$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft File: dK8EAv71bDShktHSGF5vtUaqcCw.mft (raw, json) Hash identifier: IIYI273RSL5uNlGpVoNbycf07obsOs12mtRbf0/Q7bU= Subject key identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 027B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft Manifest number: 0268 Signing time: Mon 28 Apr 2025 08:49:28 +0000 Manifest this update: Mon 28 Apr 2025 08:49:28 +0000 Manifest next update: Wed 30 Apr 2025 08:49:28 +0000 Files and hashes: 1: 2TblsBKiiohYgYRCsXYZMAeHMe4.roa (hash: Cchh/qLAW+/z6TruQPMK8gI7oZt/p6iJiWjrggV/meI=) 2: BfQBfL9LSprNl9EZAXrAIboGiKY.roa (hash: mEpCP3OGvwRJ3bwOX9vtt5WWbJ/elSaSHS5mHsk1Aks=) 3: IbUF4ZRCl6bFITVhTgdFKDF-RKk.roa (hash: dT5Ls122OnJK3bTe8K8muQ+IjN8yA0f7fBZl5SWw7L0=) 4: dK8EAv71bDShktHSGF5vtUaqcCw.crl (hash: T7LisUQ9nab79Q8c2pZ3DcxB25CinD5HUWk4HqnkXss=) 5: iZz3TgAK8_Ju7MyS42n4NVyylwI.roa (hash: LYzJphGnq9HJKkjD6vGryLpEhwuIp2C5R3E+VeNIl5w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Apr 28 08:49:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CCC70A975446801E0FE8168A608C146CE672AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a0:e4:88:4d:a9:1a:71:46:16:af:b3:15:e3: d4:dc:08:95:8f:cf:40:fb:64:58:39:3f:a6:a7:53: 3d:90:7b:d3:fe:8c:66:29:ce:a3:07:f8:fd:8d:82: 40:9f:2f:9d:42:7a:88:f5:92:75:20:4e:60:df:f2: 7a:0b:d8:a2:e3:5f:c9:60:95:9b:34:69:9e:a7:cc: ab:b4:85:99:ee:d5:63:a8:b0:7a:b0:78:9e:dd:5f: 9d:24:fc:2d:ce:f2:2f:ec:a8:14:8a:19:55:dc:29: 09:92:bb:f8:06:a7:a9:b5:22:c5:fe:30:c2:e3:4f: 66:cd:7f:62:30:dd:76:7f:f5:1d:36:22:8f:6c:33: 8a:a0:41:a4:b5:43:8f:b4:df:c6:7d:e1:ea:a8:49: 8a:07:d6:5f:db:b2:cc:db:48:05:c4:f9:55:69:c4: b4:94:b9:ee:54:5d:7f:13:46:f3:1f:f9:90:90:11: b4:1f:ac:c2:1d:1c:b3:26:52:99:26:89:1a:e8:ef: b4:47:90:5c:15:8b:6c:64:92:d1:70:5b:49:44:cc: 32:23:19:8a:4e:08:04:a6:fd:64:38:3f:6b:a8:a3: 0f:7d:99:a4:f2:20:53:bb:20:62:96:3b:b5:39:90: 62:90:30:0c:dd:59:eb:e5:c4:53:48:e0:ba:13:fd: ac:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:3e:60:3f:03:7a:e2:4a:13:06:35:99:d3:cb:94:96:6c:4e: c7:cd:85:68:ee:ef:5f:74:db:84:77:00:b6:1a:66:43:f0:70: d0:9e:93:33:87:fa:e4:9f:64:b7:29:32:20:a6:d5:79:86:ee: 7f:82:03:ac:44:1b:fa:86:7d:84:0d:75:04:d6:59:6d:13:14: 0d:6e:64:1b:9c:c6:cb:22:c2:b4:e3:71:36:83:cf:34:f2:86: 5b:b8:49:f9:4a:ed:c1:32:30:15:48:f2:41:6e:c9:3f:b6:10: ed:6d:1c:b2:1a:01:1f:7d:4d:a9:d2:da:20:12:7a:60:b7:3f: 4b:92:23:a9:42:9a:8f:45:20:37:60:96:a2:0c:8d:b2:73:1e: 91:45:0d:3e:1f:9f:9f:6c:79:a1:4f:97:db:f5:c3:3b:67:b5: 4d:47:e0:e7:4a:97:c6:af:53:bb:4a:e0:03:11:2c:d6:fe:f4: 12:16:d8:41:e5:20:31:1c:54:5e:11:8f:84:86:d4:6a:65:16: c6:93:37:1b:fe:ee:71:93:66:12:e2:d6:f8:79:6b:43:1b:50: d5:57:6a:01:73:ce:8f:7d:75:c1:61:d0:2e:c4:97:f4:f8:b7: 31:1b:c7:ff:ca:2e:1b:6e:00:ff:7a:6e:a2:d3:60:ab:c7:7d: b4:50:92:62 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTA0Mjgw ODQ5MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDQ0M3MEE5NzU0NDY4 MDFFMEZFODE2OEE2MDhDMTQ2Q0U2NzJBQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHoOSITakacUYWr7MV49TcCJWPz0D7ZFg5P6anUz2Qe9P+jGYp zqMH+P2NgkCfL51Ceoj1knUgTmDf8noL2KLjX8lglZs0aZ6nzKu0hZnu1WOosHqw eJ7dX50k/C3O8i/sqBSKGVXcKQmSu/gGp6m1IsX+MMLjT2bNf2Iw3XZ/9R02Io9s M4qgQaS1Q4+038Z94eqoSYoH1l/bsszbSAXE+VVpxLSUue5UXX8TRvMf+ZCQEbQf rMIdHLMmUpkmiRro77RHkFwVi2xkktFwW0lEzDIjGYpOCASm/WQ4P2uoow99maTy IFO7IGKWO7U5kGKQMAzdWevlxFNI4LoT/azbAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUPMxwqXVEaAHg/oFopgjBRs5nKqgwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9kSzhFQXY3MWJEU2hrdEhTR0Y1 dnRVYXFjQ3cubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAED5g PwN64koTBjWZ08uUlmxOx82FaO7vX3TbhHcAthpmQ/Bw0J6TM4f65J9ktykyIKbV eYbuf4IDrEQb+oZ9hA11BNZZbRMUDW5kG5zGyyLCtONxNoPPNPKGW7hJ+UrtwTIw FUjyQW7JP7YQ7W0cshoBH31NqdLaIBJ6YLc/S5IjqUKaj0UgN2CWogyNsnMekUUN Ph+fn2x5oU+X2/XDO2e1TUfg50qXxq9Tu0rgAxEs1v70EhbYQeUgMRxUXhGPhIbU amUWxpM3G/7ucZNmEuLW+HlrQxtQ1VdqAXPOj311wWHQLsSX9Pi3MRvH/8ouG24A /3puotNgq8d9tFCSYg== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:34 2025 by rpki-client on console.sobornost.net