$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft File: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft (raw, json) Hash identifier: uttTua/S3g21AenftBkpROW/k27OQswlpRt6cvYGB7A= Subject key identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Certificate serial: 0205 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft Manifest number: 01FD Signing time: Thu 18 Sep 2025 09:21:52 +0000 Manifest this update: Thu 18 Sep 2025 09:21:52 +0000 Manifest next update: Sat 20 Sep 2025 09:21:52 +0000 Files and hashes: 1: BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl (hash: kHMBO7+mlTVTRVBznSsKoS2AxFg5AHXXDtd58ZbKi6A=) 2: ZqMElJMabr6QHKUPSx8OvyiYlGo.roa (hash: lCk1wVSvOsnYwHaz5DTrdzlvXyAH+xoTT/nmgN4Y70Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 13:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Validity Not Before: Sep 18 09:21:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8A610AE96B4321E951B8987289B43995A978A495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ee:ab:c5:28:79:0d:ba:d3:97:77:cb:2b:f3: 95:ec:95:00:07:e9:8c:73:44:12:bf:08:69:1e:3e: 26:29:d4:33:3f:d4:4e:e5:83:d6:82:0e:60:09:62: 75:57:cb:0d:69:5f:03:84:f2:8c:f4:a2:a1:1b:16: 5c:e1:a6:77:78:17:7d:a7:d1:85:b5:b7:e2:29:9e: e6:79:fc:4e:09:63:4e:9f:dd:1b:cd:04:25:fb:e0: 95:f1:4f:61:30:b2:50:8c:80:2d:59:d4:0d:99:1b: 58:d1:8c:55:d3:9f:c5:f3:bc:98:eb:23:e2:25:3f: d2:e6:8e:4e:7e:85:71:25:92:22:9a:ef:33:9a:e5: 7b:8d:4b:c3:f7:23:53:f0:77:ec:63:29:b2:34:56: ad:88:ee:cb:6e:6e:c3:ba:65:2a:83:78:52:b0:28: e2:d1:8f:06:4b:d2:54:5a:7d:0e:7e:51:b1:9d:af: e5:94:57:10:5c:16:e8:fc:d2:d9:d6:77:d7:2f:c7: 36:f8:43:11:79:d0:ef:b8:86:f7:c6:21:db:64:2e: ad:e8:1f:b0:8d:f0:d0:a0:9e:f8:b3:e9:32:e3:39: 27:d4:37:21:6a:bc:c8:34:4a:25:06:98:30:c4:ad: b3:ff:af:c0:06:75:d1:0a:dc:bf:bc:18:0f:ab:6e: f9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:61:0A:E9:6B:43:21:E9:51:B8:98:72:89:B4:39:95:A9:78:A4:95 X509v3 Authority Key Identifier: keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:db:0e:7b:6e:50:08:40:eb:fc:29:c1:0b:0f:aa:40:b3:0b: 51:ef:72:92:c8:91:cc:7e:90:be:7f:a8:fe:08:a3:5f:f4:c4: 50:c8:6b:d1:26:94:d6:0f:61:4d:ca:17:1e:40:b3:3d:21:29: 41:16:bf:14:30:e5:c5:de:65:ba:ac:b0:36:3a:a8:7e:53:ea: 13:0c:56:28:bf:4d:85:45:9e:14:53:78:67:5d:74:fe:79:ee: 06:75:ed:21:af:19:44:96:5e:a2:9d:65:cd:dd:f1:f9:46:53: 82:fa:f0:bb:67:cc:e4:4b:d4:b0:54:1a:39:12:6c:90:df:46: b3:fc:6c:da:17:2a:ce:2f:94:54:0f:02:2b:27:86:b5:ae:c5: 38:fd:3d:c2:c0:66:94:7e:a0:d8:7d:18:31:6d:0c:1f:e7:b7: 45:9b:98:5f:75:10:c0:4e:4a:87:69:95:ea:bb:31:27:ce:5e: 3e:d3:38:fc:0e:a3:ad:77:53:93:c0:36:60:6f:fe:0e:8a:94: 3c:5a:b3:bf:10:7c:07:72:12:69:db:0b:87:48:95:42:98:68: 57:99:6d:51:ba:b4:c0:b9:8b:7c:78:bb:c0:54:06:41:a6:ac: 41:74:ff:ce:fe:5a:c0:d3:fd:85:42:ce:81:f0:a0:92:b9:04: c7:b9:76:a4 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDY5 Q0U2NTFERDdENzE2QTg5QThFRTg0ODczRENDQkY0MTM1NDc5OTAeFw0yNTA5MTgw OTIxNTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhBNjEwQUU5NkI0MzIx RTk1MUI4OTg3Mjg5QjQzOTk1QTk3OEE0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC17qvFKHkNutOXd8sr85XslQAH6YxzRBK/CGkePiYp1DM/1E7l g9aCDmAJYnVXyw1pXwOE8oz0oqEbFlzhpnd4F32n0YW1t+IpnuZ5/E4JY06f3RvN BCX74JXxT2EwslCMgC1Z1A2ZG1jRjFXTn8XzvJjrI+IlP9Lmjk5+hXElkiKa7zOa 5XuNS8P3I1Pwd+xjKbI0Vq2I7stubsO6ZSqDeFKwKOLRjwZL0lRafQ5+UbGdr+WU VxBcFuj80tnWd9cvxzb4QxF50O+4hvfGIdtkLq3oH7CN8NCgnviz6TLjOSfUNyFq vMg0SiUGmDDErbP/r8AGddEK3L+8GA+rbvlvAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUimEK6WtDIelRuJhyibQ5lal4pJUwHwYDVR0jBBgwFoAUBpzmUd19cWqJqO6E hz3Mv0E1R5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVJDSEUv QnB6bVVkMTljV3FKcU82RWh6M012MEUxUjVrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9CcHptVWQxOWNXcUpxTzZFaHozTXYwRTFSNWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BUkNIRS9CcHptVWQxOWNXcUpxTzZFaHoz TXYwRTFSNWsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKdsO e25QCEDr/CnBCw+qQLMLUe9yksiRzH6Qvn+o/gijX/TEUMhr0SaU1g9hTcoXHkCz PSEpQRa/FDDlxd5luqywNjqoflPqEwxWKL9NhUWeFFN4Z110/nnuBnXtIa8ZRJZe op1lzd3x+UZTgvrwu2fM5EvUsFQaORJskN9Gs/xs2hcqzi+UVA8CKyeGta7FOP09 wsBmlH6g2H0YMW0MH+e3RZuYX3UQwE5Kh2mV6rsxJ85ePtM4/A6jrXdTk8A2YG/+ DoqUPFqzvxB8B3ISadsLh0iVQphoV5ltUbq0wLmLfHi7wFQGQaasQXT/zv5awNP9 hULOgfCgkrkEx7l2pA== -----END CERTIFICATE-----Generated at Thu Sep 18 11:00:26 2025 by rpki-client