$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FITEL/vDy-GwhnFMAFtzMNfMIm3QPXdDo.mft File: vDy-GwhnFMAFtzMNfMIm3QPXdDo.mft (raw, json) Hash identifier: ybQsw4ibj4A+lehsLQOfZrodXg42CJAUHmt1juvVAHQ= Subject key identifier: 40:AA:00:3A:AE:D3:C0:43:B5:9B:08:D3:F4:9B:A2:33:CF:8B:E7:0D Authority key identifier: BC:3C:BE:1B:08:67:14:C0:05:B7:33:0D:7C:C2:26:DD:03:D7:74:3A Certificate issuer: /CN=BC3CBE1B086714C005B7330D7CC226DD03D7743A Certificate serial: 0CE3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vDy-GwhnFMAFtzMNfMIm3QPXdDo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FITEL/vDy-GwhnFMAFtzMNfMIm3QPXdDo.mft Manifest number: 0CE3 Signing time: Mon 28 Apr 2025 09:50:27 +0000 Manifest this update: Mon 28 Apr 2025 09:50:27 +0000 Manifest next update: Wed 30 Apr 2025 09:50:27 +0000 Files and hashes: 1: vDy-GwhnFMAFtzMNfMIm3QPXdDo.crl (hash: dmJRXR3Uu1viKUyQ0r0kPzTDEA46R6m9kMzeD9FSb0g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FITEL/vDy-GwhnFMAFtzMNfMIm3QPXdDo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FITEL/vDy-GwhnFMAFtzMNfMIm3QPXdDo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/vDy-GwhnFMAFtzMNfMIm3QPXdDo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3299 (0xce3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC3CBE1B086714C005B7330D7CC226DD03D7743A Validity Not Before: Apr 28 09:50:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=40AA003AAED3C043B59B08D3F49BA233CF8BE70D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e3:f7:61:8b:bf:36:1e:92:ca:21:98:a2:8f: ff:2f:c5:66:67:d2:57:89:92:4d:68:d8:d8:60:ad: f5:fb:41:38:7b:18:54:b4:db:ad:25:a0:41:7a:b4: e5:c1:17:a8:a0:ec:3f:1a:83:10:60:8e:a2:cb:eb: e5:c4:b9:35:10:aa:7e:f4:9f:3a:05:ff:fb:16:86: d5:de:b8:68:66:51:65:5b:55:ff:58:ff:96:cf:cf: 76:d0:aa:ec:f2:69:1b:d3:01:90:62:69:b5:a6:52: 84:43:d6:59:29:34:a7:c0:d8:21:1d:96:5d:c1:3c: f5:f8:cb:d8:e9:e9:5c:70:88:04:98:43:9b:ab:54: ed:3e:59:b7:2f:58:9c:60:6c:11:3b:7c:84:1c:35: df:a2:c2:4b:ae:d7:99:74:ca:96:f4:b6:02:82:b9: 1f:97:20:83:50:f5:71:c6:d1:b0:70:93:e1:fc:ad: 5e:f3:de:ce:c0:3b:5e:c1:f7:46:4e:1f:1f:11:8d: f1:72:28:8c:28:8e:47:62:bd:98:24:d9:81:6e:64: 5a:3c:70:20:20:2a:e6:57:e5:60:30:2f:76:41:25: 59:34:3a:42:23:48:e7:16:1e:38:72:53:74:d6:59: de:99:6a:32:cd:35:06:5d:a0:28:04:76:85:fc:16: 73:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AA:00:3A:AE:D3:C0:43:B5:9B:08:D3:F4:9B:A2:33:CF:8B:E7:0D X509v3 Authority Key Identifier: keyid:BC:3C:BE:1B:08:67:14:C0:05:B7:33:0D:7C:C2:26:DD:03:D7:74:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FITEL/vDy-GwhnFMAFtzMNfMIm3QPXdDo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vDy-GwhnFMAFtzMNfMIm3QPXdDo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FITEL/vDy-GwhnFMAFtzMNfMIm3QPXdDo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:4a:60:cf:81:8c:2b:db:7e:b0:86:85:15:3c:30:ce:74:c9: 37:a1:a0:c8:c8:27:af:1a:30:b0:4e:cf:96:cd:10:a4:fe:44: 8f:47:e5:6a:86:35:78:2b:41:b5:01:75:e5:1b:19:ab:4d:5b: 11:0c:3a:14:a4:dc:9d:93:5a:d7:c4:f9:b4:74:fd:ab:56:19: f9:c4:05:ff:d0:77:3e:e8:15:33:5c:a9:cd:0c:fa:1c:c0:02: 05:42:13:36:58:44:b3:cc:20:8f:49:db:7c:fd:14:8b:ba:92: 21:d5:15:44:e8:75:e3:1a:df:b5:51:8e:4c:ae:f0:cd:96:51: 7b:e1:31:59:e9:a6:40:10:47:ec:9f:0f:e9:ef:98:b5:84:08: da:70:59:e7:73:75:bc:b8:0f:49:2f:81:2d:7d:c6:62:2a:9d: ae:c3:93:fb:39:31:30:5e:ab:af:c7:a3:a4:29:52:30:44:66: e6:84:c2:5e:d3:5c:fc:aa:fe:c2:af:de:d1:7c:ef:7e:72:56: cb:9f:76:b8:e0:52:5a:ce:5d:c6:1d:da:b3:97:a5:60:ae:02: d4:be:ca:ff:e2:b4:3a:a2:d0:bb:af:08:11:7e:17:8f:32:92: d7:bd:63:03:27:5c:f6:56:7c:2f:68:e9:7f:ee:2e:96:ce:7f: 50:c5:2e:6f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDOMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkMz Q0JFMUIwODY3MTRDMDA1QjczMzBEN0NDMjI2REQwM0Q3NzQzQTAeFw0yNTA0Mjgw OTUwMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQwQUEwMDNBQUVEM0Mw NDNCNTlCMDhEM0Y0OUJBMjMzQ0Y4QkU3MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo4/dhi782HpLKIZiij/8vxWZn0leJkk1o2NhgrfX7QTh7GFS0 260loEF6tOXBF6ig7D8agxBgjqLL6+XEuTUQqn70nzoF//sWhtXeuGhmUWVbVf9Y /5bPz3bQquzyaRvTAZBiabWmUoRD1lkpNKfA2CEdll3BPPX4y9jp6VxwiASYQ5ur VO0+WbcvWJxgbBE7fIQcNd+iwkuu15l0ypb0tgKCuR+XIINQ9XHG0bBwk+H8rV7z 3s7AO17B90ZOHx8RjfFyKIwojkdivZgk2YFuZFo8cCAgKuZX5WAwL3ZBJVk0OkIj SOcWHjhyU3TWWd6ZajLNNQZdoCgEdoX8FnN9AgMBAAGjggIFMIICATAdBgNVHQ4E FgQUQKoAOq7TwEO1mwjT9JuiM8+L5w0wHwYDVR0jBBgwFoAUvDy+GwhnFMAFtzMN fMIm3QPXdDowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRklURUwv dkR5LUd3aG5GTUFGdHpNTmZNSW0zUVBYZERvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS92RHktR3dobkZNQUZ0ek1OZk1JbTNRUFhkRG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9GSVRFTC92RHktR3dobkZNQUZ0ek1OZk1J bTNRUFhkRG8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA10pg z4GMK9t+sIaFFTwwznTJN6GgyMgnrxowsE7Pls0QpP5Ej0flaoY1eCtBtQF15RsZ q01bEQw6FKTcnZNa18T5tHT9q1YZ+cQF/9B3PugVM1ypzQz6HMACBUITNlhEs8wg j0nbfP0Ui7qSIdUVROh14xrftVGOTK7wzZZRe+ExWemmQBBH7J8P6e+YtYQI2nBZ 53N1vLgPSS+BLX3GYiqdrsOT+zkxMF6rr8ejpClSMERm5oTCXtNc/Kr+wq/e0Xzv fnJWy592uOBSWs5dxh3as5elYK4C1L7K/+K0OqLQu68IEX4XjzKS171jAydc9lZ8 L2jpf+4uls5/UMUubw== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:37 2025 by rpki-client on console.sobornost.net