$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft File: zLVFQVOszs6FINM5B9VOVsXKmks.mft (raw, json) Hash identifier: qycXDCYi3WEMHEKWNBoIr6vw+MuGHeZm/VdzYaWd54c= Subject key identifier: 9F:76:E0:19:DB:14:62:7E:DD:F8:6F:6D:2E:AA:E9:BD:0E:B9:D8:8C Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0DB9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft Manifest number: 0D36 Signing time: Mon 28 Apr 2025 09:18:47 +0000 Manifest this update: Mon 28 Apr 2025 09:18:47 +0000 Manifest next update: Wed 30 Apr 2025 09:18:47 +0000 Files and hashes: 1: -9vGmeeNefwndf0Q0x8_kteaypg.roa (hash: up6xWUJHdV8qrNym8bM0KEnsJ0dOWDa8t/NW2uUCVLk=) 2: -Rd4V0z7RlwN07cKvn6NEOfdjwc.roa (hash: 4Epb75+fuR5FXLC+ZcDjsj6KQf48N2Gl2xjwF+PDGK0=) 3: 1UxhNGMmFgbjoQaVjCjMQYdjBYE.roa (hash: Pnwt/0AUvScTQsmZ5xT4Q741teN+n9ewYhy8oteAKQA=) 4: 6kbiqvrYxUogDnQnZMUvinRP7L8.roa (hash: 0Dz+quZWiEOug0Y9QbCvDZ+r7vqIZ0ivxnA3815GG/0=) 5: B3GjKJE5AhmntybizLFgxZ_Bi3M.roa (hash: 4oCMGhxaQEjkIRHxNa3zupIixqOqo4oRg7PbvAQp0y4=) 6: DcYI8ZmW1CxsHAxy75pwx3S1cSU.roa (hash: TQC8N28nCNGyA7IfnnCNvinZsBDe/CyFjWZXwdlqIbQ=) 7: EbUgtp4aNF6BaBdDvQkD8VnhAeM.roa (hash: 0e0jm5o5TQOYXswIy8UIf0jAUGWSP0Q4b3zLzt2G6Cs=) 8: H7qYF6C8jVnB7SaqOAbuJSK_E6k.roa (hash: jxynmVc0Q2m6rTeAA3MnMkMSqev4FeT2BHYyAOXsPR4=) 9: O1NjRs3K4AAlX_Fhr8nGXrlfwew.roa (hash: jni2dHhHRKS9DRpcXUElX3TsdO5mNzs7tobvLPTz9f8=) 10: O9CSpgTWnkI9wZDqdyS0VAH_UZQ.roa (hash: k3SeCE8mNkmJm6OqQbfxH3OvHU8yhgSVc7lBM87vtps=) 11: O9rIUW2j-iTzzHYEAijZry7OZts.roa (hash: VFvisbotMqdFyIi+krSLGb9KsqUkmSXozEV0sG11wac=) 12: OeQl39Pnm2bAGUR-6yCw28ZxhfI.roa (hash: 5Tob5UPFLKFP3rD7LWYlzJbgJ6u+uFE7ybttQ6TO0iY=) 13: S0k8PtJ9J6XkLIUF45vLx6-bMmo.roa (hash: 8IReq7H2i46QG+ucAJHY+ioiy/kieOw1z868CXHP6/Q=) 14: Vjdc9nbqWAYl1xJTPGI-odXFcgw.roa (hash: w0FzivTeHOkQhju4cV70BF/rtkGwMBmlVyTdVxvFplk=) 15: XsJ0qIf386p-ntEcBzAbyjl0vuE.roa (hash: wnhayTVHwyNH7eJrY/lkbbpgLDyHL0iaeOYkwuARY28=) 16: eJzLNLjQ6DxAzr2rQtEOHBKsms8.roa (hash: ypTmrfGZfByBMN9isAPlTCJEeF0kVzPQ8dme6ieuoGU=) 17: eL_Wyl7GGWxGSGGyL8PKZGhHteU.roa (hash: f2p7cwTC3/GVzfLMoKPhHBCBFuChEDYtCchgetGy/NY=) 18: i46ldYhHdWHXzdZIpvg49yWwJLA.roa (hash: lyTT2mO5fpbZnoSVWhmKQSYykjt5qgbAr94dP2/CGHo=) 19: mgJrv8mZitz_bDQJylHrfyYmubY.roa (hash: HMnXmGPnBHBDvtSyqPWLvSYQxDm0zIVXqJlaLnBziT4=) 20: n0z-7gw9P02Q1_udeWLPVppNBt0.roa (hash: TO7npdkWXVhjIRYg2GRj4OkY0OpzW8h6N0e9LezxyBY=) 21: niyGTm_HncgZQl8eznfbE9h-FF8.roa (hash: Dnrp1sco/YFm86a+9EyLYrnPOeydObPrXqa1wKu7pd8=) 22: rk9UUd2KbIG9cE72lihL7qRvT8o.roa (hash: nX02OfpJ48UMomu9p7buOmcpiGzoK977mUt1QPhjeA8=) 23: zLVFQVOszs6FINM5B9VOVsXKmks.crl (hash: 1xD1wGdLNihBytJZOJKWZm0FcXdoimFwyNcrjjMvOzU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3513 (0xdb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Apr 28 09:18:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9F76E019DB14627EDDF86F6D2EAAE9BD0EB9D88C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:99:36:6f:0a:b2:8a:95:22:aa:15:c7:66:54: 