$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft File: tKZaDrhmkhnEGFRC1J_J1vgltmU.mft (raw, json) Hash identifier: 4v7QDobCXT6VVit9gl/p8q2WDdB8kP9qr+uqDb+gakI= Subject key identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1038 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft Manifest number: 0F48 Signing time: Sun 22 Jun 2025 15:59:50 +0000 Manifest this update: Sun 22 Jun 2025 15:59:49 +0000 Manifest next update: Tue 24 Jun 2025 15:59:49 +0000 Files and hashes: 1: -hXinkyERwOZmWW6tJRlYuYDnsw.roa (hash: 0UG4bKyKZC4S+DSXTHRARxITOvLWVdVciAo1fD+aHNg=) 2: 2nTTSCm2fpjBJGudHl8IJW3HcJM.roa (hash: 5pYK8M8BiQ0nMhl8APevik7u6634ukqlOBC0h6GRe8k=) 3: 7l6JMqjyS7ttKEFc5eS4vZBBiBc.roa (hash: gFGUfOtM7jIup7rrvRDQmz+sthA+/qFqVlP2iKq2cw8=) 4: 9k6qUIy-K5FcbrpVivxCiitUfec.roa (hash: 31TGrAi9aB9mouNzIdzaL+IcSQuFl+XGXKs6ZwZlAsw=) 5: AOv69UsHHgpCV9hQxZ8DYFvW8N0.roa (hash: ws92WPMzpFMn0rNkx9rAwD3umuOdkEOAF80TYgJWXZE=) 6: AcPLINHU0NWVVpnIaqxMdyt8hPw.roa (hash: TGD1JT0OmtjXuFr6GkQmJSzFWMnht7S+TZFXd5wO2tg=) 7: DmcVIRNe6GiZZZVn2nFgnIQ9T4E.roa (hash: Mi9q8jMU6PXK5qHVhj1KkAo1lkqnarMjcpsr4D9vJIY=) 8: GTrVPm__ebUNkcI5Xi5KjLZLGwo.roa (hash: qrtCH8X2ts8HXDL9nKr+7sTyIgRj8Jzerw+zU4vb984=) 9: IlenO6gLy_WSup6mEZHn4QkiLgA.roa (hash: Dp08m69GCDFKTY1ro9nM4yRCohaYIlR4/OudXrMcgPQ=) 10: KJxHeqPcv9_IeZifsf9aFzZ4znw.roa (hash: A/jDh7h71MxreYF/9V6H+XqGfTrpQJLZTedbMrRn4ko=) 11: PdAiL87YMA8f5Tv6d708S3blQrg.roa (hash: hfTDYDVMOHLiCZEYd1bzoCZfRSmiu7LDx8HoZPdkj5Q=) 12: R113cf6tPL7LcEqHjdOy3gLP1Cg.roa (hash: wfxmEVturK8lwOE0Tb8lXI8PsU0IUl6sg+MOky7bBy8=) 13: Y9oYj49n12Hdk3toPDTQ9XaRsaY.roa (hash: bcdSkdI+Tu9lltz6meDsQOl6LZn7r6IKbUMY961mnfQ=) 14: YADMAFioNbo8VJrOlFD6CT0_jWw.roa (hash: n7cVF1rcqrkoRbR1WinTXy+WuuvKS0WnE5vFC+yYu2k=) 15: YwAr9qGkqMlaGniFNTa2p2_yBO0.roa (hash: 7FxkAHf2ZbS3zENJ7tNe9rBkqXj1R3EeYTQpBTqT1cY=) 16: YzuPerJ85zOhfa63sVNTw9PQXnU.roa (hash: ZYVsK019XPfPOeatjw3Z6pUvt6RrHHrRCDfYuKp9xbE=) 17: _6lx53SZGJi7gemirUAjkhG1vK4.roa (hash: T/pM//GrpHV29ZttJSynIV2hBeOwYjfgJ4FLQTYGp4A=) 18: atw9IRYDyGoKtE2P0AuRs7sUE84.roa (hash: 12H6ffsztQGg/Fw+6Q7bNESogaNm1ojZihhkOH1zSLA=) 19: gGKi90fZai32MWlQ6XXbvvLb8As.roa (hash: SBe2iMLHorKWSY6cqEAe5wfDF7JQeoubbtOqY/qpwV4=) 20: lr4AB380PVCnFsEtSFv9UzWZY30.roa (hash: T8seleh/k7N1t2iSLJZ5+jS5avh+t93P4xJKH5G56BQ=) 21: mTHzUpQ1e1Juagv6b0QqzqUpdmQ.roa (hash: DXK2u9KEOzx/5Z+zSK4bJ11SjdmMJ1wqG1GOsgKOuj8=) 22: phK85_haumZeklMDMMKM5VS2kPA.roa (hash: b9XsarXI2YtKj7fGACAknfuV3NknbhlkkCqJmsOLbNs=) 23: sslHKU-uS0tQeIwSyd-QvAuW8Fc.roa (hash: DLaluWLeDXgVpXdpYFvNk3z/2sVn0NmWrO4tw3Szx9w=) 24: tKZaDrhmkhnEGFRC1J_J1vgltmU.crl (hash: H6xcMSbWGAGHyGC850ripIsjKaXHi+WoWh24aqmPGu8=) 25: vIZRdbZtyiH0Q8YHakndmIT-UTE.roa (hash: 58Jrbiu9GvQCu32V4isx+WAldZGHSwLgutccuRKQ4nI=) 26: xfV1b12RO5UrUseqwjU8L9cMokw.roa (hash: vff5szrdbQe+8n3p0zSOS5AjlqClA4bPofVtCJft8Bc=) 27: y1ycz2kpzad_oHR1DPNSlFxEBBM.roa (hash: 7s9BqDuBWj0mPIvB3PFAl4tQNvo8crBCWYagQYCSB3g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 23:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4152 (0x1038) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Jun 