$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft File: TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft (raw, json) Hash identifier: YU5nrcd1hIGEChrPEGYL7EWa/GsI4xXIKgGuuJJ28qA= Subject key identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Certificate serial: 0D22 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft Manifest number: 0D18 Signing time: Mon 28 Apr 2025 09:50:09 +0000 Manifest this update: Mon 28 Apr 2025 09:50:09 +0000 Manifest next update: Wed 30 Apr 2025 09:50:09 +0000 Files and hashes: 1: TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl (hash: 7/2rwO1DFhHLEvBJx4Au4gi1FGvR94jUeoJzlXL/ruM=) 2: TmtOrpS7o28ER7oLjnOBZLdWcgM.roa (hash: mQz/hV7i4zdeNwzhSThQr7qIHt69JvQ2KxLsJS+vAxM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3362 (0xd22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Validity Not Before: Apr 28 09:50:09 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7E8B480C4C7274DFF97F4BDEB57C33F8491C09C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:fd:0e:fe:75:76:0d:6a:27:8d:10:c0:ba: 72:e2:63:52:46:07:b4:a7:77:ff:17:c3:8a:fe:4a: ee:dd:00:b3:78:cc:46:fb:ca:d8:37:66:71:3b:b2: e7:b8:8d:a7:5c:c8:56:6a:90:a2:62:43:21:22:0f: b9:56:83:12:e6:78:7a:e2:fd:87:17:49:4d:be:6f: 1e:e7:24:68:e5:6b:5a:c6:43:4a:e1:48:66:43:ed: 24:26:55:b6:34:61:d9:79:21:8e:74:55:d9:aa:77: a7:0c:3d:b8:a5:8f:9a:d3:f7:2d:c4:db:eb:47:bd: d0:6a:fa:85:b5:c1:0a:19:cf:54:8d:54:76:f4:63: 0d:7f:b8:2a:ad:12:e6:ae:de:e1:a2:ba:be:23:57: e8:1d:3e:82:7c:96:d4:58:44:86:86:29:f2:ba:61: 45:83:ec:63:62:d1:4f:65:cf:b5:7f:1d:94:fc:4b: ef:22:65:f0:c4:d0:4a:7a:00:16:2f:ed:df:48:83: 1e:17:ed:b4:68:aa:74:5c:8e:7a:4d:77:64:37:5a: 30:36:85:57:8a:65:dd:8e:01:30:07:89:04:db:66: c0:45:b4:f4:51:21:e7:2e:ec:9d:38:37:a5:a0:20: 04:ca:b3:82:69:34:91:2e:b7:4c:98:c2:5f:e8:0d: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C X509v3 Authority Key Identifier: keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:39:bc:2c:43:09:4c:57:7c:b7:68:5d:62:9e:78:70:98:a4: 49:93:e9:61:e7:44:42:a3:50:90:45:b1:5c:55:5d:65:02:30: c9:7f:a9:37:1d:df:27:ed:b3:72:cb:89:75:7c:98:87:81:dc: 1a:4b:0e:66:e7:a6:2f:17:3a:ed:59:09:1d:1c:be:6d:fc:eb: 66:40:c1:b5:c6:be:5b:2c:a3:3c:9f:5c:2b:09:61:e3:66:6c: 97:b5:64:b7:49:7e:b2:5d:1b:75:f3:da:a4:3e:97:3a:86:87: 6e:e4:88:d4:64:fb:a4:6b:b4:77:89:cb:71:93:cb:1f:91:d2: c0:37:35:8d:41:88:d8:4d:be:d3:77:8f:3f:d5:72:b9:d6:81: e1:09:90:7c:b0:4a:20:c7:0c:63:79:94:34:a8:ef:1d:6a:a7: ab:43:46:5a:bd:57:f2:3c:c2:7b:4f:c2:b0:95:88:35:c8:6b: bb:c7:fa:2c:66:48:ed:ba:f5:e3:73:48:37:67:97:24:e7:b3: ee:21:c9:4e:42:70:c8:77:84:27:bc:fc:b4:ce:ff:72:10:1d: cb:d7:b1:3e:f0:7c:45:ee:64:aa:d9:1e:1b:8c:6c:df:b2:b3: 61:36:30:3b:f1:af:b0:82:b3:41:aa:12:48:0e:b5:f4:de:dc: 13:db:19:ed -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDSIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM0 N0RGNzQ4RUMwRkYxNjkxMjI4M0NFQzEwRUMxMEVEMzJEMjQ0RjAeFw0yNTA0Mjgw OTUwMDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3RThCNDgwQzRDNzI3 NERGRjk3RjRCREVCNTdDMzNGODQ5MUMwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNuP0O/nV2DWonjRDAunLiY1JGB7Snd/8Xw4r+Su7dALN4zEb7 ytg3ZnE7sue4jadcyFZqkKJiQyEiD7lWgxLmeHri/YcXSU2+bx7nJGjla1rGQ0rh SGZD7SQmVbY0Ydl5IY50Vdmqd6cMPbilj5rT9y3E2+tHvdBq+oW1wQoZz1SNVHb0 Yw1/uCqtEuau3uGiur4jV+gdPoJ8ltRYRIaGKfK6YUWD7GNi0U9lz7V/HZT8S+8i ZfDE0Ep6ABYv7d9Igx4X7bRoqnRcjnpNd2Q3WjA2hVeKZd2OATAHiQTbZsBFtPRR Iecu7J04N6WgIATKs4JpNJEut0yYwl/oDVjdAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU1+i0gMTHJ03/l/S961fDP4SRwJwwHwYDVR0jBBgwFoAUTEffdI7A/xaRIoPO wQ7BDtMtJE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NORVQv VEVmZmRJN0FfeGFSSW9QT3dRN0JEdE10SkU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9URWZmZEk3QV94YVJJb1BPd1E3QkR0TXRKRTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HU05FVC9URWZmZEk3QV94YVJJb1BPd1E3 QkR0TXRKRTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDm8 LEMJTFd8t2hdYp54cJikSZPpYedEQqNQkEWxXFVdZQIwyX+pNx3fJ+2zcsuJdXyY h4HcGksOZuemLxc67VkJHRy+bfzrZkDBtca+WyyjPJ9cKwlh42Zsl7Vkt0l+sl0b dfPapD6XOoaHbuSI1GT7pGu0d4nLcZPLH5HSwDc1jUGI2E2+03ePP9VyudaB4QmQ fLBKIMcMY3mUNKjvHWqnq0NGWr1X8jzCe0/CsJWINchru8f6LGZI7br143NIN2eX JOez7iHJTkJwyHeEJ7z8tM7/chAdy9exPvB8Re5kqtkeG4xs37KzYTYwO/GvsIKz QaoSSA619N7cE9sZ7Q== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:37 2025 by rpki-client on console.sobornost.net