$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KINGNET/NZe5GdSmUub2ef4Tipc0BP8AT2U.mft File: NZe5GdSmUub2ef4Tipc0BP8AT2U.mft (raw, json) Hash identifier: JoWCmmm+xzD8aAGL6E8DVQRQ0WPJZYWivENJ9sfGVDI= Subject key identifier: 8B:8E:C6:45:00:93:D9:CE:01:EB:B1:E5:06:24:3A:84:58:41:09:52 Authority key identifier: 35:97:B9:19:D4:A6:52:E6:F6:79:FE:13:8A:97:34:04:FF:00:4F:65 Certificate issuer: /CN=3597B919D4A652E6F679FE138A973404FF004F65 Certificate serial: 0CBB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NZe5GdSmUub2ef4Tipc0BP8AT2U.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KINGNET/NZe5GdSmUub2ef4Tipc0BP8AT2U.mft Manifest number: 0CBB Signing time: Mon 28 Apr 2025 09:51:30 +0000 Manifest this update: Mon 28 Apr 2025 09:51:30 +0000 Manifest next update: Wed 30 Apr 2025 09:51:30 +0000 Files and hashes: 1: NZe5GdSmUub2ef4Tipc0BP8AT2U.crl (hash: gVaqoSxreJQ7I/Qvwk401gqHb/nNwrfgHeoFRuqkJeg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KINGNET/NZe5GdSmUub2ef4Tipc0BP8AT2U.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KINGNET/NZe5GdSmUub2ef4Tipc0BP8AT2U.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NZe5GdSmUub2ef4Tipc0BP8AT2U.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3259 (0xcbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3597B919D4A652E6F679FE138A973404FF004F65 Validity Not Before: Apr 28 09:51:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8B8EC6450093D9CE01EBB1E506243A8458410952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:b8:83:ed:54:a0:21:ea:d7:5f:49:8d:54: f8:29:5b:cf:19:4d:91:7a:c4:a1:ab:53:99:89:a0: 22:89:be:2e:00:13:93:15:80:0d:eb:26:0d:96:f0: 84:d8:a3:02:90:c6:a7:72:e1:f1:a8:63:d2:7f:e0: f9:bd:cc:b3:e4:0a:f3:55:12:4c:77:df:22:62:03: 51:38:03:39:24:23:f7:bc:b3:4d:75:89:93:d6:94: 76:24:39:da:cd:4a:76:c3:9b:f6:c1:50:ac:05:c6: 94:28:80:0f:ae:29:21:ce:f4:54:33:6d:68:92:2c: c4:4a:37:f5:5a:51:89:28:f0:7e:ab:3a:60:d5:f3: e8:55:05:9f:85:9b:9f:ea:81:c2:ee:18:1d:9c:07: de:4c:57:1f:97:01:30:cf:79:6d:07:71:53:41:15: 40:2f:5d:ac:2d:09:bb:29:c5:c6:2e:e0:a6:8d:31: 10:16:8c:d2:c3:96:34:17:5d:81:a7:66:0c:5b:97: ac:62:35:41:88:cd:eb:60:b3:3d:b8:70:36:89:d9: 2a:68:9e:47:8f:11:4c:88:ff:f1:d9:3b:15:2b:16: 66:26:ef:c5:06:33:ba:40:27:5d:44:f9:0a:15:03: d1:4e:2a:b3:f1:91:6c:6b:9b:39:24:21:24:da:e8: b8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8E:C6:45:00:93:D9:CE:01:EB:B1:E5:06:24:3A:84:58:41:09:52 X509v3 Authority Key Identifier: keyid:35:97:B9:19:D4:A6:52:E6:F6:79:FE:13:8A:97:34:04:FF:00:4F:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KINGNET/NZe5GdSmUub2ef4Tipc0BP8AT2U.