$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft File: ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft (raw, json) Hash identifier: gqJ0giYc+nHK3+qjCJ9MeG/ymvfeFn4IyJiikXcxB5Y= Subject key identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B Certificate serial: 017E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft Manifest number: 0178 Signing time: Fri 09 May 2025 07:21:00 +0000 Manifest this update: Fri 09 May 2025 07:21:00 +0000 Manifest next update: Sun 11 May 2025 07:21:00 +0000 Files and hashes: 1: ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl (hash: gzLaRM9iYsF+4+kkEQp+xlyvkA9sfnldw2Znumb4k6c=) 2: nGGt_1FXjW212J1NlW4LWF04FtM.roa (hash: JU/uHW0qqtU6y2jTJrIN3YLok0mOFKez9GuKFHuWAL0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B Validity Not Before: May 9 07:21:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E47FBCD40D235E41A478A43BF6B373538DDCE923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:22:3e:e5:3f:8b:43:f4:34:70:bd:ba:23:7f: 64:b0:7f:cf:5a:be:ce:6f:d4:ca:b5:de:ca:a1:8e: 76:10:37:cd:f4:dc:0a:66:d0:c1:df:eb:31:a6:bd: 93:37:6f:4c:e7:99:ac:cb:4f:54:67:96:7e:f2:a0: 60:00:67:ee:22:ce:14:e7:5f:36:07:d2:51:30:0d: 14:3c:f4:aa:f9:31:2b:17:ab:a8:2d:63:97:ca:8a: 90:1b:81:3f:28:ea:03:bb:a0:00:66:f6:e3:de:02: a8:4d:60:95:8f:68:5c:42:4c:d5:32:79:66:94:d0: 0c:2c:8d:31:01:e6:b1:76:4e:08:cf:e3:42:36:eb: 07:bb:49:d5:80:b2:ac:0c:a0:ed:0d:09:dc:31:bf: b4:8f:7e:e5:6e:5b:b5:f1:f9:4c:44:0e:01:ed:05: bc:e6:de:de:d6:00:2d:09:8a:96:74:24:bf:5b:98: 38:6f:b2:8b:50:23:3f:7f:b0:02:7e:05:03:fe:e0: b0:8e:b9:90:98:d4:8a:9b:b0:05:6d:b6:22:86:66: 52:b8:73:5d:c6:a1:59:e0:e4:5a:1a:9c:83:0a:41: 05:e6:ee:f1:49:76:10:e0:a3:0d:69:88:7f:36:70: 83:d5:bc:b6:0f:94:92:34:58:ad:80:63:d0:ee:b3: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 X509v3 Authority Key Identifier: keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:40:84:84:90:87:c2:d6:30:22:62:ab:ef:b2:fc:22:fa:55: d2:02:45:18:d2:b1:d9:2a:d5:50:c3:0b:5b:e4:e6:51:15:5b: 8b:cc:d3:1f:c2:bb:4c:ed:85:bc:92:8c:46:44:73:60:f9:6d: 2c:a1:83:e4:f7:3d:06:e0:d7:b7:86:83:51:51:cf:3c:fe:1d: ee:db:00:01:a7:8d:55:09:d3:03:6a:e4:23:92:8f:04:91:c2: 66:aa:2c:b2:70:ea:59:53:44:8d:0d:f0:46:d9:11:d6:bc:5f: 20:c2:1d:9d:b7:31:75:49:0a:ae:c7:01:eb:d2:57:5e:0b:9c: 3a:fa:3e:c6:9c:f4:65:ed:7c:5c:09:d8:fe:a2:d5:22:40:ca: 0f:2c:96:88:47:56:d7:ba:36:58:41:4b:ea:fe:f4:1a:eb:ac: 78:58:b7:aa:b3:92:91:c9:00:3a:ee:fd:1c:13:33:26:a0:4f: 98:c3:79:e3:72:83:9f:a1:fa:0c:f2:36:db:28:2d:b1:9d:a4: 53:19:b4:22:f3:98:49:da:9f:bf:0e:ac:42:c9:5f:06:fe:99: 84:a8:64:31:cd:2f:25:76:bf:1d:7b:7f:b1:a0:f7:72:83:66: 95:78:35:4a:b6:ae:93:f8:c4:6b:0b:ed:cb:df:93:92:af:b2: c4:00:dd:fb -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEE1 N0Q2RjAzNTRFQTU4QTE0OTM1MkJGMjQzMzBENjYzMDcwMkY5QjAeFw0yNTA1MDkw NzIxMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0N0ZCQ0Q0MEQyMzVF NDFBNDc4QTQzQkY2QjM3MzUzOEREQ0U5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVIj7lP4tD9DRwvbojf2Swf89avs5v1Mq13sqhjnYQN8303Apm 0MHf6zGmvZM3b0znmazLT1Rnln7yoGAAZ+4izhTnXzYH0lEwDRQ89Kr5MSsXq6gt Y5fKipAbgT8o6gO7oABm9uPeAqhNYJWPaFxCTNUyeWaU0AwsjTEB5rF2TgjP40I2 6we7SdWAsqwMoO0NCdwxv7SPfuVuW7Xx+UxEDgHtBbzm3t7WAC0JipZ0JL9bmDhv sotQIz9/sAJ+BQP+4LCOuZCY1IqbsAVttiKGZlK4c13GoVng5FoanIMKQQXm7vFJ dhDgow1piH82cIPVvLYPlJI0WK2AY9Dus0WtAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU5H+81A0jXkGkeKQ79rNzU43c6SMwHwYDVR0jBBgwFoAUilfW8DVOpYoUk1K/ JDMNZjBwL5swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v aWxmVzhEVk9wWW9VazFLX0pETU5aakJ3TDVzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9pbGZXOERWT3BZb1VrMUtfSkRNTlpqQndMNXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi9pbGZXOERWT3BZb1VrMUtfSkRN TlpqQndMNXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlECE hJCHwtYwImKr77L8IvpV0gJFGNKx2SrVUMMLW+TmURVbi8zTH8K7TO2FvJKMRkRz YPltLKGD5Pc9BuDXt4aDUVHPPP4d7tsAAaeNVQnTA2rkI5KPBJHCZqossnDqWVNE jQ3wRtkR1rxfIMIdnbcxdUkKrscB69JXXgucOvo+xpz0Ze18XAnY/qLVIkDKDyyW iEdW17o2WEFL6v70GuuseFi3qrOSkckAOu79HBMzJqBPmMN543KDn6H6DPI22ygt sZ2kUxm0IvOYSdqfvw6sQslfBv6ZhKhkMc0vJXa/HXt/saD3coNmlXg1Srauk/jE awvty9+Tkq+yxADd+w== -----END CERTIFICATE-----Generated at Sat May 10 01:40:03 2025 by rpki-client