$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEIPUCOMTW/Sj1tJebwZRVnWcTrAhb9uWEcU-g.mft File: Sj1tJebwZRVnWcTrAhb9uWEcU-g.mft (raw, json) Hash identifier: LQzXDIExLOQ6pT+aF864B7uRtLlCjZ1XwbISGsB4QLQ= Subject key identifier: 78:19:1B:D4:7D:FC:74:2C:E1:5A:11:BD:70:76:1E:37:C5:45:91:EF Authority key identifier: 4A:3D:6D:25:E6:F0:65:15:67:59:C4:EB:02:16:FD:B9:61:1C:53:E8 Certificate issuer: /CN=4A3D6D25E6F065156759C4EB0216FDB9611C53E8 Certificate serial: 0CF2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sj1tJebwZRVnWcTrAhb9uWEcU-g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEIPUCOMTW/Sj1tJebwZRVnWcTrAhb9uWEcU-g.mft Manifest number: 0CF2 Signing time: Mon 28 Apr 2025 09:50:30 +0000 Manifest this update: Mon 28 Apr 2025 09:50:30 +0000 Manifest next update: Wed 30 Apr 2025 09:50:30 +0000 Files and hashes: 1: Sj1tJebwZRVnWcTrAhb9uWEcU-g.crl (hash: O+TJjF0U8Hzl9xaP8Ly5Twgbu+c9eg9NXl+Nd+TExxo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEIPUCOMTW/Sj1tJebwZRVnWcTrAhb9uWEcU-g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEIPUCOMTW/Sj1tJebwZRVnWcTrAhb9uWEcU-g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Sj1tJebwZRVnWcTrAhb9uWEcU-g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3314 (0xcf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A3D6D25E6F065156759C4EB0216FDB9611C53E8 Validity Not Before: Apr 28 09:50:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=78191BD47DFC742CE15A11BD70761E37C54591EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:c1:d1:84:f9:cd:ce:41:b5:3b:00:81:d3: 6c:63:a5:12:66:46:39:d8:c1:f1:c4:06:30:51:0f: 6f:f0:86:05:61:20:fa:bf:90:e7:db:ae:c5:47:ff: be:18:f2:89:18:2b:db:05:6e:2e:be:4d:ee:2c:65: 13:8e:03:02:81:2b:0c:99:32:02:67:01:77:d0:c1: 82:9f:7d:fc:ef:7b:31:3a:48:73:df:fc:d2:fc:69: 52:29:e3:60:ff:9d:f4:fc:52:af:ad:5f:c5:71:af: 0d:01:72:b1:41:f1:4b:30:db:68:95:d4:b5:f8:10: 13:69:86:44:8f:75:d5:13:a7:a5:33:5b:ec:90:e4: 0f:d2:37:0f:3a:26:cf:5e:39:4a:c4:77:54:11:15: ba:a2:e8:2d:38:e8:e0:c7:56:7b:01:66:ca:39:3c: 21:64:bf:d1:01:7d:f9:77:60:70:25:18:52:ec:c9: 43:f0:67:a4:24:d0:db:32:c8:67:93:4b:7e:99:b6: ed:c6:6d:2d:47:6a:9d:8e:fd:2e:74:8b:95:c3:cf: 04:a7:58:b8:5f:15:51:33:2e:00:91:f6:7d:6a:a5: 5f:70:c4:17:45:22:61:b4:6b:fd:0a:9c:2f:f0:1b: 92:ed:1d:1e:b4:b3:c8:5e:a0:da:fe:d1:e6:33:53: 02:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:19:1B:D4:7D:FC:74:2C:E1:5A:11:BD:70:76:1E:37:C5:45:91:EF X509v3 Authority Key Identifier: keyid:4A:3D:6D:25:E6:F0:65:15:67:59:C4:EB:02:16:FD:B9:61:1C:53:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEIPUCOMTW/Sj1tJebwZRVnWcTrAhb9uWEcU-g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sj1tJebwZRVnWcTrAhb9uWEcU-g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEIPUCOMTW/Sj1tJebwZRVnWcTrAhb9uWEcU-g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:97:5a:84:3e:93:7b:44:7c:64:db:a8:a0:87:ec:23:8a:85: 31:1f:92:82:de:55:62:e5:20:f4:79:52:1d:98:43:d0:b0:e4: c6:54:d6:f2:4c:77:9c:59:14:49:3c:a3:39:36:92:2e:26:4c: bf:7f:3a:15:69:31:b5:53:79:8c:e7:21:9f:e8:da:d1:9b:26: 92:f2:5c:63:80:84:f3:4c:85:34:de:52:5a:f3:40:96:a0:c1: 37:fd:48:76:09:9e:04:2b:e9:d5:8b:77:98:b3:58:0d:e1:81: 26:ac:25:8b:b8:60:50:29:3e:5c:8d:22:5f:e8:98:c4:eb:e2: d9:81:6e:1b:1e:af:db:65:c0:83:97:1c:ae:60:1a:09:05:40: cf:85:13:a0:13:22:c8:c5:3a:7c:bb:47:5d:43:98:3f:a3:fc: cb:26:f3:55:01:68:1a:66:98:02:67:02:12:0a:4e:70:90:0b: c7:23:63:92:fa:f0:4c:07:38:b8:22:07:04:9c:9a:f2:82:bc: 59:9b:e7:6e:73:93:b4:1d:36:c3:f8:73:ef:cb:79:b0:9f:c8: 83:36:3c:c1:28:6c:8e:1e:4c:4b:2a:8a:ae:b6:2c:81:55:ea: 25:f2:13:28:23:01:58:ea:ce:14:cd:36:c4:ca:a6:11:ed:1c: 9a:d1:26:3d -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEEz RDZEMjVFNkYwNjUxNTY3NTlDNEVCMDIxNkZEQjk2MTFDNTNFODAeFw0yNTA0Mjgw OTUwMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4MTkxQkQ0N0RGQzc0 MkNFMTVBMTFCRDcwNzYxRTM3QzU0NTkxRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL4cHRhPnNzkG1OwCB02xjpRJmRjnYwfHEBjBRD2/whgVhIPq/ kOfbrsVH/74Y8okYK9sFbi6+Te4sZROOAwKBKwyZMgJnAXfQwYKfffzvezE6SHPf /NL8aVIp42D/nfT8Uq+tX8Vxrw0BcrFB8Usw22iV1LX4EBNphkSPddUTp6UzW+yQ 5A/SNw86Js9eOUrEd1QRFbqi6C046ODHVnsBZso5PCFkv9EBffl3YHAlGFLsyUPw Z6Qk0NsyyGeTS36Ztu3GbS1Hap2O/S50i5XDzwSnWLhfFVEzLgCR9n1qpV9wxBdF ImG0a/0KnC/wG5LtHR60s8heoNr+0eYzUwJjAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUeBkb1H38dCzhWhG9cHYeN8VFke8wHwYDVR0jBBgwFoAUSj1tJebwZRVnWcTr Ahb9uWEcU+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VJUFVD T01UVy9TajF0SmVid1pSVm5XY1RyQWhiOXVXRWNVLWcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1NqMXRKZWJ3WlJWbldjVHJBaGI5dVdFY1UtZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1dFSVBVQ09NVFcvU2oxdEplYnda UlZuV2NUckFoYjl1V0VjVS1nLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIiXWoQ+k3tEfGTbqKCH7COKhTEfkoLeVWLlIPR5Uh2YQ9Cw5MZU1vJM d5xZFEk8ozk2ki4mTL9/OhVpMbVTeYznIZ/o2tGbJpLyXGOAhPNMhTTeUlrzQJag wTf9SHYJngQr6dWLd5izWA3hgSasJYu4YFApPlyNIl/omMTr4tmBbhser9tlwIOX HK5gGgkFQM+FE6ATIsjFOny7R11DmD+j/Msm81UBaBpmmAJnAhIKTnCQC8cjY5L6 8EwHOLgiBwScmvKCvFmb525zk7QdNsP4c+/LebCfyIM2PMEobI4eTEsqiq62LIFV 6iXyEygjAVjqzhTNNsTKphHtHJrRJj0= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:56 2025 by rpki-client on console.sobornost.net