$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft File: Uptgbbhig71KCK9-sz7ziiVmMbs.mft (raw, json) Hash identifier: QNLeMOqyvGutuEyedqkIR5pzKw0M7fR4uSvTDqUG+PI= Subject key identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0D8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft Manifest number: 0D15 Signing time: Tue 24 Jun 2025 10:01:07 +0000 Manifest this update: Tue 24 Jun 2025 10:01:07 +0000 Manifest next update: Thu 26 Jun 2025 10:01:07 +0000 Files and hashes: 1: 7jkb-qiId542WFjMjFeCzShoCsU.roa (hash: v6F38azfqv6ngUvB3voCsiMTzNniwh26albKevr0xqk=) 2: 9XRt41blNePr5YhFGCZqfZojQqk.roa (hash: lTnK1TntsxV/PDMQhwSe8kvZNw8OO/W1qFXO4Xkv/vU=) 3: EQcTko4ZSBSFYOIYA4vRhsbkspo.roa (hash: v12oN9ik2bMxdrVcIJleYHCUPMHOyaVEHoj8fRa5uG0=) 4: F0hEG-Z8t4GrzNMoG5mOzIlvzLM.roa (hash: lrEYTeG35UK0y+HOoxv0o+gr+isfw3vVK4yhkeLwPII=) 5: JLqpo-JO2qKLUyN8fO9dQXnCpw4.roa (hash: ur/3v/H4FQMVJ1xFf+8IloTMZ+P5TknWGs3MAK+xu+M=) 6: OE6d0gfHOWNHjzeI-AcjYhHth7c.roa (hash: iBGFTaVS49pc+yfkaDBzQcOUjdYTJpz2lLaUJtgLd+U=) 7: T0-4OsbzDODDmQAvej-o-7oiGo4.roa (hash: 4qveo6fs12K/GTQ8LvFEO4HDQ+QKgkGggDZcNCfj32E=) 8: TEX5iHZOv1sEtWItlKM5QqU9cs8.roa (hash: KRMEYnYuQ6sz6J5E3y5O6KvuRJRegShC7z37S7gzDeI=) 9: TbTKJdlEVtUaIWi6LIISCuCh49s.roa (hash: 4oGJfMUB6dDeAr4ucBnBad65vcRingVvoqfqZXP2JPI=) 10: Uptgbbhig71KCK9-sz7ziiVmMbs.crl (hash: /Q0y4yrO0j2e2Hb3gTMiOGyKsI+FQ4TjnTxYMNUAWp8=) 11: sGPtGlpFcIsz7r3UaPXra1bbjtQ.roa (hash: yIkE4iASlrLz5lfiq7zJuU62fUSiKIkuZFwNHrYjH1E=) 12: tmglbtPFD74N3wh3zRlzSfL7MFc.roa (hash: zS8nTYFLzdXIyKJHuyzzUJONZdixhGlL985MniBI5RE=) 13: uraxH9xjm7jxTO_7nX8dTBAwZfo.roa (hash: upqsyOY/01e7DyP3vBaEyIGHhjzN69Ce+LIajMVTzWU=) 14: whTzVAp3GmNkhn8stzQGz-0es48.roa (hash: q6KjinddlUW/GxutVfxJ5USBn0zKEc+Y5hgIl89ARrc=) 15: yurZnfV8GalIvW7pP9xN0gOO3FE.roa (hash: kB06K0PDVbQRohaGSjPZAqVnyFdiMfaNFekXyLcn65Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 02:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3469 (0xd8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Jun 24 10:01:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FEAD3529A599ED7B16CFC4443C03E1439377561F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:72:70:3c:c0:6e:bb:a7:f6:b9:c6:30:2e: 3c:ba:79:5c:0b:c2:60:e1:c4:21:51:16:88:8c:50: 6d:d1:e3:11:b6:cf:d1:3a:e7:ff:7a:6e:56:d2:65: cb:9c:f0:15:33:83:a3:e9:7f:b5:13:33:43:f8:8b: 54:92:3c:8d:b8:0f:a9:47:01:39:7e:3e:10:92:1a: 88:5e:72:c4:fd:ab:8a:3d:1e:7c:07:44:fc:bd:f9: 8a:b3:45:12:2f:57:a4:6b:ca:e4:f9:f6:30:a2:ce: ec:2b:42:ed:11:77:53:1c:f0:e0:5e:1e:0c:2c:b2: 