$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft File: 0SSAw3OkqF1efXJZMUQ137NEBEA.mft (raw, json) Hash identifier: K5iPpfzrlLyyOg2byEIsC0yaAf8Agt3YznSck8/4KWs= Subject key identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 Authority key identifier: D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 Certificate issuer: /CN=D12480C373A4A85D5E7D7259314435DFB3440440 Certificate serial: 0D0B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft Manifest number: 0D0B Signing time: Mon 28 Apr 2025 09:49:41 +0000 Manifest this update: Mon 28 Apr 2025 09:49:41 +0000 Manifest next update: Wed 30 Apr 2025 09:49:41 +0000 Files and hashes: 1: 0SSAw3OkqF1efXJZMUQ137NEBEA.crl (hash: xdavMnbSFzrzGG5XppLD8RCi70pjsXDnVv7JFNaEoqo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D12480C373A4A85D5E7D7259314435DFB3440440 Validity Not Before: Apr 28 09:49:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=679553EAF718165E2C6F7C23CBA05EE3F79704A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:89:34:5d:8d:6a:29:a5:8f:c4:e1:db:fd: 5d:46:b9:22:d4:cb:84:17:df:78:5f:fb:c6:e8:46: ae:67:c7:aa:e8:45:a2:86:6b:21:1b:6e:1b:4e:82: ae:2e:50:8b:90:c0:07:27:82:10:ea:a5:5a:5d:7b: 46:e1:ce:0c:e8:ef:51:c6:de:54:4a:aa:da:0e:7e: ef:84:b7:8d:33:b9:ec:19:3a:94:4a:32:79:9f:11: cc:25:86:49:e2:df:63:af:ab:f1:f8:ab:12:c6:9d: 6e:6c:fe:46:67:c5:b1:4b:0d:47:6e:f8:1d:03:bb: 56:7e:1b:4b:5c:ea:67:45:e5:9f:d5:6b:e0:27:14: 57:b9:a9:07:9b:0c:93:c4:f1:17:37:20:cf:d6:5b: 24:32:d8:93:e6:0d:01:50:89:93:11:28:ff:9c:30: 2a:de:9f:d7:47:11:32:73:ad:16:08:5a:b0:53:5f: 67:98:f1:04:7f:56:e8:7f:62:95:23:a0:f6:5b:5b: 5f:ba:18:a3:c4:6e:67:99:61:7d:0c:d8:cc:f9:7a: 81:cd:c5:3b:ec:61:db:ac:bf:9c:50:2b:8f:8d:69: 1d:2a:8c:8d:61:5a:a5:f7:bb:69:09:54:49:77:8d: 47:41:22:a8:92:43:e5:3c:90:83:b7:fe:39:39:18: 68:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 X509v3 Authority Key Identifier: keyid:D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:cb:01:f5:d2:3a:ab:f5:d4:2a:21:32:f0:36:32:b7:73:d7: 8a:1a:ec:ef:1c:bd:6c:c1:db:e2:f5:63:df:71:cd:5e:16:92: 4a:d2:2a:66:71:3c:9e:0f:b9:76:1e:ea:d3:6d:50:cc:e2:a3: c3:7e:3f:36:1a:d2:6c:c1:ad:b3:1f:3f:53:5d:42:9c:a9:40: f2:d6:34:1a:2f:d8:96:b2:15:ed:7b:aa:3b:17:d3:46:27:8d: 43:5e:d5:bf:38:22:6e:e2:2e:de:b9:15:a6:d9:52:76:ac:4d: 0d:12:a1:21:a5:0d:f7:bc:b7:52:6a:78:52:ba:9a:d7:ea:80: 41:33:0d:ed:e5:72:b5:a2:55:17:42:69:88:02:ce:f2:3d:65: 58:da:3e:51:cf:f1:16:6c:12:20:e0:7e:20:ab:f6:80:86:ea: b5:ae:a3:77:2a:4e:8b:06:4a:91:8a:62:d7:df:83:4c:f2:03: 9c:f4:9b:34:97:31:31:40:1d:a9:22:ca:0a:fd:3c:aa:b5:bb: 99:b1:65:5e:a5:4a:3d:79:85:0f:e9:47:06:d2:97:40:a9:47: 8b:f3:0c:18:09:cf:fd:9b:42:80:2a:cb:68:89:9f:6a:2e:a6: 87:f6:32:02:2c:e5:6a:36:ea:9e:70:51:78:90:00:73:05:43: 6f:76:ab:e5 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDQswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEy NDgwQzM3M0E0QTg1RDVFN0Q3MjU5MzE0NDM1REZCMzQ0MDQ0MDAeFw0yNTA0Mjgw OTQ5NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3OTU1M0VBRjcxODE2 NUUyQzZGN0MyM0NCQTA1RUUzRjc5NzA0QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2BYk0XY1qKaWPxOHb/V1GuSLUy4QX33hf+8boRq5nx6roRaKG ayEbbhtOgq4uUIuQwAcnghDqpVpde0bhzgzo71HG3lRKqtoOfu+Et40zuewZOpRK MnmfEcwlhkni32Ovq/H4qxLGnW5s/kZnxbFLDUdu+B0Du1Z+G0tc6mdF5Z/Va+An FFe5qQebDJPE8Rc3IM/WWyQy2JPmDQFQiZMRKP+cMCren9dHETJzrRYIWrBTX2eY 8QR/Vuh/YpUjoPZbW1+6GKPEbmeZYX0M2Mz5eoHNxTvsYdusv5xQK4+NaR0qjI1h WqX3u2kJVEl3jUdBIqiSQ+U8kIO3/jk5GGjVAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUZ5VT6vcYFl4sb3wjy6Be4/eXBKcwHwYDVR0jBBgwFoAU0SSAw3OkqF1efXJZ MUQ137NEBEAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0VUT1Av MFNTQXczT2txRjFlZlhKWk1VUTEzN05FQkVBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8wU1NBdzNPa3FGMWVmWEpaTVVRMTM3TkVCRUEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HRVRPUC8wU1NBdzNPa3FGMWVmWEpaTVVR MTM3TkVCRUEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJcsB 9dI6q/XUKiEy8DYyt3PXihrs7xy9bMHb4vVj33HNXhaSStIqZnE8ng+5dh7q021Q zOKjw34/NhrSbMGtsx8/U11CnKlA8tY0Gi/YlrIV7XuqOxfTRieNQ17VvzgibuIu 3rkVptlSdqxNDRKhIaUN97y3Ump4Urqa1+qAQTMN7eVytaJVF0JpiALO8j1lWNo+ Uc/xFmwSIOB+IKv2gIbqta6jdypOiwZKkYpi19+DTPIDnPSbNJcxMUAdqSLKCv08 qrW7mbFlXqVKPXmFD+lHBtKXQKlHi/MMGAnP/ZtCgCrLaImfai6mh/YyAizlajbq nnBReJAAcwVDb3ar5Q== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:37 2025 by rpki-client on console.sobornost.net