$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEARLABYSS/dqLtUg-AVK9-DJnb905Pde1FfDo.mft File: dqLtUg-AVK9-DJnb905Pde1FfDo.mft (raw, json) Hash identifier: pPFdkPXWoRIFPXgTQg2yNxmbBb2LVjIu6Ding/u31i0= Subject key identifier: EE:02:71:F9:4B:25:F9:60:2E:FE:F9:69:B5:E2:DD:4F:04:45:EE:E7 Authority key identifier: 76:A2:ED:52:0F:80:54:AF:7E:0C:99:DB:F7:4E:4F:75:ED:45:7C:3A Certificate issuer: /CN=76A2ED520F8054AF7E0C99DBF74E4F75ED457C3A Certificate serial: 0CC8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dqLtUg-AVK9-DJnb905Pde1FfDo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEARLABYSS/dqLtUg-AVK9-DJnb905Pde1FfDo.mft Manifest number: 0CC8 Signing time: Mon 28 Apr 2025 08:50:02 +0000 Manifest this update: Mon 28 Apr 2025 08:50:01 +0000 Manifest next update: Wed 30 Apr 2025 08:50:01 +0000 Files and hashes: 1: dqLtUg-AVK9-DJnb905Pde1FfDo.crl (hash: o8aqV+Uta6VzBmeA0HPFQ5Hrn8/zZ2lqqVUbnV1f4Yo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEARLABYSS/dqLtUg-AVK9-DJnb905Pde1FfDo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEARLABYSS/dqLtUg-AVK9-DJnb905Pde1FfDo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dqLtUg-AVK9-DJnb905Pde1FfDo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76A2ED520F8054AF7E0C99DBF74E4F75ED457C3A Validity Not Before: Apr 28 08:50:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE0271F94B25F9602EFEF969B5E2DD4F0445EEE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0a:45:d4:ca:28:7e:c8:d1:1e:8a:a9:a0:ed: 57:a1:95:97:d1:b5:f9:96:7d:03:60:43:af:d3:0c: 74:11:be:87:dd:2f:1e:3e:9f:9d:7d:34:dc:b0:25: 0c:24:ab:d9:59:40:63:5a:28:54:66:7b:f5:70:2c: 41:23:2e:b9:3b:b7:29:b0:d8:6b:ae:de:70:2b:de: bc:5c:eb:90:0e:b3:ad:59:0a:09:f4:2a:83:81:c3: 25:80:6f:67:4d:fc:19:29:d7:21:7e:a9:67:9d:e9: 37:e4:98:ee:8b:26:2e:f6:17:e4:61:13:53:bc:0e: 5e:c5:29:b5:a3:42:a8:84:9e:1a:7a:9d:d4:f0:cd: 9f:fb:37:18:a9:e3:8e:d8:24:9e:db:d1:2c:b4:e6: f4:ab:00:9c:f6:b5:84:a9:4d:b4:e1:f1:be:63:a7: 89:64:8d:e0:57:62:1d:db:ae:d6:2b:1b:ff:66:87: 2a:28:01:07:a5:8d:14:54:a5:ea:da:df:0d:ec:52: 8c:7f:83:8c:1b:22:78:3e:3c:e6:c6:93:a7:2d:99: 08:14:49:b3:b8:08:d4:03:2e:97:a1:99:51:06:db: 6b:16:ba:d7:2c:6f:78:2b:d9:3f:e5:35:58:52:da: 69:86:67:77:2b:06:5a:59:dd:0b:85:fd:a4:ec:92: 21:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:02:71:F9:4B:25:F9:60:2E:FE:F9:69:B5:E2:DD:4F:04:45:EE:E7 X509v3 Authority Key Identifier: keyid:76:A2:ED:52:0F:80:54:AF:7E:0C:99:DB:F7:4E:4F:75:ED:45:7C:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEARLABYSS/dqLtUg-AVK9-DJnb905Pde1FfDo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dqLtUg-AVK9-DJnb905Pde1FfDo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEARLABYSS/dqLtUg-AVK9-DJnb905Pde1FfDo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:c3:92:dd:d3:b9:0b:e1:4a:d5:3b:82:84:2b:18:cb:6a:37: cd:71:78:7c:54:13:41:54:9f:43:e3:6a:b3:1d:24:bc:4b:9a: 7b:6c:fd:14:46:e0:95:4b:f4:59:cf:e1:3e:08:94:0b:59:9c: 57:45:2a:5a:b3:a8:fb:d5:44:21:b1:30:5c:a7:3c:26:82:68: 6b:ef:f7:c4:22:af:41:92:14:2f:47:3a:8a:81:42:e8:b4:d3: 51:ad:4a:16:87:50:80:b9:f6:70:cd:c2:da:4b:5f:90:81:72: 5b:fc:19:80:24:75:14:11:38:6d:de:97:7e:93:71:0e:50:ad: 6c:23:b6:16:c1:54:60:24:74:2b:55:26:93:87:d1:5f:59:07: cb:69:1e:55:5c:18:cb:9f:26:cc:0f:e5:aa:99:de:84:3e:67: 12:7c:b5:9d:17:e9:83:7f:44:fe:7e:00:0a:75:c6:e8:9e:e4: dc:06:9c:b6:2f:7a:0a:bb:cf:7d:16:f6:7a:6c:f5:89:c8:ca: 50:9b:d6:38:e5:1c:0e:21:f2:eb:51:7a:90:bd:4d:4d:c3:5e: dd:12:b1:8c:52:f4:48:4b:5e:72:1b:4f:9c:42:8a:15:09:36: 11:67:d1:47:9a:fe:05:4e:e8:56:23:ce:e7:3e:7c:b2:3b:82: ad:b3:64:32 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzZB MkVENTIwRjgwNTRBRjdFMEM5OURCRjc0RTRGNzVFRDQ1N0MzQTAeFw0yNTA0Mjgw ODUwMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFMDI3MUY5NEIyNUY5 NjAyRUZFRjk2OUI1RTJERDRGMDQ0NUVFRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChCkXUyih+yNEeiqmg7VehlZfRtfmWfQNgQ6/TDHQRvofdLx4+ n519NNywJQwkq9lZQGNaKFRme/VwLEEjLrk7tymw2Guu3nAr3rxc65AOs61ZCgn0 KoOBwyWAb2dN/Bkp1yF+qWed6TfkmO6LJi72F+RhE1O8Dl7FKbWjQqiEnhp6ndTw zZ/7Nxip447YJJ7b0Sy05vSrAJz2tYSpTbTh8b5jp4lkjeBXYh3brtYrG/9mhyoo AQeljRRUpera3w3sUox/g4wbIng+PObGk6ctmQgUSbO4CNQDLpehmVEG22sWutcs b3gr2T/lNVhS2mmGZ3crBlpZ3QuF/aTskiHzAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQU7gJx+Usl+WAu/vlpteLdTwRF7ucwHwYDVR0jBBgwFoAUdqLtUg+AVK9+DJnb 905Pde1FfDowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVBUkxB QllTUy9kcUx0VWctQVZLOS1ESm5iOTA1UGRlMUZmRG8uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2RxTHRVZy1BVks5LURKbmI5MDVQZGUxRmZEby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BFQVJMQUJZU1MvZHFMdFVnLUFW SzktREpuYjkwNVBkZTFGZkRvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGjDkt3TuQvhStU7goQrGMtqN81xeHxUE0FUn0PjarMdJLxLmnts/RRG 4JVL9FnP4T4IlAtZnFdFKlqzqPvVRCGxMFynPCaCaGvv98Qir0GSFC9HOoqBQui0 01GtShaHUIC59nDNwtpLX5CBclv8GYAkdRQROG3el36TcQ5QrWwjthbBVGAkdCtV JpOH0V9ZB8tpHlVcGMufJswP5aqZ3oQ+ZxJ8tZ0X6YN/RP5+AAp1xuie5NwGnLYv egq7z30W9nps9YnIylCb1jjlHA4h8utRepC9TU3DXt0SsYxS9EhLXnIbT5xCihUJ NhFn0Uea/gVO6FYjzuc+fLI7gq2zZDI= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:42 2025 by rpki-client on console.sobornost.net