$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft File: T7OmmWT36W2ws1gTKPAG28oaupc.mft (raw, json) Hash identifier: 3ZcRLvSzQNMutXrLkzm2WXeCo5vwsGuDI2BQ5srRnhw= Subject key identifier: 85:71:F1:A9:69:10:DF:3A:50:E8:C7:1C:3B:F0:35:48:02:A5:5D:8E Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0E25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft Manifest number: 0D4F Signing time: Fri 25 Apr 2025 09:50:50 +0000 Manifest this update: Fri 25 Apr 2025 09:50:50 +0000 Manifest next update: Sun 27 Apr 2025 09:50:50 +0000 Files and hashes: 1: -Y3G_mzeqbKpWwjkDqxpZ47wgzE.roa (hash: UHZLopSAcKQUTe8BsUAzxKnj29V7IX/ouCvpr5UTyIc=) 2: 1QwwJrduwzAJiVGS_u7ZkRHlcXM.roa (hash: Bc2SQORI3mmLWAAigJgR3Jn6Ur5eYBAYMHI5jDKa2Zc=) 3: 1zRRvjrKNDyCJBHtuCZ22Hlum9Y.roa (hash: 8qGj+eXplIj4OXR+tzkZi766mctsogbD86eCy1uk9lw=) 4: 4bcVKhhZkpzyXVdWiaa5l31dHoU.roa (hash: eYtLjG6zcO07PA4B0YCryyfNiPbBX0xZNxetzKPL6Ms=) 5: 54bFuNJ4KL8rPveV88M_OyOlCYk.roa (hash: +2i2DjuQ5aM+daBXea4xrLI9iP2m6lJunoUhb2QUR+o=) 6: 5t82g2tQQI1ZrIE1UsuslUgsJSE.roa (hash: BCIuMuhEZjI2CyQT7IyYX0F5P9q4M3ABIyfMq4oexoI=) 7: 8EuyTwIGqw1Yw-MZyeDUgnJKQIw.roa (hash: ntTma9S89FxA3rapKlD2m6zcs+z8FpKpnR0sJWo3MGA=) 8: GAAoDqSjii4e2mW1nCHKN25plRA.roa (hash: pSG1lA/dBuVNF3n3D+8cV7CtqpKVqvJeAtS84fgH/pg=) 9: N4OGqr4XNtexpJC4EOXhjC9CXoA.roa (hash: kyfCiOfbviZpjV8GYuan5VxVSwOLcQCNvuHHKUfZ0O8=) 10: QaPgGgdkEzHoyU_mDcQXjLzJeC0.roa (hash: oA8aNOeiAaXsg5674d8rxKc9sCsf4mnw3YXTmcIeNfY=) 11: T7OmmWT36W2ws1gTKPAG28oaupc.crl (hash: 3Q0cxnjkHnx4U/3mz4AXuGbGCSuncEWTq1ppYXAP9H4=) 12: XYfWQlgvtmcfgpWOXZc8y6WSF1g.roa (hash: pLOEpPDrAAFdhcLInjDoqTOrzuq5sQyq4k+mxiEvGI8=) 13: Xsg_5RtNccXZ48x2H8qKP9vyYO4.roa (hash: IP6HzmhYxApdpkPrP4bbH0ByZ+UApIAMMvsXrH7d+eI=) 14: _uEXhOV4M-FC1CPrgz5NxU25jJg.roa (hash: lqNuO7wUVW45mVCvu3qqp/ARN3h8qPNN/cw9nkrGVPY=) 15: b33AMHIuBX5jYq5zEHBsijgyQsU.roa (hash: Jt2MNtfnXPEoAV8P76xZytliPqbg9seTU550Rz3QmTI=) 16: bhk7C6uA23_r2v4dCGjk7VqZTok.roa (hash: W/rfHQpMTRALMiHobZblyLNxcmBzZ6KzAywKEkc1Qjs=) 17: fHo1mcz9KkO_ARuo8XDIxg_zHyU.roa (hash: ZexTuDxlvgj6l3MtB4cYXcGpde+Q7ih9UxG7H7pFqaI=) 18: fVCNW1U6pessIDdFymfehliXGmg.roa (hash: lRXYZwMTSyjnx+t/etbiH5xvOu2+1FfwLBLDuOwjVrA=) 19: hKSyd6sgpxiIwwHGHo00nWDuRZQ.roa (hash: SXrTw/xvHAZUP6cAgF+KrzAh4vw/ZQP7TRnxlDeJ02Q=) 20: pllKhV1hPOA5298JIOQ5hHKY8ZM.roa (hash: ZrXKmSmKiyJkC7NHK+ALisRgcltgxVsUNWMwv67qzDc=) 21: rxkDFMc36J4fze8DlHIMLyTpWdk.roa (hash: DM5bTRALdnZKVye42BSK0X8HBdH4wKJmS64JM86xQsM=) 22: s2aEWOxFTbqmXbQRVFC_4D0uhb4.roa (hash: 8TkQbQpqq0MecFdvcpvcO0Z3Lx1olJ0qmDTRPTxc8rg=) 23: tdkYnDh4vwODT5EMGd-S21gtdzg.roa (hash: rQx7QyKNuDkKMETxOqWkwFkZ8VSDv7pJ3ku9aDuFa1A=) 24: veUaXwCBCTUBE8d8Rws-wz1S0Io.roa (hash: Dg+nBeSKCPmeLzldhKpSkqURKnQze6Ja3EAc8Vs/bMY=) 25: wVa92PLNJNL2pWwO4lH-hVH6rwk.roa (hash: JVslYdL4t8+fzcqTMHWGtTru4C+KdooYlAsLr8CDGE0=) 26: x_rq0q2q4-jRL9S2iNTjB9qVmVM.roa (hash: V1ulWyp81Rl9meDEwirY6ym5wi9+B4nx/Cv6dP7C7dQ=) 27: xsWIxXHHaKE-oEIkp9a3YrEsjeI.roa (hash: FRWIPx5h87hvf32nlCDV8JgMwAFtFF277lq1JFGLReA=) 28: yZ4PKHLiZrZ60aVPfm9ZOAX-mSg.roa (hash: OW/FPU4aW3bgTiOuFbdNTUS2DQ9AWdT4lP6f0gBG98s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 21:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3621 (0xe25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Apr 25 09:50:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8571F1A96910DF3A50E8C71C3BF0354802A55D8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:92:87:cc:56:73:bd:62:44:5b:02:1c:3a: 91:6c:b1:b6:7b:a3:60:bc:00:6f:ee:23:35:ce:4b: 53:03:ed:e2:5c:15:7d:99:82:1b:ba:bc:a6:29:84: e6:a5:62:a3:ab:49:7f:a4:19:a8:d1:d5:90:ee:6b: e6:ec:b8:39:d3:19:e7:17:08:50:b8:83:00:4d:f3: 88:12:87:41:0e:76:34:3f:b0:aa:99:e5:57:a2:77: f6:7f:a6:30:b0:ca:60:04:d6:be:10:e1:7a:57:33: 8c:1c:46:4c:a4:b4:64:9b:df:d6:f3:b2:79:bc:fb: 33:2a:39:53:a2:9d:b2:8d:90:84:bb:81:6d:a2:ea: 3d:c5:23:b2:1a:62:c8:04:64:4d:c7:38:fe:af:f8: 9a:a6:36:12:d1:15:c2:8b:e7:e9:f2:71:d2:78:e5: 01:dc:73:06:ce:9e:58:07:22:fa:e7:61:f8:a1:da: ad:8b:4c:bc:a9:f4:d6:30:45:8a:b7:2d:3f:05:cc: 9d:c2:10:88:fe:fa:0f:b7:91:2f:b9:54:ba:c6:14: b0:cd:76:d2:09:56:dd:f4:21:80:0b:ee:a0:a3:1e: 15:b1:d5:97:64:4d:68:57:cb:37:ad:91:45:c0:37: fc:27:56:9d:4c:0c:40:f5:d6:b3:16:cc:4d:97:94: a7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:71:F1:A9:69:10:DF:3A:50:E8:C7:1C:3B:F0:35:48:02:A5:5D:8E