2:76:5e:da:ec:cf:77:46:3b: 45:11:9d:8f:82:bb:6f:31:3c:50:c9:95:d8:f9:6c:e6:89:bb: 9d:8d:ec:f1:5a:ec:73:4c:7f:05:bc:8a:67:60:62:4e:4b:f5: 64:2e:1e:38:29:7c:58:88:f8:a5:97:83:63:96:fc:78:28:61: 6a:b1:07:06:78:52:e8:cd:fd:7a:34:16:b1:7a:ff:da:f3:51: 02:31:a2:0d:06:f4:4f:d1:e4:d0:0e:e6:47:4e:5e:5f:38:f0: 8b:6c:31:7f:6d:62:7a:05:7d:b4:aa:bb:61:f3:b9:6a:84:e4: 58:ef:c3:44:2d:d0:49:ac:e4:74:73:fa:f2:a5:90:97:b4:7f: 87:0d:a5:31:2c:80:27:98:8b:62:8b:1c:26:d9:c2:50:dd:5a: 68:c2:06:d2:1d:4b:13:f8:73:8d:2d:e7:d4:3e:6a:18:92:13: a5:73:36:0e:c2:0b:54:33:0e:d1:77:30:36:98:5c:24:25:e9: 77:19:38:43 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg1 OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlEMDAeFw0yNTA1MDky MzIwNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyRUMyQTlCQjE2RkRG OUVFMjI1OTI3OUJDNjBDMjEyRTZFOUU2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCodvcVH/L5WZvmYVpqdN+vaupAwFU3Zp2Uf7K8rnNISBQ+rYFu z8XU0urNJ9KV/89M/lOed5RqFGRX2avUWztl10Xae3xZ8JO1m6A3PBIA5sciZwWi 3/7h0hsJVxbSi+0i//9Y5azDSjtqYxoWolgNu7h+U/BLiv1S4bZgHfYCtVT2rgtm s0ulr9a+/qF4xvtbQW1CeUWcx/5xnDfoZBRb0J9f6OAZdOgk+1CxwyQYf4GuLBAh BuwQ/6gNmQihNtJbGT8/pNkrJ3Q5q9E/DaBaMf2bNGjJBAZ6DU9w3lP1GMilDBoW TkFQuKnEQbOWskdLii54DhZgt7m82ZYnjpPJAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU8uwqm7Fv357iJZJ5vGDCEubp5m4wHwYDVR0jBBgwFoAU+FjQAAx8RqmGsuuW gV8GriaTqdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8tRmpRQUF4OFJxbUdzdXVXZ1Y4R3JpYVRxZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy8tRmpRQUF4OFJxbUdz dXVXZ1Y4R3JpYVRxZEEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOb+U4XkGv1zdLWAB0zlXjpcC7/Zc3Gz4COFvmhwIBcAxtQqVidT65o9UD/vB GrbwHYC49OwL4+9Y5OBe8DrConZe2uzPd0Y7RRGdj4K7bzE8UMmV2Pls5om7nY3s 8Vrsc0x/BbyKZ2BiTkv1ZC4eOCl8WIj4pZeDY5b8eChharEHBnhS6M39ejQWsXr/ 2vNRAjGiDQb0T9Hk0A7mR05eXzjwi2wxf21iegV9tKq7YfO5aoTkWO/DRC3QSazk dHP68qWQl7R/hw2lMSyAJ5iLYoscJtnCUN1aaMIG0h1LE/hzjS3n1D5qGJITpXM2 DsILVDMO0XcwNphcJCXpdxk4Qw== -----END CERTIFICATE-----Generated at Sat May 10 05:59:20 2025 by rpki-client