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NZe5GdSmUub2ef4Tipc0BP8AT2U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KINGNET/NZe5GdSmUub2ef4Tipc0BP8AT2U.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:bf:50:99:4c:31:01:d7:f4:ae:2b:5c:1d:f3:7f:b4:b0:0a: 38:6d:38:90:d5:aa:41:e9:9f:a9:1d:ff:fb:a1:41:da:bd:ac: b7:b8:25:02:8d:89:93:0a:91:52:f0:0c:8e:79:74:d8:59:41: 01:33:8a:0f:79:3d:1d:c1:2d:f0:fe:a7:52:41:20:de:84:62: a4:b4:36:1a:47:c9:e8:c4:c9:d0:29:c9:6a:65:35:a6:8b:bf: 61:d9:e2:00:1f:cb:30:e7:48:3f:4a:b3:a2:93:78:0d:11:07: 3a:cb:d2:7a:f6:06:59:99:fc:c3:a5:89:aa:62:26:41:c4:87: ae:5c:4a:dd:6e:fd:6b:e3:f7:d2:18:0f:b9:9f:e8:dc:17:0a: 31:8e:3d:49:2e:d0:81:ca:33:60:72:21:b8:c7:e4:a4:47:e5: 0f:f2:01:e1:e7:12:dc:01:90:8f:76:6c:19:c5:91:1a:93:ca: d9:7e:c6:16:a5:18:0b:f0:fe:fd:5d:33:29:b4:6e:14:2b:7e: 20:17:9b:96:43:6d:23:8d:54:30:42:da:3a:c3:c5:c8:c8:8b: b4:bd:d6:ba:dd:9a:1a:f8:a6:7d:fe:2d:40:7b:6b:c4:ff:bd: 9f:f0:3b:31:ba:4a:07:60:58:2a:d8:8a:42:bb:09:30:f5:c7: b8:6c:9f:66 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDLswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzU5 N0I5MTlENEE2NTJFNkY2NzlGRTEzOEE5NzM0MDRGRjAwNEY2NTAeFw0yNTA0Mjgw OTUxMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCOEVDNjQ1MDA5M0Q5 Q0UwMUVCQjFFNTA2MjQzQTg0NTg0MTA5NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmyriD7VSgIerXX0mNVPgpW88ZTZF6xKGrU5mJoCKJvi4AE5MV gA3rJg2W8ITYowKQxqdy4fGoY9J/4Pm9zLPkCvNVEkx33yJiA1E4AzkkI/e8s011 iZPWlHYkOdrNSnbDm/bBUKwFxpQogA+uKSHO9FQzbWiSLMRKN/VaUYko8H6rOmDV 8+hVBZ+Fm5/qgcLuGB2cB95MVx+XATDPeW0HcVNBFUAvXawtCbspxcYu4KaNMRAW jNLDljQXXYGnZgxbl6xiNUGIzetgsz24cDaJ2SponkePEUyI//HZOxUrFmYm78UG M7pAJ11E+QoVA9FOKrPxkWxrmzkkISTa6LgjAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUi47GRQCT2c4B67HlBiQ6hFhBCVIwHwYDVR0jBBgwFoAUNZe5GdSmUub2ef4T ipc0BP8AT2UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0lOR05F VC9OWmU1R2RTbVV1YjJlZjRUaXBjMEJQOEFUMlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL05aZTVHZFNtVXViMmVmNFRpcGMwQlA4QVQyVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tJTkdORVQvTlplNUdkU21VdWIyZWY0 VGlwYzBCUDhBVDJVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AAS/UJlMMQHX9K4rXB3zf7SwCjhtOJDVqkHpn6kd//uhQdq9rLe4JQKNiZMKkVLw DI55dNhZQQEzig95PR3BLfD+p1JBIN6EYqS0NhpHyejEydApyWplNaaLv2HZ4gAf yzDnSD9Ks6KTeA0RBzrL0nr2BlmZ/MOliapiJkHEh65cSt1u/Wvj99IYD7mf6NwX CjGOPUku0IHKM2ByIbjH5KRH5Q/yAeHnEtwBkI92bBnFkRqTytl+xhalGAvw/v1d Mym0bhQrfiAXm5ZDbSONVDBC2jrDxcjIi7S91rrdmhr4pn3+LUB7a8T/vZ/wOzG6 SgdgWCrYikK7CTD1x7hsn2Y= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:39 2025 by rpki-client on console.sobornost.net