$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft File: o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft (raw, json) Hash identifier: eEojp0kGNLENP2JrlQbwBPo+Sybo4inJ1GH6+yMyQhA= Subject key identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 Authority key identifier: A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D Certificate issuer: /CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Certificate serial: 0CE2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft Manifest number: 0CE2 Signing time: Tue 24 Jun 2025 10:01:04 +0000 Manifest this update: Tue 24 Jun 2025 10:01:04 +0000 Manifest next update: Thu 26 Jun 2025 10:01:04 +0000 Files and hashes: 1: o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl (hash: bw/t/1aLHDhDKw0U4/2TuDA7BaaheKgkd3hM/YilEvA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3298 (0xce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Validity Not Before: Jun 24 10:01:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C64762165FC5DB2FF375AB7DB85FAA4CC6FACAA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e3:a5:d7:31:58:2c:8a:00:dd:62:3e:01:76: 96:df:6b:ad:d8:e6:ef:af:02:c0:9c:7e:ed:04:96: de:0d:6f:57:85:e2:17:42:93:f6:d7:fc:24:3e:a6: 79:62:7e:db:57:d1:d3:c2:8f:1e:ee:93:94:df:43: cb:4c:16:33:01:2f:d4:e9:06:7e:ff:e1:2f:70:53: 78:95:19:bc:98:ba:21:f8:bf:c1:fe:5c:90:3b:6b: 31:f6:0f:2b:07:e3:8a:79:1b:13:8f:9a:29:8e:b7: ab:66:d2:72:0c:3a:d0:87:b4:b0:31:72:ad:5c:ce: bc:a2:75:fc:5f:61:03:b9:4e:bf:6d:a6:54:e5:ac: 05:ab:2b:a2:ef:7d:27:0c:29:b8:f7:5d:bc:6e:bc: 87:54:f3:61:ad:c8:99:07:25:ee:24:e8:2a:69:77: 4d:4f:49:b2:c7:15:2b:cb:00:85:2a:1f:f9:19:08: 70:15:f2:5e:dc:fd:54:09:d7:c6:29:d5:d2:78:aa: fd:6c:e7:8b:70:13:98:d3:0a:3e:4b:19:e8:88:78: eb:4a:91:11:02:f9:aa:86:60:c4:87:ea:b2:5c:56: e0:f5:3f:07:83:23:86:e9:17:78:6e:5c:4e:3a:2c: 2e:bf:37:ac:9e:ba:13:a6:3f:c1:08:8a:be:22:f1: c0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 X509v3 Authority Key Identifier: keyid:A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:94:d0:34:3b:3a:15:96:07:c1:a1:0d:9d:9d:78:0e:c6:04: 3b:d7:cb:9a:dc:5e:c8:0a:5d:2c:81:89:73:e2:a0:e8:1c:60: cd:80:80:06:b5:af:c5:23:04:19:11:08:5f:cc:b6:6f:4f:5b: d4:78:5b:ac:ff:cb:1d:2a:08:6a:ee:4c:45:c0:d7:7c:f3:1a: 37:43:9c:f5:b8:41:f3:fb:0c:19:f4:57:3b:6f:e1:00:ab:a0: 59:a1:dd:06:51:9c:b9:78:87:6f:20:ae:c6:69:24:41:0b:e5: ec:a4:0e:f7:5f:53:a0:7e:9e:57:7f:12:00:fb:a8:e6:42:6c: 48:c7:92:ed:a9:21:80:d0:93:c1:20:ec:58:ab:62:61:ac:22: 63:4a:a7:5f:50:ac:79:00:43:96:ba:ef:ae:26:79:51:76:65: aa:74:6c:6a:09:f4:cf:72:93:f2:cf:e8:bd:a7:bc:26:ae:82: 9b:d8:b9:80:68:1c:85:f9:8b:80:b3:0d:46:d7:5e:8c:0a:05: 30:ea:35:8f:7e:39:cd:f0:d5:4b:78:ad:b0:12:18:40:49:29: 2d:8f:7c:e8:ef:a0:44:91:a0:f0:65:37:8d:e9:bd:a9:e0:38: 59:98:6d:be:2b:7b:ae:f7:61:56:0f:c0:75:02:d9:b3:04:16: ef:f2:9b:26 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICDOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTM3 QzZFRTJCMEVEMEFGODMyMTEwMkUzNEUxNEI2QTk3NkY3OTg5RDAeFw0yNTA2MjQx MDAxMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2NDc2MjE2NUZDNURC MkZGMzc1QUI3REI4NUZBQTRDQzZGQUNBQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCj46XXMVgsigDdYj4Bdpbfa63Y5u+vAsCcfu0Elt4Nb1eF4hdC k/bX/CQ+pnlifttX0dPCjx7uk5TfQ8tMFjMBL9TpBn7/4S9wU3iVGbyYuiH4v8H+ XJA7azH2DysH44p5GxOPmimOt6tm0nIMOtCHtLAxcq1czryidfxfYQO5Tr9tplTl rAWrK6LvfScMKbj3XbxuvIdU82GtyJkHJe4k6Cppd01PSbLHFSvLAIUqH/kZCHAV 8l7c/VQJ18Yp1dJ4qv1s54twE5jTCj5LGeiIeOtKkREC+aqGYMSH6rJcVuD1PweD I4bpF3huXE46LC6/N6yeuhOmP8EIir4i8cDZAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUxkdiFl/F2y/zdat9uF+qTMb6yqQwHwYDVR0jBBgwFoAUo3xu4rDtCvgyEQLj ThS2qXb3mJ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28z eHU0ckR0Q3ZneUVRTGpUaFMycVhiM21KMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bzN4dTRyRHRDdmd5RVFMalRoUzJxWGIzbUowLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28zeHU0ckR0Q3ZneUVRTGpUaFMycVhi M21KMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQARlNA0OzoV lgfBoQ2dnXgOxgQ718ua3F7ICl0sgYlz4qDoHGDNgIAGta/FIwQZEQhfzLZvT1vU eFus/8sdKghq7kxFwNd88xo3Q5z1uEHz+wwZ9Fc7b+EAq6BZod0GUZy5eIdvIK7G aSRBC+XspA73X1Ogfp5XfxIA+6jmQmxIx5LtqSGA0JPBIOxYq2JhrCJjSqdfUKx5 AEOWuu+uJnlRdmWqdGxqCfTPcpPyz+i9p7wmroKb2LmAaByF+YuAsw1G116MCgUw 6jWPfjnN8NVLeK2wEhhASSktj3zo76BEkaDwZTeN6b2p4DhZmG2+K3uu92FWD8B1 AtmzBBbv8psm -----END CERTIFICATE-----Generated at Tue Jun 24 21:05:57 2025 by rpki-client