$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft File: SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft (raw, json) Hash identifier: xm9rWdfXgAPJzuTK4qO9NKMRwM+hmUB+LNmJNkVoCaU= Subject key identifier: F4:9C:52:50:57:A5:F2:37:9E:FB:80:26:89:97:DF:0D:56:5A:A5:FF Authority key identifier: 4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 Certificate issuer: /CN=4AC29EB919D071916D744665F29341B00A036297 Certificate serial: 0125 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft Manifest number: 0123 Signing time: Mon 03 Nov 2025 12:58:46 +0000 Manifest this update: Mon 03 Nov 2025 12:58:46 +0000 Manifest next update: Mon 03 Nov 2025 18:58:46 +0000 Files and hashes: 1: -rM84dFnltLzFCWPl4AGxt3d70o.roa (hash: OBYLVbSP/fiL5gNwYlwz1qku0qGFB8y4odJJJJFQvN8=) 2: Nqa0Qhn4yvrq5vNhQmcCw7hAdSE.roa (hash: Y5nBa0ULJqBAX+uCNVgjgWDOtFmo25XLO+BS2Ijf5+0=) 3: SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl (hash: gjINeR8ru6gF5GUN6aF+W9HxeK1JPag84cl72fkJERU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 17:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC29EB919D071916D744665F29341B00A036297 Validity Not Before: Nov 3 12:58:46 2025 GMT Not After : Sep 9 15:30:21 2026 GMT Subject: CN=F49C525057A5F2379EFB80268997DF0D565AA5FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:56:80:7b:34:42:0e:d7:d1:dc:e6:32:8e:60: 41:68:d1:15:3a:4b:a5:91:8c:ea:07:06:b6:bf:3c: 46:7a:76:2b:dc:f2:32:23:e1:6c:c7:7f:ae:65:4d: af:22:24:f2:cb:97:ec:f0:b6:fd:2a:79:e1:5d:2e: e5:84:c4:5f:4f:df:87:44:dd:80:34:32:6c:64:9b: d9:d1:74:07:ac:53:fe:9a:6c:2d:ce:1e:aa:ba:97: 8d:72:49:e6:14:43:de:12:db:32:df:4f:3a:bf:94: 9c:fe:83:8b:98:04:e7:b7:08:ef:b8:d1:45:eb:44: a6:62:82:ca:76:e3:f4:3d:53:0a:22:65:95:0e:3c: 46:d9:03:f9:ac:56:21:67:aa:98:c9:1f:49:00:06: 94:09:88:d4:1d:48:d6:89:47:6d:61:a0:79:05:34: 2d:10:19:b9:69:5a:bb:99:3b:81:b2:75:cb:e3:e0: 98:62:13:04:21:eb:be:fa:fd:24:ec:54:55:ee:c7: 73:ce:aa:bd:b8:ff:81:a7:5b:26:ba:1c:c9:1e:e8: de:b2:55:4b:b6:b2:a6:65:e9:50:33:fd:50:84:ba: e6:9b:df:0a:72:9d:a6:a8:27:8a:f0:8a:c3:6a:d5: 42:c3:f2:5c:cb:75:c3:36:d6:3b:c1:52:14:3d:f6: e9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9C:52:50:57:A5:F2:37:9E:FB:80:26:89:97:DF:0D:56:5A:A5:FF X509v3 Authority Key Identifier: keyid:4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:90:e4:c7:af:be:1a:ee:f5:1d:46:65:50:6c:a4:c3:e3:06: 17:3f:ef:57:0c:78:63:18:0a:a9:de:66:ff:76:73:a1:f7:d5: f3:94:6f:7c:1b:84:30:b7:6c:05:0e:38:a6:51:b6:4e:d9:ca: cf:68:90:a6:cb:a8:cc:20:d3:b8:03:c3:27:ca:96:30:80:ca: 66:8c:c9:a4:8d:30:4e:57:10:75:bd:a4:94:27:16:51:ee:28: 6c:de:70:fd:8c:d0:17:52:2f:22:d8:ec:f5:b1:74:2e:d9:5a: 57:d5:68:0b:5f:cf:dc:fa:1c:70:b9:28:e9:e9:a9:07:b5:16: 90:33:ae:1e:75:06:be:4f:e1:31:5d:66:56:a5:11:21:42:e3: 83:de:b0:ba:73:8d:d7:23:96:f1:25:6a:48:36:70:cc:bb:20: 9c:8e:b1:32:71:15:b1:05:ad:5b:14:c2:2d:9d:fc:00:2a:95: 92:ac:ce:63:92:46:b9:a2:2c:d9:b0:f7:58:a9:ee:d4:f5:91: 56:b9:3b:c2:4c:52:28:f3:75:8a:70:bb:c9:00:14:13:85:6f: 27:e4:41:83:28:74:0e:79:78:f7:5a:87:7c:b6:b1:37:89:e4: 32:7c:67:39:d3:ab:d4:50:2c:3b:7d:f7:a8:3f:75:ed:40:38: 18:d5:4c:2d -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEFD MjlFQjkxOUQwNzE5MTZENzQ0NjY1RjI5MzQxQjAwQTAzNjI5NzAeFw0yNTExMDMx MjU4NDZaFw0yNjA5MDkxNTMwMjFaMDMxMTAvBgNVBAMTKEY0OUM1MjUwNTdBNUYy Mzc5RUZCODAyNjg5OTdERjBENTY1QUE1RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzVoB7NEIO19Hc5jKOYEFo0RU6S6WRjOoHBra/PEZ6divc8jIj 4WzHf65lTa8iJPLLl+zwtv0qeeFdLuWExF9P34dE3YA0Mmxkm9nRdAesU/6abC3O Hqq6l41ySeYUQ94S2zLfTzq/lJz+g4uYBOe3CO+40UXrRKZigsp24/Q9UwoiZZUO PEbZA/msViFnqpjJH0kABpQJiNQdSNaJR21hoHkFNC0QGblpWruZO4Gydcvj4Jhi EwQh6776/STsVFXux3POqr24/4GnWya6HMke6N6yVUu2sqZl6VAz/VCEuuab3wpy naaoJ4rwisNq1ULD8lzLdcM21jvBUhQ99unDAgMBAAGjggINMIICCTAdBgNVHQ4E FgQU9JxSUFel8jee+4AmiZffDVZapf8wHwYDVR0jBBgwFoAUSsKeuRnQcZFtdEZl 8pNBsAoDYpcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJQU9D T1JQL1NzS2V1Um5RY1pGdGRFWmw4cE5Cc0FvRFlwYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvU3NLZXVSblFjWkZ0ZEVabDhwTkJzQW9EWXBjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJQU9DT1JQL1NzS2V1Um5RY1pG dGRFWmw4cE5Cc0FvRFlwYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBKkOTHr74a7vUdRmVQbKTD4wYXP+9XDHhjGAqp3mb/dnOh99XzlG98G4Qw t2wFDjimUbZO2crPaJCmy6jMINO4A8MnypYwgMpmjMmkjTBOVxB1vaSUJxZR7ihs 3nD9jNAXUi8i2Oz1sXQu2VpX1WgLX8/c+hxwuSjp6akHtRaQM64edQa+T+ExXWZW pREhQuOD3rC6c43XI5bxJWpINnDMuyCcjrEycRWxBa1bFMItnfwAKpWSrM5jkka5 oizZsPdYqe7U9ZFWuTvCTFIo83WKcLvJABQThW8n5EGDKHQOeXj3Wod8trE3ieQy fGc506vUUCw7ffeoP3XtQDgY1Uwt -----END CERTIFICATE-----Generated at Mon Nov 3 16:01:20 2025 by rpki-client