$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft File: IsUSmNl6ECkCcx_cSb36s51Sqys.mft (raw, json) Hash identifier: tE+izhaKQLlGaPlkt3nuaxumpQXEOkeIChQX70kDpAM= Subject key identifier: 90:9E:A4:E6:27:3D:85:BE:13:8C:CD:AB:C3:E0:C0:16:F0:39:30:DB Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 03E9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft Manifest number: 03DC Signing time: Tue 24 Jun 2025 16:30:03 +0000 Manifest this update: Tue 24 Jun 2025 16:30:03 +0000 Manifest next update: Thu 26 Jun 2025 16:30:03 +0000 Files and hashes: 1: IsUSmNl6ECkCcx_cSb36s51Sqys.crl (hash: xnu18gEk4tavyDycC/FPA6ppTwsIn3xgNOZEjaRAen4=) 2: bWwCw21pEtskGzyYMtXn1A2jQV0.roa (hash: M7ZnADyfVjVtnb1/eITXDzIgYLq7OpcdSp5rJDGWyww=) 3: zZ1WC-SmSKUMmKU_aG0kyKlf4Qc.roa (hash: iwxg2LNZggRq16yye7v8Az8Vj/590Tz07JA5bljtp6M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Jun 24 16:30:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=909EA4E6273D85BE138CCDABC3E0C016F03930DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:d6:62:d8:73:41:fe:f5:98:39:77:cb:58: c3:45:24:7c:ad:91:c7:3e:22:28:90:28:89:bf:76: 1f:28:22:21:fa:e0:5c:d0:f2:2c:28:12:ef:40:44: f8:0e:70:58:7d:9d:99:bc:ac:a4:76:78:8f:d9:9b: d7:99:94:06:7d:e4:01:11:3b:30:3c:88:f0:83:f1: 07:85:55:b3:16:a5:54:32:e4:25:26:2b:f7:44:ef: 57:7f:db:12:b8:60:80:4c:52:6b:ea:b0:4e:55:96: 0f:ca:62:51:71:e4:09:27:7c:39:7e:92:c8:5e:23: 9b:4f:0f:f7:14:08:46:9b:bc:22:30:9e:5f:28:d8: 11:85:a4:fe:94:2d:c0:76:03:f8:08:85:c4:bd:62: a5:92:88:9b:18:f9:d2:5a:dc:e7:ea:67:72:27:1e: c0:fb:12:5a:69:e8:89:84:e7:f6:0a:42:56:be:15: 86:03:7b:48:62:ce:eb:f6:80:d8:8e:ec:4a:7f:b4: c3:c9:12:ab:61:dd:b8:ee:25:a4:83:4a:d0:35:6c: 61:bf:89:21:dd:45:eb:ee:c6:9f:73:4d:94:9b:9f: 18:3d:f7:8a:a9:25:b1:95:c3:88:e3:83:ae:b8:79: 50:2b:79:21:d7:cb:c3:18:3b:8c:ab:d0:2a:cc:4d: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9E:A4:E6:27:3D:85:BE:13:8C:CD:AB:C3:E0:C0:16:F0:39:30:DB X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:57:dd:0f:17:e2:f4:46:9b:0e:91:26:ca:4c:83:c9:d8:83: d3:49:f8:6c:a5:ca:e8:83:e5:40:e6:43:1f:b1:b4:39:57:01: 0d:e7:3c:56:6f:92:7c:4d:dd:2d:c8:5f:b7:c4:ff:e8:cd:69: 7d:2b:d3:9a:b3:7e:3a:33:25:ed:e1:3e:8d:f9:cc:d2:2d:f9: 5c:18:16:78:29:e2:ef:02:f4:24:b3:6f:24:a5:d1:df:4d:66: 5d:bb:c6:5d:29:2c:1e:7b:01:07:3c:df:6f:3e:69:5e:5b:31: ce:2c:f6:3e:fd:33:b5:e7:5c:1d:a7:b3:4d:ec:ff:64:98:ba: 0d:13:c8:10:40:73:58:4c:7f:a4:81:bb:53:8b:90:94:5a:09: 94:4c:f2:ea:f3:8e:a7:ca:dc:c9:ea:61:43:49:cb:c7:5d:fc: 20:96:86:79:59:3c:76:bc:26:d6:ab:06:0b:84:35:1a:a1:b1: 2f:9f:96:df:c1:0f:70:30:b8:2a:c2:ee:63:8e:52:62:c4:79: a2:83:0c:cc:c0:fe:6c:22:8c:16:eb:c2:5b:a3:b1:e4:ca:f7: a2:d4:dd:ba:9c:f1:4a:ec:c7:ad:85:dc:a0:92:f1:f7:fa:93: 6d:1f:cb:55:57:54:a8:d5:65:22:a9:1e:ad:45:ad:8d:af:5d: 90:10:b9:3a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTA2MjQx NjMwMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkwOUVBNEU2MjczRDg1 QkUxMzhDQ0RBQkMzRTBDMDE2RjAzOTMwREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCspdZi2HNB/vWYOXfLWMNFJHytkcc+IiiQKIm/dh8oIiH64FzQ 8iwoEu9ARPgOcFh9nZm8rKR2eI/Zm9eZlAZ95AEROzA8iPCD8QeFVbMWpVQy5CUm K/dE71d/2xK4YIBMUmvqsE5Vlg/KYlFx5AknfDl+ksheI5tPD/cUCEabvCIwnl8o 2BGFpP6ULcB2A/gIhcS9YqWSiJsY+dJa3OfqZ3InHsD7Elpp6ImE5/YKQla+FYYD e0hizuv2gNiO7Ep/tMPJEqth3bjuJaSDStA1bGG/iSHdRevuxp9zTZSbnxg994qp JbGVw4jjg664eVAreSHXy8MYO4yr0CrMTYOhAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUkJ6k5ic9hb4TjM2rw+DAFvA5MNswHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy9Jc1VTbU5sNkVDa0NjeF9jU2Iz NnM1MVNxeXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbFfd Dxfi9EabDpEmykyDydiD00n4bKXK6IPlQOZDH7G0OVcBDec8Vm+SfE3dLchft8T/ 6M1pfSvTmrN+OjMl7eE+jfnM0i35XBgWeCni7wL0JLNvJKXR301mXbvGXSksHnsB Bzzfbz5pXlsxziz2Pv0ztedcHaezTez/ZJi6DRPIEEBzWEx/pIG7U4uQlFoJlEzy 6vOOp8rcyephQ0nLx138IJaGeVk8drwm1qsGC4Q1GqGxL5+W38EPcDC4KsLuY45S YsR5ooMMzMD+bCKMFuvCW6Ox5Mr3otTdupzxSuzHrYXcoJLx9/qTbR/LVVdUqNVl IqkerUWtja9dkBC5Og== -----END CERTIFICATE-----Generated at Tue Jun 24 20:39:28 2025 by rpki-client