$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft File: Uptgbbhig71KCK9-sz7ziiVmMbs.mft (raw, json) Hash identifier: 6/eT8q2tMw5XwoiiNkycAOtW6EIidLPbo5IwkYsZ8Q0= Subject key identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0D6E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft Manifest number: 0CF6 Signing time: Thu 08 May 2025 21:51:11 +0000 Manifest this update: Thu 08 May 2025 21:51:11 +0000 Manifest next update: Sat 10 May 2025 21:51:11 +0000 Files and hashes: 1: 7jkb-qiId542WFjMjFeCzShoCsU.roa (hash: v6F38azfqv6ngUvB3voCsiMTzNniwh26albKevr0xqk=) 2: 9XRt41blNePr5YhFGCZqfZojQqk.roa (hash: lTnK1TntsxV/PDMQhwSe8kvZNw8OO/W1qFXO4Xkv/vU=) 3: EQcTko4ZSBSFYOIYA4vRhsbkspo.roa (hash: v12oN9ik2bMxdrVcIJleYHCUPMHOyaVEHoj8fRa5uG0=) 4: F0hEG-Z8t4GrzNMoG5mOzIlvzLM.roa (hash: lrEYTeG35UK0y+HOoxv0o+gr+isfw3vVK4yhkeLwPII=) 5: JLqpo-JO2qKLUyN8fO9dQXnCpw4.roa (hash: ur/3v/H4FQMVJ1xFf+8IloTMZ+P5TknWGs3MAK+xu+M=) 6: OE6d0gfHOWNHjzeI-AcjYhHth7c.roa (hash: iBGFTaVS49pc+yfkaDBzQcOUjdYTJpz2lLaUJtgLd+U=) 7: T0-4OsbzDODDmQAvej-o-7oiGo4.roa (hash: 4qveo6fs12K/GTQ8LvFEO4HDQ+QKgkGggDZcNCfj32E=) 8: TEX5iHZOv1sEtWItlKM5QqU9cs8.roa (hash: KRMEYnYuQ6sz6J5E3y5O6KvuRJRegShC7z37S7gzDeI=) 9: TbTKJdlEVtUaIWi6LIISCuCh49s.roa (hash: 4oGJfMUB6dDeAr4ucBnBad65vcRingVvoqfqZXP2JPI=) 10: Uptgbbhig71KCK9-sz7ziiVmMbs.crl (hash: phxZkmy0X3t724OHUiNxZmA+iw71eq7aJST2DMD6kdE=) 11: sGPtGlpFcIsz7r3UaPXra1bbjtQ.roa (hash: yIkE4iASlrLz5lfiq7zJuU62fUSiKIkuZFwNHrYjH1E=) 12: tmglbtPFD74N3wh3zRlzSfL7MFc.roa (hash: zS8nTYFLzdXIyKJHuyzzUJONZdixhGlL985MniBI5RE=) 13: uraxH9xjm7jxTO_7nX8dTBAwZfo.roa (hash: upqsyOY/01e7DyP3vBaEyIGHhjzN69Ce+LIajMVTzWU=) 14: whTzVAp3GmNkhn8stzQGz-0es48.roa (hash: q6KjinddlUW/GxutVfxJ5USBn0zKEc+Y5hgIl89ARrc=) 15: yurZnfV8GalIvW7pP9xN0gOO3FE.roa (hash: kB06K0PDVbQRohaGSjPZAqVnyFdiMfaNFekXyLcn65Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 11:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3438 (0xd6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: May 8 21:51:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FEAD3529A599ED7B16CFC4443C03E1439377561F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:72:70:3c:c0:6e:bb:a7:f6:b9:c6:30:2e: 3c:ba:79:5c:0b:c2:60:e1:c4:21:51:16:88:8c:50: 6d:d1:e3:11:b6:cf:d1:3a:e7:ff:7a:6e:56:d2:65: cb:9c:f0:15:33:83:a3:e9:7f:b5:13:33:43:f8:8b: 54:92:3c:8d:b8:0f:a9:47:01:39:7e:3e:10:92:1a: 88:5e:72:c4:fd:ab:8a:3d:1e:7c:07:44:fc:bd:f9: 8a:b3:45:12:2f:57:a4:6b:ca:e4:f9:f6:30:a2:ce: ec:2b:42:ed:11:77:53:1c:f0:e0:5e:1e:0c:2c:b2: 