$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft File: Z3gr2kgldGOtzabXLy7kG1_ZShE.mft (raw, json) Hash identifier: iIZWdeXMFr2HvCqJ1kbz7z7NomPXHiFzouPnpYQoC8w= Subject key identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 Authority key identifier: 67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 Certificate issuer: /CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Certificate serial: 0FE7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft Manifest number: 0FD1 Signing time: Sat 09 Aug 2025 21:11:16 +0000 Manifest this update: Sat 09 Aug 2025 21:11:16 +0000 Manifest next update: Mon 11 Aug 2025 21:11:16 +0000 Files and hashes: 1: 24PrChtalK_fMOIIGNeP3NcNpxQ.roa (hash: 3bIrKqvOeei9ua6lyO9qDEIZzjD2j/RMBdOGQyoxw8g=) 2: Z3gr2kgldGOtzabXLy7kG1_ZShE.crl (hash: oMZs/I9B1gtU3076Ia+D0a8b9N8eMJnSU+topiwLT/c=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4071 (0xfe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Validity Not Before: Aug 9 21:11:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E0E70F63546DF8BC7C14185082C052D16A84AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:1f:19:fd:a1:a0:86:7a:d0:8f:91:43:cd: 92:06:58:14:7b:3c:94:a0:fa:89:07:a3:1a:b0:d0: 77:e4:d0:30:88:d9:18:04:e3:6e:98:ef:b6:a5:6d: 37:86:70:7d:a7:b3:a3:af:aa:af:b3:c8:64:65:4b: 6f:ff:01:33:c9:19:29:ec:68:ea:da:e7:6e:4e:63: bc:ea:c3:f7:6b:ef:55:9e:06:02:00:94:3f:27:5f: 6c:7e:82:c5:36:5a:77:6c:35:12:bc:bf:aa:3d:99: fa:00:ab:c1:be:4b:4f:5f:31:38:c7:6d:0e:01:5d: 2e:aa:cd:47:49:83:4e:6e:40:82:21:f5:f9:70:3e: 97:b5:e1:89:3c:ba:be:4f:94:b3:5d:3a:0d:05:61: 80:67:5e:f2:31:91:5d:eb:8a:79:23:cf:36:ec:5e: 7b:dd:96:f5:3d:8d:85:1a:32:9d:76:48:42:33:74: 54:38:b2:31:d0:b4:5b:df:f1:c2:86:18:7c:55:20: ff:00:cf:9e:58:39:a0:fd:3c:c2:0f:06:26:a7:2c: f3:e1:be:58:c3:30:34:21:c4:63:9e:f9:84:0f:7b: 9b:b2:39:7f:4b:11:ba:48:b6:96:6d:79:69:ba:df: 15:46:48:b1:75:00:86:47:f9:e7:66:f2:02:ce:d2: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 X509v3 Authority Key Identifier: keyid:67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:bf:03:1d:85:8b:38:6f:c2:03:2b:1b:1c:48:98:e6:75:be: 10:40:32:89:a6:fb:f4:3b:50:1b:da:c5:cc:28:43:a0:75:2d: 2f:75:3e:71:74:74:f0:3b:0d:88:ae:3a:25:a7:06:94:fa:ae: a4:ad:e5:d4:f3:db:ca:7c:86:d6:65:81:58:f2:58:e9:fa:b1: 79:c0:65:51:1f:81:1e:1b:86:63:65:1e:2e:41:48:ac:97:16: cc:b6:42:67:9d:2d:d2:cd:15:4f:bd:8d:1c:f9:b8:cb:9e:36: b1:96:94:7e:be:d5:74:06:a9:aa:c1:d9:1b:d2:60:50:f6:7a: b1:7e:be:0f:88:6b:59:d9:20:94:71:04:17:9c:33:4d:4e:6b: be:31:6d:e2:49:fb:8a:99:c8:c1:3d:0c:47:38:71:2c:a7:c3: 5e:37:8b:df:ad:23:4c:57:18:e5:c6:3b:b8:6f:33:dd:b3:cc: 3d:ed:e4:6a:42:a5:5d:d8:9b:6c:2d:72:98:dc:67:42:58:6c: e0:b4:42:21:9d:56:b1:51:83:26:61:37:1b:4a:c3:68:82:47: f9:85:6f:4c:a0:77:34:d6:d4:8d:d6:81:59:e9:2a:de:3f:02: 36:da:24:69:7f:11:af:f7:8e:18:8c:e6:b7:97:39:93:bb:22: f8:0b:0d:32 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICD+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjc3 ODJCREE0ODI1NzQ2M0FEQ0RBNkQ3MkYyRUU0MUI1RkQ5NEExMTAeFw0yNTA4MDky MTExMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFMEU3MEY2MzU0NkRG OEJDN0MxNDE4NTA4MkMwNTJEMTZBODRBQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HB8Z/aGghnrQj5FDzZIGWBR7PJSg+okHoxqw0Hfk0DCI2RgE 426Y77albTeGcH2ns6Ovqq+zyGRlS2//ATPJGSnsaOra525OY7zqw/dr71WeBgIA lD8nX2x+gsU2WndsNRK8v6o9mfoAq8G+S09fMTjHbQ4BXS6qzUdJg05uQIIh9flw Ppe14Yk8ur5PlLNdOg0FYYBnXvIxkV3rinkjzzbsXnvdlvU9jYUaMp12SEIzdFQ4 sjHQtFvf8cKGGHxVIP8Az55YOaD9PMIPBianLPPhvljDMDQhxGOe+YQPe5uyOX9L EbpItpZteWm63xVGSLF1AIZH+edm8gLO0jKdAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUHg5w9jVG34vHwUGFCCwFLRaoSsQwHwYDVR0jBBgwFoAUZ3gr2kgldGOtzabX Ly7kG1/ZShEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DTE9V RC9aM2dyMmtnbGRHT3R6YWJYTHk3a0cxX1pTaEUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ozZ3Iya2dsZEdPdHphYlhMeTdrRzFfWlNoRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lNQ0xPVUQvWjNncjJrZ2xkR090emFi WEx5N2tHMV9aU2hFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AEy/Ax2FizhvwgMrGxxImOZ1vhBAMomm+/Q7UBvaxcwoQ6B1LS91PnF0dPA7DYiu OiWnBpT6rqSt5dTz28p8htZlgVjyWOn6sXnAZVEfgR4bhmNlHi5BSKyXFsy2Qmed LdLNFU+9jRz5uMueNrGWlH6+1XQGqarB2RvSYFD2erF+vg+Ia1nZIJRxBBecM01O a74xbeJJ+4qZyME9DEc4cSynw143i9+tI0xXGOXGO7hvM92zzD3t5GpCpV3Ym2wt cpjcZ0JYbOC0QiGdVrFRgyZhNxtKw2iCR/mFb0ygdzTW1I3WgVnpKt4/AjbaJGl/ Ea/3jhiM5reXOZO7IvgLDTI= -----END CERTIFICATE-----Generated at Mon Aug 11 10:32:01 2025 by rpki-client