$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft File: TwAMtt3TdIem3h9-rb2hJwjrLBk.mft (raw, json) Hash identifier: 8n9IhqQHX0NcFULbz5iFarYDdoampPZQEp8MOb/kETc= Subject key identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 Authority key identifier: 4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 Certificate issuer: /CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Certificate serial: 0201 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft Manifest number: 01FF Signing time: Mon 11 Aug 2025 10:40:53 +0000 Manifest this update: Mon 11 Aug 2025 10:40:53 +0000 Manifest next update: Wed 13 Aug 2025 10:40:53 +0000 Files and hashes: 1: TwAMtt3TdIem3h9-rb2hJwjrLBk.crl (hash: 4jfUpS7M3G21bQ19kZaZuMtYPNx4nTRu9gzUaijGD5I=) 2: uRSqFV58E3nH1p3jiHvKc4lbTUI.roa (hash: CnbYGl41BRGfMBBfC9/Hho6CwbwlpDvFOtjleXqKaI8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Validity Not Before: Aug 11 10:40:53 2025 GMT Not After : Nov 7 15:30:19 2025 GMT Subject: CN=6BA0B4DA6503A1532D5360C18EB1A32EBAA66400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:5d:3b:a1:99:c6:fb:3b:7a:74:a4:7e:e8: 5a:72:42:8e:25:eb:10:33:c3:96:55:5b:d2:40:e7: 21:01:fa:e3:1d:64:7e:e0:b5:b8:7a:de:05:10:27: 88:10:c4:88:8b:76:b3:fb:b3:98:fc:c7:2e:45:ba: 3e:4d:f3:cc:5a:c3:45:13:4a:8c:de:59:79:85:6f: c7:ed:14:0d:fb:9d:cd:4a:27:96:94:13:5b:2a:5a: c5:37:40:d8:78:84:88:fb:2a:90:27:fb:70:2a:9a: b3:ec:e5:34:d3:1c:48:37:6f:84:0b:e5:23:fe:b8: e4:55:82:0c:70:55:91:9a:87:e1:9c:f5:5d:94:e6: 76:d7:b8:ab:c8:f5:06:ef:f8:66:29:51:6b:07:7a: 21:fa:de:af:82:f0:c2:5a:1d:3e:91:24:4e:d2:67: 2e:9a:42:d1:1d:72:1a:5b:dd:ee:c5:2e:54:c7:59: df:c7:dd:5f:b4:1f:6f:95:76:d8:4b:e1:12:ad:2b: 08:8d:9d:2b:9d:7a:eb:da:f6:3e:d0:83:30:38:5d: 4c:4e:f1:fc:c3:30:9a:05:bf:fa:16:d7:1e:3c:fc: bc:4d:83:8a:1f:5e:cb:5b:73:c2:47:72:92:83:5b: 15:57:fa:95:85:6c:8f:7d:22:03:31:ec:22:d8:39: 0c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 X509v3 Authority Key Identifier: keyid:4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:79:e7:9e:70:aa:a8:23:75:14:35:b4:bb:c0:e6:47:c0:bd: cd:53:a1:be:a4:8f:d1:39:24:32:c9:95:a9:37:2c:f0:3e:23: 7d:b4:9e:4e:2b:a0:ef:76:f6:7f:9d:ca:5d:80:25:e4:3f:67: 94:e1:d5:50:fd:5f:85:99:15:8d:c4:5f:81:49:93:23:ab:e5: 0d:a9:e1:a0:00:5c:2d:34:41:18:66:7c:01:86:92:ed:a2:6c: a4:53:7d:5e:15:d2:a5:7a:01:24:84:60:bb:20:47:94:d2:cc: 3d:3a:96:ad:80:9f:db:4e:ca:e8:b3:4e:85:df:79:57:08:85: 66:a9:05:bf:97:b4:3a:15:45:6b:6f:94:b4:f2:62:39:62:5b: fe:61:ca:8d:48:ac:0d:eb:bb:77:60:2e:95:f0:0f:d1:e5:c1: f4:42:b4:6c:6f:d5:b9:fc:d3:92:ae:bc:a9:a4:1c:fe:22:f1: 99:7a:a5:8e:0d:1c:c5:1a:b0:36:6e:f6:e2:b3:f0:23:1c:8e: 41:de:0b:5b:01:bf:32:ea:1f:e9:c3:ab:9f:96:14:8a:f5:84: f0:b2:02:0e:5c:23:86:b9:e0:51:1a:5b:49:e8:5a:53:36:64: 93:ba:c7:80:e7:29:9d:c6:3f:c4:fd:fc:ef:0a:f3:83:7a:68: 8c:37:af:ca -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEYw MDBDQjZEREQzNzQ4N0E2REUxRjdFQURCREExMjcwOEVCMkMxOTAeFw0yNTA4MTEx MDQwNTNaFw0yNTExMDcxNTMwMTlaMDMxMTAvBgNVBAMTKDZCQTBCNERBNjUwM0Ex NTMyRDUzNjBDMThFQjFBMzJFQkFBNjY0MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoHl07oZnG+zt6dKR+6FpyQo4l6xAzw5ZVW9JA5yEB+uMdZH7g tbh63gUQJ4gQxIiLdrP7s5j8xy5Fuj5N88xaw0UTSozeWXmFb8ftFA37nc1KJ5aU E1sqWsU3QNh4hIj7KpAn+3AqmrPs5TTTHEg3b4QL5SP+uORVggxwVZGah+Gc9V2U 5nbXuKvI9Qbv+GYpUWsHeiH63q+C8MJaHT6RJE7SZy6aQtEdchpb3e7FLlTHWd/H 3V+0H2+VdthL4RKtKwiNnSudeuva9j7QgzA4XUxO8fzDMJoFv/oW1x48/LxNg4of Xstbc8JHcpKDWxVX+pWFbI99IgMx7CLYOQwLAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUa6C02mUDoVMtU2DBjrGjLrqmZAAwHwYDVR0jBBgwFoAUTwAMtt3TdIem3h9+ rb2hJwjrLBkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv VHdBTXR0M1RkSWVtM2g5LXJiMmhKd2pyTEJrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Ud0FNdHQzVGRJZW0zaDktcmIyaEp3anJMQmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS9Ud0FNdHQzVGRJZW0zaDktcmIy aEp3anJMQmsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcnnn nnCqqCN1FDW0u8DmR8C9zVOhvqSP0TkkMsmVqTcs8D4jfbSeTiug73b2f53KXYAl 5D9nlOHVUP1fhZkVjcRfgUmTI6vlDanhoABcLTRBGGZ8AYaS7aJspFN9XhXSpXoB JIRguyBHlNLMPTqWrYCf207K6LNOhd95VwiFZqkFv5e0OhVFa2+UtPJiOWJb/mHK jUisDeu7d2AulfAP0eXB9EK0bG/VufzTkq68qaQc/iLxmXqljg0cxRqwNm724rPw IxyOQd4LWwG/Muof6cOrn5YUivWE8LICDlwjhrngURpbSehaUzZkk7rHgOcpncY/ xP387wrzg3pojDevyg== -----END CERTIFICATE-----Generated at Mon Aug 11 13:11:24 2025 by rpki-client