$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft File: YV-b2YzHDog20BqUgcGcXC1F15E.mft (raw, json) Hash identifier: oytPMjIapyDrfazLrOI6GteKM6L3ex3Hy5ovTj9xD/M= Subject key identifier: 29:48:E7:7B:52:AA:80:58:56:32:30:47:D0:54:4E:46:1C:FB:5F:B6 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0D6D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft Manifest number: 0D33 Signing time: Mon 28 Apr 2025 09:19:18 +0000 Manifest this update: Mon 28 Apr 2025 09:19:18 +0000 Manifest next update: Wed 30 Apr 2025 09:19:18 +0000 Files and hashes: 1: HGXAICMKlIFztpWd75_3AS8mfj8.roa (hash: WajPuWwbJkpNEAvkBk2K3kURT+9/Q/s6iGUXHrF5aOg=) 2: Tn-jK4k1zunZYZlLn5bRIwyK4Ws.roa (hash: 4X3fizjeYyzxT04O4oKhXgH2KVwMRjE0VO5XCCx2fSU=) 3: YV-b2YzHDog20BqUgcGcXC1F15E.crl (hash: PUXOeAO2cHyce96EIq3MT9PbKlXlH1A8IqCK0FE+OMc=) 4: hhMYMGOaHFmrV_Wz1RZ5iLOeXkU.roa (hash: olQ5nKpJYa22CYGMvRXLH1IA+hL3jYOli5T5aglyxCU=) 5: k4VYlSkPwC-JJmk34SlNYqFYmp0.roa (hash: +1NMRZag2qmbeTOKxqDvxT+mAmyZrytHY1cdklDfcXg=) 6: ulzSpZ_xIQb7bESJcQDqgFSdO2E.roa (hash: 0vCyhPhc7YQad9Iq3RyKgs1zIf6QQ63oZtBlPpOOTA8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3437 (0xd6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Apr 28 09:19:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2948E77B52AA805856323047D0544E461CFB5FB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:a7:69:94:35:e8:60:d6:78:5d:a1:38:25: 17:26:0a:86:09:c6:a3:e8:88:1b:13:61:76:ea:24: 2a:4e:fb:a1:4b:43:03:71:59:4b:47:8b:99:09:b3: 19:5f:ab:d1:e5:20:df:f2:6b:df:04:60:16:50:0a: cb:48:c6:a3:2f:d2:0b:cd:10:0e:4d:92:54:e1:ff: 0b:a0:10:5d:fc:c2:05:74:b4:97:f1:1d:5e:aa:ff: 1a:47:61:6a:0f:91:7e:37:f9:a6:42:6c:02:41:d2: 8d:c4:be:cd:78:28:d1:c3:2c:8c:c9:14:cf:fe:aa: b8:e3:8d:ea:91:14:dc:9b:83:91:fd:9b:94:0b:f2: 6f:4b:d7:cd:80:b7:17:25:dc:11:79:7d:0d:17:da: 50:98:38:5f:d5:7b:4c:3c:89:d1:da:7c:a0:8d:20: e7:e2:bf:cf:25:4e:ef:06:c2:c6:6b:ac:f8:8f:f1: 9a:30:01:99:2e:06:70:a4:e0:10:97:c0:e1:b2:e7: 6d:42:cd:9e:9f:c6:1d:cc:d5:dd:d1:13:39:c8:76: 96:8d:cc:fe:05:37:33:f7:9c:93:0a:df:e9:57:ee: bb:e2:59:e1:9f:13:41:98:f0:8a:1d:9f:d2:5c:05: cd:36:54:8f:6a:58:11:db:21:c2:fd:e6:dd:f5:b8: 10:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:48:E7:7B:52:AA:80:58:56:32:30:47:D0:54:4E:46:1C:FB:5F:B6 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:d8:7d:ba:2b:89:7f:45:73:76:e7:f2:c2:ce:d7:6d:30:ae: eb:c1:6e:0b:34:17:6b:ae:d6:35:a9:55:04:04:47:e7:a7:85: c8:82:a8:cb:07:6f:7a:39:2e:9b:64:ab:cd:cd:90:91:49:fd: 9f:f6:5a:23:64:24:ce:fe:c8:8b:1d:a9:89:c1:12:39:d3:df: d7:85:6f:f7:91:9e:2b:76:9a:0f:62:48:42:25:cf:49:c2:64: 10:dc:e6:20:65:19:5c:c5:63:87:46:8e:bf:07:66:e0:12:de: 73:77:b8:e3:36:23:d3:55:a3:19:8c:55:9f:5e:73:8d:2d:dc: fe:4e:68:49:17:ab:48:99:d6:90:31:8e:50:f2:ad:2e:b5:9a: 11:fd:d6:36:2b:d6:2e:ba:27:59:29:5d:bb:b5:fc:14:f5:da: b9:29:12:0c:42:fc:9a:95:9a:6c:ac:ce:c1:61:2e:bf:d2:65: 5d:32:bd:12:97:9c:99:0a:88:24:d7:80:23:79:ac:00:44:18: d6:98:a9:0f:b0:06:b2:27:10:03:6c:9c:f5:07:54:85:90:a5: a6:29:93:b9:59:df:60:3f:12:11:0b:51:c0:92:e0:d3:4e:95: 4e:81:3d:7a:03:46:7b:02:18:4a:f8:69:b6:b3:e0:d5:64:6c: d1:f4:ae:58 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDW0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA0Mjgw OTE5MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5NDhFNzdCNTJBQTgw NTg1NjMyMzA0N0QwNTQ0RTQ2MUNGQjVGQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHxqdplDXoYNZ4XaE4JRcmCoYJxqPoiBsTYXbqJCpO+6FLQwNx WUtHi5kJsxlfq9HlIN/ya98EYBZQCstIxqMv0gvNEA5NklTh/wugEF38wgV0tJfx HV6q/xpHYWoPkX43+aZCbAJB0o3Evs14KNHDLIzJFM/+qrjjjeqRFNybg5H9m5QL 8m9L182Atxcl3BF5fQ0X2lCYOF/Ve0w8idHafKCNIOfiv88lTu8GwsZrrPiP8Zow AZkuBnCk4BCXwOGy521CzZ6fxh3M1d3REznIdpaNzP4FNzP3nJMK3+lX7rviWeGf E0GY8Iodn9JcBc02VI9qWBHbIcL95t31uBARAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUKUjne1KqgFhWMjBH0FRORhz7X7YwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9ZVi1iMll6SERvZzIwQnFVZ2NH Y1hDMUYxNUUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdNh9 uiuJf0Vzdufyws7XbTCu68FuCzQXa67WNalVBARH56eFyIKoywdvejkum2Srzc2Q kUn9n/ZaI2Qkzv7Iix2picESOdPf14Vv95GeK3aaD2JIQiXPScJkENzmIGUZXMVj h0aOvwdm4BLec3e44zYj01WjGYxVn15zjS3c/k5oSRerSJnWkDGOUPKtLrWaEf3W NivWLronWSldu7X8FPXauSkSDEL8mpWabKzOwWEuv9JlXTK9EpecmQqIJNeAI3ms AEQY1pipD7AGsicQA2yc9QdUhZClpimTuVnfYD8SEQtRwJLg006VToE9egNGewIY SvhptrPg1WRs0fSuWA== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:35 2025 by rpki-client on console.sobornost.net