$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft File: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft (raw, json) Hash identifier: rStu7rWL21aXcthjNbKWdT0ek0DfM9ge0AiEcwrRyBg= Subject key identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A Authority key identifier: D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 Certificate issuer: /CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Certificate serial: 0273 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft Manifest number: 026A Signing time: Tue 16 Sep 2025 21:17:46 +0000 Manifest this update: Tue 16 Sep 2025 21:17:46 +0000 Manifest next update: Thu 18 Sep 2025 21:17:46 +0000 Files and hashes: 1: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl (hash: ogoVRFMsYpE1oH9lRemnpU93Y0amj8tFT/gXTGvZdJ8=) 2: P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa (hash: 1vRlxS13uFPFd7r4WDxgL7pRnrmfLKWCBZB3Vu33Hnc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 13:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Validity Not Before: Sep 16 21:17:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=770707B2FDD87DCEE7497AC682964243F898389A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:b9:82:cf:c5:d4:72:69:c6:f5:70:48:14: 0a:c1:74:e9:f2:9a:34:17:2b:3b:04:30:4a:0c:da: 27:91:c6:e5:6f:35:35:03:da:31:3c:e1:53:24:31: c5:97:ee:50:f9:02:71:04:88:08:11:9c:6e:b8:e8: d9:e6:8c:93:54:a2:d9:0a:3e:ed:37:ca:07:85:14: 3a:90:de:5b:6a:0f:21:d3:f8:a0:22:02:51:c5:58: f2:35:7a:16:0f:b0:c3:4d:ed:2f:41:9b:ec:b0:30: 47:14:ad:f6:0f:ac:97:42:6f:f7:6c:c0:60:56:2b: 7a:0b:91:e0:a2:6f:82:6d:4d:59:02:59:88:01:50: b2:28:e5:97:cd:a3:8c:09:68:0d:84:d7:b4:30:2b: 82:3b:68:5e:13:3d:c9:6f:6d:bd:c3:8c:0d:3e:6f: bd:61:6c:7e:97:65:0a:5e:01:7d:66:47:26:37:af: 1a:44:61:0c:43:93:00:e2:38:1f:c5:d6:37:42:49: a9:cd:bb:30:1e:a8:1c:b5:3a:f7:96:bb:e2:07:fc: a9:0b:e0:01:de:9f:e3:51:dd:57:71:bd:15:81:71: da:60:5b:a7:2e:0e:e5:2d:04:60:d7:c6:39:44:95: 84:a1:47:85:7c:dd:08:2c:5c:9d:93:45:78:7e:e1: 2e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A X509v3 Authority Key Identifier: keyid:D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c8:ee:22:13:c7:31:77:89:85:c1:01:cf:72:7f:c9:45:20: 29:ad:94:3c:a3:f0:6a:87:1b:80:aa:31:55:c4:5b:d8:27:44: 97:a3:8d:db:ee:cd:57:d2:dd:52:f4:3b:fa:8f:a4:b6:cd:cd: 59:1e:a2:74:f2:f5:50:54:2c:c3:96:6f:ec:7a:2d:97:ee:28: 96:7a:3c:4c:c6:67:7f:d0:ca:7f:44:f4:fe:3e:2b:54:2d:96: 26:01:76:ec:2f:58:03:b2:50:24:ed:88:68:ee:43:f3:8f:f7: 02:bc:26:38:58:83:df:9b:c5:4a:63:e1:5a:95:0e:cd:2c:82: 84:1e:df:ab:27:af:1a:41:6b:86:42:e5:f2:32:5a:6f:bd:66: 80:f8:87:a4:a5:42:87:e5:79:b9:ef:d5:fe:ce:9f:ed:72:1c: ca:5f:14:15:e9:d1:ec:e8:83:e1:b1:d8:ff:90:a2:e2:ec:a9: 19:13:f9:ed:3a:8d:87:ce:32:16:79:b3:3e:cf:86:99:59:19: 4b:73:47:1a:5e:4e:a7:09:94:67:c9:d1:74:53:e5:e5:f7:53: 99:f1:27:ab:3c:a7:33:49:9c:1b:0e:c6:9f:b0:49:e7:6b:91: d6:90:8e:ee:82:7e:6a:6f:46:3c:d4:20:2c:60:f7:5f:04:55: 1b:85:a9:29 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDMz MEJDNEUxMzdCMTUxMkUyRTQ1MDY4MDZCODcwQTRFQUE4NjBENzAeFw0yNTA5MTYy MTE3NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc3MDcwN0IyRkREODdE Q0VFNzQ5N0FDNjgyOTY0MjQzRjg5ODM4OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIKLmCz8XUcmnG9XBIFArBdOnymjQXKzsEMEoM2ieRxuVvNTUD 2jE84VMkMcWX7lD5AnEEiAgRnG646NnmjJNUotkKPu03ygeFFDqQ3ltqDyHT+KAi AlHFWPI1ehYPsMNN7S9Bm+ywMEcUrfYPrJdCb/dswGBWK3oLkeCib4JtTVkCWYgB ULIo5ZfNo4wJaA2E17QwK4I7aF4TPclvbb3DjA0+b71hbH6XZQpeAX1mRyY3rxpE YQxDkwDiOB/F1jdCSanNuzAeqBy1OveWu+IH/KkL4AHen+NR3VdxvRWBcdpgW6cu DuUtBGDXxjlElYShR4V83QgsXJ2TRXh+4S6hAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUdwcHsv3Yfc7nSXrGgpZCQ/iYOJowHwYDVR0jBBgwFoAU0zC8ThN7FRLi5FBo BrhwpOqoYNcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJB U0lTLzB6QzhUaE43RlJMaTVGQm9Ccmh3cE9xb1lOYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMHpDOFRoTjdGUkxpNUZCb0JyaHdwT3FvWU5jLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJBU0lTLzB6QzhUaE43RlJM aTVGQm9Ccmh3cE9xb1lOYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBtyO4iE8cxd4mFwQHPcn/JRSAprZQ8o/BqhxuAqjFVxFvYJ0SXo43b7s1X 0t1S9Dv6j6S2zc1ZHqJ08vVQVCzDlm/sei2X7iiWejxMxmd/0Mp/RPT+PitULZYm AXbsL1gDslAk7Yho7kPzj/cCvCY4WIPfm8VKY+FalQ7NLIKEHt+rJ68aQWuGQuXy MlpvvWaA+IekpUKH5Xm579X+zp/tchzKXxQV6dHs6IPhsdj/kKLi7KkZE/ntOo2H zjIWebM+z4aZWRlLc0caXk6nCZRnydF0U+Xl91OZ8SerPKczSZwbDsafsEnna5HW kI7ugn5qb0Y81CAsYPdfBFUbhakp -----END CERTIFICATE-----Generated at Thu Sep 18 08:15:27 2025 by rpki-client