$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft File: mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft (raw, json) Hash identifier: K73nN5oRgmnC96mKNht2xOKilJDkpnOCMXJPfvmOkCE= Subject key identifier: B1:4F:CA:ED:DE:09:C7:ED:F4:B2:AD:6D:75:B2:10:5C:13:E5:10:DA Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0D34 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft Manifest number: 0CFC Signing time: Mon 28 Apr 2025 06:18:47 +0000 Manifest this update: Mon 28 Apr 2025 06:18:47 +0000 Manifest next update: Wed 30 Apr 2025 06:18:47 +0000 Files and hashes: 1: mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl (hash: Oh/+bmf0V0FEyM0sLbxqSXlUf0bcMpC/6+GRyyHMcas=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3380 (0xd34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Apr 28 06:18:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B14FCAEDDE09C7EDF4B2AD6D75B2105C13E510DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:7d:d7:f2:fb:38:76:98:a8:cf:87:5e:96: a4:87:e0:8f:41:48:98:04:bc:be:35:bc:f7:92:9d: e4:0a:e6:f8:a4:64:5a:d6:b3:ca:59:71:9e:cc:36: 00:6d:63:4e:48:f9:b4:ea:93:18:84:d1:6b:9d:74: 15:c8:71:5a:a6:72:c0:17:fc:21:4d:41:d3:59:25: ce:3a:38:05:ec:ce:1f:16:f6:31:3a:a9:9c:df:d9: 95:ae:e7:05:48:77:df:cf:54:7b:d8:14:6e:d6:9a: e7:8e:dc:ce:8b:2e:36:aa:ee:c3:1a:76:25:b1:0b: 59:a3:e9:64:77:65:f4:2e:97:22:54:1b:1e:51:99: 72:f2:92:59:e0:49:03:48:9f:8b:93:ec:32:f1:1b: b3:c4:92:25:4c:00:e8:8e:87:4f:71:27:15:28:e4: 60:cd:f8:cd:ef:a2:30:8e:6b:f5:09:0d:e8:f1:10: 55:cf:ca:f3:16:c9:2d:d6:07:cb:d3:b3:e3:f4:38: b3:70:c7:3c:c3:d3:c3:01:9f:72:14:5c:00:7c:a7: 27:20:f5:1e:ab:7d:3e:83:78:4b:75:f3:bd:86:90: 24:15:90:31:7d:b6:69:2a:ee:c0:ad:cf:5d:17:4d: 0b:74:36:1b:c2:4a:c8:1d:c5:91:d7:66:7c:fd:6f: 45:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4F:CA:ED:DE:09:C7:ED:F4:B2:AD:6D:75:B2:10:5C:13:E5:10:DA X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:7a:e9:cb:eb:d0:0a:a0:f3:92:70:61:60:65:49:fe:a0:7c: b8:d3:2b:30:e9:0d:a2:bd:8a:d1:01:61:f8:dd:8e:dd:ed:b6: f2:12:5c:3c:86:9e:35:2b:ba:6c:14:37:ed:db:aa:ce:41:c1: 7e:25:d4:57:75:43:fb:20:86:50:26:eb:ed:2f:12:2b:ae:ac: 7d:44:8a:5e:77:01:9b:06:51:6f:ed:a6:04:85:b5:d2:12:ec: e1:32:89:4e:e4:30:c4:17:a5:4d:14:ea:ea:b0:49:5b:d8:a5: 44:65:49:20:62:c0:9d:cb:cf:b7:7f:4b:9e:13:4c:89:2e:47: ab:72:c1:9d:e4:d6:8f:4d:55:a8:f5:15:82:86:a5:bb:8b:a1: 3c:f2:bf:b5:6f:c9:7f:38:c1:50:01:86:be:58:75:05:91:73: 8b:45:72:e4:f8:f7:48:d9:d0:70:35:56:6e:f1:69:d7:6b:5c: 7b:23:ad:76:38:8f:43:e9:ec:7c:c5:53:98:f4:50:4c:20:a8: e8:f6:36:43:fb:22:d5:57:35:01:8d:d0:48:35:63:cf:4c:38: 8f:15:bf:8a:33:f4:df:f4:fb:21:8a:c1:36:d7:96:87:8c:89: 06:c3:4e:60:56:d8:d6:5e:cb:2f:94:87:bf:ec:00:96:79:42: 7d:e0:a5:3d -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNTA0Mjgw NjE4NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxNEZDQUVEREUwOUM3 RURGNEIyQUQ2RDc1QjIxMDVDMTNFNTEwREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9H33X8vs4dpioz4delqSH4I9BSJgEvL41vPeSneQK5vikZFrW s8pZcZ7MNgBtY05I+bTqkxiE0WuddBXIcVqmcsAX/CFNQdNZJc46OAXszh8W9jE6 qZzf2ZWu5wVId9/PVHvYFG7WmueO3M6LLjaq7sMadiWxC1mj6WR3ZfQulyJUGx5R mXLyklngSQNIn4uT7DLxG7PEkiVMAOiOh09xJxUo5GDN+M3vojCOa/UJDejxEFXP yvMWyS3WB8vTs+P0OLNwxzzD08MBn3IUXAB8pycg9R6rfT6DeEt1872GkCQVkDF9 tmkq7sCtz10XTQt0NhvCSsgdxZHXZnz9b0X9AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsU/K7d4Jx+30sq1tdbIQXBPlENowHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvbVQ5eWdQSDV0 bFE1M1dXdC0yaktEV3ladnNVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA166cvr0Aqg85JwYWBlSf6gfLjTKzDpDaK9itEBYfjdjt3ttvISXDyG njUrumwUN+3bqs5BwX4l1Fd1Q/sghlAm6+0vEiuurH1Eil53AZsGUW/tpgSFtdIS 7OEyiU7kMMQXpU0U6uqwSVvYpURlSSBiwJ3Lz7d/S54TTIkuR6tywZ3k1o9NVaj1 FYKGpbuLoTzyv7VvyX84wVABhr5YdQWRc4tFcuT490jZ0HA1Vm7xaddrXHsjrXY4 j0Pp7HzFU5j0UEwgqOj2NkP7ItVXNQGN0Eg1Y89MOI8Vv4oz9N/0+yGKwTbXloeM iQbDTmBW2NZeyy+Uh7/sAJZ5Qn3gpT0= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:43 2025 by rpki-client on console.sobornost.net