$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft File: tRrvrFDR7mlQbia9hf6_Ot8Htss.mft (raw, json) Hash identifier: mvU4bORZ2mrIiBbKew2K8whSF9DRBFr8yM7XUNbkUSE= Subject key identifier: F1:FB:4C:49:15:70:E7:3A:F6:FD:D9:5C:23:86:4A:C0:D0:22:61:B6 Authority key identifier: B5:1A:EF:AC:50:D1:EE:69:50:6E:26:BD:85:FE:BF:3A:DF:07:B6:CB Certificate issuer: /CN=B51AEFAC50D1EE69506E26BD85FEBF3ADF07B6CB Certificate serial: 0D17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tRrvrFDR7mlQbia9hf6_Ot8Htss.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft Manifest number: 0D17 Signing time: Tue 16 Sep 2025 21:19:57 +0000 Manifest this update: Tue 16 Sep 2025 21:19:57 +0000 Manifest next update: Thu 18 Sep 2025 21:19:57 +0000 Files and hashes: 1: tRrvrFDR7mlQbia9hf6_Ot8Htss.crl (hash: EZn1ZV6IzR1nRXonC+sFCxPQR8/GXRpmnLb5+NRD27s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tRrvrFDR7mlQbia9hf6_Ot8Htss.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3351 (0xd17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B51AEFAC50D1EE69506E26BD85FEBF3ADF07B6CB Validity Not Before: Sep 16 21:19:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F1FB4C491570E73AF6FDD95C23864AC0D02261B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c3:ba:a5:b4:b3:33:d8:8f:8d:42:0e:94:1c: c1:48:4a:f4:a4:e0:ed:fc:52:91:86:c5:cf:30:1a: 64:11:cb:ee:18:ae:67:b1:f3:0e:6b:7f:ca:b5:e7: 79:f4:c2:d0:66:8f:a2:8a:eb:fa:f8:0f:2e:f5:44: f4:64:9f:8d:c1:c0:09:4a:04:90:6a:e7:8d:89:a0: 84:9d:d1:bd:e8:c1:36:1e:18:9f:2b:a8:1b:4c:58: cf:b0:d3:ed:2a:14:34:a6:01:41:2c:6b:98:3c:9e: 5d:06:ba:cd:59:6e:26:3b:4e:5f:6e:9d:19:6a:ab: c3:32:77:bb:24:f3:76:f1:f3:ae:47:fc:b6:18:97: 67:29:47:4b:00:84:8a:26:27:40:40:c8:ab:3a:25: 70:55:38:74:1c:0b:39:32:71:c6:b7:f6:bb:0a:8b: 7d:dd:9d:25:3d:ce:38:c1:77:60:f7:22:b5:5e:cf: ed:c7:99:b2:12:cd:06:3b:f0:4b:24:d9:34:c5:7b: fb:59:a6:77:16:a7:e4:07:b9:2d:e9:e1:87:2b:83: f6:c7:59:06:15:87:8d:e8:cb:f0:05:1e:88:9c:78: fc:e8:bb:29:22:4b:37:58:f6:47:3f:b8:97:24:88: 90:ff:25:29:19:44:19:fd:2a:7a:28:4b:40:30:e0: 8f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FB:4C:49:15:70:E7:3A:F6:FD:D9:5C:23:86:4A:C0:D0:22:61:B6 X509v3 Authority Key Identifier: keyid:B5:1A:EF:AC:50:D1:EE:69:50:6E:26:BD:85:FE:BF:3A:DF:07:B6:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tRrvrFDR7mlQbia9hf6_Ot8Htss.