$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft File: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft (raw, json) Hash identifier: e3vkIZ2Dfd8H2rQ6ZMZYoUaitSo5rMotX31RP+rZFbQ= Subject key identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C Authority key identifier: DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 Certificate issuer: /CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Certificate serial: 01F1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft Manifest number: 01E6 Signing time: Fri 19 Sep 2025 03:42:31 +0000 Manifest this update: Fri 19 Sep 2025 03:42:31 +0000 Manifest next update: Sun 21 Sep 2025 03:42:31 +0000 Files and hashes: 1: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl (hash: AiZCs4NfJj1t8mJ69JaIlfE5xtzVz1AlgFl8+gaPUXY=) 2: y-oacVpBDQFqidbXVI-NR-26Gdg.roa (hash: gskJqvd2XDLpcECC32Ww1AilH6xmVPpz965WapnRvOg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Sep 2025 10:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Validity Not Before: Sep 19 03:42:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=275DBCFF08D33A5850754C5E3AACBCC723CEDE3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:e4:67:d1:00:b1:3a:66:a8:aa:bc:22:c0: f4:41:5d:11:da:88:40:62:27:af:d4:39:d3:8a:02: 22:05:07:9e:05:e0:75:56:92:5b:17:44:70:e9:ba: 9a:0f:ef:1c:7a:78:a4:73:5e:35:e1:65:c0:4c:f8: 92:57:44:82:c3:6b:7b:8e:b9:24:a0:03:04:2f:fe: 99:b4:d1:3f:ad:f3:21:50:37:17:14:f2:12:8b:a9: e7:50:65:50:d4:14:af:d3:31:93:1b:ea:b1:aa:3b: 9e:78:50:c0:ba:64:58:d4:a3:34:a0:b9:50:81:ea: 19:1e:70:6e:73:0c:07:70:3e:ff:40:b2:0a:47:cc: ef:47:af:59:ca:bc:15:7e:a1:e7:8f:4f:4c:26:1b: 58:15:68:c4:f6:ee:83:70:b2:c3:dd:30:b7:53:25: 00:e2:cb:be:65:8e:20:15:8e:bd:21:aa:cc:ba:f9: 0a:5b:3f:e7:a0:31:81:28:27:fe:c7:ff:05:3b:4d: 70:b3:68:8a:ad:73:f3:74:0b:2f:3d:e7:08:7e:56: 98:9b:7b:67:85:4c:02:9d:0b:82:35:e3:e3:49:b9: c2:60:c2:f7:8c:27:1e:f3:05:00:bd:28:e4:c3:aa: 3e:7d:7c:98:55:1e:bb:05:09:53:87:91:53:f1:c7: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C X509v3 Authority Key Identifier: keyid:DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:2e:40:bb:0b:2d:71:c9:00:4c:5e:7a:07:27:53:73:0e:7e: fc:98:b4:4a:dd:96:27:de:28:3e:54:83:ad:3d:99:21:33:4f: ac:9b:c5:ae:fe:1d:be:3e:d0:17:df:27:8c:99:b1:ac:8f:a6: 7f:c6:b2:ca:c2:f3:09:aa:0c:d3:4e:31:4c:9e:9a:be:af:25: d2:3d:38:e7:56:04:df:72:02:ca:83:86:aa:b9:f0:7b:37:7d: 01:47:6c:6b:76:2c:7f:df:61:2f:c0:83:f7:26:29:8a:be:48: 8c:fe:56:34:32:38:17:58:c1:5f:68:32:f9:94:79:33:dd:a6: fe:a5:d8:17:0f:01:d7:1c:8f:8b:ec:7f:4e:65:50:17:97:b6: 88:8e:6f:72:61:0d:98:31:dd:be:d9:40:7b:0e:ee:12:db:de: 26:35:7c:e0:91:f5:81:c0:61:8e:96:a8:d3:c7:96:51:97:9f: 49:fc:3e:fc:90:ce:fc:52:0e:ff:67:69:3c:40:62:07:a3:f0: 73:5c:c8:dd:44:4d:0e:7f:13:35:be:b5:dc:3e:92:7d:13:cc: c7:14:74:b5:5b:05:83:c8:51:45:e8:ab:fa:28:32:20:3c:fb: a3:15:5a:15:cf:80:13:c5:9c:ad:e5:5e:4b:04:fc:91:c3:a4: a8:53:1e:e7 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREU4 NzJCQUQyNjJEMThGMEE2NzQ5RTAyNzJEOTc1MjYxRDk0OUVDMzAeFw0yNTA5MTkw MzQyMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3NURCQ0ZGMDhEMzNB NTg1MDc1NEM1RTNBQUNCQ0M3MjNDRURFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuA+Rn0QCxOmaoqrwiwPRBXRHaiEBiJ6/UOdOKAiIFB54F4HVW klsXRHDpupoP7xx6eKRzXjXhZcBM+JJXRILDa3uOuSSgAwQv/pm00T+t8yFQNxcU 8hKLqedQZVDUFK/TMZMb6rGqO554UMC6ZFjUozSguVCB6hkecG5zDAdwPv9AsgpH zO9Hr1nKvBV+oeePT0wmG1gVaMT27oNwssPdMLdTJQDiy75ljiAVjr0hqsy6+Qpb P+egMYEoJ/7H/wU7TXCzaIqtc/N0Cy895wh+Vpibe2eFTAKdC4I14+NJucJgwveM Jx7zBQC9KOTDqj59fJhVHrsFCVOHkVPxx79hAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUJ128/wjTOlhQdUxeOqy8xyPO3jwwHwYDVR0jBBgwFoAU3ocrrSYtGPCmdJ4C ctl1Jh2UnsMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRlVZVS8z b2NyclNZdEdQQ21kSjRDY3RsMUpoMlVuc00uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzNvY3JyU1l0R1BDbWRKNENjdGwxSmgyVW5zTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZVWVUvM29jcnJTWXRHUENtZEo0Q2N0bDFK aDJVbnNNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAEQuQLsL LXHJAExeegcnU3MOfvyYtErdlifeKD5Ug609mSEzT6ybxa7+Hb4+0BffJ4yZsayP pn/GssrC8wmqDNNOMUyemr6vJdI9OOdWBN9yAsqDhqq58Hs3fQFHbGt2LH/fYS/A g/cmKYq+SIz+VjQyOBdYwV9oMvmUeTPdpv6l2BcPAdccj4vsf05lUBeXtoiOb3Jh DZgx3b7ZQHsO7hLb3iY1fOCR9YHAYY6WqNPHllGXn0n8PvyQzvxSDv9naTxAYgej 8HNcyN1ETQ5/EzW+tdw+kn0TzMcUdLVbBYPIUUXoq/ooMiA8+6MVWhXPgBPFnK3l XksE/JHDpKhTHuc= -----END CERTIFICATE-----Generated at Fri Sep 19 07:52:12 2025 by rpki-client