$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft File: mgzAu2MdFRMQI4SQg9lBotvN-mU.mft (raw, json) Hash identifier: EhjVu4G7VdN3u07fXhr+g8w8zgWbvlGCBJ66YE4edxY= Subject key identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 Authority key identifier: 9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 Certificate issuer: /CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Certificate serial: 036E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft Manifest number: 036C Signing time: Sun 07 Sep 2025 21:17:26 +0000 Manifest this update: Sun 07 Sep 2025 21:17:26 +0000 Manifest next update: Tue 09 Sep 2025 21:17:26 +0000 Files and hashes: 1: 01RQUEtFxMGHJVeUpTMd0UhYN1M.roa (hash: Q248vq37R80V0s3lK2JE3RRZSna/szE1CSMMYO7a8OA=) 2: mgzAu2MdFRMQI4SQg9lBotvN-mU.crl (hash: 3XhofjPDNWxhbrWJ9TMr/458KWykLEDsCMQ4MXg41lo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 09:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 878 (0x36e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Validity Not Before: Sep 7 21:17:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4A4DF4813E4B7F8C3224F41D669928169DE43AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:59:b7:a6:ee:5f:12:2a:71:4d:a5:03:68: 47:9b:ee:30:cf:46:7a:73:f7:10:93:10:f1:ee:d7: f5:c6:e4:e7:8b:cb:10:07:0b:7f:92:c1:fb:7e:d2: 91:62:a6:10:6d:f9:de:03:ce:88:d1:6a:82:55:5f: 4d:60:a4:12:8e:1f:49:be:05:89:52:d8:f3:10:bb: 4f:4b:92:0a:8d:c1:10:c8:64:b0:5e:e9:01:df:c8: 62:2f:d4:5b:9d:41:fe:e3:2b:36:19:28:f6:e2:ae: 26:a0:52:8c:9e:30:e1:90:7d:5e:68:27:29:91:cc: 6a:d6:5d:34:59:6d:1c:7d:e9:2f:d9:8b:44:2e:4e: c3:50:9b:97:87:66:d4:11:eb:f1:c8:fa:91:af:e7: 06:e5:af:cf:11:c2:03:e2:4c:09:6d:01:0a:cd:12: ee:3e:04:5b:97:46:44:d4:39:93:54:b2:0d:9b:6e: 0d:14:9d:94:26:3f:80:97:74:21:88:1a:ec:bd:13: 5c:a2:a5:26:5e:a5:60:c8:97:3f:6d:d5:46:2d:f0: d8:4a:e4:e2:70:ed:51:8e:e2:67:b8:80:cc:00:bc: 2f:d6:0b:4a:96:37:63:26:a6:4e:b5:c2:83:29:93: e1:ca:d2:44:55:5c:32:03:b3:71:ae:b1:45:67:43: 95:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 X509v3 Authority Key Identifier: keyid:9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:94:23:f2:ef:e7:71:06:09:fd:3b:bc:34:3e:ab:8e:83:7e: c4:96:9e:54:cc:f2:0b:58:a1:cc:80:ce:25:fa:4c:6c:59:35: 4b:9c:ef:7e:5c:71:85:d7:ce:1f:bd:c0:6e:e4:1e:88:af:fe: 99:22:b7:eb:ca:33:95:a1:bb:39:3d:89:c3:65:cd:b9:e8:23: e5:a6:96:65:96:e3:72:1d:52:52:06:70:f4:db:2d:4b:84:d3: 6e:ba:c3:fe:b8:c8:fb:5b:a8:ae:14:c6:6a:ff:0e:f9:78:c1: ae:f0:06:c1:77:27:93:5e:d5:80:2f:da:21:f2:c1:59:91:0a: ab:c9:58:76:fb:df:84:63:94:53:cc:72:bd:a4:a9:2a:75:4b: ce:f0:32:85:d1:a8:15:02:84:4d:f5:db:ca:63:a0:d7:85:97: 30:7e:3f:c8:52:b1:b9:7c:13:86:2c:75:3e:22:77:78:d8:3f: 82:4f:df:a3:34:b3:85:b2:60:0a:5f:1e:14:d1:9a:7a:47:51: 17:1f:06:5b:c3:f6:d9:5e:a3:d3:42:9a:ff:51:45:e8:d3:84: 21:16:c9:4b:50:bb:2e:64:41:19:c0:6b:fc:7e:09:aa:71:c5: 6c:7c:92:e7:60:2f:d0:3c:0f:fd:b5:ac:64:49:73:09:b9:1b: 76:12:75:dc -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICA24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEw Q0MwQkI2MzFEMTUxMzEwMjM4NDkwODNEOTQxQTJEQkNERkE2NTAeFw0yNTA5MDcy MTE3MjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRBNERGNDgxM0U0QjdG OEMzMjI0RjQxRDY2OTkyODE2OURFNDNBQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKIFm3pu5fEipxTaUDaEeb7jDPRnpz9xCTEPHu1/XG5OeLyxAH C3+Swft+0pFiphBt+d4DzojRaoJVX01gpBKOH0m+BYlS2PMQu09LkgqNwRDIZLBe 6QHfyGIv1FudQf7jKzYZKPbiriagUoyeMOGQfV5oJymRzGrWXTRZbRx96S/Zi0Qu TsNQm5eHZtQR6/HI+pGv5wblr88RwgPiTAltAQrNEu4+BFuXRkTUOZNUsg2bbg0U nZQmP4CXdCGIGuy9E1yipSZepWDIlz9t1UYt8NhK5OJw7VGO4me4gMwAvC/WC0qW N2Mmpk61woMpk+HK0kRVXDIDs3GusUVnQ5VrAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUSk30gT5Lf4wyJPQdZpkoFp3kOrEwHwYDVR0jBBgwFoAUmgzAu2MdFRMQI4SQ g9lBotvN+mUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1ZS0wv bWd6QXUyTWRGUk1RSTRTUWc5bEJvdHZOLW1VLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9tZ3pBdTJNZEZSTVFJNFNRZzlsQm90dk4tbVUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTVlLTC9tZ3pBdTJNZEZSTVFJNFNRZzls Qm90dk4tbVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqpQj 8u/ncQYJ/Tu8ND6rjoN+xJaeVMzyC1ihzIDOJfpMbFk1S5zvflxxhdfOH73AbuQe iK/+mSK368ozlaG7OT2Jw2XNuegj5aaWZZbjch1SUgZw9NstS4TTbrrD/rjI+1uo rhTGav8O+XjBrvAGwXcnk17VgC/aIfLBWZEKq8lYdvvfhGOUU8xyvaSpKnVLzvAy hdGoFQKETfXbymOg14WXMH4/yFKxuXwThix1PiJ3eNg/gk/fozSzhbJgCl8eFNGa ekdRFx8GW8P22V6j00Ka/1FF6NOEIRbJS1C7LmRBGcBr/H4JqnHFbHyS52Av0DwP /bWsZElzCbkbdhJ13A== -----END CERTIFICATE-----Generated at Mon Sep 8 08:39:55 2025 by rpki-client