$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft File: JX23uZGZdWlzZrcBT4z-KO82TnM.mft (raw, json) Hash identifier: 0nfuzpjGoy7QwZpQ/cnpTqiAtk/lKmW82ToSOUI7ubw= Subject key identifier: A6:7B:B6:01:33:0E:55:E0:31:8C:07:90:16:ED:DD:96:F6:71:B4:76 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08ED Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft Manifest number: 07CA Signing time: Fri 24 Oct 2025 18:57:09 +0000 Manifest this update: Fri 24 Oct 2025 18:57:09 +0000 Manifest next update: Sun 26 Oct 2025 18:57:09 +0000 Files and hashes: 1: 3OdQqrqKx45Sor9pmB9PzbFFNes.roa (hash: oZUlUcrAgjSbd4G3WVXERBq5gqzG0i+2h0ps7Yp+Mu8=) 2: 6o4g-58KSYRsh9JzFrqIYN2N6u8.roa (hash: S64GB6oGddx4KR30CyX8cUdW2bE30oEJRpjtDARcmbo=) 3: 76oT6jpWsLAS7z093S6dgaZjmzI.roa (hash: QUSDtgbib6QrKIz1dSqYYed6Cgs0O3SeV5rjIxBCa5o=) 4: 7FbCtIyEUep89ACXvWneSoqG58k.roa (hash: lNgOOV//JJSQyrii+vc+n0B6hSUcPyyfr6pItEz/XFo=) 5: BDe1F7hRC9fkrw-E2v7uV6jv2XU.roa (hash: 9+FrDhMVzPBZhn3Nk0KwhCQjgnp9ZacXWQgeOFXaB8Y=) 6: BKZgvJFBIrPRM4J8MMXkPbnGEfA.roa (hash: eP0dK0NmD6ToRUp0RaU26DDNdnXSdnGp2yexxMSYTyQ=) 7: DQzxRd3JEFAPWUq92vvE1grST0Y.roa (hash: 3/d0bj5/u9Yagk+z1q+EbSBAB1yb3ICnIK8iomCPUoY=) 8: FFAGfkuLGUm-xWUm79rYhvFWD3o.roa (hash: b5BTDbfbGPP8gz2QbodCFNh511useKia2pS+a69e4bI=) 9: I372xbC2uqISwZkBdeUxMhWSUJo.roa (hash: 6hXGdRcRNjtwGmmW5DSja+x10qPp9rv+jxRRODt5SS4=) 10: J6UdI39tbtFWrVifqfwShXkJX1Q.roa (hash: NBKROC/IU/6GuI30spfFYNVmcIPFPpdmXryj/XoXeAE=) 11: JHVFLRwlGh_Tv3Q_KE0Otl292Do.roa (hash: L7vv9DKyQLO0xEBZc1pHCrRTQvVlah+24CqcaY+c2n0=) 12: JX23uZGZdWlzZrcBT4z-KO82TnM.crl (hash: SrNxLlLOPAmHAT3SGK6g/7VNJMLff9m99/PTSFq7j38=) 13: LRtyFgOAjdB09Fu1zo1s3S__-lM.roa (hash: it8AbfL2wkAI+BFvdsrfXtMPNjXpakfnOOFEt7f+b3c=) 14: LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa (hash: zcnTubw2yTX8ZPxOv3MP0E6IcCLJ+3BXmwPYfAHyTvE=) 15: NKu1wNiCL4lxmeLvnpZLpxJN7cg.roa (hash: QH/XxO5oQAZ4xHPHuh1g/h1LJV6N/F/W/s5k4bYlY4k=) 16: PKTHrJ5RFqzu4xvMN3Urw6vISow.roa (hash: mjzlyoRGgBxW0WHO+5r+JHdnaihOvne2iG3+JAHbjbc=) 17: U6pvLdGa_NUOvO816yEESLgL9Ds.roa (hash: 4Vfdfvv8a0GcWJ6LPjET6785IUF4VM8KmZKlQePznBQ=) 18: XYLSxoaia9YW4sek644Ahp0egwQ.roa (hash: Ibt8PnvW0L75/GArRSsUROG/LlvatRqzptONQBsR+Kc=) 19: XgsnXrFlNs1pHBOKh0e47gZ3uqo.roa (hash: vGR5LGz1mKpSjqqtEsG6BWEj3/dniGeVcBglZb6O5Z8=) 20: YO9jgT9HVgoCyvEuUMtV31k4oJk.roa (hash: yvMmpxHxPtLln4/tnuiP5BLp9GBg6UShAOpNcMGAKWI=) 21: cqq8xGsiyUlJIrK-JLYtQ1J8uLg.roa (hash: 0BLcCvsux6irLZhgQkmaCtfQjrPgTEEzJyz6fe8SrYQ=) 22: dHNBlRx1pcrbQcS2OVyLLbS113Y.roa (hash: 5rhYpeJc2fX9MHH+dkeR27g5W5vpdLeyJnuTuyVme0s=) 23: fy5KvVP8U2LgsZmCWce3HoRg3FI.roa (hash: SGOTFJR0dSIpKbD24bg4UU41AI2Nyfv3ootls8Ek4hw=) 24: iMLLLszhgMcOrAL1HNTEm0P8Mf4.roa (hash: xM6i0DA9srtJl/bd0TosWTPdW2fqkkvZP/EG2aKBPDg=) 25: mJterMBVtFH2ek-4F1BRSjoSQMo.roa (hash: fdOLF7uDVt+6bJKKLpcWjvTnPCR4H0DERExEFp+JTSU=) 26: quiqvy_Mbzi29jkt_u2SD6_zA8k.roa (hash: aj9XNrruWUOH6gMCcEA7RVMXj2fpciSidC+ZiisaMew=) 27: wtzCy8iqfwzWsH40LY2Y_3FecvY.roa (hash: vaQ931hn5OFNWqIre20+ecuekMW63boCNORCSjWiVqY=) 28: xbC9k_xJNJZzpgAUcYj8tyuoaL0.roa (hash: 2d3F3+CDykPVcl+QHiBsllrfI23kkrKatjEdMazw66g=) 29: yJ7_oD0LdypvFT0M5WHAAfnxWRY.roa (hash: 72tkHS443EdsTJNhPWrL15DFO1Pl3Y0MRSrbH7RsAk4=) 30: z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa (hash: hxJbTA1VDfe8QIGQySS34F6xpz1I6ISD8xmY3gBSQ2o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Oct 24 18:57:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A67BB601330E55E0318C079016EDDD96F671B476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7a:ef:4c:a4:e8:ff:a9:11:bb:d1:ba:46:bf: 22:5d:54:4e:fe:f5:0e:75:88:c5:c2:8a:ba:53:ca: 7a:73:1b:b3:23:f2:39:96:e2:ee:e8:c0:9e:57:52: 3c:3c:4d:60:f9:e8:e6:2d:e1:49:41:56:6a:6d:38: 76:59:5c:12:e2:93:37:31:e9:5b:b9:aa:9f:fd:80: e4:45:44:3a:1a:70:73:a5:48:66:6a:c7:9e:94:a1: 5f:99:e9:ca:16:10:8d:5d:27:7c:ad:82:5f:9d:75: 70:c2:37:02:05:f2:86:1e:3a:74:26:76:e3:f2:c2: ba:1c:ea:fe:51:c0:b2:8b:ae:c2:58:bb:14:6c:ac: f8:61:95:6d:05:0b:21:15:61:48:bc:45:77:ab:b8: 1d:7f:67:69:df:39:0c:b5:87:1c:5d:58:8a:db:b5: bb:8c:a6:27:4f:07:b6:00:aa:9a:1d:9a:c0:98:8e: 0d:f9:20:36:21:43:87:ea:c4:fb:cd:b8:9a:9d:14: 1e:bf:5b:4d:56:b2:f7:73:0d:62:e8:8d:78:c3:11: 66:b8:a3:ae:93:45:9e:0a:db:62:e6:e3:ec:bf:d6: 9e:e2:5e:48:7f:5a:09:c1:01:28:92:eb:65:9b:8c: 62:ea:19:09:15:d8:30:82:ec:0d:1b:39:9f:ee:06: df:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7B:B6:01:33:0E:55:E0:31:8C:07:90:16:ED:DD:96:F6:71:B4:76 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:4d:f2:a3:0b:8e:70:ca:4f:8f:f1:02:91:f6:25:a2:c8:3e: dc:99:67:21:18:f7:d3:d3:ee:2c:c0:0b:02:71:51:b1:79:4d: 95:4b:2e:a5:66:cc:32:b0:85:da:ab:c7:d4:7a:02:5c:fa:7f: 65:d0:a5:d2:aa:bb:03:f7:5c:66:31:bf:d1:fb:aa:55:04:41: b8:3f:38:9e:53:87:58:03:48:47:85:12:1a:0f:53:f1:05:0d: f1:5c:ed:04:15:2b:5c:85:7c:81:47:98:da:4e:02:10:fb:0b: 46:2c:55:cb:8c:ec:3d:c4:e8:ec:7b:a8:20:95:aa:55:4d:b9: 4f:70:69:0f:fe:1b:da:c2:dd:92:81:cd:d7:83:4f:06:88:38: 5f:38:6f:4e:ba:d8:7d:27:94:86:0e:ee:ba:8a:6c:b9:ce:e5: ae:db:eb:7e:04:69:0a:18:5f:62:1a:38:78:0c:d5:c5:a7:b0: 71:8d:36:f7:27:d7:a9:d6:73:7b:1b:b1:d7:4e:98:d0:1d:64: 22:e1:3d:51:4b:5b:a2:74:ba:e6:2f:fb:2c:f7:dc:f8:ac:92: a8:e4:75:8c:84:df:7d:b3:99:e3:b0:05:67:2e:1c:1b:4b:0b: 9d:88:12:9e:52:b7:89:d3:76:52:51:97:a2:0d:8d:df:da:9b: bc:26:0d:08 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTEwMjQx ODU3MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE2N0JCNjAxMzMwRTU1 RTAzMThDMDc5MDE2RURERDk2RjY3MUI0NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYeu9MpOj/qRG70bpGvyJdVE7+9Q51iMXCirpTynpzG7Mj8jmW 4u7owJ5XUjw8TWD56OYt4UlBVmptOHZZXBLikzcx6Vu5qp/9gORFRDoacHOlSGZq x56UoV+Z6coWEI1dJ3ytgl+ddXDCNwIF8oYeOnQmduPywroc6v5RwLKLrsJYuxRs rPhhlW0FCyEVYUi8RXeruB1/Z2nfOQy1hxxdWIrbtbuMpidPB7YAqpodmsCYjg35 IDYhQ4fqxPvNuJqdFB6/W01WsvdzDWLojXjDEWa4o66TRZ4K22Lm4+y/1p7iXkh/ WgnBASiS62WbjGLqGQkV2DCC7A0bOZ/uBt+rAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUpnu2ATMOVeAxjAeQFu3dlvZxtHYwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0pYMjN1WkdaZFdselpyY0JU NHotS084MlRuTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB+ TfKjC45wyk+P8QKR9iWiyD7cmWchGPfT0+4swAsCcVGxeU2VSy6lZswysIXaq8fU egJc+n9l0KXSqrsD91xmMb/R+6pVBEG4PzieU4dYA0hHhRIaD1PxBQ3xXO0EFStc hXyBR5jaTgIQ+wtGLFXLjOw9xOjse6gglapVTblPcGkP/hvawt2Sgc3Xg08GiDhf OG9Outh9J5SGDu66imy5zuWu2+t+BGkKGF9iGjh4DNXFp7BxjTb3J9ep1nN7G7HX TpjQHWQi4T1RS1uidLrmL/ss99z4rJKo5HWMhN99s5njsAVnLhwbSwudiBKeUreJ 03ZSUZeiDY3f2pu8Jg0I -----END CERTIFICATE-----Generated at Sat Oct 25 13:42:27 2025 by rpki-client