$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft File: ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft (raw, json) Hash identifier: Xvc7LW3ylvnIn7ckSo+swCkGHos/anHGkiCARN1BxHY= Subject key identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B Certificate serial: 01BC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft Manifest number: 01B6 Signing time: Sun 10 Aug 2025 07:39:58 +0000 Manifest this update: Sun 10 Aug 2025 07:39:58 +0000 Manifest next update: Tue 12 Aug 2025 07:39:58 +0000 Files and hashes: 1: ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl (hash: tEGNAlLRgyJGryUPZae/nEx6mM5WuYTf0B3Gk1cGZjk=) 2: nGGt_1FXjW212J1NlW4LWF04FtM.roa (hash: JU/uHW0qqtU6y2jTJrIN3YLok0mOFKez9GuKFHuWAL0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B Validity Not Before: Aug 10 07:39:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E47FBCD40D235E41A478A43BF6B373538DDCE923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:22:3e:e5:3f:8b:43:f4:34:70:bd:ba:23:7f: 64:b0:7f:cf:5a:be:ce:6f:d4:ca:b5:de:ca:a1:8e: 76:10:37:cd:f4:dc:0a:66:d0:c1:df:eb:31:a6:bd: 93:37:6f:4c:e7:99:ac:cb:4f:54:67:96:7e:f2:a0: 60:00:67:ee:22:ce:14:e7:5f:36:07:d2:51:30:0d: 14:3c:f4:aa:f9:31:2b:17:ab:a8:2d:63:97:ca:8a: 90:1b:81:3f:28:ea:03:bb:a0:00:66:f6:e3:de:02: a8:4d:60:95:8f:68:5c:42:4c:d5:32:79:66:94:d0: 0c:2c:8d:31:01:e6:b1:76:4e:08:cf:e3:42:36:eb: 07:bb:49:d5:80:b2:ac:0c:a0:ed:0d:09:dc:31:bf: b4:8f:7e:e5:6e:5b:b5:f1:f9:4c:44:0e:01:ed:05: bc:e6:de:de:d6:00:2d:09:8a:96:74:24:bf:5b:98: 38:6f:b2:8b:50:23:3f:7f:b0:02:7e:05:03:fe:e0: b0:8e:b9:90:98:d4:8a:9b:b0:05:6d:b6:22:86:66: 52:b8:73:5d:c6:a1:59:e0:e4:5a:1a:9c:83:0a:41: 05:e6:ee:f1:49:76:10:e0:a3:0d:69:88:7f:36:70: 83:d5:bc:b6:0f:94:92:34:58:ad:80:63:d0:ee:b3: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 X509v3 Authority Key Identifier: keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:0d:87:6e:de:23:07:98:27:1d:ef:e7:10:1d:b3:eb:af:1c: fe:c6:f9:a2:9b:4a:e6:a0:43:54:cb:1c:ad:bc:e1:03:29:32: 2e:85:54:d6:c4:db:f2:e8:1f:57:ee:de:62:a8:9e:23:6e:3a: 36:ae:2e:cd:22:21:c6:e2:06:9f:56:78:ee:13:58:01:e5:e7: 78:e1:61:e1:c7:fb:af:4f:aa:01:78:21:a7:60:d2:bd:04:31: e5:13:cc:90:2e:83:99:a4:74:49:cc:d1:a2:07:4b:c3:36:21: e3:9c:3e:ad:a7:15:a5:e7:5f:6e:33:5d:65:0c:fc:08:77:10: 78:fc:22:78:cd:8e:72:e7:41:70:5e:32:44:d5:af:67:34:dc: 2e:0c:0d:2b:32:f0:d3:76:38:fb:87:a7:d7:74:dd:44:73:e1: 91:30:61:aa:66:1d:74:3c:47:02:15:ea:b9:a1:29:ef:7e:2e: 23:b2:5c:fd:ae:2d:98:06:6a:b3:ab:94:02:7b:62:a7:47:d6: be:48:20:ef:88:8d:0c:90:cb:8c:cf:b7:d4:85:bf:0c:a7:be: 75:1d:98:71:71:c6:e3:e4:32:2e:0f:86:48:30:d7:a7:55:a7: 72:8c:68:61:46:83:01:c2:20:d2:73:a6:77:61:48:3e:b2:00: fc:ec:a5:ae -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEE1 N0Q2RjAzNTRFQTU4QTE0OTM1MkJGMjQzMzBENjYzMDcwMkY5QjAeFw0yNTA4MTAw NzM5NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0N0ZCQ0Q0MEQyMzVF NDFBNDc4QTQzQkY2QjM3MzUzOEREQ0U5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVIj7lP4tD9DRwvbojf2Swf89avs5v1Mq13sqhjnYQN8303Apm 0MHf6zGmvZM3b0znmazLT1Rnln7yoGAAZ+4izhTnXzYH0lEwDRQ89Kr5MSsXq6gt Y5fKipAbgT8o6gO7oABm9uPeAqhNYJWPaFxCTNUyeWaU0AwsjTEB5rF2TgjP40I2 6we7SdWAsqwMoO0NCdwxv7SPfuVuW7Xx+UxEDgHtBbzm3t7WAC0JipZ0JL9bmDhv sotQIz9/sAJ+BQP+4LCOuZCY1IqbsAVttiKGZlK4c13GoVng5FoanIMKQQXm7vFJ dhDgow1piH82cIPVvLYPlJI0WK2AY9Dus0WtAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU5H+81A0jXkGkeKQ79rNzU43c6SMwHwYDVR0jBBgwFoAUilfW8DVOpYoUk1K/ JDMNZjBwL5swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v aWxmVzhEVk9wWW9VazFLX0pETU5aakJ3TDVzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9pbGZXOERWT3BZb1VrMUtfSkRNTlpqQndMNXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi9pbGZXOERWT3BZb1VrMUtfSkRN TlpqQndMNXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfw2H bt4jB5gnHe/nEB2z668c/sb5optK5qBDVMscrbzhAykyLoVU1sTb8ugfV+7eYqie I246Nq4uzSIhxuIGn1Z47hNYAeXneOFh4cf7r0+qAXghp2DSvQQx5RPMkC6DmaR0 SczRogdLwzYh45w+racVpedfbjNdZQz8CHcQePwieM2OcudBcF4yRNWvZzTcLgwN KzLw03Y4+4en13TdRHPhkTBhqmYddDxHAhXquaEp734uI7Jc/a4tmAZqs6uUAnti p0fWvkgg74iNDJDLjM+31IW/DKe+dR2YcXHG4+QyLg+GSDDXp1WncoxoYUaDAcIg 0nOmd2FIPrIA/Oylrg== -----END CERTIFICATE-----Generated at Mon Aug 11 10:38:07 2025 by rpki-client