$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft File: H31if-NqLr9pgJvIR7VDO_Q-N-g.mft (raw, json) Hash identifier: 75BYZ9TDXV9nyAhy4lXxGsE2r7JSvNRiOabOGfK6J3o= Subject key identifier: 27:5C:C2:56:94:0E:51:F3:12:8E:1D:6E:DB:74:51:7A:A9:AF:C2:31 Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Certificate serial: 0177 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft Manifest number: 016D Signing time: Mon 28 Apr 2025 08:49:26 +0000 Manifest this update: Mon 28 Apr 2025 08:49:26 +0000 Manifest next update: Wed 30 Apr 2025 08:49:26 +0000 Files and hashes: 1: 6U2F1T0apyKE_s6KjVTtn1ngCPM.roa (hash: T6Wekowtjx5HTVqLi5LQgaYJZqcoVmMpZasCEkrrxIw=) 2: H31if-NqLr9pgJvIR7VDO_Q-N-g.crl (hash: Iow+6k6JZ9NHC/Jp1HpVYDn/ENzsRZiizPOk7XViVqU=) 3: N-gjgYlWMDGqdQ2nkVTKjiHMzIY.roa (hash: h9AfKnLubyMCMrK9zicrcaOKGGYE8n9yoUqLKuu2900=) 4: Yntbw-USYk856WNU8EElzSPWBdo.roa (hash: fs0JsH7V9nQ2QlDggHDOKuXkABqnkhYmDsoZKaYP6lE=) 5: ZZriLYLN89RKpRrPPoWbNOg-Drw.roa (hash: dJfoYpAcbLUL3dKXtP/JqT6iLtS+lGV8N+zRPUPTNVc=) 6: uRI5gHEQikWEx19BuluUhbg1CyU.roa (hash: eDXj8CJFc6oOu3dG1DvOfKjAY66n3EWlHuxVx4Q965Q=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Validity Not Before: Apr 28 08:49:26 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=275CC256940E51F3128E1D6EDB74517AA9AFC231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b4:34:3c:96:ec:88:b4:cc:dd:85:31:50:d3: 7a:8c:ad:83:30:6e:97:a2:f4:93:49:e0:86:5b:42: 34:6e:53:5c:4b:5d:41:9e:06:77:c2:c3:68:0b:f6: ba:e6:68:8f:8d:42:31:20:2c:0a:3b:00:c3:91:4f: b7:2e:e7:e7:1a:6b:09:9c:19:25:80:f1:d2:38:e5: 18:46:1f:a4:ad:90:4d:82:42:8f:25:bb:ef:69:ad: 73:9b:da:54:b8:81:36:98:e0:ef:da:5c:9c:ce:fe: a6:03:5f:06:24:ff:6b:72:78:7a:bb:a8:d3:42:f4: 3e:46:c8:80:72:ba:74:a7:56:61:2e:c1:4a:e8:e4: 0a:91:b2:50:bc:a1:9e:81:c9:7b:3a:2f:ab:89:83: f4:41:72:45:14:b1:f2:63:b9:a4:8e:ea:36:63:96: 17:45:3f:c8:b0:4b:46:7d:36:43:36:43:f5:f2:10: 92:c4:83:02:b9:8f:c6:d3:5b:10:ea:11:e7:68:f0: d9:2f:3a:9e:14:e1:14:14:09:99:e4:e3:23:0f:42: 94:13:f4:63:a4:2d:22:4d:0a:3e:b1:ac:de:e7:2f: 98:c7:72:b3:9b:c2:9f:46:24:04:b9:56:3d:8f:7d: cb:dd:7b:3b:7d:78:ac:f8:71:92:0b:e4:89:14:39: fb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5C:C2:56:94:0E:51:F3:12:8E:1D:6E:DB:74:51:7A:A9:AF:C2:31 X509v3 Authority Key Identifier: keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:a9:23:0d:89:1e:bc:09:1a:0b:a7:48:65:71:c0:0d:0b:73: b4:94:27:31:34:de:96:ee:f3:01:5c:ab:9c:6c:cc:c0:28:0b: 69:4e:ec:4d:c2:1d:b2:d8:13:83:2d:72:53:ef:d9:7e:54:52: 7c:38:d6:a9:52:cb:ad:e6:54:43:09:87:50:23:d3:0d:78:1a: 09:cb:f4:d7:57:cd:96:88:b5:d4:08:ea:7d:e6:1e:97:3c:02: c4:9f:ad:2e:d6:00:3a:49:58:ea:ea:55:eb:27:39:0a:00:c7: e8:19:29:3d:2c:99:97:f1:ec:b6:ee:e6:c3:34:f2:34:46:00: d3:53:56:48:59:23:eb:54:2c:d7:67:bf:5e:7f:9c:91:01:a3: 3f:a2:a4:5e:9c:41:2e:d0:da:5b:cc:65:41:63:a9:6e:ad:45: ff:eb:a3:9a:84:bd:83:ff:9e:a5:16:93:da:0c:33:9d:1d:4d: 74:b4:cb:6d:5e:a7:62:69:1b:5f:eb:c3:5c:19:67:92:8d:75: 8b:30:eb:13:0f:98:70:ec:ab:07:18:67:23:d0:a5:cb:cc:47: ad:bd:e9:ff:56:3a:88:24:b3:b5:31:73:5c:70:40:88:73:5a: b2:9f:c3:ae:c9:74:4e:bd:4e:ca:aa:ab:a8:8f:cd:5e:27:49: a6:da:38:30 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY3 RDYyN0ZFMzZBMkVCRjY5ODA5QkM4NDdCNTQzM0JGNDNFMzdFODAeFw0yNTA0Mjgw ODQ5MjZaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKDI3NUNDMjU2OTQwRTUx RjMxMjhFMUQ2RURCNzQ1MTdBQTlBRkMyMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPtDQ8luyItMzdhTFQ03qMrYMwbpei9JNJ4IZbQjRuU1xLXUGe BnfCw2gL9rrmaI+NQjEgLAo7AMORT7cu5+caawmcGSWA8dI45RhGH6StkE2CQo8l u+9prXOb2lS4gTaY4O/aXJzO/qYDXwYk/2tyeHq7qNNC9D5GyIByunSnVmEuwUro 5AqRslC8oZ6ByXs6L6uJg/RBckUUsfJjuaSO6jZjlhdFP8iwS0Z9NkM2Q/XyEJLE gwK5j8bTWxDqEedo8NkvOp4U4RQUCZnk4yMPQpQT9GOkLSJNCj6xrN7nL5jHcrOb wp9GJAS5Vj2Pfcvdezt9eKz4cZIL5IkUOfstAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUJ1zCVpQOUfMSjh1u23RReqmvwjEwHwYDVR0jBBgwFoAUH31if+NqLr9pgJvI R7VDO/Q+N+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvSDMxaWYtTnFMcjlwZ0p2SVI3VkRPX1EtTi1nLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9IMzFpZi1OcUxyOXBnSnZJUjdWRE9fUS1OLWcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9IMzFpZi1OcUxyOXBn SnZJUjdWRE9fUS1OLWcubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkqkjDYkevAkaC6dIZXHADQtztJQnMTTelu7zAVyrnGzMwCgLaU7sTcIdstgT gy1yU+/ZflRSfDjWqVLLreZUQwmHUCPTDXgaCcv011fNloi11AjqfeYelzwCxJ+t LtYAOklY6upV6yc5CgDH6BkpPSyZl/Hstu7mwzTyNEYA01NWSFkj61Qs12e/Xn+c kQGjP6KkXpxBLtDaW8xlQWOpbq1F/+ujmoS9g/+epRaT2gwznR1NdLTLbV6nYmkb X+vDXBlnko11izDrEw+YcOyrBxhnI9Cly8xHrb3p/1Y6iCSztTFzXHBAiHNasp/D rsl0Tr1OyqqrqI/NXidJpto4MA== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:56 2025 by rpki-client on console.sobornost.net