$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft File: ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft (raw, json) Hash identifier: Ikk19PMAw80BIhaveJe9ue71AryJ/Pl5buNJsyjjxTI= Subject key identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B Certificate serial: 019D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft Manifest number: 0197 Signing time: Tue 24 Jun 2025 19:30:19 +0000 Manifest this update: Tue 24 Jun 2025 19:30:19 +0000 Manifest next update: Thu 26 Jun 2025 19:30:19 +0000 Files and hashes: 1: ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl (hash: XOLbSZn2mKjhvwnMdkVTO1voXoDN1lGxjU69BYEx9jc=) 2: nGGt_1FXjW212J1NlW4LWF04FtM.roa (hash: JU/uHW0qqtU6y2jTJrIN3YLok0mOFKez9GuKFHuWAL0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B Validity Not Before: Jun 24 19:30:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E47FBCD40D235E41A478A43BF6B373538DDCE923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:22:3e:e5:3f:8b:43:f4:34:70:bd:ba:23:7f: 64:b0:7f:cf:5a:be:ce:6f:d4:ca:b5:de:ca:a1:8e: 76:10:37:cd:f4:dc:0a:66:d0:c1:df:eb:31:a6:bd: 93:37:6f:4c:e7:99:ac:cb:4f:54:67:96:7e:f2:a0: 60:00:67:ee:22:ce:14:e7:5f:36:07:d2:51:30:0d: 14:3c:f4:aa:f9:31:2b:17:ab:a8:2d:63:97:ca:8a: 90:1b:81:3f:28:ea:03:bb:a0:00:66:f6:e3:de:02: a8:4d:60:95:8f:68:5c:42:4c:d5:32:79:66:94:d0: 0c:2c:8d:31:01:e6:b1:76:4e:08:cf:e3:42:36:eb: 07:bb:49:d5:80:b2:ac:0c:a0:ed:0d:09:dc:31:bf: b4:8f:7e:e5:6e:5b:b5:f1:f9:4c:44:0e:01:ed:05: bc:e6:de:de:d6:00:2d:09:8a:96:74:24:bf:5b:98: 38:6f:b2:8b:50:23:3f:7f:b0:02:7e:05:03:fe:e0: b0:8e:b9:90:98:d4:8a:9b:b0:05:6d:b6:22:86:66: 52:b8:73:5d:c6:a1:59:e0:e4:5a:1a:9c:83:0a:41: 05:e6:ee:f1:49:76:10:e0:a3:0d:69:88:7f:36:70: 83:d5:bc:b6:0f:94:92:34:58:ad:80:63:d0:ee:b3: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7F:BC:D4:0D:23:5E:41:A4:78:A4:3B:F6:B3:73:53:8D:DC:E9:23 X509v3 Authority Key Identifier: keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:78:ff:c4:c7:3f:16:53:18:61:c4:38:6b:15:f0:11:bb:4c: 93:50:8d:1d:5a:9f:3c:b6:9b:ee:68:51:6d:c1:67:d5:83:9e: 25:1f:70:71:40:20:fa:64:07:be:dd:d0:a1:4b:07:d0:1d:78: 48:e5:ae:a7:91:2a:5a:0f:a1:57:be:e6:2f:bf:08:49:03:90: 96:7e:e6:5d:48:f6:fe:88:71:73:68:ed:0a:65:a8:27:e0:7e: 34:97:5d:af:ad:2c:70:49:1d:86:9f:62:b8:e2:bd:56:b0:30: b7:15:38:70:40:a5:67:ed:a1:50:10:b6:b6:f5:db:b0:18:0f: ee:3e:c0:d5:54:70:4f:30:c4:fa:2b:7e:e9:04:52:ab:c4:38: b2:44:79:d0:db:83:19:60:2d:ad:92:80:e7:bf:3b:c3:27:dc: a9:2b:52:77:f6:d2:41:fe:63:e2:e3:28:6a:99:7c:d9:13:af: 50:94:be:65:02:a8:5b:3a:5f:60:55:a3:e2:89:6d:ee:f3:3a: 98:ad:e3:05:6e:60:a5:1d:29:e3:d1:b1:c0:4c:82:11:95:21: 1c:9f:82:e9:07:6a:05:3c:57:8a:a7:40:06:7b:65:31:7a:71: 97:93:02:96:a7:97:04:90:16:ad:8d:26:dd:b6:03:6f:35:ff: 13:04:4c:9b -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEE1 N0Q2RjAzNTRFQTU4QTE0OTM1MkJGMjQzMzBENjYzMDcwMkY5QjAeFw0yNTA2MjQx OTMwMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0N0ZCQ0Q0MEQyMzVF NDFBNDc4QTQzQkY2QjM3MzUzOEREQ0U5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVIj7lP4tD9DRwvbojf2Swf89avs5v1Mq13sqhjnYQN8303Apm 0MHf6zGmvZM3b0znmazLT1Rnln7yoGAAZ+4izhTnXzYH0lEwDRQ89Kr5MSsXq6gt Y5fKipAbgT8o6gO7oABm9uPeAqhNYJWPaFxCTNUyeWaU0AwsjTEB5rF2TgjP40I2 6we7SdWAsqwMoO0NCdwxv7SPfuVuW7Xx+UxEDgHtBbzm3t7WAC0JipZ0JL9bmDhv sotQIz9/sAJ+BQP+4LCOuZCY1IqbsAVttiKGZlK4c13GoVng5FoanIMKQQXm7vFJ dhDgow1piH82cIPVvLYPlJI0WK2AY9Dus0WtAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU5H+81A0jXkGkeKQ79rNzU43c6SMwHwYDVR0jBBgwFoAUilfW8DVOpYoUk1K/ JDMNZjBwL5swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v aWxmVzhEVk9wWW9VazFLX0pETU5aakJ3TDVzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9pbGZXOERWT3BZb1VrMUtfSkRNTlpqQndMNXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi9pbGZXOERWT3BZb1VrMUtfSkRN TlpqQndMNXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsXj/ xMc/FlMYYcQ4axXwEbtMk1CNHVqfPLab7mhRbcFn1YOeJR9wcUAg+mQHvt3QoUsH 0B14SOWup5EqWg+hV77mL78ISQOQln7mXUj2/ohxc2jtCmWoJ+B+NJddr60scEkd hp9iuOK9VrAwtxU4cEClZ+2hUBC2tvXbsBgP7j7A1VRwTzDE+it+6QRSq8Q4skR5 0NuDGWAtrZKA5787wyfcqStSd/bSQf5j4uMoapl82ROvUJS+ZQKoWzpfYFWj4olt 7vM6mK3jBW5gpR0p49GxwEyCEZUhHJ+C6QdqBTxXiqdABntlMXpxl5MClqeXBJAW rY0m3bYDbzX/EwRMmw== -----END CERTIFICATE-----Generated at Tue Jun 24 20:59:13 2025 by rpki-client