$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft File: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft (raw, json) Hash identifier: zTdGTc6BKP9a3t4kCHuTQWclh6wvDa0EXcpCM3nnWhk= Subject key identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D Authority key identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 Certificate issuer: /CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Certificate serial: 0D67 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft Manifest number: 0D67 Signing time: Mon 11 Aug 2025 09:40:28 +0000 Manifest this update: Mon 11 Aug 2025 09:40:28 +0000 Manifest next update: Wed 13 Aug 2025 09:40:28 +0000 Files and hashes: 1: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl (hash: +neSn06tUYwilTDYDWBiTMaFztIqu9LOAQNLEbBEh4Q=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3431 (0xd67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Validity Not Before: Aug 11 09:40:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1EC72123E465344F84D2FE29F93E7BF5CF9C9F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:fc:f4:2b:c9:3f:10:90:3c:4f:2f:e1:61: 0c:e9:0d:dc:f4:4e:2e:05:8a:5f:5b:2c:20:5a:a5: 11:10:ec:6f:5d:0e:a3:83:43:05:13:d7:cf:60:c3: 6f:d8:4f:fb:ab:f2:33:5a:09:6c:38:99:c3:81:d5: a3:7b:68:1d:e8:f9:ab:57:a2:45:ab:29:3d:a5:68: e0:c1:0f:73:42:c6:39:21:15:23:49:a2:ef:93:d5: 1e:d0:50:a2:6c:d6:0f:a4:5c:43:7f:63:dc:42:da: c7:42:df:91:b3:cc:b7:d5:1b:a4:df:8f:f9:fa:fa: 46:24:0c:fe:e6:54:ae:76:3a:3b:dd:bb:5f:b8:f3: 6e:e6:38:ed:f0:e6:bd:57:37:06:ac:f7:1c:d8:af: a9:12:c4:31:67:76:7a:6f:ad:b4:b6:b8:10:23:78: 47:96:29:61:17:0c:60:87:6e:fc:e0:83:a9:f4:d3: ed:21:5f:91:42:76:b3:9b:1b:cd:c7:7c:0e:e4:5b: 26:6e:81:58:bc:1e:99:75:ae:32:0d:4a:98:4f:aa: 04:a4:0d:e1:14:9a:fe:08:e0:c2:db:30:e5:fe:80: 92:fb:4c:7e:1b:ff:d7:e5:a7:e2:7e:ed:73:2a:bb: 17:1a:ed:1c:09:f0:9a:bb:2a:01:bc:05:80:16:0d: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D X509v3 Authority Key Identifier: keyid:9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:c3:18:4b:db:e0:76:8e:2c:53:db:9a:bf:95:67:4a:bf:bc: dd:eb:96:40:44:04:25:ba:1c:47:e1:d1:e9:e2:f5:4d:1a:f8: 0b:8d:c2:4f:39:a5:c1:8d:c8:6f:34:66:96:bc:1b:b0:98:0a: 9d:6b:9b:b9:45:cc:0f:da:01:99:31:6a:59:2f:11:e1:49:f1: 97:33:a2:21:be:b5:57:39:af:88:5b:00:bd:e6:77:fb:b3:61: 5c:45:12:65:b9:8a:0c:41:cc:7a:e8:bf:6d:a9:26:dd:df:cd: a3:de:17:ab:fb:7f:68:4c:58:f9:d8:76:ce:07:e1:92:bb:e1: 22:41:cd:e5:a1:68:a5:0e:ec:c9:77:13:0b:cf:c9:f3:88:d4: bb:e1:8c:5c:42:ff:2e:3f:1d:c1:83:ec:c2:63:71:45:e8:e4: 8e:d0:2b:89:37:7d:0e:29:29:fc:33:31:fd:13:c4:53:4e:88: 72:cb:c0:f1:81:ed:d5:6c:07:32:12:6d:e4:78:7d:4c:c6:06: 37:d8:d4:f4:70:07:f5:16:36:07:fb:de:87:f3:2b:51:3c:97: 84:19:ac:c1:e2:b1:36:b8:ef:05:23:97:8d:40:ab:e0:89:d6: 5f:1d:fd:4a:f6:db:61:b8:d5:0c:65:99:b8:07:2a:37:26:23: 45:ce:5e:75 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUZF NzQwRkQwQzY0OTJGRUM5MkYzRTQ0Q0U2MzZFRTE4QjhEMzUxNzAeFw0yNTA4MTEw OTQwMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFQzcyMTIzRTQ2NTM0 NEY4NEQyRkUyOUY5M0U3QkY1Q0Y5QzlGNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0mPz0K8k/EJA8Ty/hYQzpDdz0Ti4Fil9bLCBapREQ7G9dDqOD QwUT189gw2/YT/ur8jNaCWw4mcOB1aN7aB3o+atXokWrKT2laODBD3NCxjkhFSNJ ou+T1R7QUKJs1g+kXEN/Y9xC2sdC35GzzLfVG6Tfj/n6+kYkDP7mVK52Ojvdu1+4 827mOO3w5r1XNwas9xzYr6kSxDFndnpvrbS2uBAjeEeWKWEXDGCHbvzgg6n00+0h X5FCdrObG83HfA7kWyZugVi8Hpl1rjINSphPqgSkDeEUmv4I4MLbMOX+gJL7TH4b /9flp+J+7XMquxca7RwJ8Jq7KgG8BYAWDRjHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUHschI+RlNE+E0v4p+T579c+cn00wHwYDVR0jBBgwFoAUn+dA/Qxkkv7JLz5E zmNu4YuNNRcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JF L24tZEFfUXhra3Y3Skx6NUV6bU51NFl1Tk5SYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evbi1kQV9ReGtrdjdKTHo1RXptTnU0WXVOTlJjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JFL24tZEFfUXhra3Y3Skx6NUV6 bU51NFl1Tk5SYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB4 wxhL2+B2jixT25q/lWdKv7zd65ZARAQluhxH4dHp4vVNGvgLjcJPOaXBjchvNGaW vBuwmAqda5u5RcwP2gGZMWpZLxHhSfGXM6IhvrVXOa+IWwC95nf7s2FcRRJluYoM Qcx66L9tqSbd382j3her+39oTFj52HbOB+GSu+EiQc3loWilDuzJdxMLz8nziNS7 4YxcQv8uPx3Bg+zCY3FF6OSO0CuJN30OKSn8MzH9E8RTTohyy8Dxge3VbAcyEm3k eH1MxgY32NT0cAf1FjYH+96H8ytRPJeEGazB4rE2uO8FI5eNQKvgidZfHf1K9tth uNUMZZm4Byo3JiNFzl51 -----END CERTIFICATE-----Generated at Mon Aug 11 10:52:42 2025 by rpki-client