$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft File: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft (raw, json) Hash identifier: olgnLbllYOdAsMLub6qwkYyqaLM9wNYXRry9RDzmzGo= Subject key identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 Authority key identifier: 5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 Certificate issuer: /CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Certificate serial: 0D0C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft Manifest number: 0D0C Signing time: Tue 24 Jun 2025 10:02:00 +0000 Manifest this update: Tue 24 Jun 2025 10:02:00 +0000 Manifest next update: Thu 26 Jun 2025 10:02:00 +0000 Files and hashes: 1: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl (hash: IpZRCezXFvmTF6LoMTN2sYEYT/tFOAhdKjkzZhC8kU4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3340 (0xd0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Validity Not Before: Jun 24 10:02:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3E8675F5553B5C3EF6E9EE78294BC6B8A6B459D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:6d:10:39:89:15:32:d8:c6:b6:a8:fc:76: 5e:55:ad:f7:01:1e:a9:c9:51:66:84:80:5c:fe:e9: 88:6a:07:4d:fb:11:28:d0:2c:5d:b8:ab:d6:56:6a: b0:bd:c7:80:00:f7:2f:55:1a:b5:84:78:e5:d8:95: 87:c6:57:0c:6c:ca:a8:10:3b:e4:80:d8:ae:10:b6: 91:88:2f:35:7b:64:68:4e:04:bf:b1:52:95:7f:49: 50:6f:bb:69:31:7e:a2:fa:a7:79:b8:88:85:51:ee: a2:b5:30:19:bb:fa:ec:67:0a:65:08:21:f6:76:d3: f2:76:16:64:12:06:c2:83:8a:ac:50:9b:e7:70:97: a9:4e:47:fd:ff:21:3d:23:57:d8:ba:58:05:14:0e: ae:42:cf:d5:6b:82:5e:45:12:32:5d:90:31:d8:58: 4a:db:8b:f1:9a:9c:ff:f0:d7:fa:42:65:a0:d2:c5: 25:e7:0b:81:49:ba:d0:cf:30:0b:3e:7e:fa:40:34: 4c:fb:a7:19:97:97:ed:18:1e:b4:30:70:35:e5:16: 49:6b:ef:1b:c3:7b:f4:c0:c6:6a:9c:5c:68:a3:66: 6c:60:59:98:67:2e:36:03:a7:d6:d0:23:bd:65:7a: 5a:ae:82:c0:f7:07:bb:af:b5:20:84:53:fe:a1:17: 01:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 X509v3 Authority Key Identifier: keyid:5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:a2:25:ca:83:81:cf:0c:3e:09:ad:c7:dd:0b:f0:32:b2:e5: 20:e9:5b:0d:71:f5:ca:46:d4:ce:40:96:f2:e6:b4:d4:ff:55: a4:ad:85:4f:c0:c5:3b:c4:e7:31:31:f4:f1:8c:a4:64:5f:c0: bc:44:a3:d9:a3:c0:30:b6:64:3f:06:e3:fa:91:9f:07:65:fe: 0b:7b:4c:cd:aa:59:20:5e:4c:f4:b6:3e:40:95:b6:67:ef:59: fd:34:56:7f:49:bb:eb:13:b1:d8:34:68:9d:3d:f8:83:50:c5: b6:03:89:85:37:75:20:82:81:52:08:7c:0d:8a:c8:a6:59:b8: 9a:77:36:f9:39:b3:49:a6:d1:68:e4:bf:ba:82:b6:34:2c:c9: 42:c6:ad:a7:c9:ef:b2:a5:e3:b5:95:00:2f:4c:cc:a3:e7:f1: c9:d0:83:f4:6f:fb:0f:ed:14:db:c6:56:c1:77:44:40:32:cd: ae:f1:c4:b1:17:0c:bd:a8:33:80:12:fc:d7:89:49:aa:fb:4d: 74:11:f5:e2:43:8d:5b:44:eb:48:6e:77:ac:00:ab:06:79:90: 4a:a9:ec:a8:a0:c0:90:21:a1:46:8c:80:da:b0:d4:54:a5:44: 5b:85:3d:69:f3:80:42:23:4e:9a:c1:4b:1f:68:d8:4a:ec:39: cf:2f:cb:76 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDQwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUI5 MjZEQkIwNzRDRjRGRjFBMUZBMzIwMjExRjU5RDY5NUNFRDI3OTAeFw0yNTA2MjQx MDAyMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFODY3NUY1NTUzQjVD M0VGNkU5RUU3ODI5NEJDNkI4QTZCNDU5RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCopG0QOYkVMtjGtqj8dl5VrfcBHqnJUWaEgFz+6YhqB037ESjQ LF24q9ZWarC9x4AA9y9VGrWEeOXYlYfGVwxsyqgQO+SA2K4QtpGILzV7ZGhOBL+x UpV/SVBvu2kxfqL6p3m4iIVR7qK1MBm7+uxnCmUIIfZ20/J2FmQSBsKDiqxQm+dw l6lOR/3/IT0jV9i6WAUUDq5Cz9Vrgl5FEjJdkDHYWErbi/GanP/w1/pCZaDSxSXn C4FJutDPMAs+fvpANEz7pxmXl+0YHrQwcDXlFklr7xvDe/TAxmqcXGijZmxgWZhn LjYDp9bQI71lelqugsD3B7uvtSCEU/6hFwEVAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUPoZ19VU7XD726e54KUvGuKa0WdkwHwYDVR0jBBgwFoAUW5JtuwdM9P8aH6Mg IR9Z1pXO0nkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkhSSS9X NUp0dXdkTTlQOGFINk1nSVI5WjFwWE8wbmsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1c1SnR1d2RNOVA4YUg2TWdJUjlaMXBYTzBuay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05IUkkvVzVKdHV3ZE05UDhhSDZNZ0lSOVox cFhPMG5rLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABaiJcqD gc8MPgmtx90L8DKy5SDpWw1x9cpG1M5AlvLmtNT/VaSthU/AxTvE5zEx9PGMpGRf wLxEo9mjwDC2ZD8G4/qRnwdl/gt7TM2qWSBeTPS2PkCVtmfvWf00Vn9Ju+sTsdg0 aJ09+INQxbYDiYU3dSCCgVIIfA2KyKZZuJp3Nvk5s0mm0Wjkv7qCtjQsyULGrafJ 77Kl47WVAC9MzKPn8cnQg/Rv+w/tFNvGVsF3REAyza7xxLEXDL2oM4AS/NeJSar7 TXQR9eJDjVtE60hud6wAqwZ5kEqp7KigwJAhoUaMgNqw1FSlRFuFPWnzgEIjTprB Sx9o2ErsOc8vy3Y= -----END CERTIFICATE-----Generated at Tue Jun 24 21:07:00 2025 by rpki-client