03:8e:a7:06:b5:49:08:1a:f1:47:9b:e2:3e:df:65: 7f:3f:12:ea:c3:84:47:3f:b2:41:b6:1a:22:66:66: 20:59:5d:7f:10:f7:ec:9a:6d:9b:c0:10:fd:4a:a1: bc:cd:f3:8f:a1:5e:44:69:3b:26:1f:80:e7:c8:19: db:d2:03:dd:8f:9b:cf:6d:f8:d9:a3:2b:7c:ff:bc: 6d:cb:12:89:93:28:33:34:8f:ed:4f:7b:6c:53:24: 38:0b:30:1f:b1:13:5b:a8:a5:13:c2:20:43:98:e6: 12:b1:17:e1:9b:19:93:c0:45:86:36:fb:cb:f6:07: b2:c7:82:6a:08:7e:71:4b:da:ba:c6:e7:af:18:e9: d7:b9:4f:33:f9:93:9e:98:76:9d:b6:ba:a8:49:41: bb:41:98:28:b0:90:c4:a3:c2:dd:2d:92:34:b1:6f: b4:93:f5:11:a2:12:e1:86:3e:27:6c:6b:93:d1:00: 90:69:fa:2f:a9:a5:2c:be:88:9c:ed:28:fc:28:85: a1:8e:ab:45:36:3f:d5:50:57:00:d9:52:03:04:c6: 95:c2:76:a8:a6:a4:1a:49:bd:44:f2:e2:a9:6a:3c: ac:ab:81:aa:3f:f3:48:b7:e6:e8:a8:ee:f9:9d:03: d7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:76:E0:19:DB:14:62:7E:DD:F8:6F:6D:2E:AA:E9:BD:0E:B9:D8:8C X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:6b:b3:aa:ac:95:53:0b:9f:fe:7b:10:48:ce:8f:f6:f2:0a: 32:de:27:af:f0:a3:5c:0c:96:09:52:80:68:35:af:db:6f:3e: 02:dc:6e:e8:7c:f2:09:2f:15:ad:38:57:24:41:33:8c:9d:87: 86:27:c3:45:2d:b7:f9:d6:ce:0b:99:e7:7a:e4:be:a0:da:b5: 4c:67:e9:b6:5a:6e:a6:9c:26:84:3c:0d:e3:73:ba:0d:ba:45: fd:5f:01:b7:7d:ce:26:f7:ee:f3:82:a0:42:31:0f:b4:dc:5a: 86:d6:bd:bc:02:8f:0b:95:1d:c6:8f:b2:25:18:9d:47:fa:25: be:a2:77:b5:92:e1:e4:a4:b3:60:16:d4:1a:8c:2f:20:8c:9d: b6:d1:d7:49:da:1e:e3:da:f8:65:7b:33:0e:ad:9e:73:20:22: 27:2d:d0:6d:d6:a1:4b:7e:87:cd:1c:93:82:6e:0b:72:4a:2a: a3:d5:8a:6f:bc:e3:56:9c:d5:25:5a:06:31:3d:59:89:d5:21: f8:58:63:12:f3:91:ab:22:e0:79:7f:03:51:fa:ff:26:12:16: e5:03:ed:ef:d5:55:73:32:c9:0b:87:af:7e:d3:00:3c:99:d5: 45:16:d6:c1:5e:fa:05:92:63:2e:b7:c6:5d:c9:3c:a2:87:8d: 3c:69:a3:6c -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA0Mjgw OTE4NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlGNzZFMDE5REIxNDYy N0VEREY4NkY2RDJFQUFFOUJEMEVCOUQ4OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCimTZvCrKKlSKqFcdmVAOOpwa1SQga8Ueb4j7fZX8/EurDhEc/ skG2GiJmZiBZXX8Q9+yabZvAEP1KobzN84+hXkRpOyYfgOfIGdvSA92Pm89t+Nmj K3z/vG3LEomTKDM0j+1Pe2xTJDgLMB+xE1uopRPCIEOY5hKxF+GbGZPARYY2+8v2 B7LHgmoIfnFL2rrG568Y6de5TzP5k56Ydp22uqhJQbtBmCiwkMSjwt0tkjSxb7ST 9RGiEuGGPidsa5PRAJBp+i+ppSy+iJztKPwohaGOq0U2P9VQVwDZUgMExpXCdqim pBpJvUTy4qlqPKyrgao/80i35uio7vmdA9fXAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUn3bgGdsUYn7d+G9tLqrpvQ652IwwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC96TFZGUVZPc3pzNkZJTk01QjlW T1ZzWEtta3MubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgWuz qqyVUwuf/nsQSM6P9vIKMt4nr/CjXAyWCVKAaDWv228+Atxu6HzyCS8VrThXJEEz jJ2HhifDRS23+dbOC5nneuS+oNq1TGfptlpuppwmhDwN43O6DbpF/V8Bt33OJvfu 84KgQjEPtNxahta9vAKPC5Udxo+yJRidR/olvqJ3tZLh5KSzYBbUGowvIIydttHX Sdoe49r4ZXszDq2ecyAiJy3QbdahS36HzRyTgm4Lckoqo9WKb7zjVpzVJVoGMT1Z idUh+FhjEvORqyLgeX8DUfr/JhIW5QPt79VVczLJC4evftMAPJnVRRbWwV76BZJj LrfGXck8ooeNPGmjbA== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:43 2025 by rpki-client on console.sobornost.net