$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft File: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft (raw, json) Hash identifier: 1uiMV7xST2F+vOGusq3Aju6IH0V6/kNGw1o/vGl3FH0= Subject key identifier: 7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Certificate serial: 024A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft Manifest number: 0232 Signing time: Tue 24 Jun 2025 10:02:26 +0000 Manifest this update: Tue 24 Jun 2025 10:02:26 +0000 Manifest next update: Thu 26 Jun 2025 10:02:26 +0000 Files and hashes: 1: 0Rck18Sn5SS8SfyvJLkkZlZ1ASA.roa (hash: BFUUdTK/ExzNrZ0gWJD6fh1807QOfq333o+RUVRfbtk=) 2: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl (hash: bsSE2dDFPS+Em+6jFSjPTNYkmmMlX85SShLoRiS9Ras=) 3: c4LoAVmfNvmmHmA5v26pvti8j0Y.roa (hash: F3QCsAdSCr76uq3OirACN7UfXUUV4dvPsA+GMj9iouk=) 4: wpX6wsavNL7YONNZwWtAT8-rF-o.roa (hash: 1TUgAazdDTIvfIn9ZyxuxyOSZgD0MUQEFLj1S7+g9QY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Validity Not Before: Jun 24 10:02:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7E05F3B79DC4FB26D97F93AE0ED83AD0C6ED6FCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:6f:7d:4c:d5:ab:35:eb:5c:6f:b2:6e:ae: 99:99:39:ad:76:b7:c8:aa:5d:e1:0f:0c:11:e4:da: 45:9d:db:f9:d3:c3:fc:05:21:d6:74:52:57:93:44: 54:30:37:b8:63:62:90:b4:15:88:82:ae:9d:4c:12: 52:09:66:7d:56:4e:bc:eb:78:85:b9:12:59:32:27: 65:08:14:0b:2a:95:69:59:e3:5a:e7:c3:8b:40:b9: 59:53:af:24:ca:2f:4f:2a:93:ae:1f:4e:89:70:57: bc:e1:99:90:9c:e4:7a:e5:a4:1b:37:28:bb:43:1d: e4:5c:e2:7f:3b:dc:65:cd:79:cb:44:c0:64:59:43: 88:bb:94:25:91:c6:5e:29:45:40:cd:11:d8:39:56: f7:a8:fd:f0:94:9d:0c:3c:1f:f8:70:29:4b:57:80: 4a:76:5f:63:fc:8f:66:e2:4a:72:e7:20:0c:8d:d0: dd:b5:23:9e:f4:04:1a:cd:6a:2c:73:d7:6f:70:b8: 1c:0d:8b:0b:60:d0:f5:bd:c5:7e:6b:1e:48:ce:c7: ff:76:66:83:8d:9b:3c:a2:ca:dc:64:cd:97:52:1f: ba:f0:90:27:33:c6:4c:bd:5c:97:90:8e:83:94:a6: 6e:6e:30:6d:ef:df:e2:e7:5f:ef:16:fb:85:98:18: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD X509v3 Authority Key Identifier: keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:15:ef:bf:fa:c0:ef:be:f2:2d:5b:53:44:7f:3a:d9:33:3c: 84:1b:2d:10:f6:cb:f4:00:7b:c2:7a:43:51:24:09:06:05:9a: 8a:f0:0b:bb:50:ca:c7:96:a2:33:34:64:45:49:bd:b6:d3:5f: 42:1a:3a:bd:bb:25:bb:29:86:a0:51:62:8e:14:e0:82:0b:cf: 4c:ac:a6:e7:e4:5f:60:f4:04:8e:03:62:f6:fb:73:9d:19:c4: 0d:51:9a:cd:49:b7:b6:06:44:6a:e2:eb:c1:38:eb:04:9f:15: 49:83:55:09:25:06:56:c3:d7:55:15:49:2b:85:2b:90:fa:e4: a9:cb:25:37:fd:f3:32:ec:26:8e:cf:fe:25:d7:18:20:90:6d: ca:10:ba:a6:82:bb:02:29:60:30:ef:0d:27:fa:ce:cf:64:c7: 83:e1:43:ed:d8:3c:4d:58:f0:8f:f1:71:a0:51:8e:2a:91:eb: 08:75:04:9f:b7:03:07:e1:65:e0:49:1e:75:6b:ad:6d:be:15: 35:b0:fe:29:69:74:10:02:d6:70:b3:22:c1:f8:93:da:40:d6: c4:dc:c1:d1:4b:6b:69:91:f3:74:9c:bb:2c:a8:32:d6:a6:a5: 85:ab:59:11:2a:37:b9:e7:d2:a1:66:6f:4b:ca:f9:55:b5:11: 5d:29:6f:44 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAkowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjI3 RDY3NUZGNUUyQzhCQTkwRjRCNjU1QjEwOEI2OTI1REFGMTU5NTAeFw0yNTA2MjQx MDAyMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFMDVGM0I3OURDNEZC MjZEOTdGOTNBRTBFRDgzQUQwQzZFRDZGQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEBG99TNWrNetcb7JurpmZOa12t8iqXeEPDBHk2kWd2/nTw/wF IdZ0UleTRFQwN7hjYpC0FYiCrp1MElIJZn1WTrzreIW5ElkyJ2UIFAsqlWlZ41rn w4tAuVlTryTKL08qk64fTolwV7zhmZCc5HrlpBs3KLtDHeRc4n873GXNectEwGRZ Q4i7lCWRxl4pRUDNEdg5Vveo/fCUnQw8H/hwKUtXgEp2X2P8j2biSnLnIAyN0N21 I570BBrNaixz129wuBwNiwtg0PW9xX5rHkjOx/92ZoONmzyiytxkzZdSH7rwkCcz xky9XJeQjoOUpm5uMG3v3+LnX+8W+4WYGANbAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUfgXzt53E+ybZf5OuDtg60Mbtb80wHwYDVR0jBBgwFoAUYn1nX/XiyLqQ9LZV sQi2kl2vFZUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1lu MW5YX1hpeUxxUTlMWlZzUWkya2wydkZaVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev WW4xblhfWGl5THFROUxaVnNRaTJrbDJ2RlpVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1luMW5YX1hpeUxxUTlMWlZzUWkya2wy dkZaVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBAFe+/+sDv vvItW1NEfzrZMzyEGy0Q9sv0AHvCekNRJAkGBZqK8Au7UMrHlqIzNGRFSb22019C Gjq9uyW7KYagUWKOFOCCC89MrKbn5F9g9ASOA2L2+3OdGcQNUZrNSbe2BkRq4uvB OOsEnxVJg1UJJQZWw9dVFUkrhSuQ+uSpyyU3/fMy7CaOz/4l1xggkG3KELqmgrsC KWAw7w0n+s7PZMeD4UPt2DxNWPCP8XGgUY4qkesIdQSftwMH4WXgSR51a61tvhU1 sP4paXQQAtZwsyLB+JPaQNbE3MHRS2tpkfN0nLssqDLWpqWFq1kRKje559KhZm9L yvlVtRFdKW9E -----END CERTIFICATE-----Generated at Tue Jun 24 20:55:04 2025 by rpki-client