$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft File: mgzAu2MdFRMQI4SQg9lBotvN-mU.mft (raw, json) Hash identifier: yRz0RRdOWOC5GYPaIAFEKgDeGQKRtleZQgLhcHdV+5k= Subject key identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 Authority key identifier: 9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 Certificate issuer: /CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Certificate serial: 0390 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft Manifest number: 038C Signing time: Fri 24 Oct 2025 15:55:59 +0000 Manifest this update: Fri 24 Oct 2025 15:55:59 +0000 Manifest next update: Sun 26 Oct 2025 15:55:59 +0000 Files and hashes: 1: XPrM1LaVIbQwT7rMMnAaLDmpBhk.roa (hash: qYPJ4Rx3jWotbSaxl5ragkrBL0zTcKpqWVCvoBptGRQ=) 2: mgzAu2MdFRMQI4SQg9lBotvN-mU.crl (hash: 7cFnJTtcBVEsxKo8gXgTdvSeBcVUAfBR6RVuQKie/R8=) 3: xTExfB0jOCFW_HvSExDO--zZxeQ.roa (hash: wn+mu83zqWZqHj4dYPxNAS1yFnh8c3TSnFKAeF+06b0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Validity Not Before: Oct 24 15:55:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4A4DF4813E4B7F8C3224F41D669928169DE43AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:59:b7:a6:ee:5f:12:2a:71:4d:a5:03:68: 47:9b:ee:30:cf:46:7a:73:f7:10:93:10:f1:ee:d7: f5:c6:e4:e7:8b:cb:10:07:0b:7f:92:c1:fb:7e:d2: 91:62:a6:10:6d:f9:de:03:ce:88:d1:6a:82:55:5f: 4d:60:a4:12:8e:1f:49:be:05:89:52:d8:f3:10:bb: 4f:4b:92:0a:8d:c1:10:c8:64:b0:5e:e9:01:df:c8: 62:2f:d4:5b:9d:41:fe:e3:2b:36:19:28:f6:e2:ae: 26:a0:52:8c:9e:30:e1:90:7d:5e:68:27:29:91:cc: 6a:d6:5d:34:59:6d:1c:7d:e9:2f:d9:8b:44:2e:4e: c3:50:9b:97:87:66:d4:11:eb:f1:c8:fa:91:af:e7: 06:e5:af:cf:11:c2:03:e2:4c:09:6d:01:0a:cd:12: ee:3e:04:5b:97:46:44:d4:39:93:54:b2:0d:9b:6e: 0d:14:9d:94:26:3f:80:97:74:21:88:1a:ec:bd:13: 5c:a2:a5:26:5e:a5:60:c8:97:3f:6d:d5:46:2d:f0: d8:4a:e4:e2:70:ed:51:8e:e2:67:b8:80:cc:00:bc: 2f:d6:0b:4a:96:37:63:26:a6:4e:b5:c2:83:29:93: e1:ca:d2:44:55:5c:32:03:b3:71:ae:b1:45:67:43: 95:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 X509v3 Authority Key Identifier: keyid:9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:3e:5a:29:82:f1:b6:b5:ef:49:a4:13:c8:c0:d6:21:79:ae: 53:6d:30:a1:51:06:ca:36:b4:65:67:2d:18:50:78:98:f8:c5: 02:91:e4:17:b8:be:6b:6d:5f:e2:d4:fb:61:6d:fe:4a:41:91: 54:e5:eb:ff:c9:63:49:90:0b:3b:71:6e:5e:8d:0a:4b:6d:93: be:0d:84:52:fa:70:05:4a:48:67:90:0a:c2:51:22:35:7b:1e: 1c:17:e4:a0:95:c3:f1:d7:d8:93:59:0a:c4:91:e5:4f:0d:1c: ee:d4:d5:4e:1e:c2:32:28:4d:39:ae:c6:93:af:32:7a:2b:6f: 2c:76:61:f7:eb:b0:84:d3:fe:3b:43:72:9f:76:54:75:87:fa: b0:e3:8b:44:43:e1:77:06:67:a5:08:8f:43:65:95:fc:0f:3d: 0f:ec:79:0d:06:bc:4e:91:af:eb:2d:e6:db:af:5d:22:59:6b: dc:3f:25:86:69:71:03:ed:fb:77:18:12:81:2c:4a:8b:35:d5: 0b:a0:75:55:f0:41:f8:d5:5d:d5:2b:94:f1:fb:df:4c:4d:1d: c1:e1:45:5a:46:20:22:fa:de:b6:17:81:38:32:5f:94:c1:1c: aa:82:de:69:3b:d3:6d:b6:14:95:c4:03:69:11:f2:5e:dd:ab: 02:b7:6d:2e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEw Q0MwQkI2MzFEMTUxMzEwMjM4NDkwODNEOTQxQTJEQkNERkE2NTAeFw0yNTEwMjQx NTU1NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRBNERGNDgxM0U0QjdG OEMzMjI0RjQxRDY2OTkyODE2OURFNDNBQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKIFm3pu5fEipxTaUDaEeb7jDPRnpz9xCTEPHu1/XG5OeLyxAH C3+Swft+0pFiphBt+d4DzojRaoJVX01gpBKOH0m+BYlS2PMQu09LkgqNwRDIZLBe 6QHfyGIv1FudQf7jKzYZKPbiriagUoyeMOGQfV5oJymRzGrWXTRZbRx96S/Zi0Qu TsNQm5eHZtQR6/HI+pGv5wblr88RwgPiTAltAQrNEu4+BFuXRkTUOZNUsg2bbg0U nZQmP4CXdCGIGuy9E1yipSZepWDIlz9t1UYt8NhK5OJw7VGO4me4gMwAvC/WC0qW N2Mmpk61woMpk+HK0kRVXDIDs3GusUVnQ5VrAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUSk30gT5Lf4wyJPQdZpkoFp3kOrEwHwYDVR0jBBgwFoAUmgzAu2MdFRMQI4SQ g9lBotvN+mUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1ZS0wv bWd6QXUyTWRGUk1RSTRTUWc5bEJvdHZOLW1VLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9tZ3pBdTJNZEZSTVFJNFNRZzlsQm90dk4tbVUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTVlLTC9tZ3pBdTJNZEZSTVFJNFNRZzls Qm90dk4tbVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXj5a KYLxtrXvSaQTyMDWIXmuU20woVEGyja0ZWctGFB4mPjFApHkF7i+a21f4tT7YW3+ SkGRVOXr/8ljSZALO3FuXo0KS22Tvg2EUvpwBUpIZ5AKwlEiNXseHBfkoJXD8dfY k1kKxJHlTw0c7tTVTh7CMihNOa7Gk68yeitvLHZh9+uwhNP+O0Nyn3ZUdYf6sOOL REPhdwZnpQiPQ2WV/A89D+x5DQa8TpGv6y3m269dIllr3D8lhmlxA+37dxgSgSxK izXVC6B1VfBB+NVd1SuU8fvfTE0dweFFWkYgIvretheBODJflMEcqoLeaTvTbbYU lcQDaRHyXt2rArdtLg== -----END CERTIFICATE-----Generated at Sat Oct 25 22:11:56 2025 by rpki-client