$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft File: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft (raw, json) Hash identifier: R3NtuEW92zFb52Izkh3vtyvTYkTe6QdcQGmciZT4TyY= Subject key identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 Authority key identifier: 5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 Certificate issuer: /CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Certificate serial: 0D2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft Manifest number: 0D2B Signing time: Sat 09 Aug 2025 22:11:30 +0000 Manifest this update: Sat 09 Aug 2025 22:11:30 +0000 Manifest next update: Mon 11 Aug 2025 22:11:30 +0000 Files and hashes: 1: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl (hash: scWgH0HuwC+2pTD2qfxBEMSGIX70uPqW3L25+hSZNi4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3371 (0xd2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Validity Not Before: Aug 9 22:11:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3E8675F5553B5C3EF6E9EE78294BC6B8A6B459D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:6d:10:39:89:15:32:d8:c6:b6:a8:fc:76: 5e:55:ad:f7:01:1e:a9:c9:51:66:84:80:5c:fe:e9: 88:6a:07:4d:fb:11:28:d0:2c:5d:b8:ab:d6:56:6a: b0:bd:c7:80:00:f7:2f:55:1a:b5:84:78:e5:d8:95: 87:c6:57:0c:6c:ca:a8:10:3b:e4:80:d8:ae:10:b6: 91:88:2f:35:7b:64:68:4e:04:bf:b1:52:95:7f:49: 50:6f:bb:69:31:7e:a2:fa:a7:79:b8:88:85:51:ee: a2:b5:30:19:bb:fa:ec:67:0a:65:08:21:f6:76:d3: f2:76:16:64:12:06:c2:83:8a:ac:50:9b:e7:70:97: a9:4e:47:fd:ff:21:3d:23:57:d8:ba:58:05:14:0e: ae:42:cf:d5:6b:82:5e:45:12:32:5d:90:31:d8:58: 4a:db:8b:f1:9a:9c:ff:f0:d7:fa:42:65:a0:d2:c5: 25:e7:0b:81:49:ba:d0:cf:30:0b:3e:7e:fa:40:34: 4c:fb:a7:19:97:97:ed:18:1e:b4:30:70:35:e5:16: 49:6b:ef:1b:c3:7b:f4:c0:c6:6a:9c:5c:68:a3:66: 6c:60:59:98:67:2e:36:03:a7:d6:d0:23:bd:65:7a: 5a:ae:82:c0:f7:07:bb:af:b5:20:84:53:fe:a1:17: 01:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 X509v3 Authority Key Identifier: keyid:5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:39:72:04:28:ab:e7:85:a4:2b:dc:6a:c3:d6:cf:9b:41:ca: 67:35:09:7d:d6:54:65:d6:47:bd:61:05:0e:21:61:50:95:b0: e2:5c:65:8d:7b:91:0f:e5:8d:50:ed:40:87:18:5a:99:cc:3a: b3:7b:ee:cd:fc:8a:83:f9:b4:dd:93:2f:b7:63:49:8e:a3:2e: c1:f0:77:ae:21:b3:be:f6:b2:28:bd:e0:05:64:0c:94:e6:48: cd:08:50:5d:55:15:fe:bf:6a:32:6f:c0:cb:02:fc:09:58:a6: 65:e4:6a:61:31:88:7e:77:42:46:4a:3c:df:93:47:19:4b:cf: 6b:55:4d:aa:c2:ee:24:3b:27:55:8f:4f:b0:6b:ce:c5:a4:c4: 22:d8:87:b1:e7:c8:e6:0b:65:0f:31:e6:bd:8a:c1:9d:17:9d: e3:f1:d9:f4:0b:fa:a9:ea:2a:f4:4f:12:95:74:73:f7:df:1b: 86:15:1c:75:8c:39:80:bc:ee:33:86:e1:db:78:b6:f8:ad:c0: bb:d4:5d:85:79:ca:31:21:60:ca:91:11:1a:65:7a:d7:d8:76: fa:bc:96:cd:0e:c1:b0:6e:cc:c5:21:05:df:37:c0:54:27:4b: 8b:b9:a9:64:98:b2:cf:92:9a:e1:95:a6:c4:78:8b:84:5b:47: 9f:07:04:21 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDSswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUI5 MjZEQkIwNzRDRjRGRjFBMUZBMzIwMjExRjU5RDY5NUNFRDI3OTAeFw0yNTA4MDky MjExMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFODY3NUY1NTUzQjVD M0VGNkU5RUU3ODI5NEJDNkI4QTZCNDU5RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCopG0QOYkVMtjGtqj8dl5VrfcBHqnJUWaEgFz+6YhqB037ESjQ LF24q9ZWarC9x4AA9y9VGrWEeOXYlYfGVwxsyqgQO+SA2K4QtpGILzV7ZGhOBL+x UpV/SVBvu2kxfqL6p3m4iIVR7qK1MBm7+uxnCmUIIfZ20/J2FmQSBsKDiqxQm+dw l6lOR/3/IT0jV9i6WAUUDq5Cz9Vrgl5FEjJdkDHYWErbi/GanP/w1/pCZaDSxSXn C4FJutDPMAs+fvpANEz7pxmXl+0YHrQwcDXlFklr7xvDe/TAxmqcXGijZmxgWZhn LjYDp9bQI71lelqugsD3B7uvtSCEU/6hFwEVAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUPoZ19VU7XD726e54KUvGuKa0WdkwHwYDVR0jBBgwFoAUW5JtuwdM9P8aH6Mg IR9Z1pXO0nkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkhSSS9X NUp0dXdkTTlQOGFINk1nSVI5WjFwWE8wbmsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1c1SnR1d2RNOVA4YUg2TWdJUjlaMXBYTzBuay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05IUkkvVzVKdHV3ZE05UDhhSDZNZ0lSOVox cFhPMG5rLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAEY5cgQo q+eFpCvcasPWz5tBymc1CX3WVGXWR71hBQ4hYVCVsOJcZY17kQ/ljVDtQIcYWpnM OrN77s38ioP5tN2TL7djSY6jLsHwd64hs772sii94AVkDJTmSM0IUF1VFf6/ajJv wMsC/AlYpmXkamExiH53QkZKPN+TRxlLz2tVTarC7iQ7J1WPT7BrzsWkxCLYh7Hn yOYLZQ8x5r2KwZ0XnePx2fQL+qnqKvRPEpV0c/ffG4YVHHWMOYC87jOG4dt4tvit wLvUXYV5yjEhYMqRERpletfYdvq8ls0OwbBuzMUhBd83wFQnS4u5qWSYss+SmuGV psR4i4RbR58HBCE= -----END CERTIFICATE-----Generated at Mon Aug 11 10:47:34 2025 by rpki-client