6c:d7:01:87:3b:69:08:02:bb:f2:8b:88:e3:19:a3: 4e:6c:ab:b9:33:85:5d:e7:9a:98:d4:08:95:5b:35: d2:30:37:30:f7:9b:ab:46:1a:e1:4f:2f:2d:1a:b9: 5e:ef:18:b1:61:2f:43:91:1d:0e:7a:ac:a6:38:4f: 42:ff:be:65:de:bd:fc:91:c7:6c:a0:32:ea:d9:6f: ec:7b:b9:8c:a3:25:b5:0d:a8:04:a4:ba:ba:35:30: d8:be:99:20:d2:89:9f:24:69:23:7f:f3:de:77:71: 72:15:e8:97:a5:3b:3a:69:84:00:92:28:08:ed:ad: b4:cb:ef:3c:fe:1a:4a:90:99:6b:2a:1f:97:59:c0: 2a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:5e:cc:c8:f4:a8:7a:64:64:3f:f4:c7:d2:f0:e4:a0:d8:86: 1c:5a:3e:b1:1d:09:e9:16:2e:56:5b:25:20:a2:47:ff:b5:92: 08:66:e7:e7:d9:1c:1f:4e:31:cd:05:70:8d:e1:b3:6c:2e:f3: a8:7b:19:70:99:60:2b:15:3f:2f:f3:e4:6e:5e:ec:73:5f:1e: ba:3e:1e:00:a8:71:11:5a:b4:87:0b:4f:a3:b3:c8:bf:6e:aa: dc:bd:4a:1e:47:59:9f:45:b1:37:26:31:60:18:29:14:43:e9: 22:a3:61:13:31:4e:13:91:e9:15:79:f4:8b:2d:a0:b5:2b:07: f1:40:85:67:32:ec:55:09:34:db:21:39:bf:12:7a:ee:77:7d: d7:21:1d:cf:15:82:72:74:9f:aa:b1:b5:2a:f9:0d:1d:ee:8c: b4:23:f7:5a:ee:f4:e7:e4:60:0f:06:70:d2:06:68:0a:7e:80: b6:86:88:f4:39:15:5c:20:18:1b:7a:80:66:b0:b4:86:51:8d: 16:88:13:10:5e:83:8a:56:51:8d:87:ea:b2:cd:fe:56:a8:29: 9f:6f:b2:5a:5c:ab:09:6b:1d:0d:36:c6:c8:2d:76:d4:cb:73: 0b:a5:9f:4f:79:94:9a:98:8b:34:dc:07:b6:96:e6:03:dd:70: aa:d0:42:03 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA2MjQx MDAxMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFQUQzNTI5QTU5OUVE N0IxNkNGQzQ0NDNDMDNFMTQzOTM3NzU2MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/qXJwPMBuu6f2ucYwLjy6eVwLwmDhxCFRFoiMUG3R4xG2z9E6 5/96blbSZcuc8BUzg6Ppf7UTM0P4i1SSPI24D6lHATl+PhCSGohecsT9q4o9HnwH RPy9+YqzRRIvV6RryuT59jCizuwrQu0Rd1Mc8OBeHgwssmzXAYc7aQgCu/KLiOMZ o05sq7kzhV3nmpjUCJVbNdIwNzD3m6tGGuFPLy0auV7vGLFhL0ORHQ56rKY4T0L/ vmXevfyRx2ygMurZb+x7uYyjJbUNqASkuro1MNi+mSDSiZ8kaSN/8953cXIV6Jel OzpphACSKAjtrbTL7zz+GkqQmWsqH5dZwCpPAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU/q01KaWZ7XsWz8REPAPhQ5N3Vh8wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9VcHRnYmJoaWc3MUtDSzktc3o3 emlpVm1NYnMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEABF7M yPSoemRkP/TH0vDkoNiGHFo+sR0J6RYuVlslIKJH/7WSCGbn59kcH04xzQVwjeGz bC7zqHsZcJlgKxU/L/Pkbl7sc18euj4eAKhxEVq0hwtPo7PIv26q3L1KHkdZn0Wx NyYxYBgpFEPpIqNhEzFOE5HpFXn0iy2gtSsH8UCFZzLsVQk02yE5vxJ67nd91yEd zxWCcnSfqrG1KvkNHe6MtCP3Wu705+RgDwZw0gZoCn6AtoaI9DkVXCAYG3qAZrC0 hlGNFogTEF6DilZRjYfqss3+Vqgpn2+yWlyrCWsdDTbGyC121MtzC6WfT3mUmpiL NNwHtpbmA91wqtBCAw== -----END CERTIFICATE-----Generated at Wed Jun 25 00:02:45 2025 by rpki-client