$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft File: TwAMtt3TdIem3h9-rb2hJwjrLBk.mft (raw, json) Hash identifier: HLDJgc1kYpQaO5DWD3nZ5P8QUa5KnL2z4w4sdWNbIpc= Subject key identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 Authority key identifier: 4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 Certificate issuer: /CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Certificate serial: 01BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft Manifest number: 01B9 Signing time: Mon 28 Apr 2025 09:49:04 +0000 Manifest this update: Mon 28 Apr 2025 09:49:04 +0000 Manifest next update: Wed 30 Apr 2025 09:49:04 +0000 Files and hashes: 1: TwAMtt3TdIem3h9-rb2hJwjrLBk.crl (hash: BE0GZnX4gxQXIJVs6wEFcE+3QcQ4FN1KynBwCNXheUY=) 2: uRSqFV58E3nH1p3jiHvKc4lbTUI.roa (hash: CnbYGl41BRGfMBBfC9/Hho6CwbwlpDvFOtjleXqKaI8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Validity Not Before: Apr 28 09:49:04 2025 GMT Not After : Nov 7 15:30:19 2025 GMT Subject: CN=6BA0B4DA6503A1532D5360C18EB1A32EBAA66400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:5d:3b:a1:99:c6:fb:3b:7a:74:a4:7e:e8: 5a:72:42:8e:25:eb:10:33:c3:96:55:5b:d2:40:e7: 21:01:fa:e3:1d:64:7e:e0:b5:b8:7a:de:05:10:27: 88:10:c4:88:8b:76:b3:fb:b3:98:fc:c7:2e:45:ba: 3e:4d:f3:cc:5a:c3:45:13:4a:8c:de:59:79:85:6f: c7:ed:14:0d:fb:9d:cd:4a:27:96:94:13:5b:2a:5a: c5:37:40:d8:78:84:88:fb:2a:90:27:fb:70:2a:9a: b3:ec:e5:34:d3:1c:48:37:6f:84:0b:e5:23:fe:b8: e4:55:82:0c:70:55:91:9a:87:e1:9c:f5:5d:94:e6: 76:d7:b8:ab:c8:f5:06:ef:f8:66:29:51:6b:07:7a: 21:fa:de:af:82:f0:c2:5a:1d:3e:91:24:4e:d2:67: 2e:9a:42:d1:1d:72:1a:5b:dd:ee:c5:2e:54:c7:59: df:c7:dd:5f:b4:1f:6f:95:76:d8:4b:e1:12:ad:2b: 08:8d:9d:2b:9d:7a:eb:da:f6:3e:d0:83:30:38:5d: 4c:4e:f1:fc:c3:30:9a:05:bf:fa:16:d7:1e:3c:fc: bc:4d:83:8a:1f:5e:cb:5b:73:c2:47:72:92:83:5b: 15:57:fa:95:85:6c:8f:7d:22:03:31:ec:22:d8:39: 0c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 X509v3 Authority Key Identifier: keyid:4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:86:ec:e3:82:37:95:05:c9:ca:fb:ce:c9:49:1c:cc:74:9d: 71:52:97:1b:12:7f:24:2f:77:56:03:8a:73:a0:e4:86:9e:ce: e3:e2:83:be:09:db:7f:ec:54:aa:4a:79:00:eb:73:84:49:04: fe:bd:6a:eb:8b:92:78:74:04:9e:75:6c:b3:30:46:eb:eb:30: f1:e9:e6:e7:c5:60:65:bd:14:58:69:94:a0:4a:08:25:4b:ee: 85:6c:71:7e:d7:bf:67:85:fc:fe:2b:6d:ad:a7:93:f3:3f:97: f6:3a:0c:e8:9b:23:92:03:e3:86:7b:14:3d:19:16:f6:8e:16: c8:f8:f8:e9:34:71:35:0a:7e:04:33:4d:c0:6b:f9:d9:db:77: 46:6d:ce:04:e0:e0:cc:04:a3:ad:27:ee:39:94:48:7a:b2:42: b9:88:7e:c1:c4:0f:b8:79:c6:41:e7:41:96:62:23:86:df:1a: bf:69:fe:f4:15:51:e2:10:c1:1a:17:ef:85:c6:d3:65:34:30: bd:5d:30:9d:54:ff:2b:23:b5:90:95:04:18:92:34:96:27:cb: 3f:00:79:e3:b7:ce:36:fd:f1:37:24:12:4b:af:e2:b9:30:ed: d6:cf:30:0c:53:95:1a:9f:17:41:eb:cd:a0:fc:6f:7a:64:f1: 8f:54:87:46 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEYw MDBDQjZEREQzNzQ4N0E2REUxRjdFQURCREExMjcwOEVCMkMxOTAeFw0yNTA0Mjgw OTQ5MDRaFw0yNTExMDcxNTMwMTlaMDMxMTAvBgNVBAMTKDZCQTBCNERBNjUwM0Ex NTMyRDUzNjBDMThFQjFBMzJFQkFBNjY0MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoHl07oZnG+zt6dKR+6FpyQo4l6xAzw5ZVW9JA5yEB+uMdZH7g tbh63gUQJ4gQxIiLdrP7s5j8xy5Fuj5N88xaw0UTSozeWXmFb8ftFA37nc1KJ5aU E1sqWsU3QNh4hIj7KpAn+3AqmrPs5TTTHEg3b4QL5SP+uORVggxwVZGah+Gc9V2U 5nbXuKvI9Qbv+GYpUWsHeiH63q+C8MJaHT6RJE7SZy6aQtEdchpb3e7FLlTHWd/H 3V+0H2+VdthL4RKtKwiNnSudeuva9j7QgzA4XUxO8fzDMJoFv/oW1x48/LxNg4of Xstbc8JHcpKDWxVX+pWFbI99IgMx7CLYOQwLAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUa6C02mUDoVMtU2DBjrGjLrqmZAAwHwYDVR0jBBgwFoAUTwAMtt3TdIem3h9+ rb2hJwjrLBkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv VHdBTXR0M1RkSWVtM2g5LXJiMmhKd2pyTEJrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Ud0FNdHQzVGRJZW0zaDktcmIyaEp3anJMQmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS9Ud0FNdHQzVGRJZW0zaDktcmIy aEp3anJMQmsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPIbs 44I3lQXJyvvOyUkczHSdcVKXGxJ/JC93VgOKc6Dkhp7O4+KDvgnbf+xUqkp5AOtz hEkE/r1q64uSeHQEnnVsszBG6+sw8enm58VgZb0UWGmUoEoIJUvuhWxxfte/Z4X8 /ittraeT8z+X9joM6JsjkgPjhnsUPRkW9o4WyPj46TRxNQp+BDNNwGv52dt3Rm3O BODgzASjrSfuOZRIerJCuYh+wcQPuHnGQedBlmIjht8av2n+9BVR4hDBGhfvhcbT ZTQwvV0wnVT/KyO1kJUEGJI0lifLPwB547fONv3xNyQSS6/iuTDt1s8wDFOVGp8X QevNoPxvemTxj1SHRg== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net