$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft File: 1PDdD0-4AQJdWG75mcXu4C18IFk.mft (raw, json) Hash identifier: MPQO2gJc6EmJOxScMgzcBERUobKXdG/Jjj0zqIoFw5M= Subject key identifier: 36:66:64:52:32:0A:BA:DC:BA:A3:52:9D:6F:65:14:9C:19:94:8C:EB Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 103C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft Manifest number: 0FC8 Signing time: Thu 08 May 2025 22:21:27 +0000 Manifest this update: Thu 08 May 2025 22:21:27 +0000 Manifest next update: Sat 10 May 2025 22:21:27 +0000 Files and hashes: 1: -6meSA_gYHH2GNus8etfLguxJGk.roa (hash: +0huFbIe0wVe/+59cUq7MutVavOjDW2LXLUzXLo8Bp8=) 2: 0fxMZr-xSDyNKJLdAzaUs77XPI4.roa (hash: BdU4v9HZmr4ueIZLLx7/NZkw0BJY9ylFy4145joG5Jc=) 3: 1PDdD0-4AQJdWG75mcXu4C18IFk.crl (hash: 7/VuLlW3YiIfliAKhClQYwINfKk/pnwr7f4zffbrcvI=) 4: Ph3LXUUCHNzQbx8ZF3Xp2jGIrao.roa (hash: zMMaRyMSxfpE19/h+9HVfhEWN4zmgzH1mVw/R7zMJ6k=) 5: PhlE3e5xCgkmsLk8nVKhvc7xN9M.roa (hash: HKLsporc2jllNgpzy4+uuOzdDbmzNvvQlIPTMrEas2M=) 6: RZt8ik18y9atnUalzHkBomxnZos.roa (hash: cvi9K4iwLTSyWudTKK57hyiopJfPzAxtgw1EEddudDU=) 7: YPdc360PEFbWhqVvEyvpCKka3nA.roa (hash: 10K5Gw/UVEhmWYYssZijTApkxWDVY4Mqc0Kk1pUWEXU=) 8: eRWE6a5vfoWCWCMJwlWwTqzGFMM.roa (hash: XihPeSndSy61JAi+Zwro9P2JuemF+3b89GbgcsvmWok=) 9: mg5Pb36Ed8Qv3k_YEqaFZvERe0I.roa (hash: Q3PKKLm+2lFbBPPWZDJx6s4Y08oGpPv83go4EVgOnM0=) 10: na900zgWs54EDVa1nBJKbOShrzI.roa (hash: 4WCjXfiXRT2W9l7U7IIGIQBxhUC8A1i9PUnnbX+kUz4=) 11: qZAnPuIsZ-wdbzdyou5tqpF40Zg.roa (hash: f2idFSznlDWbD+BndphmUxux6HJe+jn4cHvz2HPGs3g=) 12: s8CGOcAdc3AywWg5PdIJ3hNrQ64.roa (hash: QzsbOEzyGHyu+MaVCnE6ernqsIx6bRtycwY7gv3al5A=) 13: sz4M1ZiLPSJ6UI_Ya8frER0kXjw.roa (hash: drG0UFyFBp3trqOt1dwrpRu6xOJsYl6Csm+P43n1iHs=) 14: w4giOLeJgtwZBEclKCl9L2zpNqE.roa (hash: H4LPJK8YFwv9mpRc7i2sfXu142PvmyjG/+Tfg1lsVSw=) 15: z6GfaBOgWGWFbK9dKl0T1DdFjUg.roa (hash: xDcFnVzlYrK7jZYkbZb0iOoX57VyWnP7hfKUaiAkhP0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 11:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4156 (0x103c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: May 8 22:21:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=36666452320ABADCBAA3529D6F65149C19948CEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:3f:e0:8a:04:50:cd:e1:bd:8f:d1:d2:18: a7:fa:59:dc:58:40:b0:51:8e:7c:c4:b9:db:b4:75: 20:9f:0b:49:4e:ba:d6:9c:77:37:78:c6:19:f8:50: 87:2d:2c:10:c3:b1:5e:29:b4:b5:b6:3d:c6:a1:f1: e3:56:05:b7:ef:d3:b2:a3:dd:c0:db:27:86:74:dd: 5b:ad:28:4a:20:75:87:63:29:28:1a:42:ee:15:b0: 44:9c:11:e3:b6:43:6b:ec:56:c5:36:d5:5a:a8:56: 5b:64:e1:2f:b9:fe:13:75:ee:5a:5b:21:86:1c:21: d4:65:cd:c4:43:ed:80:e4:88:1c:ce:1f:80:7c:29: e3:fd:9b:a1:1a:f2:95:b9:8d:ba:31:c2:24:0e:da: f2:4d:d3:51:15:cd:bc:c0:3a:89:0d:10:2f:32:86: 46:e1:1e:6f:30:96:90:f8:52:63:1e:8e:6b:b3:e0: fd:61:d3:70:30:d6:5c:d7:99:57:eb:9f:34:bf:54: 02:af:ff:b5:ff:52:ff:d9:f7:d7:02:5b:31:b2:ea: 66:61:6c:fb:90:5e:55:4e:43:0b:dd:8c:d9:aa:77: 55:16:f5:7e:a8:8a:bf:6d:dd:52:db:77:e8:1a:1e: 75:31:2a:57:a9:da:6d:c7:4f:09:28:09:35:46:40: d5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:66:64:52:32:0A:BA:DC:BA:A3:52:9D:6F:65:14:9C:19:94:8C:EB X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:74:e9:99:75:72:8e:2e:f7:47:f2:96:b0:61:e1:9e:ec:bc: c1:2c:b2:eb:fd:99:25:86:cc:b6:12:c4:94:c4:ba:3e:e1:86: 87:d2:f3:59:cb:40:f2:1f:61:3d:ef:6a:d6:53:fb:f7:30:32: a8:cc:0d:46:cd:d3:ad:4a:b4:74:72:cd:62:37:b1:33:40:8c: f8:24:60:16:7a:bd:df:30:b9:61:39:ba:44:e0:b0:a1:64:89: 12:8d:86:e1:34:23:02:9d:14:aa:3e:67:02:15:91:6a:ef:c4: e7:1c:78:09:28:5f:98:2c:83:8c:f3:a8:e2:22:29:bf:6e:4e: cc:a6:67:6b:37:df:92:64:d1:af:3e:51:40:61:30:da:9f:20: 0e:39:5d:05:0d:71:a1:ae:f4:98:ce:d2:4b:3f:65:2e:b3:4f: 9a:95:f3:de:d3:4e:06:31:19:83:d7:25:69:70:df:b3:33:56: 85:5c:f0:d4:fc:57:1f:8c:dd:fb:f4:a2:4f:0b:fb:4f:c1:3d: 14:dd:7c:58:8f:4b:34:9a:41:76:d7:9d:ae:cd:16:11:7f:dd: 9c:2b:15:d8:28:f8:35:7e:34:6f:64:96:f7:a5:9e:aa:8a:b9: 3c:91:fe:a6:97:65:9e:f6:29:aa:7e:62:4f:8b:00:f2:9d:cb: be:77:2e:7f -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICEDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTA1MDgy MjIxMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2NjY2NDUyMzIwQUJB RENCQUEzNTI5RDZGNjUxNDlDMTk5NDhDRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDItz/gigRQzeG9j9HSGKf6WdxYQLBRjnzEudu0dSCfC0lOutac dzd4xhn4UIctLBDDsV4ptLW2Pcah8eNWBbfv07Kj3cDbJ4Z03VutKEogdYdjKSga Qu4VsEScEeO2Q2vsVsU21VqoVltk4S+5/hN17lpbIYYcIdRlzcRD7YDkiBzOH4B8 KeP9m6Ea8pW5jboxwiQO2vJN01EVzbzAOokNEC8yhkbhHm8wlpD4UmMejmuz4P1h 03Aw1lzXmVfrnzS/VAKv/7X/Uv/Z99cCWzGy6mZhbPuQXlVOQwvdjNmqd1UW9X6o ir9t3VLbd+gaHnUxKlep2m3HTwkoCTVGQNVzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUNmZkUjIKuty6o1Kdb2UUnBmUjOswHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQRGREMC00QVFKZFdHNzVtY1h1NEMx OElGay5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQARdOmZdXKO LvdH8pawYeGe7LzBLLLr/Zklhsy2EsSUxLo+4YaH0vNZy0DyH2E972rWU/v3MDKo zA1GzdOtSrR0cs1iN7EzQIz4JGAWer3fMLlhObpE4LChZIkSjYbhNCMCnRSqPmcC FZFq78TnHHgJKF+YLIOM86jiIim/bk7MpmdrN9+SZNGvPlFAYTDanyAOOV0FDXGh rvSYztJLP2Uus0+alfPe004GMRmD1yVpcN+zM1aFXPDU/FcfjN379KJPC/tPwT0U 3XxYj0s0mkF2152uzRYRf92cKxXYKPg1fjRvZJb3pZ6qirk8kf6ml2We9imqfmJP iwDyncu+dy5/ -----END CERTIFICATE-----Generated at Sat May 10 09:31:28 2025 by rpki-client