$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft File: ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft (raw, json) Hash identifier: SkKFyLi9QLXEeqON9s3nEBUGo5I2Jkfwdxbk3N+unvA= Subject key identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB Authority key identifier: 66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A Certificate issuer: /CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Certificate serial: 0199 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft Manifest number: 0196 Signing time: Tue 24 Jun 2025 09:01:02 +0000 Manifest this update: Tue 24 Jun 2025 09:01:02 +0000 Manifest next update: Thu 26 Jun 2025 09:01:02 +0000 Files and hashes: 1: EjNpMXXvvVCwyFGWyMubdtB2030.roa (hash: buZM3Uc7yt29XNlsfjEbiJShEjAL9a1I5Rfck0Eo4CY=) 2: ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl (hash: B/jL3Htb8jboDOHjy2ODGdTTgxfHMe5ja6xrIvynDmg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Validity Not Before: Jun 24 09:01:02 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=A0F8BF346C2B664AB0BC558D860CD986090B8EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:c0:f9:d6:56:11:68:14:3f:24:70:ef:76: 42:51:f9:ff:82:22:2a:40:9e:6e:eb:99:cb:f5:36: fd:bb:41:a6:61:df:9e:98:85:78:8b:c4:38:62:8d: de:6b:11:76:33:03:44:ee:eb:e5:c5:f0:cc:2d:6b: fc:d1:f4:b3:18:54:44:d3:e8:dd:7e:a1:e5:a0:7f: b0:6b:3d:5e:10:b3:c4:54:87:8e:04:c2:f0:53:33: a8:ef:82:b9:4e:e5:89:e3:be:ad:f3:bf:bf:74:e9: 73:40:35:e9:77:c4:1c:ec:12:f2:17:27:7c:45:7a: 89:e5:3d:a9:30:85:3c:24:39:c9:00:18:79:15:3b: ff:8b:9f:5b:61:9f:b2:91:93:f8:78:04:6b:62:ad: be:ce:ce:c4:20:b8:88:d4:ba:e4:77:6c:33:2b:96: b6:62:c6:ef:bf:b1:59:7c:c8:9d:13:dd:83:92:dd: ad:f9:4f:ea:d8:59:b8:77:4b:87:f8:f1:69:bb:3d: ac:b5:7c:ee:56:3d:f3:36:92:50:10:8f:e3:27:2c: af:85:a1:db:a4:62:43:86:ff:e8:d0:c5:57:cb:ea: 33:9b:a7:b5:ad:a8:6d:5b:01:70:72:a8:af:f3:28: 1c:a8:8d:e8:48:e1:66:08:0c:c9:46:9d:84:ef:35: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB X509v3 Authority Key Identifier: keyid:66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:a0:9b:b4:78:9b:a4:91:c4:25:3b:a2:1e:22:a7:be:f0:62: 63:cc:6b:84:2d:3e:7f:99:5a:d3:a5:c2:a7:35:fd:02:2b:df: e1:4b:15:9d:c5:ef:bc:ab:3c:1e:c4:bd:13:9d:97:b8:0a:4f: 8e:99:b0:18:95:75:18:9d:37:fc:7a:74:53:59:08:70:9b:23: 34:3a:f4:a9:7f:57:f5:10:1a:47:c6:5e:75:49:6d:a7:7b:91: 82:13:a9:b9:de:12:26:0c:ea:89:00:f7:56:a9:2d:6b:58:78: 2b:97:1d:7a:d4:6d:b5:71:fe:35:46:6f:c6:e6:d0:a7:c4:bc: 38:a8:d8:f1:a4:0e:61:42:c3:62:a8:ed:9d:9e:3d:3d:b2:e5: 16:b4:ff:23:33:6a:c9:70:9e:b4:67:a4:bf:b0:7b:87:83:45: 81:9a:36:44:f1:9c:a7:37:a7:a0:9b:45:78:60:31:2c:d3:97: 75:6e:58:22:1c:2f:fb:28:90:8f:d0:90:4f:f8:0c:77:58:59: 24:6a:24:21:66:e6:1a:01:3e:9b:1b:0d:c6:86:87:94:94:48: a5:5b:3e:d8:dd:15:95:60:b7:a4:ba:ed:34:0a:f1:23:d6:90: 3d:eb:5f:0c:38:9c:3a:37:f0:d2:d9:f2:d8:34:6b:a5:e2:dd: 92:b5:2c:b7 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjYw Mjk2NUE3RDNGN0ZGQkYzQjUxRURGMTRFM0JCQ0MyREYzQjY5QTAeFw0yNTA2MjQw OTAxMDJaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKEEwRjhCRjM0NkMyQjY2 NEFCMEJDNTU4RDg2MENEOTg2MDkwQjhFQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLqcD51lYRaBQ/JHDvdkJR+f+CIipAnm7rmcv1Nv27QaZh356Y hXiLxDhijd5rEXYzA0Tu6+XF8Mwta/zR9LMYVETT6N1+oeWgf7BrPV4Qs8RUh44E wvBTM6jvgrlO5Ynjvq3zv7906XNANel3xBzsEvIXJ3xFeonlPakwhTwkOckAGHkV O/+Ln1thn7KRk/h4BGtirb7OzsQguIjUuuR3bDMrlrZixu+/sVl8yJ0T3YOS3a35 T+rYWbh3S4f48Wm7Pay1fO5WPfM2klAQj+MnLK+FodukYkOG/+jQxVfL6jObp7Wt qG1bAXByqK/zKByojehI4WYIDMlGnYTvNVjzAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUoPi/NGwrZkqwvFWNhgzZhgkLjrswHwYDVR0jBBgwFoAUZgKWWn0/f/vztR7f FOO7zC3ztpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvWmdLV1duMF9mX3Z6dFI3ZkZPTzd6QzN6dHBvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9aZ0tXV24wX2Zfdnp0UjdmRk9PN3pDM3p0cG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9aZ0tXV24wX2Zfdnp0 UjdmRk9PN3pDM3p0cG8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV6CbtHibpJHEJTuiHiKnvvBiY8xrhC0+f5la06XCpzX9Aivf4UsVncXvvKs8 HsS9E52XuApPjpmwGJV1GJ03/Hp0U1kIcJsjNDr0qX9X9RAaR8ZedUltp3uRghOp ud4SJgzqiQD3Vqkta1h4K5cdetRttXH+NUZvxubQp8S8OKjY8aQOYULDYqjtnZ49 PbLlFrT/IzNqyXCetGekv7B7h4NFgZo2RPGcpzenoJtFeGAxLNOXdW5YIhwv+yiQ j9CQT/gMd1hZJGokIWbmGgE+mxsNxoaHlJRIpVs+2N0VlWC3pLrtNArxI9aQPetf DDicOjfw0tny2DRrpeLdkrUstw== -----END CERTIFICATE-----Generated at Wed Jun 25 04:16:25 2025 by rpki-client