$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft File: JX23uZGZdWlzZrcBT4z-KO82TnM.mft (raw, json) Hash identifier: dKuVhnFYo1OOVGmu26MuxKdvLhbhw7Uruqs6+BXnMBo= Subject key identifier: A6:7B:B6:01:33:0E:55:E0:31:8C:07:90:16:ED:DD:96:F6:71:B4:76 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 08C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft Manifest number: 07A5 Signing time: Sun 07 Sep 2025 21:19:47 +0000 Manifest this update: Sun 07 Sep 2025 21:19:47 +0000 Manifest next update: Tue 09 Sep 2025 21:19:47 +0000 Files and hashes: 1: 3OdQqrqKx45Sor9pmB9PzbFFNes.roa (hash: oZUlUcrAgjSbd4G3WVXERBq5gqzG0i+2h0ps7Yp+Mu8=) 2: 6o4g-58KSYRsh9JzFrqIYN2N6u8.roa (hash: S64GB6oGddx4KR30CyX8cUdW2bE30oEJRpjtDARcmbo=) 3: 76oT6jpWsLAS7z093S6dgaZjmzI.roa (hash: QUSDtgbib6QrKIz1dSqYYed6Cgs0O3SeV5rjIxBCa5o=) 4: 7FbCtIyEUep89ACXvWneSoqG58k.roa (hash: lNgOOV//JJSQyrii+vc+n0B6hSUcPyyfr6pItEz/XFo=) 5: Acd-ZuQY1ErQxsINkD7ht3xrQvQ.roa (hash: 1O/oYT8Vac2n8giNFOAjOL/Keh4ch3h8LOS6f3lWFsE=) 6: BDe1F7hRC9fkrw-E2v7uV6jv2XU.roa (hash: 9+FrDhMVzPBZhn3Nk0KwhCQjgnp9ZacXWQgeOFXaB8Y=) 7: BKZgvJFBIrPRM4J8MMXkPbnGEfA.roa (hash: eP0dK0NmD6ToRUp0RaU26DDNdnXSdnGp2yexxMSYTyQ=) 8: DQzxRd3JEFAPWUq92vvE1grST0Y.roa (hash: 3/d0bj5/u9Yagk+z1q+EbSBAB1yb3ICnIK8iomCPUoY=) 9: FFAGfkuLGUm-xWUm79rYhvFWD3o.roa (hash: b5BTDbfbGPP8gz2QbodCFNh511useKia2pS+a69e4bI=) 10: I372xbC2uqISwZkBdeUxMhWSUJo.roa (hash: 6hXGdRcRNjtwGmmW5DSja+x10qPp9rv+jxRRODt5SS4=) 11: J6UdI39tbtFWrVifqfwShXkJX1Q.roa (hash: NBKROC/IU/6GuI30spfFYNVmcIPFPpdmXryj/XoXeAE=) 12: JHVFLRwlGh_Tv3Q_KE0Otl292Do.roa (hash: L7vv9DKyQLO0xEBZc1pHCrRTQvVlah+24CqcaY+c2n0=) 13: JX23uZGZdWlzZrcBT4z-KO82TnM.crl (hash: Jub2XX7GseyQmbRGCsgdma7fTjKgnLC0js0FKsQzS9Q=) 14: LRtyFgOAjdB09Fu1zo1s3S__-lM.roa (hash: it8AbfL2wkAI+BFvdsrfXtMPNjXpakfnOOFEt7f+b3c=) 15: LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa (hash: zcnTubw2yTX8ZPxOv3MP0E6IcCLJ+3BXmwPYfAHyTvE=) 16: NKu1wNiCL4lxmeLvnpZLpxJN7cg.roa (hash: QH/XxO5oQAZ4xHPHuh1g/h1LJV6N/F/W/s5k4bYlY4k=) 17: PKTHrJ5RFqzu4xvMN3Urw6vISow.roa (hash: mjzlyoRGgBxW0WHO+5r+JHdnaihOvne2iG3+JAHbjbc=) 18: TAncpJZTfMbRURmiw6-m5QqyXco.roa (hash: iPBhxprm94sXs0pd/1aC2LonUA9eRt0oECOXkrPS8Js=) 19: U6pvLdGa_NUOvO816yEESLgL9Ds.roa (hash: 4Vfdfvv8a0GcWJ6LPjET6785IUF4VM8KmZKlQePznBQ=) 20: XYLSxoaia9YW4sek644Ahp0egwQ.roa (hash: Ibt8PnvW0L75/GArRSsUROG/LlvatRqzptONQBsR+Kc=) 21: XgsnXrFlNs1pHBOKh0e47gZ3uqo.roa (hash: vGR5LGz1mKpSjqqtEsG6BWEj3/dniGeVcBglZb6O5Z8=) 22: YO9jgT9HVgoCyvEuUMtV31k4oJk.roa (hash: yvMmpxHxPtLln4/tnuiP5BLp9GBg6UShAOpNcMGAKWI=) 23: cqq8xGsiyUlJIrK-JLYtQ1J8uLg.roa (hash: 0BLcCvsux6irLZhgQkmaCtfQjrPgTEEzJyz6fe8SrYQ=) 24: dHNBlRx1pcrbQcS2OVyLLbS113Y.roa (hash: 5rhYpeJc2fX9MHH+dkeR27g5W5vpdLeyJnuTuyVme0s=) 25: fy5KvVP8U2LgsZmCWce3HoRg3FI.roa (hash: SGOTFJR0dSIpKbD24bg4UU41AI2Nyfv3ootls8Ek4hw=) 26: iMLLLszhgMcOrAL1HNTEm0P8Mf4.roa (hash: xM6i0DA9srtJl/bd0TosWTPdW2fqkkvZP/EG2aKBPDg=) 27: kZdj-TnApUAVpFD87SplXPDr8vo.roa (hash: +JesA1S1crxGbFoTrGotOOf+QJWC/Wj1GO5FJqGSBVc=) 28: mJterMBVtFH2ek-4F1BRSjoSQMo.roa (hash: fdOLF7uDVt+6bJKKLpcWjvTnPCR4H0DERExEFp+JTSU=) 29: quiqvy_Mbzi29jkt_u2SD6_zA8k.roa (hash: aj9XNrruWUOH6gMCcEA7RVMXj2fpciSidC+ZiisaMew=) 30: uKE6abulwXDE936So8vNO6pwFzY.roa (hash: YFnFPttTBnOuVFBbNTiNnF5T1+X5opx2Vwz9X/ZbOdc=) 31: wtzCy8iqfwzWsH40LY2Y_3FecvY.roa (hash: vaQ931hn5OFNWqIre20+ecuekMW63boCNORCSjWiVqY=) 32: xQze02nZE4NzXW-xp3LAAn4HZ1c.roa (hash: h/Ev30htpoVDhFnm6OBXUecMMRLSjeTucmSbqCsb19M=) 33: yJ7_oD0LdypvFT0M5WHAAfnxWRY.roa (hash: 72tkHS443EdsTJNhPWrL15DFO1Pl3Y0MRSrbH7RsAk4=) 34: z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa (hash: hxJbTA1VDfe8QIGQySS34F6xpz1I6ISD8xmY3gBSQ2o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 10:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2247 (0x8c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 7 21:19:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A67BB601330E55E0318C079016EDDD96F671B476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7a:ef:4c:a4:e8:ff:a9:11:bb:d1:ba:46:bf: 22:5d:54:4e:fe:f5:0e:75:88:c5:c2:8a:ba:53:ca: 7a:73:1b:b3:23:f2:39:96:e2:ee:e8:c0:9e:57:52: 3c:3c:4d:60:f9:e8:e6:2d:e1:49:41:56:6a:6d:38: 76:59:5c:12:e2:93:37:31:e9:5b:b9:aa:9f:fd:80: e4:45:44:3a:1a:70:73:a5:48:66:6a:c7:9e:94:a1: 5f:99:e9:ca:16:10:8d:5d:27:7c:ad:82:5f:9d:75: 70:c2:37:02:05:f2:86:1e:3a:74:26:76:e3:f2:c2: ba:1c:ea:fe:51:c0:b2:8b:ae:c2:58:bb:14:6c:ac: f8:61:95:6d:05:0b:21:15:61:48:bc:45:77:ab:b8: 1d:7f:67:69:df:39:0c:b5:87:1c:5d:58:8a:db:b5: bb:8c:a6:27:4f:07:b6:00:aa:9a:1d:9a:c0:98:8e: 0d:f9:20:36:21:43:87:ea:c4:fb:cd:b8:9a:9d:14: 1e:bf:5b:4d:56:b2:f7:73:0d:62:e8:8d:78:c3:11: 66:b8:a3:ae:93:45:9e:0a:db:62:e6:e3:ec:bf:d6: 