$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft File: tKZaDrhmkhnEGFRC1J_J1vgltmU.mft (raw, json) Hash identifier: VlAB/Qr1BmH9tozQkddltCC+JURnaFOHBT9P34S3utU= Subject key identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1013 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft Manifest number: 0F23 Signing time: Mon 28 Apr 2025 03:18:48 +0000 Manifest this update: Mon 28 Apr 2025 03:18:48 +0000 Manifest next update: Wed 30 Apr 2025 03:18:48 +0000 Files and hashes: 1: -hXinkyERwOZmWW6tJRlYuYDnsw.roa (hash: 0UG4bKyKZC4S+DSXTHRARxITOvLWVdVciAo1fD+aHNg=) 2: 2nTTSCm2fpjBJGudHl8IJW3HcJM.roa (hash: 5pYK8M8BiQ0nMhl8APevik7u6634ukqlOBC0h6GRe8k=) 3: 7l6JMqjyS7ttKEFc5eS4vZBBiBc.roa (hash: gFGUfOtM7jIup7rrvRDQmz+sthA+/qFqVlP2iKq2cw8=) 4: 9k6qUIy-K5FcbrpVivxCiitUfec.roa (hash: 31TGrAi9aB9mouNzIdzaL+IcSQuFl+XGXKs6ZwZlAsw=) 5: AOv69UsHHgpCV9hQxZ8DYFvW8N0.roa (hash: ws92WPMzpFMn0rNkx9rAwD3umuOdkEOAF80TYgJWXZE=) 6: AcPLINHU0NWVVpnIaqxMdyt8hPw.roa (hash: TGD1JT0OmtjXuFr6GkQmJSzFWMnht7S+TZFXd5wO2tg=) 7: DmcVIRNe6GiZZZVn2nFgnIQ9T4E.roa (hash: Mi9q8jMU6PXK5qHVhj1KkAo1lkqnarMjcpsr4D9vJIY=) 8: GTrVPm__ebUNkcI5Xi5KjLZLGwo.roa (hash: qrtCH8X2ts8HXDL9nKr+7sTyIgRj8Jzerw+zU4vb984=) 9: IlenO6gLy_WSup6mEZHn4QkiLgA.roa (hash: Dp08m69GCDFKTY1ro9nM4yRCohaYIlR4/OudXrMcgPQ=) 10: KJxHeqPcv9_IeZifsf9aFzZ4znw.roa (hash: A/jDh7h71MxreYF/9V6H+XqGfTrpQJLZTedbMrRn4ko=) 11: PdAiL87YMA8f5Tv6d708S3blQrg.roa (hash: hfTDYDVMOHLiCZEYd1bzoCZfRSmiu7LDx8HoZPdkj5Q=) 12: R113cf6tPL7LcEqHjdOy3gLP1Cg.roa (hash: wfxmEVturK8lwOE0Tb8lXI8PsU0IUl6sg+MOky7bBy8=) 13: Y9oYj49n12Hdk3toPDTQ9XaRsaY.roa (hash: bcdSkdI+Tu9lltz6meDsQOl6LZn7r6IKbUMY961mnfQ=) 14: YADMAFioNbo8VJrOlFD6CT0_jWw.roa (hash: n7cVF1rcqrkoRbR1WinTXy+WuuvKS0WnE5vFC+yYu2k=) 15: YwAr9qGkqMlaGniFNTa2p2_yBO0.roa (hash: 7FxkAHf2ZbS3zENJ7tNe9rBkqXj1R3EeYTQpBTqT1cY=) 16: YzuPerJ85zOhfa63sVNTw9PQXnU.roa (hash: ZYVsK019XPfPOeatjw3Z6pUvt6RrHHrRCDfYuKp9xbE=) 17: _6lx53SZGJi7gemirUAjkhG1vK4.roa (hash: T/pM//GrpHV29ZttJSynIV2hBeOwYjfgJ4FLQTYGp4A=) 18: atw9IRYDyGoKtE2P0AuRs7sUE84.roa (hash: 12H6ffsztQGg/Fw+6Q7bNESogaNm1ojZihhkOH1zSLA=) 19: gGKi90fZai32MWlQ6XXbvvLb8As.roa (hash: SBe2iMLHorKWSY6cqEAe5wfDF7JQeoubbtOqY/qpwV4=) 20: lr4AB380PVCnFsEtSFv9UzWZY30.roa (hash: T8seleh/k7N1t2iSLJZ5+jS5avh+t93P4xJKH5G56BQ=) 21: mTHzUpQ1e1Juagv6b0QqzqUpdmQ.roa (hash: DXK2u9KEOzx/5Z+zSK4bJ11SjdmMJ1wqG1GOsgKOuj8=) 22: phK85_haumZeklMDMMKM5VS2kPA.roa (hash: b9XsarXI2YtKj7fGACAknfuV3NknbhlkkCqJmsOLbNs=) 23: sslHKU-uS0tQeIwSyd-QvAuW8Fc.roa (hash: DLaluWLeDXgVpXdpYFvNk3z/2sVn0NmWrO4tw3Szx9w=) 24: tKZaDrhmkhnEGFRC1J_J1vgltmU.crl (hash: Y/bO7C1pLVw+c+4Jro54DQobrhCzXCUY+j8Pm1LcsaE=) 25: vIZRdbZtyiH0Q8YHakndmIT-UTE.roa (hash: 58Jrbiu9GvQCu32V4isx+WAldZGHSwLgutccuRKQ4nI=) 26: xfV1b12RO5UrUseqwjU8L9cMokw.roa (hash: vff5szrdbQe+8n3p0zSOS5AjlqClA4bPofVtCJft8Bc=) 27: y1ycz2kpzad_oHR1DPNSlFxEBBM.roa (hash: 7s9BqDuBWj0mPIvB3PFAl4tQNvo8crBCWYagQYCSB3g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4115 (0x1013) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Apr 28 