$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft File: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft (raw, json) Hash identifier: PbpQSo8mCadaLGjTO7HglWiii8bVeKdpvZRGwwkBBfI= Subject key identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Certificate serial: 0224 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft Manifest number: 021C Signing time: Mon 03 Nov 2025 22:00:45 +0000 Manifest this update: Mon 03 Nov 2025 22:00:45 +0000 Manifest next update: Wed 05 Nov 2025 22:00:45 +0000 Files and hashes: 1: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl (hash: /5DKQ5a3Kkc6WFLgifhFs/3ztErrCZxqBHpfUUxzZMI=) 2: ZqMElJMabr6QHKUPSx8OvyiYlGo.roa (hash: lCk1wVSvOsnYwHaz5DTrdzlvXyAH+xoTT/nmgN4Y70Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 07:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Validity Not Before: Nov 3 22:00:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8A610AE96B4321E951B8987289B43995A978A495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ee:ab:c5:28:79:0d:ba:d3:97:77:cb:2b:f3: 95:ec:95:00:07:e9:8c:73:44:12:bf:08:69:1e:3e: 26:29:d4:33:3f:d4:4e:e5:83:d6:82:0e:60:09:62: 75:57:cb:0d:69:5f:03:84:f2:8c:f4:a2:a1:1b:16: 5c:e1:a6:77:78:17:7d:a7:d1:85:b5:b7:e2:29:9e: e6:79:fc:4e:09:63:4e:9f:dd:1b:cd:04:25:fb:e0: 95:f1:4f:61:30:b2:50:8c:80:2d:59:d4:0d:99:1b: 58:d1:8c:55:d3:9f:c5:f3:bc:98:eb:23:e2:25:3f: d2:e6:8e:4e:7e:85:71:25:92:22:9a:ef:33:9a:e5: 7b:8d:4b:c3:f7:23:53:f0:77:ec:63:29:b2:34:56: ad:88:ee:cb:6e:6e:c3:ba:65:2a:83:78:52:b0:28: e2:d1:8f:06:4b:d2:54:5a:7d:0e:7e:51:b1:9d:af: e5:94:57:10:5c:16:e8:fc:d2:d9:d6:77:d7:2f:c7: 36:f8:43:11:79:d0:ef:b8:86:f7:c6:21:db:64:2e: ad:e8:1f:b0:8d:f0:d0:a0:9e:f8:b3:e9:32:e3:39: 27:d4:37:21:6a:bc:c8:34:4a:25:06:98:30:c4:ad: b3:ff:af:c0:06:75:d1:0a:dc:bf:bc:18:0f:ab:6e: f9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 X509v3 Authority Key Identifier: keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:85:ca:75:e3:c4:60:f3:9d:2a:da:0b:56:57:c2:a8:dd:64: 97:2b:8f:50:1c:0d:97:b3:23:9e:e0:ae:cf:c7:5f:c9:7f:05: 20:fb:af:af:73:4f:f8:e2:7c:dc:e4:e3:59:d4:ef:5c:d4:83: 20:05:2e:fe:50:94:ac:2e:07:37:b1:43:ff:86:7c:ff:47:c0: 63:95:e3:3e:94:95:59:8c:84:0c:c8:7e:dd:b3:30:97:ad:a9: 1c:be:62:3c:4a:92:43:87:a3:b9:fc:f0:b4:17:3d:42:cf:90: 26:cf:a9:a1:60:40:01:6d:be:75:17:db:63:70:4c:37:12:f3: ef:bb:6e:bd:6b:54:4d:2d:60:69:3d:9a:35:e3:0e:34:c7:95: 48:77:00:00:4f:d2:3b:80:42:4a:b8:91:ad:8e:db:63:6c:61: 50:76:59:a3:27:98:7e:20:bd:7b:19:2c:0c:7b:cf:1f:3e:2d: c9:57:43:70:05:e2:a3:5e:15:a0:a3:77:dc:11:86:67:f8:a9: 3f:2f:bd:f5:77:ef:26:c9:60:57:98:40:b9:80:f5:c0:1c:c9: bc:4e:44:a7:6a:17:53:03:e4:01:7d:b9:b5:9e:a0:f5:1c:4f: 52:20:79:bd:93:3f:5b:95:57:8a:5a:c8:d4:1a:12:06:87:0f: c3:fe:95:7c -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDY5 Q0U2NTFERDdENzE2QTg5QThFRTg0ODczRENDQkY0MTM1NDc5OTAeFw0yNTExMDMy MjAwNDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhBNjEwQUU5NkI0MzIx RTk1MUI4OTg3Mjg5QjQzOTk1QTk3OEE0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC17qvFKHkNutOXd8sr85XslQAH6YxzRBK/CGkePiYp1DM/1E7l g9aCDmAJYnVXyw1pXwOE8oz0oqEbFlzhpnd4F32n0YW1t+IpnuZ5/E4JY06f3RvN BCX74JXxT2EwslCMgC1Z1A2ZG1jRjFXTn8XzvJjrI+IlP9Lmjk5+hXElkiKa7zOa 5XuNS8P3I1Pwd+xjKbI0Vq2I7stubsO6ZSqDeFKwKOLRjwZL0lRafQ5+UbGdr+WU VxBcFuj80tnWd9cvxzb4QxF50O+4hvfGIdtkLq3oH7CN8NCgnviz6TLjOSfUNyFq vMg0SiUGmDDErbP/r8AGddEK3L+8GA+rbvlvAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUimEK6WtDIelRuJhyibQ5lal4pJUwHwYDVR0jBBgwFoAUBpzmUd19cWqJqO6E hz3Mv0E1R5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUv QnB6bVVkMTljV3FKcU82RWh6M012MEUxUjVrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9CcHptVWQxOWNXcUpxTzZFaHozTXYwRTFSNWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BUkNIRS9CcHptVWQxOWNXcUpxTzZFaHoz TXYwRTFSNWsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhYXK dePEYPOdKtoLVlfCqN1klyuPUBwNl7MjnuCuz8dfyX8FIPuvr3NP+OJ83OTjWdTv XNSDIAUu/lCUrC4HN7FD/4Z8/0fAY5XjPpSVWYyEDMh+3bMwl62pHL5iPEqSQ4ej ufzwtBc9Qs+QJs+poWBAAW2+dRfbY3BMNxLz77tuvWtUTS1gaT2aNeMONMeVSHcA AE/SO4BCSriRrY7bY2xhUHZZoyeYfiC9exksDHvPHz4tyVdDcAXio14VoKN33BGG Z/ipPy+99XfvJslgV5hAuYD1wBzJvE5Ep2oXUwPkAX25tZ6g9RxPUiB5vZM/W5VX ilrI1BoSBocPw/6VfA== -----END CERTIFICATE-----Generated at Tue Nov 4 06:03:15 2025 by rpki-client