$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft File: kjA85jYrWm8efhbSWMHJb7tnTWg.mft (raw, json) Hash identifier: RjVRz17b7h+naduIN/g0ADAT4LfwQLxb83ufBonH22o= Subject key identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 Authority key identifier: 92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 Certificate issuer: /CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Certificate serial: 5D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft Manifest number: 58 Signing time: Thu 08 May 2025 20:52:04 +0000 Manifest this update: Thu 08 May 2025 20:52:04 +0000 Manifest next update: Sat 10 May 2025 20:52:04 +0000 Files and hashes: 1: EyH8tc3Eeg5V4X_o0jzVO7j-kPw.roa (hash: 3y8wuAdlPg2RCjhobqe/8iJ1QKhsh/Q99dT5uO6xQDc=) 2: L8g1hAdm4_Nha2YSRG41hCVaTlQ.roa (hash: 2/hJ09npkVZsqbRYanV/zl7+X0N3RvEk5RrpsEIVXLU=) 3: gSg_NQfblMf8GMwAFCZ3ITbcpKk.roa (hash: NWurS7/wKdRDs9XDd8vl82paWr52jlhURs+Io3+tbkk=) 4: j0-hPuEzf6H3nRsOiV51_V8CCKk.roa (hash: 16OypGr2/84L+EmAINBwWcj02mraRNCU5Ecf4Xw4Shg=) 5: kjA85jYrWm8efhbSWMHJb7tnTWg.crl (hash: bUCTm0B4VA/I/RD4FkZfqixaLvP6d8Y403Xc04qyF/k=) 6: rYQdOZmNCNtQBDhc7veVS6e5BIE.roa (hash: i4K0MpZKeuMaorIu2hthmzN9sCX/lzEoqj3dRzy4K0k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 12:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Validity Not Before: May 8 20:52:04 2025 GMT Not After : Feb 13 15:30:28 2026 GMT Subject: CN=48357B49CB9DA6F336A2589A72DEDD7A725A9496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:7a:0d:ce:58:8d:c5:8e:5e:58:04:87:19: 01:f1:23:5b:9c:b9:5e:f2:53:3c:95:79:5c:e0:52: 63:e9:54:79:6e:0c:8d:d5:ad:ba:e3:74:39:d7:0c: 94:4a:8b:39:e1:52:07:51:df:46:1c:9e:35:1d:c8: 1b:d7:7b:2b:6b:70:92:b2:95:71:f4:e9:34:2e:c4: 64:59:8f:e5:58:6d:63:b8:b8:cb:65:cb:5d:ab:57: d6:84:7d:6a:81:70:94:2f:13:a0:f5:a1:dd:fa:16: 5d:9e:3f:87:af:f1:df:80:86:f3:ae:da:09:eb:df: f3:c3:e8:08:4e:84:77:c4:f5:47:a5:68:91:10:6b: 67:0f:d0:5b:f4:50:b2:2c:f3:a1:9d:23:7d:c7:81: 26:2f:8d:a9:c0:da:f7:49:63:89:8a:46:1e:74:6e: 6e:05:1e:b0:c0:87:a0:ed:6e:9d:99:b1:53:24:f1: c8:9f:09:3d:93:4d:49:6c:4d:31:eb:7b:1f:21:f3: 96:a4:da:69:87:65:7d:0a:72:8c:89:ea:8d:4a:aa: 8f:74:6e:77:8b:2f:b9:be:90:57:f4:12:4a:fd:a3: f4:1d:e5:b1:68:82:73:14:18:d5:59:86:23:16:8a: f1:5d:4f:3e:1d:45:44:71:bc:86:d8:d8:8f:0e:91: cb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 X509v3 Authority Key Identifier: keyid:92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:93:ae:ac:4f:30:9c:30:92:c7:b6:1b:a8:6a:cd:6d:83:94: cb:ad:71:78:07:c2:ce:5f:4a:a8:37:cf:ff:c1:2e:30:6f:ff: ef:47:fc:fb:2f:fa:1b:b0:0e:fa:15:b6:9f:dc:81:2c:e0:7c: 79:ee:b5:50:5a:c3:a2:77:bc:45:ea:28:1d:2a:55:3e:0b:4c: 84:e0:c1:cd:1e:1b:22:62:44:bf:1a:b0:ec:00:97:da:06:18: 9f:cc:3e:ca:3c:37:83:3b:d2:0f:e0:86:2e:f9:c9:c5:55:48: f1:05:e1:cd:46:58:cd:01:2e:39:17:aa:0b:9b:07:5f:08:43: b3:35:60:94:f8:11:e2:16:b5:02:1d:de:ef:86:c1:90:0f:01: 56:33:b4:69:29:63:92:50:57:f1:fb:70:53:71:4d:69:5e:a7: ec:60:03:66:de:94:01:08:6a:27:51:30:96:e8:d5:f6:bc:bd: a8:fa:b8:d3:bf:1a:02:d6:62:7e:02:1b:a5:5a:b1:c0:70:fe: 7d:7a:fa:e4:4f:ea:a0:80:60:f9:d4:a0:5d:25:25:16:09:19: 38:e3:36:b9:28:92:31:c9:1d:23:53:3a:d3:88:43:ae:c6:86: a3:dc:16:c4:b1:0f:1f:6e:c1:44:f1:23:aa:ac:49:5b:13:7e: 57:f4:51:fe -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIBXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5MjMw M0NFNjM2MkI1QTZGMUU3RTE2RDI1OEMxQzk2RkJCNjc0RDY4MB4XDTI1MDUwODIw NTIwNFoXDTI2MDIxMzE1MzAyOFowMzExMC8GA1UEAxMoNDgzNTdCNDlDQjlEQTZG MzM2QTI1ODlBNzJERUREN0E3MjVBOTQ5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL6Leg3OWI3Fjl5YBIcZAfEjW5y5XvJTPJV5XOBSY+lUeW4MjdWt uuN0OdcMlEqLOeFSB1HfRhyeNR3IG9d7K2twkrKVcfTpNC7EZFmP5VhtY7i4y2XL XatX1oR9aoFwlC8ToPWh3foWXZ4/h6/x34CG867aCevf88PoCE6Ed8T1R6VokRBr Zw/QW/RQsizzoZ0jfceBJi+NqcDa90ljiYpGHnRubgUesMCHoO1unZmxUyTxyJ8J PZNNSWxNMet7HyHzlqTaaYdlfQpyjInqjUqqj3Rud4svub6QV/QSSv2j9B3lsWiC cxQY1VmGIxaK8V1PPh1FRHG8htjYjw6Ry3cCAwEAAaOCAg0wggIJMB0GA1UdDgQW BBRINXtJy52m8zaiWJpy3t16clqUljAfBgNVHSMEGDAWgBSSMDzmNitabx5+FtJY wclvu2dNaDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NT1JOTUFQ TEUva2pBODVqWXJXbThlZmhiU1dNSEpiN3RuVFdnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rakE4NWpZcldtOGVmaGJTV01ISmI3dG5UV2cuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NT1JOTUFQTEUva2pBODVqWXJXbThl ZmhiU1dNSEpiN3RuVFdnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAA2TrqxPMJwwkse2G6hqzW2DlMutcXgHws5fSqg3z//BLjBv/+9H/Psv+huw DvoVtp/cgSzgfHnutVBaw6J3vEXqKB0qVT4LTITgwc0eGyJiRL8asOwAl9oGGJ/M Pso8N4M70g/ghi75ycVVSPEF4c1GWM0BLjkXqgubB18IQ7M1YJT4EeIWtQId3u+G wZAPAVYztGkpY5JQV/H7cFNxTWlep+xgA2belAEIaidRMJbo1fa8vaj6uNO/GgLW Yn4CG6VascBw/n16+uRP6qCAYPnUoF0lJRYJGTjjNrkokjHJHSNTOtOIQ67GhqPc FsSxDx9uwUTxI6qsSVsTflf0Uf4= -----END CERTIFICATE-----Generated at Fri May 9 12:01:24 2025 by rpki-client