X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:55:f7:89:26:92:42:ed:be:35:6b:03:bd:73:52:5f:9a:bf: 1e:8d:32:77:cb:c6:6f:06:6c:4c:c3:a4:31:37:73:5e:76:a1: 94:ba:91:11:54:0a:1d:7f:0e:4f:35:0c:44:43:3c:c0:34:84: ac:b8:95:fe:79:76:3e:1c:df:7e:1a:f1:28:ed:23:e4:35:83: d4:da:62:16:42:c0:40:ac:2c:27:a0:7a:25:7d:4f:94:1a:a7: 84:a5:c4:69:3e:9a:89:64:16:31:86:be:aa:55:98:56:c2:4b: 04:e7:da:d2:d7:1e:37:b3:a7:99:a7:4e:8f:8e:db:54:c5:af: c2:3e:99:e8:04:70:7a:33:9f:2c:a2:4e:3a:b0:a0:ba:28:72: b1:04:5a:7c:b4:a3:5c:f9:00:7c:6a:34:25:38:16:88:d1:38: a7:70:12:ef:d2:b5:35:38:2d:e2:3f:4a:40:ee:7d:93:bb:8f: 54:72:1b:36:54:75:7b:40:b9:ca:b0:92:39:8c:b0:86:70:e5: 4e:a9:6a:d6:93:38:2c:1d:50:0b:db:e6:27:55:11:27:1f:ed: 55:a7:31:18:2c:0f:b4:6e:45:f2:bf:92:4d:cf:bf:c8:65:b6: d0:33:9e:fa:23:42:76:ce:e9:42:ef:86:c3:b1:f8:ae:4d:41: 0e:01:2f:90 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTA0MjUw OTUwNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1NzFGMUE5NjkxMERG M0E1MEU4QzcxQzNCRjAzNTQ4MDJBNTVEOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPu5KHzFZzvWJEWwIcOpFssbZ7o2C8AG/uIzXOS1MD7eJcFX2Z ghu6vKYphOalYqOrSX+kGajR1ZDua+bsuDnTGecXCFC4gwBN84gSh0EOdjQ/sKqZ 5Veid/Z/pjCwymAE1r4Q4XpXM4wcRkyktGSb39bzsnm8+zMqOVOinbKNkIS7gW2i 6j3FI7IaYsgEZE3HOP6v+JqmNhLRFcKL5+nycdJ45QHccwbOnlgHIvrnYfih2q2L TLyp9NYwRYq3LT8FzJ3CEIj++g+3kS+5VLrGFLDNdtIJVt30IYAL7qCjHhWx1Zdk TWhXyzetkUXAN/wnVp1MDED11rMWzE2XlKf1AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUhXHxqWkQ3zpQ6MccO/A1SAKlXY4wHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1Q3T21tV1QzNlcyd3MxZ1RL UEFHMjhvYXVwYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCN VfeJJpJC7b41awO9c1Jfmr8ejTJ3y8ZvBmxMw6QxN3NedqGUupERVAodfw5PNQxE QzzANISsuJX+eXY+HN9+GvEo7SPkNYPU2mIWQsBArCwnoHolfU+UGqeEpcRpPpqJ ZBYxhr6qVZhWwksE59rS1x43s6eZp06PjttUxa/CPpnoBHB6M58sok46sKC6KHKx BFp8tKNc+QB8ajQlOBaI0TincBLv0rU1OC3iP0pA7n2Tu49Uchs2VHV7QLnKsJI5 jLCGcOVOqWrWkzgsHVAL2+YnVREnH+1VpzEYLA+0bkXyv5JNz7/IZbbQM576I0J2 zulC74bDsfiuTUEOAS+Q -----END CERTIFICATE-----Generated at Sat Apr 26 19:39:02 2025 by rpki-client