$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft File: 4hRiP9Epy5cnQNOR2vORlvKt8r0.mft (raw, json) Hash identifier: xEZqJ/2jukD2aYzhlEr4ulaMN8jzMbdYLzi/rB6D97E= Subject key identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB Authority key identifier: E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD Certificate issuer: /CN=E214623FD129CB972740D391DAF39196F2ADF2BD Certificate serial: 0171 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft Manifest number: 016D Signing time: Tue 16 Sep 2025 21:21:22 +0000 Manifest this update: Tue 16 Sep 2025 21:21:22 +0000 Manifest next update: Thu 18 Sep 2025 21:21:22 +0000 Files and hashes: 1: 4hRiP9Epy5cnQNOR2vORlvKt8r0.crl (hash: cVd/Plw5kBZC5qvZ2DI1JEgJsCVWM5iAJ9MamR054eU=) 2: iSwRk6JX6sq0zUYdAiJaQJwTSNU.roa (hash: ZfvLyZSU7HOwGerGgBmUBGoPowZcffgpfXRcA2OibPk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 11:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E214623FD129CB972740D391DAF39196F2ADF2BD Validity Not Before: Sep 16 21:21:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5F4E013E8588F20D7604DFEA79DAC4D64B88E9AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:a8:8c:da:a4:d9:95:81:48:9d:98:2f:23: 36:0a:90:d7:70:72:d0:66:3b:92:cc:47:d1:62:8a: 61:2c:f3:fe:e2:cc:00:9b:2c:62:ff:19:9f:43:0a: 49:75:35:66:ab:6b:2a:9c:c6:38:70:dd:11:a3:c8: ed:c0:34:19:e9:f6:84:d1:18:53:59:fd:90:94:4a: 1f:75:c2:cb:4f:40:04:94:aa:04:17:48:7d:db:b3: ba:94:c3:97:d1:b5:c7:a1:a1:fa:97:cd:48:b6:b9: de:2f:2d:0d:97:e1:75:ba:6c:26:fd:a6:a6:3c:a5: 7e:e5:59:c2:5d:8a:3a:37:5a:ff:df:a2:2d:28:46: 8a:47:d6:e6:88:b8:d2:90:68:42:b2:40:76:b4:90: 0f:03:92:34:db:47:05:77:c8:95:eb:8d:b2:05:0e: a8:c7:47:57:4a:7a:47:f4:44:89:27:b7:ae:0d:bb: aa:c8:ff:14:93:de:ae:4c:e6:94:b5:e7:e7:7d:95: 0e:bd:b2:86:37:c0:03:26:fe:de:77:54:ff:99:08: 47:0d:74:88:b6:31:5a:1d:02:e0:13:89:c5:4b:0d: 13:ab:39:5a:f7:3d:b6:d1:a7:cb:e5:19:37:bf:18: 1b:34:58:ee:dd:33:56:ac:0b:83:53:d2:f6:dc:28: fc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB X509v3 Authority Key Identifier: keyid:E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:68:98:61:34:15:c3:97:e9:de:26:ab:41:49:82:f4:61:fa: 61:4e:78:d1:4b:85:66:0b:6c:34:6a:5e:89:dc:19:b1:b2:f2: 7e:83:c4:8a:3e:2c:70:06:ac:e5:fa:f0:5a:7f:bc:98:5e:a8: 12:84:9b:b3:13:f2:21:05:b5:ad:48:f3:86:95:1f:cc:79:64: af:eb:a2:3b:ad:bf:d2:b5:39:f8:f0:90:77:d1:99:40:51:d5: 2f:81:ed:ca:ad:5d:93:0d:98:34:c7:c8:63:87:b0:11:60:7d: 41:a1:63:0c:60:a1:77:de:56:6b:33:cf:96:0a:fa:b2:67:49: de:6d:4e:12:a5:20:75:d7:05:e6:fb:aa:0c:48:2d:9b:0d:66: c7:51:8d:7d:94:6a:9c:bf:31:d7:4d:7c:2e:56:28:bf:ee:b5: 69:9f:4d:da:7f:6b:e0:86:69:0c:5a:c1:87:7a:c1:36:29:cc: 32:10:30:03:f7:05:1d:4d:ea:4c:35:48:41:f8:8a:71:28:87: 68:d7:bd:01:b0:b3:09:97:81:f8:67:c7:8e:3d:52:bb:a6:4b: 21:d6:d2:b9:ec:bb:0d:82:e0:bd:b9:07:42:a5:6d:b8:bf:64: 92:c2:9a:dc:fb:4a:16:69:e7:57:25:a8:9f:75:09:3e:8c:f4: a6:86:f4:4c -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTIx NDYyM0ZEMTI5Q0I5NzI3NDBEMzkxREFGMzkxOTZGMkFERjJCRDAeFw0yNTA5MTYy MTIxMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVGNEUwMTNFODU4OEYy MEQ3NjA0REZFQTc5REFDNEQ2NEI4OEU5QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWO6iM2qTZlYFInZgvIzYKkNdwctBmO5LMR9FiimEs8/7izACb LGL/GZ9DCkl1NWarayqcxjhw3RGjyO3ANBnp9oTRGFNZ/ZCUSh91wstPQASUqgQX SH3bs7qUw5fRtcehofqXzUi2ud4vLQ2X4XW6bCb9pqY8pX7lWcJdijo3Wv/foi0o RopH1uaIuNKQaEKyQHa0kA8DkjTbRwV3yJXrjbIFDqjHR1dKekf0RIknt64Nu6rI /xST3q5M5pS15+d9lQ69soY3wAMm/t53VP+ZCEcNdIi2MVodAuATicVLDROrOVr3 PbbRp8vlGTe/GBs0WO7dM1asC4NT0vbcKPx/AgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUX04BPoWI8g12BN/qedrE1kuI6aswHwYDVR0jBBgwFoAU4hRiP9Epy5cnQNOR 2vORlvKt8r0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0pNRS80 aFJpUDlFcHk1Y25RTk9SMnZPUmx2S3Q4cjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRoUmlQOUVweTVjblFOT1Iydk9SbHZLdDhyMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NKTUUvNGhSaVA5RXB5NWNuUU5PUjJ2T1Js dkt0OHIwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJFomGE0 FcOX6d4mq0FJgvRh+mFOeNFLhWYLbDRqXoncGbGy8n6DxIo+LHAGrOX68Fp/vJhe qBKEm7MT8iEFta1I84aVH8x5ZK/rojutv9K1OfjwkHfRmUBR1S+B7cqtXZMNmDTH yGOHsBFgfUGhYwxgoXfeVmszz5YK+rJnSd5tThKlIHXXBeb7qgxILZsNZsdRjX2U apy/MddNfC5WKL/utWmfTdp/a+CGaQxawYd6wTYpzDIQMAP3BR1N6kw1SEH4inEo h2jXvQGwswmXgfhnx449UrumSyHW0rnsuw2C4L25B0Klbbi/ZJLCmtz7ShZp51cl qJ91CT6M9KaG9Ew= -----END CERTIFICATE-----Generated at Thu Sep 18 08:24:39 2025 by rpki-client