$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft File: bKW4t-CigcRnJiJG3wyFnfX4fx8.mft (raw, json) Hash identifier: IWSSH047JHBoT6w6epvWnqiU+BhwjPGeumRFt8eiCW8= Subject key identifier: D7:62:F2:FD:46:30:B4:60:04:B4:DC:69:56:A9:96:5F:50:00:63:37 Authority key identifier: 6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F Certificate issuer: /CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Certificate serial: 025C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft Manifest number: 0255 Signing time: Wed 17 Sep 2025 11:49:18 +0000 Manifest this update: Wed 17 Sep 2025 11:49:18 +0000 Manifest next update: Fri 19 Sep 2025 11:49:18 +0000 Files and hashes: 1: OH2Rz9HO8kPVvreZrpurUQ336jA.roa (hash: eODlkAFjq8gkJ1On0NNiEuhzUFsVMl/aO2ee79E+X3A=) 2: bKW4t-CigcRnJiJG3wyFnfX4fx8.crl (hash: qa5qlGh2OGChR3ld7hB5GqRiB3AjaFq3WWpjs2VTSws=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 08:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Validity Not Before: Sep 17 11:49:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D762F2FD4630B46004B4DC6956A9965F50006337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:b7:8c:80:8b:3e:ae:56:61:8e:87:ba:af: d9:44:2c:dd:ab:f0:fc:5c:87:fb:b0:d7:b4:1a:b8: 7f:84:9c:82:ae:e5:88:66:f9:2b:53:b3:2f:33:52: 85:5a:fc:34:3c:b1:e4:3f:c2:21:62:0d:8b:a4:67: 3d:43:42:00:73:e1:57:43:24:38:e3:76:3d:59:41: 00:4e:80:7f:e6:a5:c6:e6:7b:cc:20:72:09:76:b7: 59:5c:40:d3:be:09:63:f8:12:6f:0c:10:be:ec:ab: f0:88:84:8e:6f:f6:87:64:cc:fc:0e:f1:85:eb:c2: 7a:c2:2f:fb:80:f6:5b:2a:25:86:14:ec:07:cb:e5: 29:ae:b3:89:7f:24:74:6b:a9:ba:66:b5:9f:03:b6: 03:67:35:3c:0a:42:4c:07:7a:45:38:c8:30:3a:3f: 7f:5d:81:01:6b:de:49:b9:51:06:2c:31:ef:cc:2c: 7b:31:2e:8e:0b:3c:d1:e2:9e:d6:4b:b5:ca:6c:0a: 54:d7:61:65:fe:5a:eb:4a:c3:e9:81:5f:e6:76:76: b1:e5:d3:12:b5:7e:5c:2f:26:1d:ff:3e:27:73:74: 5c:8a:ca:56:73:f2:d3:68:4e:ff:60:9a:b3:3e:03: b9:6e:44:77:09:d4:5e:b8:82:d0:cd:e2:60:43:30: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:62:F2:FD:46:30:B4:60:04:B4:DC:69:56:A9:96:5F:50:00:63:37 X509v3 Authority Key Identifier: keyid:6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:03:dd:d2:ae:6a:71:c9:91:18:03:5d:b9:61:c2:75:61:d7: 55:ca:d9:4d:7d:c2:f2:8a:64:c0:e3:f9:81:42:18:b5:17:b4: be:0e:b3:9b:ca:bd:7b:69:2d:b4:27:11:e3:8a:e4:2d:36:27: 04:43:a5:7e:0d:47:21:61:d3:e5:69:cb:aa:4d:64:67:5a:3f: 49:8e:00:02:7c:ad:4c:93:20:0a:aa:33:17:c3:21:f5:60:9c: b1:0c:67:a0:c2:6e:88:6c:67:f7:b8:29:1a:c7:fe:1c:8e:25: 19:b1:31:7f:6b:69:cf:b2:96:89:2d:10:e1:d7:13:9c:da:ea: ed:69:44:9e:8d:f9:f3:5c:7d:20:70:e0:b4:68:cf:16:88:28: 29:31:16:62:86:07:a6:87:4f:34:8c:a7:c6:89:aa:48:f6:58: da:d5:84:c4:9d:33:45:6c:9f:3f:57:ed:ec:ce:bc:57:b8:e4: 30:2c:04:29:f4:2c:8a:63:c7:60:7c:6e:d9:54:f3:88:fd:69: 1a:59:7b:08:a2:9a:9c:22:b5:41:43:94:cd:4e:24:77:7f:53: 0b:2e:c9:c5:ab:9e:c8:b7:55:e0:4f:9a:40:3d:3e:0f:1e:1f: 5c:66:db:4a:da:27:c9:7d:15:da:a8:b5:f0:8a:61:2f:83:38: 69:2d:ba:02 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkNB NUI4QjdFMEEyODFDNDY3MjYyMjQ2REYwQzg1OURGNUY4N0YxRjAeFw0yNTA5MTcx MTQ5MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ3NjJGMkZENDYzMEI0 NjAwNEI0REM2OTU2QTk5NjVGNTAwMDYzMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1kLeMgIs+rlZhjoe6r9lELN2r8Pxch/uw17QauH+EnIKu5Yhm +StTsy8zUoVa/DQ8seQ/wiFiDYukZz1DQgBz4VdDJDjjdj1ZQQBOgH/mpcbme8wg cgl2t1lcQNO+CWP4Em8MEL7sq/CIhI5v9odkzPwO8YXrwnrCL/uA9lsqJYYU7AfL 5Smus4l/JHRrqbpmtZ8DtgNnNTwKQkwHekU4yDA6P39dgQFr3km5UQYsMe/MLHsx Lo4LPNHintZLtcpsClTXYWX+WutKw+mBX+Z2drHl0xK1flwvJh3/PidzdFyKylZz 8tNoTv9gmrM+A7luRHcJ1F64gtDN4mBDMHdBAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQU12Ly/UYwtGAEtNxpVqmWX1AAYzcwHwYDVR0jBBgwFoAUbKW4t+CigcRnJiJG 3wyFnfX4fx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC9i S1c0dC1DaWdjUm5KaUpHM3d5Rm5mWDRmeDguY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2JLVzR0LUNpZ2NSbkppSkczd3lGbmZYNGZ4OC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvYktXNHQtQ2lnY1JuSmlKRzN3eUZu Zlg0Zng4Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAG0D3dKu anHJkRgDXblhwnVh11XK2U19wvKKZMDj+YFCGLUXtL4Os5vKvXtpLbQnEeOK5C02 JwRDpX4NRyFh0+Vpy6pNZGdaP0mOAAJ8rUyTIAqqMxfDIfVgnLEMZ6DCbohsZ/e4 KRrH/hyOJRmxMX9rac+yloktEOHXE5za6u1pRJ6N+fNcfSBw4LRozxaIKCkxFmKG B6aHTzSMp8aJqkj2WNrVhMSdM0Vsnz9X7ezOvFe45DAsBCn0LIpjx2B8btlU84j9 aRpZewiimpwitUFDlM1OJHd/UwsuycWrnsi3VeBPmkA9Pg8eH1xm20raJ8l9Fdqo tfCKYS+DOGktugI= -----END CERTIFICATE-----Generated at Thu Sep 18 03:27:05 2025 by rpki-client