$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft File: kjA85jYrWm8efhbSWMHJb7tnTWg.mft (raw, json) Hash identifier: 2YQUfZlGQgJv6oLveO2P+uo4ob2H8ZEHufzpvCPK/jE= Subject key identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 Authority key identifier: 92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 Certificate issuer: /CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Certificate serial: 7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft Manifest number: 77 Signing time: Tue 24 Jun 2025 09:01:33 +0000 Manifest this update: Tue 24 Jun 2025 09:01:33 +0000 Manifest next update: Thu 26 Jun 2025 09:01:33 +0000 Files and hashes: 1: EyH8tc3Eeg5V4X_o0jzVO7j-kPw.roa (hash: 3y8wuAdlPg2RCjhobqe/8iJ1QKhsh/Q99dT5uO6xQDc=) 2: L8g1hAdm4_Nha2YSRG41hCVaTlQ.roa (hash: 2/hJ09npkVZsqbRYanV/zl7+X0N3RvEk5RrpsEIVXLU=) 3: gSg_NQfblMf8GMwAFCZ3ITbcpKk.roa (hash: NWurS7/wKdRDs9XDd8vl82paWr52jlhURs+Io3+tbkk=) 4: j0-hPuEzf6H3nRsOiV51_V8CCKk.roa (hash: 16OypGr2/84L+EmAINBwWcj02mraRNCU5Ecf4Xw4Shg=) 5: kjA85jYrWm8efhbSWMHJb7tnTWg.crl (hash: fOZvBAXF0dpeoN6Vt52pXAVGT3WgNBMi6Vb4C6lIJ0M=) 6: rYQdOZmNCNtQBDhc7veVS6e5BIE.roa (hash: i4K0MpZKeuMaorIu2hthmzN9sCX/lzEoqj3dRzy4K0k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Validity Not Before: Jun 24 09:01:33 2025 GMT Not After : Feb 13 15:30:28 2026 GMT Subject: CN=48357B49CB9DA6F336A2589A72DEDD7A725A9496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:7a:0d:ce:58:8d:c5:8e:5e:58:04:87:19: 01:f1:23:5b:9c:b9:5e:f2:53:3c:95:79:5c:e0:52: 63:e9:54:79:6e:0c:8d:d5:ad:ba:e3:74:39:d7:0c: 94:4a:8b:39:e1:52:07:51:df:46:1c:9e:35:1d:c8: 1b:d7:7b:2b:6b:70:92:b2:95:71:f4:e9:34:2e:c4: 64:59:8f:e5:58:6d:63:b8:b8:cb:65:cb:5d:ab:57: d6:84:7d:6a:81:70:94:2f:13:a0:f5:a1:dd:fa:16: 5d:9e:3f:87:af:f1:df:80:86:f3:ae:da:09:eb:df: f3:c3:e8:08:4e:84:77:c4:f5:47:a5:68:91:10:6b: 67:0f:d0:5b:f4:50:b2:2c:f3:a1:9d:23:7d:c7:81: 26:2f:8d:a9:c0:da:f7:49:63:89:8a:46:1e:74:6e: 6e:05:1e:b0:c0:87:a0:ed:6e:9d:99:b1:53:24:f1: c8:9f:09:3d:93:4d:49:6c:4d:31:eb:7b:1f:21:f3: 96:a4:da:69:87:65:7d:0a:72:8c:89:ea:8d:4a:aa: 8f:74:6e:77:8b:2f:b9:be:90:57:f4:12:4a:fd:a3: f4:1d:e5:b1:68:82:73:14:18:d5:59:86:23:16:8a: f1:5d:4f:3e:1d:45:44:71:bc:86:d8:d8:8f:0e:91: cb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 X509v3 Authority Key Identifier: keyid:92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:c6:22:ab:8e:99:81:ec:57:9e:f8:fa:02:8d:48:d7:36:91: f5:4d:61:3d:d7:c1:48:9f:c2:a6:0e:35:1f:cc:f3:0b:e1:2b: 21:03:a8:cf:63:a2:f9:2a:dd:d0:70:54:fc:75:3f:e8:9a:52: 25:c0:42:fb:0a:8e:23:74:c6:26:79:12:97:5a:04:1f:5f:d7: b3:a8:8b:53:82:3b:3e:0b:c3:98:c9:17:bb:b2:17:a4:38:20: 1d:52:66:04:85:17:53:9e:7b:ad:b2:aa:a9:df:94:07:c7:32: 8b:6d:c1:80:dd:89:56:05:7f:89:77:8f:bb:04:fe:92:9f:f1: 0d:82:7c:4d:e9:93:8d:47:d3:75:32:37:e7:92:8d:43:66:15: 7d:20:a6:ca:d1:2e:d2:8f:be:44:d2:4e:b9:17:d1:05:df:55: 61:05:9c:67:07:fe:6a:77:49:11:5b:b1:1b:29:f3:00:3a:a6: 8d:f1:38:9e:2e:d1:a5:80:49:0d:f1:fb:d3:e9:b8:18:12:09: ea:d2:1e:de:c7:c4:12:65:44:60:42:b4:2c:b1:b1:a7:7b:cf: ce:fd:4d:54:00:07:3b:65:fb:26:26:59:95:c0:f1:71:ec:bf: e1:03:c0:16:fa:44:64:47:9b:eb:7b:9f:a3:9d:5b:7b:b5:92: 39:fb:a9:d1 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIBfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5MjMw M0NFNjM2MkI1QTZGMUU3RTE2RDI1OEMxQzk2RkJCNjc0RDY4MB4XDTI1MDYyNDA5 MDEzM1oXDTI2MDIxMzE1MzAyOFowMzExMC8GA1UEAxMoNDgzNTdCNDlDQjlEQTZG MzM2QTI1ODlBNzJERUREN0E3MjVBOTQ5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL6Leg3OWI3Fjl5YBIcZAfEjW5y5XvJTPJV5XOBSY+lUeW4MjdWt uuN0OdcMlEqLOeFSB1HfRhyeNR3IG9d7K2twkrKVcfTpNC7EZFmP5VhtY7i4y2XL XatX1oR9aoFwlC8ToPWh3foWXZ4/h6/x34CG867aCevf88PoCE6Ed8T1R6VokRBr Zw/QW/RQsizzoZ0jfceBJi+NqcDa90ljiYpGHnRubgUesMCHoO1unZmxUyTxyJ8J PZNNSWxNMet7HyHzlqTaaYdlfQpyjInqjUqqj3Rud4svub6QV/QSSv2j9B3lsWiC cxQY1VmGIxaK8V1PPh1FRHG8htjYjw6Ry3cCAwEAAaOCAg0wggIJMB0GA1UdDgQW BBRINXtJy52m8zaiWJpy3t16clqUljAfBgNVHSMEGDAWgBSSMDzmNitabx5+FtJY wclvu2dNaDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NT1JOTUFQ TEUva2pBODVqWXJXbThlZmhiU1dNSEpiN3RuVFdnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rakE4NWpZcldtOGVmaGJTV01ISmI3dG5UV2cuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NT1JOTUFQTEUva2pBODVqWXJXbThl ZmhiU1dNSEpiN3RuVFdnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAKDGIquOmYHsV574+gKNSNc2kfVNYT3XwUifwqYONR/M8wvhKyEDqM9jovkq 3dBwVPx1P+iaUiXAQvsKjiN0xiZ5EpdaBB9f17Ooi1OCOz4Lw5jJF7uyF6Q4IB1S ZgSFF1Oee62yqqnflAfHMottwYDdiVYFf4l3j7sE/pKf8Q2CfE3pk41H03UyN+eS jUNmFX0gpsrRLtKPvkTSTrkX0QXfVWEFnGcH/mp3SRFbsRsp8wA6po3xOJ4u0aWA SQ3x+9PpuBgSCerSHt7HxBJlRGBCtCyxsad7z879TVQABztl+yYmWZXA8XHsv+ED wBb6RGRHm+t7n6OdW3u1kjn7qdE= -----END CERTIFICATE-----Generated at Tue Jun 24 21:41:04 2025 by rpki-client