03:18:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0E53CFF1D0181F272D8AA565C2A113F9F95BAB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:89:75:40:22:61:58:f1:31:e1:0d:ed:89:c7: 1c:c2:a7:48:ec:32:66:b0:0c:77:66:f9:c0:10:73: 43:71:67:86:f0:e2:f9:e6:a8:a3:b8:93:ea:61:8b: fc:b0:b8:f6:3f:c2:1b:69:1e:d6:5d:65:ca:37:5e: ba:46:d9:c4:f2:3e:05:48:7a:7e:27:53:2c:68:c7: 1b:e6:02:61:18:e7:8d:3f:0e:23:3b:4e:cb:01:43: 0b:8f:05:e1:5e:3c:bc:9b:33:45:f4:db:cf:ee:5e: 9e:18:80:3a:fe:bc:fb:d3:34:c7:d5:ca:35:93:11: c9:78:3a:df:ac:fc:69:69:a5:74:c4:da:0a:08:ab: e4:9e:fd:53:2c:9a:52:15:35:8c:26:79:4d:69:78: 3e:7a:98:f0:bd:f6:e1:c0:18:a6:44:96:5c:d8:93: a0:f9:4e:ff:4d:fe:4f:ed:72:03:ac:3f:1e:19:62: ae:49:01:42:1a:2f:b1:e6:51:12:2e:e9:3c:6a:62: dd:45:18:9c:31:88:6a:95:05:ff:2e:59:d4:86:96: 36:2e:17:8e:51:25:25:97:fe:83:c0:35:5e:c5:78: 53:3a:2c:c0:63:fa:d6:e1:2b:ad:61:43:f6:c3:bd: e7:bc:10:3b:a7:7d:16:f5:08:2e:49:be:06:69:1f: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:c9:ca:07:35:12:87:1f:f1:71:5e:d6:b1:e7:a3:5f:b2:07: 12:2a:01:79:05:d8:a6:31:80:3b:e0:4a:bc:f3:6c:81:33:44: c1:60:2b:12:96:d3:28:45:b3:b3:26:85:0b:8b:d5:54:f4:7b: 28:1e:13:cc:ef:20:e8:1c:09:5b:4d:34:13:fb:01:6d:c7:5a: 6d:d1:b9:7e:0b:ac:9e:36:2f:8b:59:c5:a9:bc:e7:c8:05:a3: d3:cf:4d:db:72:d4:5f:75:9c:57:43:2b:b4:1e:09:c3:52:fc: ac:8a:e2:7b:3f:aa:d3:ec:1a:08:57:ff:dc:8c:fc:48:20:37: b6:4f:bb:be:3e:25:e4:fd:6a:54:0c:87:a5:9d:5e:74:91:3f: 2f:bd:7a:c3:be:4b:93:74:45:51:8e:2a:4a:b4:b2:ac:04:1f: 55:e5:a3:25:3f:30:7c:a4:6e:c2:db:30:60:44:9b:9c:0d:16: 0f:4f:1b:27:10:b1:a9:69:06:a7:03:9d:60:9c:d5:98:b1:4a: 29:8b:3b:75:8c:31:c9:a6:af:a5:ce:40:73:b2:71:b7:3c:d5: c7:33:59:20:14:7f:a1:ab:f0:48:73:87:ee:dc:3f:f2:40:af: 3b:08:6e:c7:7c:c6:cd:02:f8:1d:5c:c6:90:47:04:9d:9e:7a: 4a:05:fa:37 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICEBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA0Mjgw MzE4NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFNTNDRkYxRDAxODFG MjcyRDhBQTU2NUMyQTExM0Y5Rjk1QkFCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxiXVAImFY8THhDe2JxxzCp0jsMmawDHdm+cAQc0NxZ4bw4vnm qKO4k+phi/ywuPY/whtpHtZdZco3XrpG2cTyPgVIen4nUyxoxxvmAmEY540/DiM7 TssBQwuPBeFePLybM0X028/uXp4YgDr+vPvTNMfVyjWTEcl4Ot+s/GlppXTE2goI q+Se/VMsmlIVNYwmeU1peD56mPC99uHAGKZEllzYk6D5Tv9N/k/tcgOsPx4ZYq5J AUIaL7HmURIu6TxqYt1FGJwxiGqVBf8uWdSGljYuF45RJSWX/oPANV7FeFM6LMBj +tbhK61hQ/bDvee8EDunfRb1CC5JvgZpH1ElAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUDlPP8dAYHyctiqVlwqET+flbqygwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEtaYURyaG1raG5FR0ZSQzFKX0ox dmdsdG1VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBADfJygc1 Eocf8XFe1rHno1+yBxIqAXkF2KYxgDvgSrzzbIEzRMFgKxKW0yhFs7MmhQuL1VT0 eygeE8zvIOgcCVtNNBP7AW3HWm3RuX4LrJ42L4tZxam858gFo9PPTdty1F91nFdD K7QeCcNS/KyK4ns/qtPsGghX/9yM/EggN7ZPu74+JeT9alQMh6WdXnSRPy+9esO+ S5N0RVGOKkq0sqwEH1XloyU/MHykbsLbMGBEm5wNFg9PGycQsalpBqcDnWCc1Zix SimLO3WMMcmmr6XOQHOycbc81cczWSAUf6Gr8Ehzh+7cP/JArzsIbsd8xs0C+B1c xpBHBJ2eekoF+jc= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:41 2025 by rpki-client on console.sobornost.net