$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WAEI/ujkGS7cYieoTDE7NrFKanMIHbl4.mft File: ujkGS7cYieoTDE7NrFKanMIHbl4.mft (raw, json) Hash identifier: RrVqFTUb5nCe9RzCfI1W0Z+CAdMPCm0By8luG3mZdmQ= Subject key identifier: 19:8C:AF:69:41:94:C7:92:FF:84:93:71:55:CD:16:20:93:80:7D:E2 Authority key identifier: BA:39:06:4B:B7:18:89:EA:13:0C:4E:CD:AC:52:9A:9C:C2:07:6E:5E Certificate issuer: /CN=BA39064BB71889EA130C4ECDAC529A9CC2076E5E Certificate serial: 0CE7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ujkGS7cYieoTDE7NrFKanMIHbl4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WAEI/ujkGS7cYieoTDE7NrFKanMIHbl4.mft Manifest number: 0CE7 Signing time: Sat 10 May 2025 08:52:33 +0000 Manifest this update: Sat 10 May 2025 08:52:33 +0000 Manifest next update: Mon 12 May 2025 08:52:33 +0000 Files and hashes: 1: ujkGS7cYieoTDE7NrFKanMIHbl4.crl (hash: Vwbw6zUvDgW7D5JGOCqS7PLuJMF6hyt1FxHJny35hEA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WAEI/ujkGS7cYieoTDE7NrFKanMIHbl4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WAEI/ujkGS7cYieoTDE7NrFKanMIHbl4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ujkGS7cYieoTDE7NrFKanMIHbl4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA39064BB71889EA130C4ECDAC529A9CC2076E5E Validity Not Before: May 10 08:52:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=198CAF694194C792FF84937155CD162093807DE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ff:87:3a:42:fb:67:e2:17:d1:5d:f7:70:7f: f9:44:5f:fa:ed:e5:7b:f1:b9:3b:76:aa:29:dd:ef: 9c:f2:73:46:1d:46:1f:13:46:6c:0b:31:97:8c:0b: 75:bb:8d:c9:12:78:47:17:54:ad:03:ce:93:10:0a: c4:60:4f:fe:6d:92:5e:d9:a4:9a:d1:cb:90:be:eb: c0:c6:dc:75:15:33:9f:da:8f:57:62:4c:03:44:50: 2e:52:2d:37:03:ff:1b:90:20:ac:95:70:09:34:32: 87:6b:fa:61:75:35:ee:4f:d3:eb:57:f4:fe:1f:2e: a3:c3:a8:c7:71:12:f8:1c:b3:24:00:26:e3:4a:6b: 28:77:e3:86:15:07:41:48:e0:b7:bb:34:93:89:71: 79:f6:ae:cb:ca:f3:d4:d1:f8:77:f4:c5:6e:20:95: bb:d9:ff:29:6a:9d:44:cc:2a:d0:90:59:2b:ac:ce: b1:ad:27:1e:7b:15:03:16:ee:92:fb:57:a8:88:dc: 1e:b3:0b:9f:4c:3d:61:8c:5f:89:6b:7c:c9:75:72: e3:73:95:9c:78:50:56:99:e7:bc:94:e9:92:38:9f: 45:da:ec:eb:f3:66:cd:1b:2e:ce:fa:92:49:91:49: c7:25:32:df:92:1f:af:a5:e2:11:5c:e1:92:5a:c3: 0e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8C:AF:69:41:94:C7:92:FF:84:93:71:55:CD:16:20:93:80:7D:E2 X509v3 Authority Key Identifier: keyid:BA:39:06:4B:B7:18:89:EA:13:0C:4E:CD:AC:52:9A:9C:C2:07:6E:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WAEI/ujkGS7cYieoTDE7NrFKanMIHbl4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ujkGS7cYieoTDE7NrFKanMIHbl4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WAEI/ujkGS7cYieoTDE7NrFKanMIHbl4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:d4:b8:f8:7c:a7:1e:59:3e:bd:f6:19:6a:f6:20:33:08:8f: ca:f0:b4:03:f8:c6:09:0a:59:14:b3:c2:ab:c9:3c:95:48:a4: 89:f5:6a:51:9c:52:4e:d8:c2:86:1b:a9:d4:4c:ef:d9:3a:07: d5:2e:e1:b7:2c:70:98:fe:f7:fb:97:61:ed:df:b3:e5:5b:57: 63:63:00:c0:e1:24:4d:8a:b6:06:fb:7d:7b:c6:a8:1a:b1:20: a6:88:64:1b:b1:71:03:37:b9:6a:16:ac:45:fb:f4:b7:a8:9d: 4d:c8:91:24:97:93:20:7b:4d:f5:07:6a:82:ab:30:46:5d:ac: 3d:15:c3:95:a2:4d:c5:3e:ad:e6:20:3e:a6:23:ff:e7:84:f0: 52:76:62:7d:23:c7:21:01:a9:aa:8c:20:9c:59:58:7d:8d:10: ea:ac:53:80:80:da:bb:e1:f1:bd:6c:4f:81:e7:ff:6b:80:50: f1:f9:28:c0:47:fc:0f:77:12:24:69:5d:f1:74:64:04:40:37: 33:7f:05:89:59:85:f9:9c:b1:7b:c4:e8:3b:ce:b5:e4:63:c5: 7d:86:69:3f:06:c0:ef:a7:a1:44:b1:7e:10:6f:35:aa:ab:ae: 80:e3:35:03:06:71:ac:11:9c:57:99:d8:d0:53:54:89:62:f4: fd:a5:5f:72 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkEz OTA2NEJCNzE4ODlFQTEzMEM0RUNEQUM1MjlBOUNDMjA3NkU1RTAeFw0yNTA1MTAw ODUyMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5OENBRjY5NDE5NEM3 OTJGRjg0OTM3MTU1Q0QxNjIwOTM4MDdERTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC//4c6Qvtn4hfRXfdwf/lEX/rt5XvxuTt2qind75zyc0YdRh8T RmwLMZeMC3W7jckSeEcXVK0DzpMQCsRgT/5tkl7ZpJrRy5C+68DG3HUVM5/aj1di TANEUC5SLTcD/xuQIKyVcAk0Modr+mF1Ne5P0+tX9P4fLqPDqMdxEvgcsyQAJuNK ayh344YVB0FI4Le7NJOJcXn2rsvK89TR+Hf0xW4glbvZ/ylqnUTMKtCQWSuszrGt Jx57FQMW7pL7V6iI3B6zC59MPWGMX4lrfMl1cuNzlZx4UFaZ57yU6ZI4n0Xa7Ovz Zs0bLs76kkmRScclMt+SH6+l4hFc4ZJaww4hAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUGYyvaUGUx5L/hJNxVc0WIJOAfeIwHwYDVR0jBBgwFoAUujkGS7cYieoTDE7N rFKanMIHbl4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FFSS91 amtHUzdjWWllb1RERTdOckZLYW5NSUhibDQuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3Vqa0dTN2NZaWVvVERFN05yRkthbk1JSGJsNC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1dBRUkvdWprR1M3Y1lpZW9UREU3TnJGS2Fu TUlIYmw0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAN7UuPh8 px5ZPr32GWr2IDMIj8rwtAP4xgkKWRSzwqvJPJVIpIn1alGcUk7YwoYbqdRM79k6 B9Uu4bcscJj+9/uXYe3fs+VbV2NjAMDhJE2Ktgb7fXvGqBqxIKaIZBuxcQM3uWoW rEX79LeonU3IkSSXkyB7TfUHaoKrMEZdrD0Vw5WiTcU+reYgPqYj/+eE8FJ2Yn0j xyEBqaqMIJxZWH2NEOqsU4CA2rvh8b1sT4Hn/2uAUPH5KMBH/A93EiRpXfF0ZARA NzN/BYlZhfmcsXvE6DvOteRjxX2GaT8GwO+noUSxfhBvNaqrroDjNQMGcawRnFeZ 2NBTVIli9P2lX3I= -----END CERTIFICATE-----Generated at Sat May 10 12:24:23 2025 by rpki-client