$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft File: fhfZI6oLxrCgi1oYe-6crejVDq8.mft (raw, json) Hash identifier: aNtyeNqpO7WwjpVA2mOybVconRGgkLo0w/GyxG5UStI= Subject key identifier: 8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 03B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft Manifest number: 0398 Signing time: Sat 21 Jun 2025 10:00:29 +0000 Manifest this update: Sat 21 Jun 2025 10:00:29 +0000 Manifest next update: Mon 23 Jun 2025 10:00:29 +0000 Files and hashes: 1: -KVZdqfw1TN2i3nKOLqdm-ysA2M.roa (hash: W3vzqLxl+G2vFqFdjTKRgAjHgXzMOpK0YktXUFQmCa4=) 2: 3KvH1C10YjGR_CTiq0Paig8OeNA.roa (hash: jpMT0FBGX4b9lxXoNgglyy9sj59EWhuBhZq2UJaa1ec=) 3: _JKYKOMP8fAan4-aCND8lEV2y00.roa (hash: G512pV6KSHYqRDz0AOB6d945lCqdxHqUSGgqEMzWHNA=) 4: eeR-mAu1VZVCqx0Do0kWOfN1PGY.roa (hash: u9QfT1pYfOnpnVGdwzeDUB/6vx8Me97dZIKPWbDuGjI=) 5: fhfZI6oLxrCgi1oYe-6crejVDq8.crl (hash: jczamIq2AUSmuCBI9QR8a1//aTYQ8seDHmrnvujfwzg=) 6: jd0kF1vNgBYUjmPvxIAJhPf-jCc.roa (hash: FeRX4AVR2piyJdpYT+x7RHXTiaCulresY6GRiRbvQoY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 13:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Jun 21 10:00:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F2938B77D183341E78D0634733686AFC3EB0CE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bd:d5:fc:40:18:6f:d9:55:36:f2:f7:b3:9e: f6:07:fb:50:4b:28:74:dc:2c:5d:cc:06:a6:36:f1: fa:ed:3d:1d:3c:8a:57:57:5d:df:96:18:8d:1e:d0: b2:57:60:65:65:00:b7:8f:51:d5:2b:df:db:5c:0b: b5:9e:f8:45:58:da:2b:15:8a:2e:ef:0b:c1:69:ea: 4f:de:47:eb:f4:14:63:52:fc:bd:d0:6f:76:d9:9c: 01:94:50:df:fc:0c:d8:fc:18:53:63:9f:d4:99:d9: 47:52:1c:95:46:57:dc:eb:3a:e0:33:b4:ac:cd:8c: e0:83:58:de:d9:b6:1f:0a:7c:7f:87:4d:d9:7c:2c: 9b:b7:69:6b:17:75:fd:fd:f4:a0:c5:a3:e9:85:0a: 93:f8:c0:3a:00:65:05:81:22:d7:3a:94:c1:8e:3d: 50:cb:62:84:24:69:5c:3d:ec:eb:52:37:4e:65:d5: aa:e3:b1:38:2b:93:77:54:9d:89:50:f0:91:9a:44: d7:27:8f:83:5f:ef:b2:54:af:b2:59:57:59:92:64: d3:c4:17:7c:d4:b6:55:ae:78:8d:2f:f3:33:84:c8: fe:b2:36:73:9d:41:01:ca:30:bb:02:87:58:b4:09: c7:9c:09:22:5d:f5:bb:ed:ae:ba:e0:17:f9:df:d3: c0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6 X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:12:e7:19:67:b2:fd:86:25:5b:3c:63:ed:bf:ed:7d:cf:01: 78:6b:79:ad:69:f1:29:02:b1:ad:40:33:65:f3:e2:00:35:e1: 9d:25:1a:da:05:f3:33:1c:d6:51:de:82:01:8d:1e:70:52:3b: 87:91:23:10:4e:5e:ca:a8:41:72:0a:f4:9b:89:fc:5b:74:75: e6:03:43:51:ba:b1:19:72:f7:d2:96:e5:8f:89:03:96:08:33: 6c:b6:09:da:67:0f:0b:c5:fd:a0:1c:9a:8a:ca:bc:2e:f8:0b: fe:83:ae:e9:87:45:3c:11:fd:2b:34:3a:b4:13:96:1a:5d:16: ff:36:ec:77:e1:ce:9a:2f:fa:1d:0c:f3:2c:8b:e8:cd:e0:48: 7d:d5:23:27:e1:3f:d2:9a:7c:61:f2:db:64:3a:6b:57:13:ab: 81:0f:e3:b4:3d:8a:13:72:c0:7b:0d:1a:c1:f4:33:c3:87:fe: 2a:06:61:d4:54:f5:3f:a6:1c:98:50:8c:2a:68:2e:76:95:d8: a4:7a:8c:c0:5c:83:db:f0:25:4b:f5:78:13:a0:b1:01:13:c8: fd:91:b2:6b:c1:56:aa:99:ec:f3:77:58:19:bb:74:b6:a8:02: 5c:2f:68:8a:b8:90:3c:6c:2b:67:ba:8a:8d:e9:3a:a0:e8:b1: 09:4e:6a:4f -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNTA2MjEx MDAwMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGMjkzOEI3N0QxODMz NDFFNzhEMDYzNDczMzY4NkFGQzNFQjBDRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSvdX8QBhv2VU28veznvYH+1BLKHTcLF3MBqY28frtPR08ildX Xd+WGI0e0LJXYGVlALePUdUr39tcC7We+EVY2isVii7vC8Fp6k/eR+v0FGNS/L3Q b3bZnAGUUN/8DNj8GFNjn9SZ2UdSHJVGV9zrOuAztKzNjOCDWN7Zth8KfH+HTdl8 LJu3aWsXdf399KDFo+mFCpP4wDoAZQWBItc6lMGOPVDLYoQkaVw97OtSN05l1arj sTgrk3dUnYlQ8JGaRNcnj4Nf77JUr7JZV1mSZNPEF3zUtlWueI0v8zOEyP6yNnOd QQHKMLsCh1i0CcecCSJd9bvtrrrgF/nf08AjAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUjyk4t30YM0HnjQY0czaGr8PrDOYwHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL2ZoZlpJNm9MeHJDZ2kxb1ll LTZjcmVqVkRxOC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAc EucZZ7L9hiVbPGPtv+19zwF4a3mtafEpArGtQDNl8+IANeGdJRraBfMzHNZR3oIB jR5wUjuHkSMQTl7KqEFyCvSbifxbdHXmA0NRurEZcvfSluWPiQOWCDNstgnaZw8L xf2gHJqKyrwu+Av+g67ph0U8Ef0rNDq0E5YaXRb/Nux34c6aL/odDPMsi+jN4Eh9 1SMn4T/Smnxh8ttkOmtXE6uBD+O0PYoTcsB7DRrB9DPDh/4qBmHUVPU/phyYUIwq aC52ldikeozAXIPb8CVL9XgToLEBE8j9kbJrwVaqmezzd1gZu3S2qAJcL2iKuJA8 bCtnuoqN6Tqg6LEJTmpP -----END CERTIFICATE-----Generated at Sun Jun 22 09:43:29 2025 by rpki-client