$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft File: o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft (raw, json) Hash identifier: hd4LxTcBZzpOQE34VortDP2pO+0XFWIE3Va6QkakCbs= Subject key identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 Authority key identifier: A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D Certificate issuer: /CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Certificate serial: 0D01 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft Manifest number: 0D01 Signing time: Sat 09 Aug 2025 22:10:34 +0000 Manifest this update: Sat 09 Aug 2025 22:10:34 +0000 Manifest next update: Mon 11 Aug 2025 22:10:34 +0000 Files and hashes: 1: o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl (hash: lOWoMONM/j9a1OlIewt+xEbzak/eWHvA9tog8sKcYx8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3329 (0xd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Validity Not Before: Aug 9 22:10:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C64762165FC5DB2FF375AB7DB85FAA4CC6FACAA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e3:a5:d7:31:58:2c:8a:00:dd:62:3e:01:76: 96:df:6b:ad:d8:e6:ef:af:02:c0:9c:7e:ed:04:96: de:0d:6f:57:85:e2:17:42:93:f6:d7:fc:24:3e:a6: 79:62:7e:db:57:d1:d3:c2:8f:1e:ee:93:94:df:43: cb:4c:16:33:01:2f:d4:e9:06:7e:ff:e1:2f:70:53: 78:95:19:bc:98:ba:21:f8:bf:c1:fe:5c:90:3b:6b: 31:f6:0f:2b:07:e3:8a:79:1b:13:8f:9a:29:8e:b7: ab:66:d2:72:0c:3a:d0:87:b4:b0:31:72:ad:5c:ce: bc:a2:75:fc:5f:61:03:b9:4e:bf:6d:a6:54:e5:ac: 05:ab:2b:a2:ef:7d:27:0c:29:b8:f7:5d:bc:6e:bc: 87:54:f3:61:ad:c8:99:07:25:ee:24:e8:2a:69:77: 4d:4f:49:b2:c7:15:2b:cb:00:85:2a:1f:f9:19:08: 70:15:f2:5e:dc:fd:54:09:d7:c6:29:d5:d2:78:aa: fd:6c:e7:8b:70:13:98:d3:0a:3e:4b:19:e8:88:78: eb:4a:91:11:02:f9:aa:86:60:c4:87:ea:b2:5c:56: e0:f5:3f:07:83:23:86:e9:17:78:6e:5c:4e:3a:2c: 2e:bf:37:ac:9e:ba:13:a6:3f:c1:08:8a:be:22:f1: c0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 X509v3 Authority Key Identifier: keyid:A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:d3:e8:7b:ab:f1:a6:0b:de:33:ec:ff:f9:23:91:b1:af:c9: 75:30:4b:f6:9c:ea:13:5b:7f:d7:ff:5b:b3:91:8f:05:9f:ac: 9b:f0:84:f3:4b:2f:14:a8:14:c5:c8:fd:01:11:bc:64:7e:cb: ab:26:40:5a:21:d0:df:e8:1a:65:c5:c5:e9:70:8c:4d:1a:49: 36:e4:44:2e:eb:6e:2f:9c:2f:62:ac:45:ff:e6:66:d2:7b:d5: b9:47:6c:bb:ef:07:ee:f4:25:7f:25:7b:8d:58:91:99:ed:71: 1c:73:dd:e4:49:b6:57:27:75:d8:f6:a8:31:55:85:ce:21:60: 5b:70:db:04:94:05:d9:8d:84:18:38:9c:5a:1b:41:d4:47:75: df:22:d1:77:f2:e5:c8:a6:cd:48:cd:9e:5d:ab:4a:d7:a1:a7: c3:c3:fd:e4:da:86:fd:bd:07:13:8d:d1:96:e6:d9:22:10:4d: c0:06:06:07:9d:e9:04:3e:3c:d2:68:e9:e1:cc:5a:4c:71:a1: a8:de:e3:26:99:8e:26:74:eb:b0:fb:51:5d:37:2c:8f:7f:cc: 3b:c3:12:d6:21:1f:64:82:93:67:24:43:75:c7:4b:39:07:6c: 79:93:1a:a8:61:ab:ca:39:fe:30:28:e9:fc:2d:29:d8:d5:c7: 28:54:da:28 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTM3 QzZFRTJCMEVEMEFGODMyMTEwMkUzNEUxNEI2QTk3NkY3OTg5RDAeFw0yNTA4MDky MjEwMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2NDc2MjE2NUZDNURC MkZGMzc1QUI3REI4NUZBQTRDQzZGQUNBQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCj46XXMVgsigDdYj4Bdpbfa63Y5u+vAsCcfu0Elt4Nb1eF4hdC k/bX/CQ+pnlifttX0dPCjx7uk5TfQ8tMFjMBL9TpBn7/4S9wU3iVGbyYuiH4v8H+ XJA7azH2DysH44p5GxOPmimOt6tm0nIMOtCHtLAxcq1czryidfxfYQO5Tr9tplTl rAWrK6LvfScMKbj3XbxuvIdU82GtyJkHJe4k6Cppd01PSbLHFSvLAIUqH/kZCHAV 8l7c/VQJ18Yp1dJ4qv1s54twE5jTCj5LGeiIeOtKkREC+aqGYMSH6rJcVuD1PweD I4bpF3huXE46LC6/N6yeuhOmP8EIir4i8cDZAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUxkdiFl/F2y/zdat9uF+qTMb6yqQwHwYDVR0jBBgwFoAUo3xu4rDtCvgyEQLj ThS2qXb3mJ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28z eHU0ckR0Q3ZneUVRTGpUaFMycVhiM21KMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bzN4dTRyRHRDdmd5RVFMalRoUzJxWGIzbUowLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28zeHU0ckR0Q3ZneUVRTGpUaFMycVhi M21KMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBm0+h7q/Gm C94z7P/5I5Gxr8l1MEv2nOoTW3/X/1uzkY8Fn6yb8ITzSy8UqBTFyP0BEbxkfsur JkBaIdDf6BplxcXpcIxNGkk25EQu624vnC9irEX/5mbSe9W5R2y77wfu9CV/JXuN WJGZ7XEcc93kSbZXJ3XY9qgxVYXOIWBbcNsElAXZjYQYOJxaG0HUR3XfItF38uXI ps1IzZ5dq0rXoafDw/3k2ob9vQcTjdGW5tkiEE3ABgYHnekEPjzSaOnhzFpMcaGo 3uMmmY4mdOuw+1FdNyyPf8w7wxLWIR9kgpNnJEN1x0s5B2x5kxqoYavKOf4wKOn8 LSnY1ccoVNoo -----END CERTIFICATE-----Generated at Mon Aug 11 10:47:55 2025 by rpki-client