$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft File: U0x2J0ozCwce_SDbBfbQQpKTdD4.mft (raw, json) Hash identifier: AYmBop2Mc/96pakJjXmWo6nb87KqPQJ26LSHJEnI2do= Subject key identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0EA0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft Manifest number: 0E91 Signing time: Sun 10 Aug 2025 05:41:16 +0000 Manifest this update: Sun 10 Aug 2025 05:41:16 +0000 Manifest next update: Tue 12 Aug 2025 05:41:16 +0000 Files and hashes: 1: U0x2J0ozCwce_SDbBfbQQpKTdD4.crl (hash: QBFNytSJAttBN6ls7fylblUTLOFdJYQ/E/gpdUYoGzM=) 2: ZDnJRXLI2U5_3yby3lod6hKL_zk.roa (hash: r4A5KqnokaFaIZQvF6tIRL7rUSSCOrPhOe5BHRywekE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: Aug 10 05:41:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8EFA600085AD19FB92E7AF72869E083CBA7A5FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:aa:2a:b2:ec:54:31:bd:a6:fa:09:34:aa: 1d:69:f4:07:21:8d:ef:e6:1f:66:30:7a:b8:98:09: 97:99:53:36:e2:cd:b2:79:d6:06:55:6c:60:b7:c5: 74:c8:41:52:f6:42:2b:66:d4:21:a0:50:c6:92:49: 53:5b:ee:43:71:52:fa:bc:d6:4c:c0:3f:86:e2:73: ad:8d:a1:00:37:ee:a4:19:b2:08:d0:a3:2c:80:24: 79:d2:1b:e4:ba:6e:17:8e:72:fc:c8:27:22:39:76: 24:33:44:0c:00:42:b5:6b:6c:a6:cf:e7:58:e1:a3: dc:5b:98:f6:61:65:d2:b4:ea:b4:46:40:35:26:0b: dd:f0:7e:cc:d1:c4:e2:bd:72:a4:fd:a3:78:72:06: ec:65:ed:5d:4b:e1:c9:dc:20:14:5e:8a:ce:32:7d: ed:8b:18:49:c3:37:a2:f9:56:b8:d1:05:3d:c0:e1: f5:9d:c7:8c:44:54:e0:79:12:3e:21:2c:b3:2b:ac: 67:c4:f1:87:80:ae:8b:b8:25:84:28:35:f5:a3:e6: e9:62:1d:40:e6:11:89:cd:fb:e9:e7:c7:1c:bd:2a: 8b:7d:24:b0:97:94:25:ee:ea:de:9d:f6:b1:36:27: e4:c3:03:a2:50:8e:bb:87:86:a1:a4:53:cf:7c:81: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:12:2c:cd:14:88:07:9c:6a:de:63:3a:54:fc:d6:c9:8e:20: c9:f2:d8:4e:94:44:2e:93:07:cb:52:00:c9:2e:25:a5:20:d9: 56:d4:67:5d:3c:ec:88:be:c8:74:a1:a1:11:7a:8a:a8:30:5d: 83:d0:2b:fc:98:5b:e9:eb:95:f7:2d:ad:89:56:39:0f:98:5d: c0:bf:37:29:a3:f9:c2:59:73:1c:6d:0d:b6:d4:0f:d6:36:fa: 0f:a8:f2:20:fa:27:63:ac:d2:9f:97:8c:c0:56:a6:40:bf:33: 7a:da:fe:f5:aa:b4:af:37:4b:18:0c:cd:ea:43:a3:7d:4e:54: 7d:60:aa:9b:c0:29:b3:ef:00:df:fb:df:d6:27:ad:70:1c:4f: ea:79:1f:f3:f6:65:c4:d4:25:10:11:da:a7:87:72:d9:bb:f9: 72:b2:68:5e:02:77:cc:7f:3f:f3:5f:d9:7c:d8:04:88:4f:cd: 95:38:e2:00:f5:10:59:7c:0e:6f:8a:cb:d6:38:c9:aa:44:fb: 2e:62:86:15:a3:9f:b0:20:28:ab:21:fc:be:21:b4:c6:f6:53: f1:88:2b:30:d8:25:0b:af:f6:a8:f9:cf:6f:bd:b2:97:56:1d: 78:8d:8b:16:b4:47:42:20:f4:85:87:c2:2d:2f:f1:71:f7:ca: dc:b9:69:f8 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yNTA4MTAw NTQxMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFRkE2MDAwODVBRDE5 RkI5MkU3QUY3Mjg2OUUwODNDQkE3QTVGQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc9qoqsuxUMb2m+gk0qh1p9Achje/mH2YweriYCZeZUzbizbJ5 1gZVbGC3xXTIQVL2Qitm1CGgUMaSSVNb7kNxUvq81kzAP4bic62NoQA37qQZsgjQ oyyAJHnSG+S6bheOcvzIJyI5diQzRAwAQrVrbKbP51jho9xbmPZhZdK06rRGQDUm C93wfszRxOK9cqT9o3hyBuxl7V1L4cncIBReis4yfe2LGEnDN6L5VrjRBT3A4fWd x4xEVOB5Ej4hLLMrrGfE8YeArou4JYQoNfWj5uliHUDmEYnN++nnxxy9Kot9JLCX lCXu6t6d9rE2J+TDA6JQjruHhqGkU898ga/lAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUjvpgAIWtGfuS569yhp4IPLp6X88wHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VMHgySjBvekN3Y2VfU0RiQmZi UVFwS1RkRDQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOhIs zRSIB5xq3mM6VPzWyY4gyfLYTpRELpMHy1IAyS4lpSDZVtRnXTzsiL7IdKGhEXqK qDBdg9Ar/Jhb6euV9y2tiVY5D5hdwL83KaP5wllzHG0NttQP1jb6D6jyIPonY6zS n5eMwFamQL8zetr+9aq0rzdLGAzN6kOjfU5UfWCqm8Aps+8A3/vf1ietcBxP6nkf 8/ZlxNQlEBHap4dy2bv5crJoXgJ3zH8/81/ZfNgEiE/NlTjiAPUQWXwOb4rL1jjJ qkT7LmKGFaOfsCAoqyH8viG0xvZT8YgrMNglC6/2qPnPb72yl1YdeI2LFrRHQiD0 hYfCLS/xcffK3Llp+A== -----END CERTIFICATE-----Generated at Mon Aug 11 13:13:46 2025 by rpki-client