$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft File: U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft (raw, json) Hash identifier: aC1toAT8Mtt9XFT375QOOKf1i6yrDKTqrROI/fnAqUg= Subject key identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 Authority key identifier: 53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 Certificate issuer: /CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Certificate serial: DE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft Manifest number: DE Signing time: Mon 11 Aug 2025 07:40:28 +0000 Manifest this update: Mon 11 Aug 2025 07:40:28 +0000 Manifest next update: Mon 11 Aug 2025 13:40:28 +0000 Files and hashes: 1: U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl (hash: +9G8ounTSoAeRVMTLc1ZymzAULzNb4NmNcm/qtQqF74=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 13:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Validity Not Before: Aug 11 07:40:28 2025 GMT Not After : Jun 30 15:30:18 2026 GMT Subject: CN=8BCF9A1720F5F3385D2E74231DE4571525E4C745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:a5:3f:4b:26:51:f8:59:a2:01:cc:24:7a: 56:fe:69:eb:2d:0e:e9:54:ee:fc:bb:3a:c4:0a:9c: 5a:da:2c:8a:ac:6d:2b:48:9f:68:5f:9a:0b:9f:50: 7e:d5:a1:86:e2:a8:c1:d4:2d:4c:19:5d:09:04:bf: 4d:e8:bf:6d:0a:73:6b:68:52:e8:6f:16:de:39:35: 43:b1:10:97:de:d8:cb:b8:f0:83:d4:d0:20:42:37: 3b:3b:5d:dd:36:0e:73:6f:44:cf:36:22:a9:45:c2: 51:7d:d9:2a:74:a1:4a:b1:2c:05:0d:96:e1:0b:ae: 3c:58:6d:e9:35:80:99:53:1c:61:4c:92:84:53:84: 59:2c:36:bb:b6:32:6f:a6:cb:e7:40:e5:2c:4d:9b: 21:1d:e9:78:14:0b:bf:f8:b0:c4:07:a3:5e:7a:73: 60:84:d4:c2:bd:08:41:da:fe:ad:4e:44:59:9b:f5: ec:b9:5b:21:01:e7:9b:9b:1b:d7:9d:22:3c:c9:1e: 87:a6:d0:02:3a:91:23:b4:94:4e:11:43:b0:5f:d3: c3:a0:c2:e5:db:22:2e:60:bc:19:2e:08:94:25:94: 6b:ff:78:2f:2f:9b:2a:24:99:54:da:76:71:70:26: 8d:5c:07:3a:8b:fa:34:61:44:7e:8d:0f:92:c6:d3: fd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 X509v3 Authority Key Identifier: keyid:53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:0e:a2:f6:c1:0d:4c:57:6e:94:ee:04:97:56:68:ea:28:57: b1:b0:27:e2:6b:20:ec:b6:b9:1f:8e:bc:75:ba:a0:d7:53:65: 48:3c:6f:7b:3b:ba:80:d7:fa:f9:10:19:7a:26:14:5f:65:49: 12:1c:b4:1d:ab:c0:f9:a2:7c:13:ee:9a:4e:26:1a:0a:31:37: 85:68:79:ca:12:ad:7f:00:58:2a:b2:8e:6c:4d:64:72:59:dd: 3f:63:78:d8:a3:c6:c1:3a:55:17:c8:74:ad:15:5f:1b:fc:70: 85:ad:52:8a:dd:0b:42:31:8d:d2:24:6b:6d:f5:7f:32:dd:e8: 38:b4:4b:e2:2b:49:c8:24:35:5e:16:1f:d3:6c:a3:28:f4:fb: 9d:32:ca:fd:ce:0b:46:67:36:23:1e:83:4a:a3:06:e6:b8:68: f7:fa:9a:62:1d:0c:5e:e1:ca:3b:51:58:ac:18:72:0a:9f:6f: 24:a4:a8:18:ef:b0:45:ba:6e:30:75:08:d3:3e:c3:99:46:a6: cf:f4:58:70:a9:36:db:da:97:1b:46:28:36:f3:8a:35:1a:d4: e0:15:62:c8:99:87:e2:e7:95:a1:9c:95:18:68:fa:4f:bd:20: 03:81:83:cc:b7:1e:72:4c:17:19:7c:f2:58:96:b8:58:de:fa: 44:6f:19:c5 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM5 MDZFMkUyRUZFNzQ5MURCMTlCMUMyMDlFQTE3OEMzOUEwREFFNTAeFw0yNTA4MTEw NzQwMjhaFw0yNjA2MzAxNTMwMThaMDMxMTAvBgNVBAMTKDhCQ0Y5QTE3MjBGNUYz Mzg1RDJFNzQyMzFERTQ1NzE1MjVFNEM3NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbHKU/SyZR+FmiAcwkelb+aestDulU7vy7OsQKnFraLIqsbStI n2hfmgufUH7VoYbiqMHULUwZXQkEv03ov20Kc2toUuhvFt45NUOxEJfe2Mu48IPU 0CBCNzs7Xd02DnNvRM82IqlFwlF92Sp0oUqxLAUNluELrjxYbek1gJlTHGFMkoRT hFksNru2Mm+my+dA5SxNmyEd6XgUC7/4sMQHo156c2CE1MK9CEHa/q1ORFmb9ey5 WyEB55ubG9edIjzJHoem0AI6kSO0lE4RQ7Bf08OgwuXbIi5gvBkuCJQllGv/eC8v myokmVTadnFwJo1cBzqL+jRhRH6ND5LG0/39AgMBAAGjggIFMIICATAdBgNVHQ4E FgQUi8+aFyD18zhdLnQjHeRXFSXkx0UwHwYDVR0jBBgwFoAUU5BuLi7+dJHbGbHC CeoXjDmg2uUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUlVJS0Uv VTVCdUxpNy1kSkhiR2JIQ0Nlb1hqRG1nMnVVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VNUJ1TGk3LWRKSGJHYkhDQ2VvWGpEbWcydVUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS9VNUJ1TGk3LWRKSGJHYkhDQ2Vv WGpEbWcydVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEArw6i 9sENTFdulO4El1Zo6ihXsbAn4msg7La5H468dbqg11NlSDxvezu6gNf6+RAZeiYU X2VJEhy0HavA+aJ8E+6aTiYaCjE3hWh5yhKtfwBYKrKObE1kclndP2N42KPGwTpV F8h0rRVfG/xwha1Sit0LQjGN0iRrbfV/Mt3oOLRL4itJyCQ1XhYf02yjKPT7nTLK /c4LRmc2Ix6DSqMG5rho9/qaYh0MXuHKO1FYrBhyCp9vJKSoGO+wRbpuMHUI0z7D mUamz/RYcKk229qXG0YoNvOKNRrU4BViyJmH4ueVoZyVGGj6T70gA4GDzLceckwX GXzyWJa4WN76RG8ZxQ== -----END CERTIFICATE-----Generated at Mon Aug 11 12:56:09 2025 by rpki-client