$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft File: ftgwlnECe35vya4nucaMnE4pxXU.mft (raw, json) Hash identifier: CahoY/04xW37SKFb4euRpY+fThGzzGgGtM7Dn3frsMM= Subject key identifier: 66:A9:74:07:81:77:DC:FD:04:3F:D9:68:DE:DF:E1:B1:80:12:D4:2F Authority key identifier: 7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 Certificate issuer: /CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Certificate serial: B2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft Manifest number: B1 Signing time: Mon 11 Aug 2025 04:40:24 +0000 Manifest this update: Mon 11 Aug 2025 04:40:24 +0000 Manifest next update: Mon 11 Aug 2025 10:40:24 +0000 Files and hashes: 1: ftgwlnECe35vya4nucaMnE4pxXU.crl (hash: bHKkG1ByAbkemhdhbqPJqWlEuombXeI/QJaqBRNCnA8=) 2: td3jCjzHIYCL0-HvpN4nhdz2tvg.roa (hash: rBvJqif2TLaa20JqvQMoW3jO03c53tQSeUOcr0H7L0I=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 10:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Validity Not Before: Aug 11 04:40:24 2025 GMT Not After : Jul 8 15:30:21 2026 GMT Subject: CN=66A974078177DCFD043FD968DEDFE1B18012D42F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:25:2e:ce:01:3c:ee:31:ae:3d:11:9f:9c:1d: 2c:de:41:17:95:93:07:18:4b:f2:b5:7c:6d:99:11: 32:65:a7:b4:4c:d4:9c:5c:95:33:3f:41:56:f8:40: 75:39:d9:67:03:42:b5:3f:a8:3c:89:a0:f6:db:57: 34:6f:92:8d:6b:1d:38:b3:e2:58:1f:9d:02:05:1d: 40:a0:25:bc:00:bb:2f:ed:17:eb:bd:6b:3a:98:83: 02:d4:c8:37:39:bf:88:25:c2:b3:c9:51:43:ef:74: 5b:ce:74:f8:6f:85:79:7e:b5:a0:73:bc:45:16:ca: 5d:fb:4b:98:54:18:71:70:d2:f0:60:b5:d5:2f:a6: cb:c0:4b:c9:37:05:0a:fa:02:09:06:99:f7:53:c7: 81:f0:7c:1c:56:ba:76:e1:0a:6a:49:5e:49:32:3e: 01:c3:8e:db:b7:69:30:a0:af:b7:17:d0:f6:47:22: 20:bf:7b:3c:90:ad:3e:35:8d:58:de:73:c7:55:88: f1:60:00:98:90:ff:a4:e8:bd:62:12:14:de:ae:3a: 55:24:a8:d2:3d:f8:2e:6d:b0:23:91:7a:95:72:9a: 7a:ca:32:d1:e4:46:b1:67:77:bc:63:43:53:d9:08: 3b:86:bb:be:d3:a8:e9:b4:3d:1e:e4:da:7e:19:cf: 8c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A9:74:07:81:77:DC:FD:04:3F:D9:68:DE:DF:E1:B1:80:12:D4:2F X509v3 Authority Key Identifier: keyid:7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:33:dd:09:8d:74:70:8b:fe:1c:b1:92:e6:5b:51:a3:a4:83: 27:b8:71:28:a1:50:40:04:cc:4d:38:bb:b9:58:1d:2f:eb:2e: c0:03:10:e1:5e:da:7d:64:d7:8f:19:0a:61:27:9e:90:be:07: 53:9f:18:a7:b6:9e:fd:77:3f:b1:fc:44:2b:8a:9d:25:f1:84: 72:a8:8f:42:54:86:df:67:9a:40:6a:32:9c:c1:be:e4:a5:f2: b5:d5:7e:84:b6:f0:0f:30:d7:3b:2a:0f:04:02:75:6f:e6:8e: 88:ef:2b:a8:1e:7a:8f:19:30:21:2b:25:43:55:eb:ac:f0:ff: 70:d5:bf:26:29:00:f3:fb:a9:26:76:c2:56:0b:6f:58:15:77: 97:cc:2d:00:21:d4:d7:e8:4d:cd:f5:db:74:86:16:af:42:bc: c2:29:cb:62:98:94:c8:b0:79:68:48:c0:4a:af:0e:90:d4:ca: 94:f7:c8:9a:50:5f:fb:cd:d0:b4:05:e7:52:79:6a:22:5e:fd: eb:19:d8:a2:30:96:02:a5:ba:36:d9:f9:80:0c:87:00:f0:91: 23:03:41:0e:87:78:91:c5:69:c0:34:76:43:dd:96:47:b5:54: 88:c4:df:cd:e1:3a:d4:3c:cf:a8:92:9d:06:6f:61:2a:3f:2f: 4b:3c:21:af -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICALIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VE ODMwOTY3MTAyN0I3RTZGQzlBRTI3QjlDNjhDOUM0RTI5QzU3NTAeFw0yNTA4MTEw NDQwMjRaFw0yNjA3MDgxNTMwMjFaMDMxMTAvBgNVBAMTKDY2QTk3NDA3ODE3N0RD RkQwNDNGRDk2OERFREZFMUIxODAxMkQ0MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOJS7OATzuMa49EZ+cHSzeQReVkwcYS/K1fG2ZETJlp7RM1Jxc lTM/QVb4QHU52WcDQrU/qDyJoPbbVzRvko1rHTiz4lgfnQIFHUCgJbwAuy/tF+u9 azqYgwLUyDc5v4glwrPJUUPvdFvOdPhvhXl+taBzvEUWyl37S5hUGHFw0vBgtdUv psvAS8k3BQr6AgkGmfdTx4HwfBxWunbhCmpJXkkyPgHDjtu3aTCgr7cX0PZHIiC/ ezyQrT41jVjec8dViPFgAJiQ/6TovWISFN6uOlUkqNI9+C5tsCORepVymnrKMtHk RrFnd7xjQ1PZCDuGu77TqOm0PR7k2n4Zz4xJAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUZql0B4F33P0EP9lo3t/hsYAS1C8wHwYDVR0jBBgwFoAUftgwlnECe35vya4n ucaMnE4pxXUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNQkVT T04vZnRnd2xuRUNlMzV2eWE0bnVjYU1uRTRweFhVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9mdGd3bG5FQ2UzNXZ5YTRudWNhTW5FNHB4WFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1CRVNPTi9mdGd3bG5FQ2UzNXZ5 YTRudWNhTW5FNHB4WFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACzPdCY10cIv+HLGS5ltRo6SDJ7hxKKFQQATMTTi7uVgdL+suwAMQ4V7afWTX jxkKYSeekL4HU58Yp7ae/Xc/sfxEK4qdJfGEcqiPQlSG32eaQGoynMG+5KXytdV+ hLbwDzDXOyoPBAJ1b+aOiO8rqB56jxkwISslQ1XrrPD/cNW/JikA8/upJnbCVgtv WBV3l8wtACHU1+hNzfXbdIYWr0K8winLYpiUyLB5aEjASq8OkNTKlPfImlBf+83Q tAXnUnlqIl796xnYojCWAqW6Ntn5gAyHAPCRIwNBDod4kcVpwDR2Q92WR7VUiMTf zeE61DzPqJKdBm9hKj8vSzwhrw== -----END CERTIFICATE-----Generated at Mon Aug 11 07:46:05 2025 by rpki-client