$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft File: U0x2J0ozCwce_SDbBfbQQpKTdD4.mft (raw, json) Hash identifier: dJKrueAvlc8IF+dV2UMaagiVUBgcdR6+yNTvmT5WyX4= Subject key identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0E62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft Manifest number: 0E53 Signing time: Fri 09 May 2025 05:22:08 +0000 Manifest this update: Fri 09 May 2025 05:22:08 +0000 Manifest next update: Sun 11 May 2025 05:22:08 +0000 Files and hashes: 1: U0x2J0ozCwce_SDbBfbQQpKTdD4.crl (hash: Ny2J+KFc0Slaknb3mHvwHBwK9EBCbPGZCmxsIONtAAU=) 2: ZDnJRXLI2U5_3yby3lod6hKL_zk.roa (hash: r4A5KqnokaFaIZQvF6tIRL7rUSSCOrPhOe5BHRywekE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 05:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: May 9 05:22:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8EFA600085AD19FB92E7AF72869E083CBA7A5FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:aa:2a:b2:ec:54:31:bd:a6:fa:09:34:aa: 1d:69:f4:07:21:8d:ef:e6:1f:66:30:7a:b8:98:09: 97:99:53:36:e2:cd:b2:79:d6:06:55:6c:60:b7:c5: 74:c8:41:52:f6:42:2b:66:d4:21:a0:50:c6:92:49: 53:5b:ee:43:71:52:fa:bc:d6:4c:c0:3f:86:e2:73: ad:8d:a1:00:37:ee:a4:19:b2:08:d0:a3:2c:80:24: 79:d2:1b:e4:ba:6e:17:8e:72:fc:c8:27:22:39:76: 24:33:44:0c:00:42:b5:6b:6c:a6:cf:e7:58:e1:a3: dc:5b:98:f6:61:65:d2:b4:ea:b4:46:40:35:26:0b: dd:f0:7e:cc:d1:c4:e2:bd:72:a4:fd:a3:78:72:06: ec:65:ed:5d:4b:e1:c9:dc:20:14:5e:8a:ce:32:7d: ed:8b:18:49:c3:37:a2:f9:56:b8:d1:05:3d:c0:e1: f5:9d:c7:8c:44:54:e0:79:12:3e:21:2c:b3:2b:ac: 67:c4:f1:87:80:ae:8b:b8:25:84:28:35:f5:a3:e6: e9:62:1d:40:e6:11:89:cd:fb:e9:e7:c7:1c:bd:2a: 8b:7d:24:b0:97:94:25:ee:ea:de:9d:f6:b1:36:27: e4:c3:03:a2:50:8e:bb:87:86:a1:a4:53:cf:7c:81: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:53:f0:10:74:af:e4:de:1e:96:ed:03:46:3c:67:40:d4:12: 80:97:21:a4:88:58:62:06:06:00:ad:5e:b6:b5:65:30:b7:20: 95:52:79:db:65:07:96:81:91:6b:69:7f:3c:85:0a:02:90:b8: 7f:23:c1:c6:a5:ba:05:8e:4f:5f:7e:7b:d8:66:e9:af:76:06: db:a7:38:c3:04:fd:2f:c5:4c:03:da:41:c7:df:f4:2a:1d:e6: 6a:04:ab:c1:79:e2:71:23:cc:fa:3a:1c:50:76:a2:45:a1:f5: 4c:49:4d:25:74:b2:98:1e:c6:72:45:58:8c:50:9d:b0:13:68: ea:de:f0:aa:8a:b1:2a:87:27:cc:0c:09:2d:87:dc:11:db:de: ee:c5:d4:9d:9d:5a:5c:a7:4b:25:6e:26:c8:f3:de:d1:7b:3e: 84:7d:55:74:b4:ab:13:19:9c:35:80:70:59:73:ff:91:f1:cb: d2:e5:6a:02:1c:ee:b2:b2:e8:bc:38:67:ce:c6:a4:b3:b0:a3: 63:8e:b6:75:e7:47:29:37:a0:f5:c9:c7:db:9d:6e:7b:5a:87: d6:c1:93:f0:f6:0a:c8:6b:0f:7b:71:5a:d1:1d:3a:72:2f:55: a6:f2:49:56:57:e5:ce:52:90:a6:02:9e:90:63:a2:d5:e2:6d: 5a:4f:03:a5 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yNTA1MDkw NTIyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFRkE2MDAwODVBRDE5 RkI5MkU3QUY3Mjg2OUUwODNDQkE3QTVGQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc9qoqsuxUMb2m+gk0qh1p9Achje/mH2YweriYCZeZUzbizbJ5 1gZVbGC3xXTIQVL2Qitm1CGgUMaSSVNb7kNxUvq81kzAP4bic62NoQA37qQZsgjQ oyyAJHnSG+S6bheOcvzIJyI5diQzRAwAQrVrbKbP51jho9xbmPZhZdK06rRGQDUm C93wfszRxOK9cqT9o3hyBuxl7V1L4cncIBReis4yfe2LGEnDN6L5VrjRBT3A4fWd x4xEVOB5Ej4hLLMrrGfE8YeArou4JYQoNfWj5uliHUDmEYnN++nnxxy9Kot9JLCX lCXu6t6d9rE2J+TDA6JQjruHhqGkU898ga/lAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUjvpgAIWtGfuS569yhp4IPLp6X88wHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VMHgySjBvekN3Y2VfU0RiQmZi UVFwS1RkRDQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1Pw EHSv5N4elu0DRjxnQNQSgJchpIhYYgYGAK1etrVlMLcglVJ522UHloGRa2l/PIUK ApC4fyPBxqW6BY5PX3572Gbpr3YG26c4wwT9L8VMA9pBx9/0Kh3magSrwXnicSPM +jocUHaiRaH1TElNJXSymB7GckVYjFCdsBNo6t7wqoqxKocnzAwJLYfcEdve7sXU nZ1aXKdLJW4myPPe0Xs+hH1VdLSrExmcNYBwWXP/kfHL0uVqAhzusrLovDhnzsak s7CjY462dedHKTeg9cnH251ue1qH1sGT8PYKyGsPe3Fa0R06ci9VpvJJVlflzlKQ pgKekGOi1eJtWk8DpQ== -----END CERTIFICATE-----Generated at Sat May 10 05:08:34 2025 by rpki-client