$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft File: ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft (raw, json) Hash identifier: BJ0+rocpi2iwG5OQaE1WsAQHyKcs5u52MpA6JGnwcN4= Subject key identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB Authority key identifier: 66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A Certificate issuer: /CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Certificate serial: 017B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft Manifest number: 0178 Signing time: Sat 10 May 2025 08:51:50 +0000 Manifest this update: Sat 10 May 2025 08:51:50 +0000 Manifest next update: Mon 12 May 2025 08:51:50 +0000 Files and hashes: 1: EjNpMXXvvVCwyFGWyMubdtB2030.roa (hash: buZM3Uc7yt29XNlsfjEbiJShEjAL9a1I5Rfck0Eo4CY=) 2: ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl (hash: IT8Zdo8fosOl1AdNuok96ZTKjwEFLG/KBkcXxCyNAU0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Validity Not Before: May 10 08:51:50 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=A0F8BF346C2B664AB0BC558D860CD986090B8EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:c0:f9:d6:56:11:68:14:3f:24:70:ef:76: 42:51:f9:ff:82:22:2a:40:9e:6e:eb:99:cb:f5:36: fd:bb:41:a6:61:df:9e:98:85:78:8b:c4:38:62:8d: de:6b:11:76:33:03:44:ee:eb:e5:c5:f0:cc:2d:6b: fc:d1:f4:b3:18:54:44:d3:e8:dd:7e:a1:e5:a0:7f: b0:6b:3d:5e:10:b3:c4:54:87:8e:04:c2:f0:53:33: a8:ef:82:b9:4e:e5:89:e3:be:ad:f3:bf:bf:74:e9: 73:40:35:e9:77:c4:1c:ec:12:f2:17:27:7c:45:7a: 89:e5:3d:a9:30:85:3c:24:39:c9:00:18:79:15:3b: ff:8b:9f:5b:61:9f:b2:91:93:f8:78:04:6b:62:ad: be:ce:ce:c4:20:b8:88:d4:ba:e4:77:6c:33:2b:96: b6:62:c6:ef:bf:b1:59:7c:c8:9d:13:dd:83:92:dd: ad:f9:4f:ea:d8:59:b8:77:4b:87:f8:f1:69:bb:3d: ac:b5:7c:ee:56:3d:f3:36:92:50:10:8f:e3:27:2c: af:85:a1:db:a4:62:43:86:ff:e8:d0:c5:57:cb:ea: 33:9b:a7:b5:ad:a8:6d:5b:01:70:72:a8:af:f3:28: 1c:a8:8d:e8:48:e1:66:08:0c:c9:46:9d:84:ef:35: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB X509v3 Authority Key Identifier: keyid:66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e4:52:29:15:7e:ed:4e:7b:30:52:9c:09:90:c2:5b:76:36: 4e:bf:df:f3:6e:a7:fe:77:9e:67:f7:fa:33:57:95:4d:e1:14: 3a:25:3a:ca:ed:c5:f6:a7:8b:59:ef:5c:22:75:d2:0a:08:03: 75:03:31:40:a1:d6:cb:a8:db:45:c0:b1:14:6f:6a:1f:37:74: fb:00:48:fb:70:76:1c:39:53:08:aa:61:ca:0f:b4:e2:68:70: a8:24:f1:7e:6a:ab:5f:77:d6:ee:89:f6:3c:61:86:93:b0:c5: c2:af:6d:79:a1:5c:74:28:97:49:1b:27:34:a1:17:45:48:1a: 8c:5c:0f:80:b8:56:5e:9a:10:93:43:2b:9a:07:c0:32:f6:c8: c5:58:88:4e:d3:d1:4a:e3:e1:64:49:06:dd:c4:fa:fe:a8:0f: 62:2b:4d:6b:85:f6:18:6b:b4:08:72:e4:3f:70:97:12:01:50: 15:84:c6:63:71:a5:d6:45:31:e0:f5:cf:b2:7a:58:34:34:87: f4:62:7c:52:73:f5:e5:fb:21:5e:ce:a6:ff:01:26:0a:9d:66: 63:29:7a:8b:8b:ae:34:a6:cb:34:05:c3:27:e9:5d:e3:b7:f9: c4:08:90:48:ff:ff:4f:af:25:0f:d4:b1:a7:48:cd:55:b3:0c: 74:c8:d2:29 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAXswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjYw Mjk2NUE3RDNGN0ZGQkYzQjUxRURGMTRFM0JCQ0MyREYzQjY5QTAeFw0yNTA1MTAw ODUxNTBaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKEEwRjhCRjM0NkMyQjY2 NEFCMEJDNTU4RDg2MENEOTg2MDkwQjhFQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLqcD51lYRaBQ/JHDvdkJR+f+CIipAnm7rmcv1Nv27QaZh356Y hXiLxDhijd5rEXYzA0Tu6+XF8Mwta/zR9LMYVETT6N1+oeWgf7BrPV4Qs8RUh44E wvBTM6jvgrlO5Ynjvq3zv7906XNANel3xBzsEvIXJ3xFeonlPakwhTwkOckAGHkV O/+Ln1thn7KRk/h4BGtirb7OzsQguIjUuuR3bDMrlrZixu+/sVl8yJ0T3YOS3a35 T+rYWbh3S4f48Wm7Pay1fO5WPfM2klAQj+MnLK+FodukYkOG/+jQxVfL6jObp7Wt qG1bAXByqK/zKByojehI4WYIDMlGnYTvNVjzAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUoPi/NGwrZkqwvFWNhgzZhgkLjrswHwYDVR0jBBgwFoAUZgKWWn0/f/vztR7f FOO7zC3ztpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvWmdLV1duMF9mX3Z6dFI3ZkZPTzd6QzN6dHBvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9aZ0tXV24wX2Zfdnp0UjdmRk9PN3pDM3p0cG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9aZ0tXV24wX2Zfdnp0 UjdmRk9PN3pDM3p0cG8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJuRSKRV+7U57MFKcCZDCW3Y2Tr/f826n/neeZ/f6M1eVTeEUOiU6yu3F9qeL We9cInXSCggDdQMxQKHWy6jbRcCxFG9qHzd0+wBI+3B2HDlTCKphyg+04mhwqCTx fmqrX3fW7on2PGGGk7DFwq9teaFcdCiXSRsnNKEXRUgajFwPgLhWXpoQk0MrmgfA MvbIxViITtPRSuPhZEkG3cT6/qgPYitNa4X2GGu0CHLkP3CXEgFQFYTGY3Gl1kUx 4PXPsnpYNDSH9GJ8UnP15fshXs6m/wEmCp1mYyl6i4uuNKbLNAXDJ+ld47f5xAiQ SP//T68lD9Sxp0jNVbMMdMjSKQ== -----END CERTIFICATE-----Generated at Sat May 10 14:24:44 2025 by rpki-client