$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft File: mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft (raw, json) Hash identifier: jdv7ZvGX6ryrpIOK4t85PCwAdSH2XEn95ESBNW/Dhno= Subject key identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5 Certificate serial: 04EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft Manifest number: 04DA Signing time: Mon 27 Oct 2025 21:27:12 +0000 Manifest this update: Mon 27 Oct 2025 21:27:12 +0000 Manifest next update: Wed 29 Oct 2025 21:27:12 +0000 Files and hashes: 1: Lhj1hDPepPNZZRr_5Ey3k3bXwr8.roa (hash: Piiiucezyi2FIrHRJuBG+PPTjIIdFJ1uiJoNjgDdLYA=) 2: SOJRSTWq9I3k5mLdDxZTrUuS4_o.roa (hash: Ggs5YjzOXGJ7qqFQWDFP3u5rt+mYxFU1Kw8yfnIlEjM=) 3: mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl (hash: b+ALqqhIN5tSdUXhWqjiewYN2xANPArrLBcAkGO0aic=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 01:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1262 (0x4ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5 Validity Not Before: Oct 27 21:27:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B53DEE65687F1391EB2083BA1A2106262FBE7B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:53:85:d1:c7:6e:6f:83:48:80:1b:09:d7: b9:fc:fa:4b:41:6d:a4:04:6d:2c:40:39:a6:2b:af: 59:b0:4f:26:3c:df:66:19:1e:2b:e8:3b:8b:6b:19: 85:c4:83:9f:f8:e3:93:49:78:49:74:ae:d7:41:19: 10:65:bb:2c:60:37:b3:a0:a1:80:1b:40:8e:09:a9: 29:68:15:bf:31:14:e9:dc:02:01:d4:32:ac:c8:9d: c8:b5:94:84:5a:33:64:73:13:f4:f8:8c:47:77:fa: 17:ee:f2:48:1e:0f:a3:3c:d0:35:0a:2f:e0:b3:f0: 82:98:71:50:df:a7:7e:71:57:c0:a7:55:c0:12:d5: f2:2a:10:17:a5:27:18:4d:4a:22:a4:06:f1:49:24: fb:a2:87:06:61:c7:d2:7b:c9:6a:0c:5a:60:3e:01: 0b:7b:72:0f:5d:9e:d0:61:f6:72:9f:ff:6d:b7:3d: 20:42:9a:21:75:0d:30:95:7d:aa:a6:dc:f5:0b:18: b3:7f:e6:b0:77:9b:4b:3a:0a:4d:72:c7:62:5f:bf: 73:96:d8:77:0a:dc:fc:47:2e:09:ce:0b:e6:5e:5a: 3c:bc:e4:2d:2c:63:b2:85:d8:df:78:ac:c5:c4:3d: 8b:08:dd:b4:44:e3:39:41:06:e5:8d:76:11:68:f4: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C X509v3 Authority Key Identifier: keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:79:42:24:f0:b1:93:8b:8d:e0:08:a8:cd:77:30:26:c4:82: 54:bc:9b:13:12:fd:44:9b:46:86:04:64:e3:83:4e:a4:81:d7: bf:14:04:74:89:39:12:6d:7a:95:68:08:ec:4a:c2:d0:7e:38: 1b:17:41:27:28:69:19:a3:cd:99:6f:6e:a2:23:c9:c9:06:ce: 5e:73:e7:1b:49:65:63:42:a5:6c:cd:e8:fb:57:2f:da:a3:f8: 66:c7:32:bc:a7:0d:74:a6:3b:8d:d4:e7:c3:6a:d0:84:0b:db: b9:cb:40:cf:bb:d6:2a:d1:43:8b:3b:d7:8a:7f:a4:b4:3d:ca: 20:64:ae:bc:cf:cf:f6:53:a7:6a:5c:f1:eb:84:61:2b:55:29: cf:6c:6f:ac:10:36:14:b7:27:1e:51:ec:20:fa:73:dc:d9:32: 1d:b0:4a:56:15:d6:37:cf:6f:83:bb:e1:02:4a:42:81:e7:24: 8f:2e:84:08:28:c2:a2:31:ea:e7:e6:6b:61:6f:1a:25:e2:ed: 83:7c:52:ee:14:7a:53:26:2d:79:c4:bd:3e:0b:75:12:6b:04: 16:40:fb:75:b7:14:c5:c6:76:96:48:af:fc:fe:3c:c1:b1:0a: 47:a0:06:b1:44:7c:c6:83:68:80:a8:e1:98:ea:19:c1:41:0d: 29:e4:07:f7 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk2 RDY3MDIzRUQyNzc1NEFDQjFCNTY4NDMzRDQzNzZDODgyMDBGNTAeFw0yNTEwMjcy MTI3MTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI1M0RFRTY1Njg3RjEz OTFFQjIwODNCQTFBMjEwNjI2MkZCRTdCMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPvlOF0cdub4NIgBsJ17n8+ktBbaQEbSxAOaYrr1mwTyY832YZ HivoO4trGYXEg5/445NJeEl0rtdBGRBluyxgN7OgoYAbQI4JqSloFb8xFOncAgHU MqzInci1lIRaM2RzE/T4jEd3+hfu8kgeD6M80DUKL+Cz8IKYcVDfp35xV8CnVcAS 1fIqEBelJxhNSiKkBvFJJPuihwZhx9J7yWoMWmA+AQt7cg9dntBh9nKf/223PSBC miF1DTCVfaqm3PULGLN/5rB3m0s6Ck1yx2Jfv3OW2HcK3PxHLgnOC+ZeWjy85C0s Y7KF2N94rMXEPYsI3bRE4zlBBuWNdhFo9L7fAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUtT3uZWh/E5HrIIO6GiEGJi++eywwHwYDVR0jBBgwFoAUmW1nAj7Sd1SssbVo Qz1DdsiCAPUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1dUVy9t VzFuQWo3U2QxU3NzYlZvUXoxRGRzaUNBUFUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L21XMW5BajdTZDFTc3NiVm9RejFEZHNpQ0FQVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NXVFcvbVcxbkFqN1NkMVNzc2JWb1F6MURk c2lDQVBVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABh5QiTw sZOLjeAIqM13MCbEglS8mxMS/USbRoYEZOODTqSB178UBHSJORJtepVoCOxKwtB+ OBsXQScoaRmjzZlvbqIjyckGzl5z5xtJZWNCpWzN6PtXL9qj+GbHMrynDXSmO43U 58Nq0IQL27nLQM+71irRQ4s714p/pLQ9yiBkrrzPz/ZTp2pc8euEYStVKc9sb6wQ NhS3Jx5R7CD6c9zZMh2wSlYV1jfPb4O74QJKQoHnJI8uhAgowqIx6ufma2FvGiXi 7YN8Uu4UelMmLXnEvT4LdRJrBBZA+3W3FMXGdpZIr/z+PMGxCkegBrFEfMaDaICo 4ZjqGcFBDSnkB/c= -----END CERTIFICATE-----Generated at Tue Oct 28 23:10:17 2025 by rpki-client