$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft File: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft (raw, json) Hash identifier: kJDqqfJb2aFsdeXv/pR0D3s+27EVEDfdRVzSL9u12vM= Subject key identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 Authority key identifier: 5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 Certificate issuer: /CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Certificate serial: 0CEE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft Manifest number: 0CEE Signing time: Sat 10 May 2025 09:52:55 +0000 Manifest this update: Sat 10 May 2025 09:52:55 +0000 Manifest next update: Mon 12 May 2025 09:52:55 +0000 Files and hashes: 1: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl (hash: sT2fmHwKbrJs8NZmBdyv6vftM+tqmy1LoQ5Ga+Gf1/w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3310 (0xcee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Validity Not Before: May 10 09:52:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3E8675F5553B5C3EF6E9EE78294BC6B8A6B459D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:6d:10:39:89:15:32:d8:c6:b6:a8:fc:76: 5e:55:ad:f7:01:1e:a9:c9:51:66:84:80:5c:fe:e9: 88:6a:07:4d:fb:11:28:d0:2c:5d:b8:ab:d6:56:6a: b0:bd:c7:80:00:f7:2f:55:1a:b5:84:78:e5:d8:95: 87:c6:57:0c:6c:ca:a8:10:3b:e4:80:d8:ae:10:b6: 91:88:2f:35:7b:64:68:4e:04:bf:b1:52:95:7f:49: 50:6f:bb:69:31:7e:a2:fa:a7:79:b8:88:85:51:ee: a2:b5:30:19:bb:fa:ec:67:0a:65:08:21:f6:76:d3: f2:76:16:64:12:06:c2:83:8a:ac:50:9b:e7:70:97: a9:4e:47:fd:ff:21:3d:23:57:d8:ba:58:05:14:0e: ae:42:cf:d5:6b:82:5e:45:12:32:5d:90:31:d8:58: 4a:db:8b:f1:9a:9c:ff:f0:d7:fa:42:65:a0:d2:c5: 25:e7:0b:81:49:ba:d0:cf:30:0b:3e:7e:fa:40:34: 4c:fb:a7:19:97:97:ed:18:1e:b4:30:70:35:e5:16: 49:6b:ef:1b:c3:7b:f4:c0:c6:6a:9c:5c:68:a3:66: 6c:60:59:98:67:2e:36:03:a7:d6:d0:23:bd:65:7a: 5a:ae:82:c0:f7:07:bb:af:b5:20:84:53:fe:a1:17: 01:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 X509v3 Authority Key Identifier: keyid:5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:4f:f3:92:a4:f9:64:ef:ca:2a:90:ca:d1:f3:fe:9c:e9:d3: 89:20:5a:75:81:08:8a:d8:e6:f9:92:ad:70:b3:0e:d3:a8:60: ec:18:c5:ed:c0:ea:ca:11:5e:29:7d:3e:62:7f:42:f8:f1:88: 86:37:25:ac:d7:45:a4:d4:95:d9:35:fc:3b:b7:03:64:b5:36: 4d:13:d7:42:e1:64:d1:c7:bd:b0:d8:a6:54:eb:9f:35:96:0f: 96:93:19:55:79:47:64:1d:19:d7:29:7c:ac:b8:45:e8:1d:24: c9:14:c8:9b:9a:5a:6c:6b:f7:5e:bc:8a:66:b2:a1:cf:51:53: 32:ef:06:df:79:cc:40:ea:fe:69:4d:b0:55:f4:d7:4b:bb:f4: c7:38:ef:cf:37:bd:38:fc:d0:19:1d:c0:e8:65:76:e5:15:44: a3:89:eb:6a:1f:01:47:37:82:1d:ca:8a:39:f6:f8:15:58:85: 4f:1a:a7:0a:68:05:cc:31:da:a2:23:ff:96:cd:24:e5:16:3c: bf:24:94:ea:df:d7:8d:c1:5c:0f:18:a0:f3:7b:43:13:8c:67: 8e:07:bb:24:9a:98:0f:6a:5a:72:dc:b6:23:16:c3:0f:8c:a5: 7f:02:52:d3:e4:9f:a3:9a:31:d6:cd:81:c7:be:00:b4:a7:44: 18:53:f7:23 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUI5 MjZEQkIwNzRDRjRGRjFBMUZBMzIwMjExRjU5RDY5NUNFRDI3OTAeFw0yNTA1MTAw OTUyNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFODY3NUY1NTUzQjVD M0VGNkU5RUU3ODI5NEJDNkI4QTZCNDU5RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCopG0QOYkVMtjGtqj8dl5VrfcBHqnJUWaEgFz+6YhqB037ESjQ LF24q9ZWarC9x4AA9y9VGrWEeOXYlYfGVwxsyqgQO+SA2K4QtpGILzV7ZGhOBL+x UpV/SVBvu2kxfqL6p3m4iIVR7qK1MBm7+uxnCmUIIfZ20/J2FmQSBsKDiqxQm+dw l6lOR/3/IT0jV9i6WAUUDq5Cz9Vrgl5FEjJdkDHYWErbi/GanP/w1/pCZaDSxSXn C4FJutDPMAs+fvpANEz7pxmXl+0YHrQwcDXlFklr7xvDe/TAxmqcXGijZmxgWZhn LjYDp9bQI71lelqugsD3B7uvtSCEU/6hFwEVAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUPoZ19VU7XD726e54KUvGuKa0WdkwHwYDVR0jBBgwFoAUW5JtuwdM9P8aH6Mg IR9Z1pXO0nkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkhSSS9X NUp0dXdkTTlQOGFINk1nSVI5WjFwWE8wbmsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1c1SnR1d2RNOVA4YUg2TWdJUjlaMXBYTzBuay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05IUkkvVzVKdHV3ZE05UDhhSDZNZ0lSOVox cFhPMG5rLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAF1P85Kk +WTvyiqQytHz/pzp04kgWnWBCIrY5vmSrXCzDtOoYOwYxe3A6soRXil9PmJ/Qvjx iIY3JazXRaTUldk1/Du3A2S1Nk0T10LhZNHHvbDYplTrnzWWD5aTGVV5R2QdGdcp fKy4RegdJMkUyJuaWmxr9168imayoc9RUzLvBt95zEDq/mlNsFX010u79Mc47883 vTj80BkdwOhlduUVRKOJ62ofAUc3gh3Kijn2+BVYhU8apwpoBcwx2qIj/5bNJOUW PL8klOrf143BXA8YoPN7QxOMZ44HuySamA9qWnLctiMWww+MpX8CUtPkn6OaMdbN gce+ALSnRBhT9yM= -----END CERTIFICATE-----Generated at Sat May 10 14:23:42 2025 by rpki-client