$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft File: F5xj2x1vOrL7DueOGol7hbvSpgI.mft (raw, json) Hash identifier: V3oLw+RwS3MY6n6O9qhh/ruau0am/h8yXyTrziBI1QA= Subject key identifier: D8:FA:B0:C7:18:7F:34:1B:62:59:39:0C:B3:78:EF:06:94:0B:44:84 Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Certificate serial: 03C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft Manifest number: 03B8 Signing time: Tue 16 Sep 2025 21:18:52 +0000 Manifest this update: Tue 16 Sep 2025 21:18:52 +0000 Manifest next update: Thu 18 Sep 2025 21:18:52 +0000 Files and hashes: 1: 9_3VRfl8G6FOG9z_NgMHhu-ADxs.roa (hash: o33TddKFaIrPzIfMzv9bcIhdLcEjrti7GopLvyjQ1AA=) 2: F5xj2x1vOrL7DueOGol7hbvSpgI.crl (hash: PeW05e7+OUnjZr0gasTI432M3XpN3lpz9k/SyJn32vc=) 3: huXrceRGrBSPVjOj9wEnvGpVn4s.roa (hash: R7vgxj4brMhELdrPu4col+zCvU5GQFTtVvDoEqEgZZs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Validity Not Before: Sep 16 21:18:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D8FAB0C7187F341B6259390CB378EF06940B4484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:f7:2d:d9:f3:7e:28:44:b2:f7:ed:49:87: 97:8a:e6:b8:60:07:72:1e:4f:e1:c5:5d:85:4b:78: a1:54:7f:46:67:4d:85:ce:e5:5d:e3:0f:d4:a6:c5: 49:32:c0:16:ca:7e:4e:01:83:9d:af:49:37:d9:a1: e9:1c:bd:ec:6b:22:69:cb:cc:93:10:5c:7b:1c:19: d7:0e:2f:67:6d:a1:41:5e:e1:55:4f:2c:48:44:d5: 01:e2:f8:21:0f:48:de:70:ba:91:7b:3e:b2:69:92: d6:20:88:fb:0e:86:5c:c6:9f:f4:8c:24:31:60:d4: ab:d1:eb:9c:3a:6c:0b:ea:6d:ac:28:80:96:75:f1: ae:17:7d:0f:80:50:17:69:55:b6:90:d4:bc:a9:15: 2b:99:14:c5:e7:e8:13:13:8c:a9:27:da:fe:19:3d: 40:fd:ce:12:44:6c:ad:f2:62:4a:72:24:2b:d2:e5: 58:ec:5b:31:93:5f:2d:b6:94:84:34:a2:08:3f:02: e9:62:7d:22:ca:ac:ad:0e:0b:a1:61:08:8a:0d:ef: 59:03:57:08:a3:9b:b8:68:f1:14:08:81:df:95:7f: 0f:6c:ed:f4:63:02:8d:ec:6e:61:98:1f:9b:3d:2a: 5c:41:ca:1e:51:73:e8:47:97:9a:e2:b8:fb:77:30: e1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FA:B0:C7:18:7F:34:1B:62:59:39:0C:B3:78:EF:06:94:0B:44:84 X509v3 Authority Key Identifier: keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:61:84:13:44:e9:eb:e6:d1:2d:dd:8d:44:98:3d:7c:21:10: b6:45:75:1b:75:16:63:6f:58:15:71:64:db:1b:36:90:92:83: df:be:6e:93:19:8a:6f:b6:2a:37:28:94:3f:57:3a:a0:ba:a2: 87:f9:8d:00:67:09:4c:dc:5e:3f:fa:60:f5:73:be:30:15:c8: e9:e9:45:f4:59:2b:63:3f:f0:bb:e6:2b:a7:c1:78:c9:81:31: 9f:f6:0d:ce:a4:dd:b4:48:a0:35:a9:d4:69:0c:fd:8e:c0:05: 05:fe:61:be:a2:67:99:5c:4d:eb:26:a3:f7:cf:da:a3:de:20: dc:51:ec:92:1d:63:45:91:54:79:9b:00:18:15:0d:34:4c:e2: 2b:d2:29:d4:52:fe:19:5c:91:f8:23:f4:48:7b:24:91:1b:4f: e0:b8:62:2c:78:37:f2:a1:ab:34:cd:69:43:1b:ea:32:81:90: ee:cb:4e:1c:73:ed:19:9a:e2:33:d4:c3:e2:ec:84:cd:6e:2d: 68:51:e9:d4:97:83:47:46:cf:8e:90:9c:29:ad:12:3f:b2:d9: 37:06:49:3c:db:bb:b6:03:6f:26:a4:32:1b:f0:fd:a5:ae:78: a3:2b:54:21:ee:87:1d:fc:b7:ab:f5:e7:db:6c:6c:52:eb:a2: 88:22:18:02 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5 QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yNTA5MTYy MTE4NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ4RkFCMEM3MTg3RjM0 MUI2MjU5MzkwQ0IzNzhFRjA2OTQwQjQ0ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw9vct2fN+KESy9+1Jh5eK5rhgB3IeT+HFXYVLeKFUf0ZnTYXO 5V3jD9SmxUkywBbKfk4Bg52vSTfZoekcvexrImnLzJMQXHscGdcOL2dtoUFe4VVP LEhE1QHi+CEPSN5wupF7PrJpktYgiPsOhlzGn/SMJDFg1KvR65w6bAvqbawogJZ1 8a4XfQ+AUBdpVbaQ1LypFSuZFMXn6BMTjKkn2v4ZPUD9zhJEbK3yYkpyJCvS5Vjs WzGTXy22lIQ0ogg/AulifSLKrK0OC6FhCIoN71kDVwijm7ho8RQIgd+Vfw9s7fRj Ao3sbmGYH5s9KlxByh5Rc+hHl5riuPt3MOFBAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU2Pqwxxh/NBtiWTkMs3jvBpQLRIQwHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS9GNXhqMngxdk9yTDdE dWVPR29sN2hidlNwZ0kubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcWGEE0Tp6+bRLd2NRJg9fCEQtkV1G3UWY29YFXFk2xs2kJKD375ukxmKb7Yq NyiUP1c6oLqih/mNAGcJTNxeP/pg9XO+MBXI6elF9FkrYz/wu+Yrp8F4yYExn/YN zqTdtEigNanUaQz9jsAFBf5hvqJnmVxN6yaj98/ao94g3FHskh1jRZFUeZsAGBUN NEziK9Ip1FL+GVyR+CP0SHskkRtP4LhiLHg38qGrNM1pQxvqMoGQ7stOHHPtGZri M9TD4uyEzW4taFHp1JeDR0bPjpCcKa0SP7LZNwZJPNu7tgNvJqQyG/D9pa54oytU Ie6HHfy3q/Xn22xsUuuiiCIYAg== -----END CERTIFICATE-----Generated at Wed Sep 17 23:29:35 2025 by rpki-client