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:80:f6:6e:9a:6a:03:ac:34:c7:ff:8c:d5:62:31:5f:07:8a: 76:bd:2f:e0:99:91:25:7b:6e:c3:ed:cb:19:69:54:a3:50:f3: 7b:d6:1b:d3:76:3b:37:26:2e:2e:ac:9e:85:4a:ca:ef:a9:f1: 44:56:2b:52:19:ee:fb:76:ef:92:bf:52:f4:f7:ff:8c:25:fb: 11:d7:64:b9:6d:78:23:c5:51:db:dd:bb:90:0d:0d:1c:bf:08: 0c:0d:79:d4:a8:9d:e8:fe:a2:8a:12:c8:3f:8c:ce:40:e6:d7: 30:83:d4:29:cc:8b:aa:f0:a7:78:b1:7d:a6:45:29:85:47:1c: e6:b5:ef:2a:7a:15:fe:63:29:c6:06:80:99:8d:93:4b:5b:5d: 39:70:4e:c1:df:92:6b:48:5d:47:7e:d9:94:c6:81:76:bc:15: b7:46:58:d6:2d:f7:0c:9d:45:39:73:44:16:d1:24:0d:de:c4: 6f:17:a7:d8:62:b0:12:68:a2:bc:3e:bb:2a:a1:85:37:db:bd: 17:70:ad:80:0f:82:36:e4:a7:ab:68:37:11:80:1b:b3:c6:cd: 0c:8d:3f:0c:99:6e:9e:2f:3b:f4:59:3f:56:a7:04:ab:15:57: d1:8a:b6:d0:3f:0d:c5:e0:fc:6f:7d:e1:cf:c5:dc:ef:5c:12: 38:ed:22:38 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDRcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjUx QUVGQUM1MEQxRUU2OTUwNkUyNkJEODVGRUJGM0FERjA3QjZDQjAeFw0yNTA5MTYy MTE5NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYxRkI0QzQ5MTU3MEU3 M0FGNkZERDk1QzIzODY0QUMwRDAyMjYxQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2w7qltLMz2I+NQg6UHMFISvSk4O38UpGGxc8wGmQRy+4Yrmex 8w5rf8q153n0wtBmj6KK6/r4Dy71RPRkn43BwAlKBJBq542JoISd0b3owTYeGJ8r qBtMWM+w0+0qFDSmAUEsa5g8nl0Gus1ZbiY7Tl9unRlqq8Myd7sk83bx865H/LYY l2cpR0sAhIomJ0BAyKs6JXBVOHQcCzkycca39rsKi33dnSU9zjjBd2D3IrVez+3H mbISzQY78Esk2TTFe/tZpncWp+QHuS3p4Ycrg/bHWQYVh43oy/AFHoicePzouyki SzdY9kc/uJckiJD/JSkZRBn9KnooS0Aw4I/5AgMBAAGjggIJMIICBTAdBgNVHQ4E FgQU8ftMSRVw5zr2/dlcI4ZKwNAiYbYwHwYDVR0jBBgwFoAUtRrvrFDR7mlQbia9 hf6/Ot8HtsswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUlOVkVT VC90UnJ2ckZEUjdtbFFiaWE5aGY2X090OEh0c3MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RScnZyRkRSN21sUWJpYTloZjZfT3Q4SHRzcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VJTlZFU1QvdFJydnJGRFI3bWxRYmlh OWhmNl9PdDhIdHNzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AD2A9m6aagOsNMf/jNViMV8Hina9L+CZkSV7bsPtyxlpVKNQ83vWG9N2OzcmLi6s noVKyu+p8URWK1IZ7vt275K/UvT3/4wl+xHXZLlteCPFUdvdu5ANDRy/CAwNedSo nej+oooSyD+MzkDm1zCD1CnMi6rwp3ixfaZFKYVHHOa17yp6Ff5jKcYGgJmNk0tb XTlwTsHfkmtIXUd+2ZTGgXa8FbdGWNYt9wydRTlzRBbRJA3exG8Xp9hisBJoorw+ uyqhhTfbvRdwrYAPgjbkp6toNxGAG7PGzQyNPwyZbp4vO/RZP1anBKsVV9GKttA/ DcXg/G994c/F3O9cEjjtIjg= -----END CERTIFICATE-----Generated at Thu Sep 18 00:52:24 2025 by rpki-client