$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft File: U0x2J0ozCwce_SDbBfbQQpKTdD4.mft (raw, json) Hash identifier: yh81IGVmYv69aJrYvRnNY2eAkFonKCyZOJNEBR6mdTo= Subject key identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0E81 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft Manifest number: 0E72 Signing time: Tue 24 Jun 2025 17:31:38 +0000 Manifest this update: Tue 24 Jun 2025 17:31:38 +0000 Manifest next update: Thu 26 Jun 2025 17:31:38 +0000 Files and hashes: 1: U0x2J0ozCwce_SDbBfbQQpKTdD4.crl (hash: XXAN827HgWMIXwg4RNk8K091K4WtFBStiiDaXPUdUMU=) 2: ZDnJRXLI2U5_3yby3lod6hKL_zk.roa (hash: r4A5KqnokaFaIZQvF6tIRL7rUSSCOrPhOe5BHRywekE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3713 (0xe81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: Jun 24 17:31:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8EFA600085AD19FB92E7AF72869E083CBA7A5FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:aa:2a:b2:ec:54:31:bd:a6:fa:09:34:aa: 1d:69:f4:07:21:8d:ef:e6:1f:66:30:7a:b8:98:09: 97:99:53:36:e2:cd:b2:79:d6:06:55:6c:60:b7:c5: 74:c8:41:52:f6:42:2b:66:d4:21:a0:50:c6:92:49: 53:5b:ee:43:71:52:fa:bc:d6:4c:c0:3f:86:e2:73: ad:8d:a1:00:37:ee:a4:19:b2:08:d0:a3:2c:80:24: 79:d2:1b:e4:ba:6e:17:8e:72:fc:c8:27:22:39:76: 24:33:44:0c:00:42:b5:6b:6c:a6:cf:e7:58:e1:a3: dc:5b:98:f6:61:65:d2:b4:ea:b4:46:40:35:26:0b: dd:f0:7e:cc:d1:c4:e2:bd:72:a4:fd:a3:78:72:06: ec:65:ed:5d:4b:e1:c9:dc:20:14:5e:8a:ce:32:7d: ed:8b:18:49:c3:37:a2:f9:56:b8:d1:05:3d:c0:e1: f5:9d:c7:8c:44:54:e0:79:12:3e:21:2c:b3:2b:ac: 67:c4:f1:87:80:ae:8b:b8:25:84:28:35:f5:a3:e6: e9:62:1d:40:e6:11:89:cd:fb:e9:e7:c7:1c:bd:2a: 8b:7d:24:b0:97:94:25:ee:ea:de:9d:f6:b1:36:27: e4:c3:03:a2:50:8e:bb:87:86:a1:a4:53:cf:7c:81: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:16:6d:7d:9e:38:73:e1:cd:c5:15:13:c0:31:c5:9e:f2:f6: 77:f0:25:33:fd:13:a0:99:04:d3:93:e8:df:04:7f:00:fb:fd: 7e:0f:bb:de:e8:63:9a:5b:96:84:b2:ad:a0:9b:98:8b:f2:20: 67:a5:17:85:6e:f2:f9:94:95:6b:9f:fc:8f:86:e4:4a:11:70: 86:a6:7a:8a:64:20:dc:78:38:79:64:c5:76:4c:c7:f0:52:2f: d0:d9:5e:85:59:24:a8:78:92:8a:59:85:5e:a0:0f:99:9c:68: da:08:18:11:33:c3:39:4f:af:47:f7:14:c2:98:43:4f:84:1a: 92:32:9a:60:ac:36:c4:01:36:e3:9c:81:ef:ac:24:1a:06:02: a0:06:a5:01:8b:4f:5c:b4:45:4b:d9:0d:73:9f:57:22:30:5e: b6:19:dd:7d:47:c6:38:01:fa:e5:d5:0d:b7:5d:e2:67:15:97: 86:da:60:36:2d:4a:d7:95:19:da:13:a0:a0:f9:2b:66:07:f2: f6:92:55:c3:b5:20:3c:8e:b5:e1:76:38:45:1a:2c:c0:88:6f: 1c:b2:ba:23:98:e7:1e:bc:33:6e:f2:21:9d:94:e9:4b:18:fc: 33:09:52:a2:fd:f5:1e:6c:e2:24:fd:ce:55:71:5a:67:63:ac: 7a:d8:a6:9e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDoEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yNTA2MjQx NzMxMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFRkE2MDAwODVBRDE5 RkI5MkU3QUY3Mjg2OUUwODNDQkE3QTVGQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc9qoqsuxUMb2m+gk0qh1p9Achje/mH2YweriYCZeZUzbizbJ5 1gZVbGC3xXTIQVL2Qitm1CGgUMaSSVNb7kNxUvq81kzAP4bic62NoQA37qQZsgjQ oyyAJHnSG+S6bheOcvzIJyI5diQzRAwAQrVrbKbP51jho9xbmPZhZdK06rRGQDUm C93wfszRxOK9cqT9o3hyBuxl7V1L4cncIBReis4yfe2LGEnDN6L5VrjRBT3A4fWd x4xEVOB5Ej4hLLMrrGfE8YeArou4JYQoNfWj5uliHUDmEYnN++nnxxy9Kot9JLCX lCXu6t6d9rE2J+TDA6JQjruHhqGkU898ga/lAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUjvpgAIWtGfuS569yhp4IPLp6X88wHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VMHgySjBvekN3Y2VfU0RiQmZi UVFwS1RkRDQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEADRZt fZ44c+HNxRUTwDHFnvL2d/AlM/0ToJkE05Po3wR/APv9fg+73uhjmluWhLKtoJuY i/IgZ6UXhW7y+ZSVa5/8j4bkShFwhqZ6imQg3Hg4eWTFdkzH8FIv0NlehVkkqHiS ilmFXqAPmZxo2ggYETPDOU+vR/cUwphDT4QakjKaYKw2xAE245yB76wkGgYCoAal AYtPXLRFS9kNc59XIjBethndfUfGOAH65dUNt13iZxWXhtpgNi1K15UZ2hOgoPkr Zgfy9pJVw7UgPI614XY4RRoswIhvHLK6I5jnHrwzbvIhnZTpSxj8MwlSov31Hmzi JP3OVXFaZ2Osetimng== -----END CERTIFICATE-----Generated at Wed Jun 25 17:23:53 2025 by rpki-client