22 15:59:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0E53CFF1D0181F272D8AA565C2A113F9F95BAB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:89:75:40:22:61:58:f1:31:e1:0d:ed:89:c7: 1c:c2:a7:48:ec:32:66:b0:0c:77:66:f9:c0:10:73: 43:71:67:86:f0:e2:f9:e6:a8:a3:b8:93:ea:61:8b: fc:b0:b8:f6:3f:c2:1b:69:1e:d6:5d:65:ca:37:5e: ba:46:d9:c4:f2:3e:05:48:7a:7e:27:53:2c:68:c7: 1b:e6:02:61:18:e7:8d:3f:0e:23:3b:4e:cb:01:43: 0b:8f:05:e1:5e:3c:bc:9b:33:45:f4:db:cf:ee:5e: 9e:18:80:3a:fe:bc:fb:d3:34:c7:d5:ca:35:93:11: c9:78:3a:df:ac:fc:69:69:a5:74:c4:da:0a:08:ab: e4:9e:fd:53:2c:9a:52:15:35:8c:26:79:4d:69:78: 3e:7a:98:f0:bd:f6:e1:c0:18:a6:44:96:5c:d8:93: a0:f9:4e:ff:4d:fe:4f:ed:72:03:ac:3f:1e:19:62: ae:49:01:42:1a:2f:b1:e6:51:12:2e:e9:3c:6a:62: dd:45:18:9c:31:88:6a:95:05:ff:2e:59:d4:86:96: 36:2e:17:8e:51:25:25:97:fe:83:c0:35:5e:c5:78: 53:3a:2c:c0:63:fa:d6:e1:2b:ad:61:43:f6:c3:bd: e7:bc:10:3b:a7:7d:16:f5:08:2e:49:be:06:69:1f: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c3:0d:50:16:7c:c4:73:f3:01:61:c3:d0:bb:eb:45:0b:52: 16:66:e4:03:f0:94:03:7c:bb:a3:e2:99:fd:8a:14:84:a6:ac: 74:86:56:c8:99:18:4b:4d:f3:05:68:ca:ac:58:17:1d:f0:f5: 6e:13:da:93:40:4f:7d:bc:06:e4:78:45:da:eb:54:ea:1d:b1: 45:ac:43:3f:a8:a2:18:b5:c2:31:d0:a3:b9:f0:07:d9:53:bf: 78:6d:6d:d2:62:ca:b0:c7:a0:2d:1d:95:b4:90:14:2f:96:fc: 6f:64:77:c9:3f:db:f7:f2:74:16:2e:09:d5:db:4b:1b:a3:b3: 3e:ad:c6:81:e1:a6:df:f4:88:e6:01:a9:46:9c:2a:fe:b4:e2: e5:58:85:f6:f1:cf:30:93:b1:5a:7c:fa:5b:47:a0:59:07:44: 9b:db:44:f2:ea:24:a1:85:51:fd:3d:e2:93:f5:b7:ff:60:4a: c2:44:bd:31:20:2e:f1:a1:2e:33:7d:21:fb:ac:a1:fd:d9:15: 7d:a1:36:bd:10:59:55:8f:ff:0f:1a:55:8c:57:5d:c1:b1:67: f7:44:e3:01:9b:be:51:a2:41:ea:72:10:65:96:68:6b:2c:34: 49:56:72:98:53:38:eb:80:16:fe:6d:cc:31:70:77:6c:fc:dc: 25:1b:52:5f -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICEDgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA2MjIx NTU5NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFNTNDRkYxRDAxODFG MjcyRDhBQTU2NUMyQTExM0Y5Rjk1QkFCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxiXVAImFY8THhDe2JxxzCp0jsMmawDHdm+cAQc0NxZ4bw4vnm qKO4k+phi/ywuPY/whtpHtZdZco3XrpG2cTyPgVIen4nUyxoxxvmAmEY540/DiM7 TssBQwuPBeFePLybM0X028/uXp4YgDr+vPvTNMfVyjWTEcl4Ot+s/GlppXTE2goI q+Se/VMsmlIVNYwmeU1peD56mPC99uHAGKZEllzYk6D5Tv9N/k/tcgOsPx4ZYq5J AUIaL7HmURIu6TxqYt1FGJwxiGqVBf8uWdSGljYuF45RJSWX/oPANV7FeFM6LMBj +tbhK61hQ/bDvee8EDunfRb1CC5JvgZpH1ElAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUDlPP8dAYHyctiqVlwqET+flbqygwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEtaYURyaG1raG5FR0ZSQzFKX0ox dmdsdG1VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAFLDDVAW fMRz8wFhw9C760ULUhZm5APwlAN8u6Pimf2KFISmrHSGVsiZGEtN8wVoyqxYFx3w 9W4T2pNAT328BuR4RdrrVOodsUWsQz+oohi1wjHQo7nwB9lTv3htbdJiyrDHoC0d lbSQFC+W/G9kd8k/2/fydBYuCdXbSxujsz6txoHhpt/0iOYBqUacKv604uVYhfbx zzCTsVp8+ltHoFkHRJvbRPLqJKGFUf094pP1t/9gSsJEvTEgLvGhLjN9Ifusof3Z FX2hNr0QWVWP/w8aVYxXXcGxZ/dE4wGbvlGiQepyEGWWaGssNElWcphTOOuAFv5t zDFwd2z83CUbUl8= -----END CERTIFICATE-----Generated at Sun Jun 22 20:59:29 2025 by rpki-client