9e:e2:5e:48:7f:5a:09:c1:01:28:92:eb:65:9b:8c: 62:ea:19:09:15:d8:30:82:ec:0d:1b:39:9f:ee:06: df:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7B:B6:01:33:0E:55:E0:31:8C:07:90:16:ED:DD:96:F6:71:B4:76 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:b3:c1:f9:1e:67:bd:d6:e4:73:da:85:b3:9c:2b:bb:ef:be: af:18:09:20:fd:79:8c:b7:9a:e1:33:39:0d:0c:5b:b1:0b:bb: 3d:82:7f:38:ce:0d:34:02:5a:9d:87:51:47:6e:0b:8a:72:39: bc:04:b0:1c:59:a9:96:fb:a2:e5:6a:6c:37:6f:9b:1a:f1:47: f9:a2:0c:61:3e:63:79:1b:3a:d4:7e:3d:59:1d:6f:22:96:a7: ff:79:a7:7b:79:27:15:af:04:9a:2c:0b:23:27:75:3b:bb:30: e1:31:07:eb:6a:cf:25:15:09:2f:d3:65:88:8b:98:42:dc:2d: 57:04:81:82:66:6e:68:aa:bf:ca:f5:b7:51:fa:68:19:15:16: 82:2b:bd:12:69:91:fe:30:32:e7:00:84:9e:62:47:22:8c:a8: 3b:fd:b7:f4:26:ec:ba:c7:48:d8:69:49:07:ef:d7:b6:77:0a: 2e:31:92:4a:42:ad:68:d7:fb:cc:5e:78:d3:8e:81:97:82:7d: 02:0e:5e:21:18:46:ce:4a:32:93:a0:f7:d9:2f:07:4e:52:9c: fa:ea:16:71:c7:34:0e:05:50:02:12:fa:47:8a:de:af:16:7c: 0a:26:e8:04:75:a3:b0:fc:a5:79:12:70:e1:f1:16:2d:ac:ad: 83:e6:b6:14 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICCMcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTA5MDcy MTE5NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE2N0JCNjAxMzMwRTU1 RTAzMThDMDc5MDE2RURERDk2RjY3MUI0NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYeu9MpOj/qRG70bpGvyJdVE7+9Q51iMXCirpTynpzG7Mj8jmW 4u7owJ5XUjw8TWD56OYt4UlBVmptOHZZXBLikzcx6Vu5qp/9gORFRDoacHOlSGZq x56UoV+Z6coWEI1dJ3ytgl+ddXDCNwIF8oYeOnQmduPywroc6v5RwLKLrsJYuxRs rPhhlW0FCyEVYUi8RXeruB1/Z2nfOQy1hxxdWIrbtbuMpidPB7YAqpodmsCYjg35 IDYhQ4fqxPvNuJqdFB6/W01WsvdzDWLojXjDEWa4o66TRZ4K22Lm4+y/1p7iXkh/ WgnBASiS62WbjGLqGQkV2DCC7A0bOZ/uBt+rAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUpnu2ATMOVeAxjAeQFu3dlvZxtHYwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0pYMjN1WkdaZFdselpyY0JU NHotS084MlRuTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBR s8H5Hme91uRz2oWznCu7776vGAkg/XmMt5rhMzkNDFuxC7s9gn84zg00Alqdh1FH bguKcjm8BLAcWamW+6Llamw3b5sa8Uf5ogxhPmN5GzrUfj1ZHW8ilqf/ead7eScV rwSaLAsjJ3U7uzDhMQfras8lFQkv02WIi5hC3C1XBIGCZm5oqr/K9bdR+mgZFRaC K70SaZH+MDLnAISeYkcijKg7/bf0Juy6x0jYaUkH79e2dwouMZJKQq1o1/vMXnjT joGXgn0CDl4hGEbOSjKToPfZLwdOUpz66hZxxzQOBVACEvpHit6vFnwKJugEdaOw /KV5EnDh8RYtrK2D5rYU -----END CERTIFICATE-----Generated at Mon Sep 8 08:38:38 2025 by rpki-client