$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft File: KzuJrTLzuVt68WX0yKTNCOdU1as.mft (raw, json) Hash identifier: jSPNYYmAedGWzz/8MfZDi9tJeCljzMSBXk6Mud/BwvQ= Subject key identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 Authority key identifier: 2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB Certificate issuer: /CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Certificate serial: 03CA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft Manifest number: 03C2 Signing time: Mon 28 Apr 2025 16:18:37 +0000 Manifest this update: Mon 28 Apr 2025 16:18:37 +0000 Manifest next update: Wed 30 Apr 2025 16:18:37 +0000 Files and hashes: 1: KzuJrTLzuVt68WX0yKTNCOdU1as.crl (hash: 5C7FDxcwvbw/sD8qoJd6m9VdAm3scRHpNOdfkXHbjPQ=) 2: kVp4R8VZA5dHUawQHwYJ2c3mP7w.roa (hash: 3mJ8dW3+XenMk2XTVNqAKxZKa7+TExJaqw4B2ihld2U=) 3: qpDvUNdvRke8LBYVnLYGH6AjgpI.roa (hash: zYf+v16KFFJ/aGcnTNGBhhdfIKi5KJtz9utnQx0wPmk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Validity Not Before: Apr 28 16:18:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DD86409E426F9916CBB6874B07529843D30A48F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:db:89:0b:c5:2c:92:c4:78:96:00:84:64:de: f8:f0:1c:8b:c3:c8:de:56:c3:da:d5:95:d5:f7:c0: 53:aa:d0:a7:3a:75:06:5b:87:0d:f8:b8:55:00:71: b0:30:1c:28:0b:04:b3:7f:53:1b:50:40:0c:14:47: 59:2d:28:9a:c5:ad:cd:af:15:29:eb:49:01:7a:4a: 65:f5:bd:d3:be:12:c8:f7:76:8e:f6:f3:ef:31:98: 26:94:48:0f:7b:30:61:8c:71:08:8e:fb:54:7a:38: fa:16:d6:69:0f:73:4e:0e:7a:a7:88:32:21:95:fc: 1c:7b:64:ff:9c:31:e1:c9:fc:1b:93:7c:ff:bf:52: 47:38:4c:2c:85:96:31:47:c1:27:0d:3c:70:77:da: 14:05:55:d1:e1:93:e1:69:e3:85:ed:17:59:d5:63: 58:8b:a9:a2:34:59:17:ef:96:b7:90:ed:eb:6a:a0: 43:28:c2:bc:73:52:71:95:67:5e:2e:6b:6f:f1:39: 93:2e:d8:fb:2a:6d:b8:60:7f:3b:fb:5f:7b:65:5e: 22:65:45:06:be:5b:6f:0d:0a:e5:b1:68:80:69:c8: 44:a0:7a:43:1c:eb:b7:f6:5c:89:70:bc:f6:5d:b9: 81:0b:f2:a7:9a:cd:04:93:99:24:f6:e6:96:c0:a3: 3b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 X509v3 Authority Key Identifier: keyid:2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:2f:4b:12:ff:bd:20:18:a8:95:d2:a2:bb:fe:74:06:df:28: 8e:d9:10:40:92:56:d4:84:89:71:81:cd:06:2a:1b:2e:7d:2f: b4:93:ec:51:d4:ac:e7:99:ea:5c:a8:b0:b8:38:a6:c3:41:c5: c6:17:43:17:96:3e:dc:86:ee:cf:bb:7e:a6:52:21:37:62:05: e3:db:03:73:f9:95:94:89:6e:ab:0e:a1:9b:62:2f:a1:69:99: bd:ee:36:5c:82:ff:90:7d:5b:99:7c:65:3c:d6:89:f2:a9:57: e4:ce:27:3d:6d:be:27:39:4f:b8:2b:80:e1:43:b5:d9:8f:41: 84:a7:74:6d:44:23:9e:d6:6f:a2:24:12:72:5c:dc:d1:e6:e0: fe:76:78:40:53:13:ae:d8:9b:c7:e3:b8:2d:ab:7a:64:ed:9d: d9:8d:84:00:97:17:2b:de:88:5f:d7:5a:cf:cc:17:67:53:97: 64:0d:04:bd:cc:09:3b:5e:11:da:14:8f:69:22:07:ff:60:f1: 1d:dc:ce:ee:02:63:3c:07:be:14:05:a7:7a:77:e5:46:e9:03: 98:6e:52:ae:e2:04:44:b5:ce:40:a9:93:b4:83:b5:0a:c7:28: 4e:09:c2:56:30:d8:57:42:84:5c:ed:76:33:5c:91:d6:4f:b0: 63:6a:3f:6e -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICA8owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIz Qjg5QUQzMkYzQjk1QjdBRjE2NUY0QzhBNENEMDhFNzU0RDVBQjAeFw0yNTA0Mjgx NjE4MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEREODY0MDlFNDI2Rjk5 MTZDQkI2ODc0QjA3NTI5ODQzRDMwQTQ4RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo24kLxSySxHiWAIRk3vjwHIvDyN5Ww9rVldX3wFOq0Kc6dQZb hw34uFUAcbAwHCgLBLN/UxtQQAwUR1ktKJrFrc2vFSnrSQF6SmX1vdO+Esj3do72 8+8xmCaUSA97MGGMcQiO+1R6OPoW1mkPc04OeqeIMiGV/Bx7ZP+cMeHJ/BuTfP+/ Ukc4TCyFljFHwScNPHB32hQFVdHhk+Fp44XtF1nVY1iLqaI0WRfvlreQ7etqoEMo wrxzUnGVZ14ua2/xOZMu2Psqbbhgfzv7X3tlXiJlRQa+W28NCuWxaIBpyESgekMc 67f2XIlwvPZduYEL8qeazQSTmST25pbAozuVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQU3YZAnkJvmRbLtodLB1KYQ9MKSPEwHwYDVR0jBBgwFoAUKzuJrTLzuVt68WX0 yKTNCOdU1aswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUND VUJFL0t6dUpyVEx6dVZ0NjhXWDB5S1ROQ09kVTFhcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvS3p1SnJUTHp1VnQ2OFdYMHlLVE5DT2RVMWFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUNDVUJFL0t6dUpyVEx6dVZ0 NjhXWDB5S1ROQ09kVTFhcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBBL0sS/70gGKiV0qK7/nQG3yiO2RBAklbUhIlxgc0GKhsufS+0k+xR1Kzn mepcqLC4OKbDQcXGF0MXlj7chu7Pu36mUiE3YgXj2wNz+ZWUiW6rDqGbYi+haZm9 7jZcgv+QfVuZfGU81onyqVfkzic9bb4nOU+4K4DhQ7XZj0GEp3RtRCOe1m+iJBJy XNzR5uD+dnhAUxOu2JvH47gtq3pk7Z3ZjYQAlxcr3ohf11rPzBdnU5dkDQS9zAk7 XhHaFI9pIgf/YPEd3M7uAmM8B74UBad6d+VG6QOYblKu4gREtc5AqZO0g7UKxyhO CcJWMNhXQoRc7XYzXJHWT7Bjaj9u -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:40 2025 by rpki-client on console.sobornost.net