6c:d7:01:87:3b:69:08:02:bb:f2:8b:88:e3:19:a3: 4e:6c:ab:b9:33:85:5d:e7:9a:98:d4:08:95:5b:35: d2:30:37:30:f7:9b:ab:46:1a:e1:4f:2f:2d:1a:b9: 5e:ef:18:b1:61:2f:43:91:1d:0e:7a:ac:a6:38:4f: 42:ff:be:65:de:bd:fc:91:c7:6c:a0:32:ea:d9:6f: ec:7b:b9:8c:a3:25:b5:0d:a8:04:a4:ba:ba:35:30: d8:be:99:20:d2:89:9f:24:69:23:7f:f3:de:77:71: 72:15:e8:97:a5:3b:3a:69:84:00:92:28:08:ed:ad: b4:cb:ef:3c:fe:1a:4a:90:99:6b:2a:1f:97:59:c0: 2a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:46:bb:29:34:6b:80:b2:c7:d4:e3:9d:03:19:ce:81:da:06: 5f:0a:75:46:72:24:6a:0e:43:92:c6:75:f9:f9:0b:b8:20:72: 4b:4c:f3:0d:8b:b2:fa:be:2d:1a:e5:fa:6a:89:4f:51:58:06: ac:d1:2c:08:a7:bf:c9:a0:d6:ce:ad:8e:09:dc:9d:7f:cd:7f: cd:16:bf:b3:fb:d3:83:df:c7:24:14:79:0c:8c:49:bc:08:2e: db:e1:12:87:aa:de:04:16:a4:a1:c0:3f:83:f1:bf:ac:fa:0e: ac:b7:e2:a8:6c:16:8d:4e:69:46:4a:cc:95:b8:e4:2c:29:8d: d2:b2:81:5c:73:ed:22:50:51:bb:36:58:d2:37:3c:29:b3:b6: 40:78:27:b7:b4:26:77:a2:f2:a2:be:c7:47:66:52:36:78:7f: 45:19:2a:a2:d2:0d:42:1f:10:97:cd:6e:56:2d:f0:63:d2:59: 2b:a5:0d:6b:1e:8a:95:3f:93:8c:c4:ea:c7:6e:f1:4b:11:a5: 1b:0a:f1:a5:28:a0:39:31:04:8c:b6:ed:18:b9:84:f2:fb:fc: fa:9e:ba:8e:e4:59:1a:f1:5d:b0:10:66:49:65:f9:06:36:29: 3e:d1:be:60:d4:e3:27:09:48:76:1e:0f:23:96:d6:38:ce:25: 8b:6b:83:90 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTA1MDgy MTUxMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFQUQzNTI5QTU5OUVE N0IxNkNGQzQ0NDNDMDNFMTQzOTM3NzU2MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/qXJwPMBuu6f2ucYwLjy6eVwLwmDhxCFRFoiMUG3R4xG2z9E6 5/96blbSZcuc8BUzg6Ppf7UTM0P4i1SSPI24D6lHATl+PhCSGohecsT9q4o9HnwH RPy9+YqzRRIvV6RryuT59jCizuwrQu0Rd1Mc8OBeHgwssmzXAYc7aQgCu/KLiOMZ o05sq7kzhV3nmpjUCJVbNdIwNzD3m6tGGuFPLy0auV7vGLFhL0ORHQ56rKY4T0L/ vmXevfyRx2ygMurZb+x7uYyjJbUNqASkuro1MNi+mSDSiZ8kaSN/8953cXIV6Jel OzpphACSKAjtrbTL7zz+GkqQmWsqH5dZwCpPAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU/q01KaWZ7XsWz8REPAPhQ5N3Vh8wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9VcHRnYmJoaWc3MUtDSzktc3o3 emlpVm1NYnMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD0a7 KTRrgLLH1OOdAxnOgdoGXwp1RnIkag5DksZ1+fkLuCByS0zzDYuy+r4tGuX6aolP UVgGrNEsCKe/yaDWzq2OCdydf81/zRa/s/vTg9/HJBR5DIxJvAgu2+ESh6reBBak ocA/g/G/rPoOrLfiqGwWjU5pRkrMlbjkLCmN0rKBXHPtIlBRuzZY0jc8KbO2QHgn t7Qmd6Lyor7HR2ZSNnh/RRkqotINQh8Ql81uVi3wY9JZK6UNax6KlT+TjMTqx27x SxGlGwrxpSigOTEEjLbtGLmE8vv8+p66juRZGvFdsBBmSWX5BjYpPtG+YNTjJwlI dh4PI5bWOM4li2uDkA== -----END CERTIFICATE-----Generated at Sat May 10 09:38:49 2025 by rpki-client