$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft (raw, json) Hash identifier: 90lHH78m0pao7qaLF721/qNjAV1C9qgKh3heW17n7CE= Subject key identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 0184 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft Manifest number: 0179 Signing time: Fri 09 May 2025 07:21:00 +0000 Manifest this update: Fri 09 May 2025 07:21:00 +0000 Manifest next update: Sun 11 May 2025 07:21:00 +0000 Files and hashes: 1: 1eSfSntra-ca5Lr8nUQ1zK5nOOU.roa (hash: 6/YXwZoj2PwcoCAykO7n382MAN5eiVvhL55SSSkIfRs=) 2: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl (hash: dAH047glQ/+boPrwI/dfKKREwxqm83o9By0CIzPlgyI=) 3: Hl6hGPRaL0pe61IMQ_nAGVfhRMU.roa (hash: NVIRzL71UVNo7abnEO4Mncia6Xlu9bPWr+FJDUx0/Uc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: May 9 07:21:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=721BD71397601F82691E128A2782C35B4FC3AC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:dd:8e:40:a6:72:e5:c1:f7:b8:37:1b:68: c8:64:1b:d0:2a:24:ac:4d:57:74:67:03:07:e8:a4: 6b:2b:d7:0b:62:1b:78:1f:73:05:95:f3:23:86:27: 5f:9b:ab:4a:67:34:ea:8a:1d:12:78:76:b0:df:78: 86:eb:a3:a8:31:65:3c:48:08:da:6c:06:fe:5c:6a: 59:16:be:af:39:2d:60:6a:ad:be:7e:15:e4:0c:81: cf:e8:05:89:05:3e:cd:f7:7d:9a:9b:c0:02:55:4c: f1:4a:ef:73:ff:0d:d8:16:f2:58:b4:a5:b7:5f:d3: f6:a1:18:77:ce:48:4a:7c:ee:bf:cf:a8:34:82:a8: b5:a0:d3:1f:6d:86:8b:9c:b2:0b:2e:4d:f0:60:4f: 3f:b7:c4:91:cb:07:70:f1:dd:82:da:5d:b8:a5:21: 1a:9f:5e:7c:87:30:4a:0a:a2:c7:4f:61:d0:b7:43: de:db:c8:20:05:7d:e6:ce:b8:17:3f:85:cd:b9:0f: de:cf:7c:ce:63:7a:25:28:3e:81:5d:85:cf:eb:7d: 48:e1:44:22:52:cb:32:95:aa:70:a3:42:df:98:23: 4d:ca:fe:70:4c:d0:9a:24:ff:b9:23:f4:6c:7c:b4: 42:39:a5:82:b2:11:58:a7:e7:6c:3c:c8:ad:1d:24: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:61:84:02:8f:26:5d:3a:8d:71:c2:d8:17:ea:08:dc:87:2c: 95:1b:98:a4:79:6c:74:f8:e9:8b:91:88:5a:5d:71:d3:c9:f3: 77:49:f1:c2:85:f9:70:33:b5:8d:d3:b9:10:e4:5a:77:64:a7: 27:35:83:dd:a4:62:6a:bb:1f:05:a6:29:df:5f:ac:1f:18:b0: 3c:c2:94:52:51:33:cd:02:54:a8:f2:09:73:fa:ac:e7:52:f6: 3a:45:80:fc:76:40:75:c2:8f:84:c6:b9:b6:7a:2e:3b:96:65: 54:0b:7b:fe:1a:ec:bf:1d:f3:b1:8b:8e:19:6b:3b:ec:99:43: 98:8b:ca:40:9b:aa:dd:fb:74:3d:b4:87:3c:10:67:af:e2:52: 4d:16:c0:48:c9:70:42:9c:c1:30:fe:85:98:07:d5:52:36:39: 47:68:53:e3:03:3b:87:3d:a6:ca:a1:67:f7:f0:c1:7b:78:91: 16:cf:05:b9:71:23:2c:28:88:e3:54:84:2e:db:ed:a2:1f:8d: 32:6e:9c:c3:93:fa:dd:50:4b:ca:3a:cb:23:1e:c8:17:91:22: ea:08:c2:e7:2d:53:2e:a2:6c:0a:90:79:d1:60:0c:2c:eb:98: 20:51:c4:53:6b:1b:c3:da:74:bb:03:4f:7c:35:06:62:08:d3: 0a:f7:28:2c -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDk2 NkI1NTkwOTMyNDE4MEE4OEE0NUUxRjY4M0NGNEQyRUQ5QkNBNTAeFw0yNTA1MDkw NzIxMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcyMUJENzEzOTc2MDFG ODI2OTFFMTI4QTI3ODJDMzVCNEZDM0FDNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdhd2OQKZy5cH3uDcbaMhkG9AqJKxNV3RnAwfopGsr1wtiG3gf cwWV8yOGJ1+bq0pnNOqKHRJ4drDfeIbro6gxZTxICNpsBv5calkWvq85LWBqrb5+ FeQMgc/oBYkFPs33fZqbwAJVTPFK73P/DdgW8li0pbdf0/ahGHfOSEp87r/PqDSC qLWg0x9thoucsgsuTfBgTz+3xJHLB3Dx3YLaXbilIRqfXnyHMEoKosdPYdC3Q97b yCAFfebOuBc/hc25D97PfM5jeiUoPoFdhc/rfUjhRCJSyzKVqnCjQt+YI03K/nBM 0Jok/7kj9Gx8tEI5pYKyEVin52w8yK0dJMenAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUchvXE5dgH4JpHhKKJ4LDW0/DrEAwHwYDVR0jBBgwFoAU2Wa1WQkyQYCoikXh 9oPPTS7ZvKUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v MldhMVdRa3lRWUNvaWtYaDlvUFBUUzdadktVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8yV2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8yV2ExV1FreVFZQ29pa1hoOW9Q UFRTN1p2S1UubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEArGGE Ao8mXTqNccLYF+oI3IcslRuYpHlsdPjpi5GIWl1x08nzd0nxwoX5cDO1jdO5EORa d2SnJzWD3aRiarsfBaYp31+sHxiwPMKUUlEzzQJUqPIJc/qs51L2OkWA/HZAdcKP hMa5tnouO5ZlVAt7/hrsvx3zsYuOGWs77JlDmIvKQJuq3ft0PbSHPBBnr+JSTRbA SMlwQpzBMP6FmAfVUjY5R2hT4wM7hz2myqFn9/DBe3iRFs8FuXEjLCiI41SELtvt oh+NMm6cw5P63VBLyjrLIx7IF5Ei6gjC5y1TLqJsCpB50WAMLOuYIFHEU2sbw9p0 uwNPfDUGYgjTCvcoLA== -----END CERTIFICATE-----Generated at Sat May 10 00:12:53 2025 by rpki-client