$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft File: RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft (raw, json) Hash identifier: L8bJwI/3e+oTHwFqkaVzeFxp3871lQaJ68hw0VTUL0Y= Subject key identifier: E6:66:F7:D9:24:90:F1:A8:BD:F5:57:B9:78:FC:18:F7:0B:1D:D9:B1 Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D Certificate serial: 11E9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft Manifest number: 11D8 Signing time: Mon 28 Apr 2025 08:49:45 +0000 Manifest this update: Mon 28 Apr 2025 08:49:45 +0000 Manifest next update: Wed 30 Apr 2025 08:49:45 +0000 Files and hashes: 1: RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl (hash: PTLtK/EEFqfWG6JyNcPJNz+RV7VV7Knzt63hKlBafyQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4585 (0x11e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D Validity Not Before: Apr 28 08:49:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E666F7D92490F1A8BDF557B978FC18F70B1DD9B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8a:51:8a:02:56:18:ee:65:39:11:38:fb:34: a8:e5:a9:06:89:b7:5e:ad:96:65:a5:6f:0c:16:fa: 84:d3:26:4b:a7:3a:76:ac:64:68:7d:63:2d:42:75: 54:74:f1:bc:d4:49:24:df:85:70:fc:69:bd:1e:43: 13:31:1c:61:cd:cd:03:fb:a2:dc:b3:c4:16:22:fe: 8a:9a:a3:1b:65:6e:1a:55:78:d0:6b:0e:18:90:68: 9a:37:a4:4d:98:52:31:0e:bd:89:f0:39:c1:c3:58: 4f:ec:cd:18:bb:64:2b:a2:71:61:f3:12:9a:4c:1f: 01:90:ff:d7:ed:5f:ca:be:67:b5:c2:e3:de:1a:76: e3:83:f2:63:b8:1d:37:02:57:33:7d:88:83:15:6a: f8:91:9b:b5:c1:d7:1a:ef:53:e9:12:48:64:d3:05: 50:b1:c4:04:d2:bb:61:af:23:03:01:7c:ed:54:fa: 81:9c:be:fb:01:2c:57:89:6b:4f:23:85:4c:ce:4e: 1c:11:3e:a2:a3:f5:a5:c6:55:d1:15:d5:05:b8:c8: d8:b8:e7:87:31:a4:80:ea:bf:65:7b:4e:a7:15:6d: 2e:0b:08:66:82:d6:dc:8d:ba:8f:e1:14:7d:42:6b: 5f:8d:12:a3:75:e8:20:d8:33:1c:c9:20:0b:fc:9a: 1a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:66:F7:D9:24:90:F1:A8:BD:F5:57:B9:78:FC:18:F7:0B:1D:D9:B1 X509v3 Authority Key Identifier: keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:44:f3:df:e9:cb:31:3a:6e:13:2c:32:f0:4e:ef:14:a7:cc: ca:33:5f:7d:26:60:77:05:c1:60:60:cd:4a:c3:9a:bf:6e:c5: df:48:22:3c:6c:80:d2:b5:7a:21:70:62:ef:ed:ac:7f:13:90: f6:c9:48:6a:59:6d:30:b4:a7:f4:6d:8b:57:7c:e0:a1:b1:05: 1b:c3:c1:66:f1:47:2b:25:e2:b9:ef:cd:cf:40:37:e6:2c:24: 47:8e:22:e1:d0:af:1a:ec:18:32:85:f7:d7:7a:4f:a9:c3:6e: 67:ab:30:01:2b:d3:6d:c4:25:8c:33:bc:24:80:9a:26:6b:92: 35:28:37:02:ab:61:96:b3:85:44:32:e4:22:3d:4d:4b:ed:21: c8:8c:80:60:93:8f:22:80:8d:eb:91:5d:8c:b5:be:4c:ba:b6: 0c:4b:24:68:08:55:00:43:45:d3:df:53:91:6b:41:18:ae:46: ee:2d:34:b3:ee:5b:0b:14:8c:31:54:55:2e:e3:de:b1:39:60: 3f:3f:80:0b:82:84:46:b6:eb:c3:dc:c2:8c:b8:0c:a4:04:05: 5a:9d:ae:6a:a0:12:20:1d:d6:66:68:94:da:f1:78:e2:75:fb: fd:69:f0:e7:86:83:7f:bf:2b:e9:3b:03:f9:df:b8:47:c9:0c: c3:61:9b:bb -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgICEekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1 Q0Q1MEQ4Mjk1ODQ5OUZEQUZDQjBBREYxMDI1MUY0Q0FCM0UyRDAeFw0yNTA0Mjgw ODQ5NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2NjZGN0Q5MjQ5MEYx QThCREY1NTdCOTc4RkMxOEY3MEIxREQ5QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTilGKAlYY7mU5ETj7NKjlqQaJt16tlmWlbwwW+oTTJkunOnas ZGh9Yy1CdVR08bzUSSTfhXD8ab0eQxMxHGHNzQP7otyzxBYi/oqaoxtlbhpVeNBr DhiQaJo3pE2YUjEOvYnwOcHDWE/szRi7ZCuicWHzEppMHwGQ/9ftX8q+Z7XC494a duOD8mO4HTcCVzN9iIMVaviRm7XB1xrvU+kSSGTTBVCxxATSu2GvIwMBfO1U+oGc vvsBLFeJa08jhUzOThwRPqKj9aXGVdEV1QW4yNi454cxpIDqv2V7TqcVbS4LCGaC 1tyNuo/hFH1Ca1+NEqN16CDYMxzJIAv8mhpPAgMBAAGjggIRMIICDTAdBgNVHQ4E FgQU5mb32SSQ8ai99Ve5ePwY9wsd2bEwHwYDVR0jBBgwFoAURVzVDYKVhJn9r8sK 3xAlH0yrPi0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBhBgNVHR8EWjBYMFag VKBShlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVZT05E T1JCSVQvUlZ6VkRZS1ZoSm45cjhzSzN4QWxIMHlyUGkwLmNybDBgBggrBgEFBQcB AQRUMFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kv VFdOSUNDQS9SVnpWRFlLVmhKbjlyOHNLM3hBbEgweXJQaTAuY2VyMA4GA1UdDwEB /wQEAwIHgDCBoQYIKwYBBQUHAQsEgZQwgZEwXAYIKwYBBQUHMAuGUHJzeW5jOi8v cnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CRVlPTkRPUkJJVC9SVnpWRFlL VmhKbjlyOHNLM3hBbEgweXJQaTAubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3Jy ZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0B AQsFAAOCAQEAJkTz3+nLMTpuEywy8E7vFKfMyjNffSZgdwXBYGDNSsOav27F30gi PGyA0rV6IXBi7+2sfxOQ9slIalltMLSn9G2LV3zgobEFG8PBZvFHKyXiue/Nz0A3 5iwkR44i4dCvGuwYMoX313pPqcNuZ6swASvTbcQljDO8JICaJmuSNSg3AqthlrOF RDLkIj1NS+0hyIyAYJOPIoCN65FdjLW+TLq2DEskaAhVAENF099TkWtBGK5G7i00 s+5bCxSMMVRVLuPesTlgPz+AC4KERrbrw9zCjLgMpAQFWp2uaqASIB3WZmiU2vF4 4nX7/Wnw54aDf78r6TsD+d+4R8kMw2Gbuw== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:32 2025 by rpki-client on console.sobornost.net