$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft File: mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft (raw, json) Hash identifier: nn5jpn+SxD/ME3qyot40XjRmL/AGIieVSP+CNMeb9yw= Subject key identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5 Certificate serial: 04C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft Manifest number: 04B4 Signing time: Sat 06 Sep 2025 09:17:48 +0000 Manifest this update: Sat 06 Sep 2025 09:17:48 +0000 Manifest next update: Mon 08 Sep 2025 09:17:48 +0000 Files and hashes: 1: QaqS7YSNLr_Sc_fyCRxMEwurtbw.roa (hash: CcmANcLXTUkaXKph4rWAt7raswGONwwpW5R133sX4to=) 2: RuQSuPaBx2Qj4g5VCNpK0YMo-p4.roa (hash: OGPMaChvWwgGYIgj/poHabwtA4/TTNMJoVr72CEXsIA=) 3: mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl (hash: igE549rCE0xIhxlr1yvz7rWnFfc+jVZAZWDKhgxHFdQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 23:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5 Validity Not Before: Sep 6 09:17:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B53DEE65687F1391EB2083BA1A2106262FBE7B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:53:85:d1:c7:6e:6f:83:48:80:1b:09:d7: b9:fc:fa:4b:41:6d:a4:04:6d:2c:40:39:a6:2b:af: 59:b0:4f:26:3c:df:66:19:1e:2b:e8:3b:8b:6b:19: 85:c4:83:9f:f8:e3:93:49:78:49:74:ae:d7:41:19: 10:65:bb:2c:60:37:b3:a0:a1:80:1b:40:8e:09:a9: 29:68:15:bf:31:14:e9:dc:02:01:d4:32:ac:c8:9d: c8:b5:94:84:5a:33:64:73:13:f4:f8:8c:47:77:fa: 17:ee:f2:48:1e:0f:a3:3c:d0:35:0a:2f:e0:b3:f0: 82:98:71:50:df:a7:7e:71:57:c0:a7:55:c0:12:d5: f2:2a:10:17:a5:27:18:4d:4a:22:a4:06:f1:49:24: fb:a2:87:06:61:c7:d2:7b:c9:6a:0c:5a:60:3e:01: 0b:7b:72:0f:5d:9e:d0:61:f6:72:9f:ff:6d:b7:3d: 20:42:9a:21:75:0d:30:95:7d:aa:a6:dc:f5:0b:18: b3:7f:e6:b0:77:9b:4b:3a:0a:4d:72:c7:62:5f:bf: 73:96:d8:77:0a:dc:fc:47:2e:09:ce:0b:e6:5e:5a: 3c:bc:e4:2d:2c:63:b2:85:d8:df:78:ac:c5:c4:3d: 8b:08:dd:b4:44:e3:39:41:06:e5:8d:76:11:68:f4: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C X509v3 Authority Key Identifier: keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:0f:74:3e:89:66:ec:a6:c4:55:a7:36:a9:05:cb:d7:2d:a3: 03:0f:58:9e:e7:07:77:7d:1f:53:f5:d2:1a:5c:e2:98:66:9c: f1:a9:8e:33:6b:43:1b:1f:61:c6:9d:36:5b:e2:ed:9f:f5:39: f9:a2:f7:8d:14:93:00:d1:69:84:44:bd:aa:df:cf:0b:e8:7f: 5d:7f:84:f4:25:b4:d0:b3:eb:57:85:f5:de:bb:a3:62:db:d8: 25:6e:30:53:7a:9b:4e:f9:67:66:4e:d0:b9:e8:52:fc:0d:fd: f0:91:3b:b4:9a:0a:6c:19:a7:0d:15:b3:b1:5a:59:69:c3:1a: 78:26:03:cd:58:6b:e3:e0:10:f2:94:59:ca:44:f1:7d:d7:b3: 74:11:75:40:6d:d6:bd:44:5f:62:75:15:f1:83:76:42:d5:09: f6:a2:96:26:5a:db:6f:17:97:cb:8e:14:f7:c6:a8:7d:58:1b: 85:82:e7:9e:0c:6f:b0:da:0f:c9:bc:5b:94:c2:23:65:60:db: 08:94:06:01:1e:08:2a:f2:81:a1:ed:37:e7:6a:02:f1:ee:e5: 04:c3:f6:f2:e2:98:a9:28:a2:07:3a:98:b0:36:bb:96:5d:e1: 74:37:26:e6:c9:17:5c:ec:d1:f8:47:1b:5d:e3:f3:d2:73:5b: 37:a1:77:ab -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk2 RDY3MDIzRUQyNzc1NEFDQjFCNTY4NDMzRDQzNzZDODgyMDBGNTAeFw0yNTA5MDYw OTE3NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI1M0RFRTY1Njg3RjEz OTFFQjIwODNCQTFBMjEwNjI2MkZCRTdCMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPvlOF0cdub4NIgBsJ17n8+ktBbaQEbSxAOaYrr1mwTyY832YZ HivoO4trGYXEg5/445NJeEl0rtdBGRBluyxgN7OgoYAbQI4JqSloFb8xFOncAgHU MqzInci1lIRaM2RzE/T4jEd3+hfu8kgeD6M80DUKL+Cz8IKYcVDfp35xV8CnVcAS 1fIqEBelJxhNSiKkBvFJJPuihwZhx9J7yWoMWmA+AQt7cg9dntBh9nKf/223PSBC miF1DTCVfaqm3PULGLN/5rB3m0s6Ck1yx2Jfv3OW2HcK3PxHLgnOC+ZeWjy85C0s Y7KF2N94rMXEPYsI3bRE4zlBBuWNdhFo9L7fAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUtT3uZWh/E5HrIIO6GiEGJi++eywwHwYDVR0jBBgwFoAUmW1nAj7Sd1SssbVo Qz1DdsiCAPUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1dUVy9t VzFuQWo3U2QxU3NzYlZvUXoxRGRzaUNBUFUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L21XMW5BajdTZDFTc3NiVm9RejFEZHNpQ0FQVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NXVFcvbVcxbkFqN1NkMVNzc2JWb1F6MURk c2lDQVBVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAE4PdD6J ZuymxFWnNqkFy9ctowMPWJ7nB3d9H1P10hpc4phmnPGpjjNrQxsfYcadNlvi7Z/1 Ofmi940UkwDRaYREvarfzwvof11/hPQltNCz61eF9d67o2Lb2CVuMFN6m075Z2ZO 0LnoUvwN/fCRO7SaCmwZpw0Vs7FaWWnDGngmA81Ya+PgEPKUWcpE8X3Xs3QRdUBt 1r1EX2J1FfGDdkLVCfailiZa228Xl8uOFPfGqH1YG4WC554Mb7DaD8m8W5TCI2Vg 2wiUBgEeCCrygaHtN+dqAvHu5QTD9vLimKkoogc6mLA2u5Zd4XQ3JubJF1zs0fhH G13j89JzWzehd6s= -----END CERTIFICATE-----Generated at Sun Sep 7 18:27:04 2025 by rpki-client