$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft File: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft (raw, json) Hash identifier: yUxEcISjcmGe8ld9yHebiq6aq9AMfHOMx0eMyYxOt3A= Subject key identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Certificate serial: 0298 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft Manifest number: 028B Signing time: Sat 25 Oct 2025 21:56:11 +0000 Manifest this update: Sat 25 Oct 2025 21:56:11 +0000 Manifest next update: Mon 27 Oct 2025 21:56:11 +0000 Files and hashes: 1: frZLp6Fgbt0DRxm9lfre-B7vNG4.roa (hash: Rs2IdH85RiwC1j3ouzrHgnOxmKbOjg7he//GmCo/Dxw=) 2: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl (hash: k3D9GWQEW+4FGdG2zUXIWn+r7EzA9smcW6iy43IX1LU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Validity Not Before: Oct 25 21:56:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9949C49DC8645CE600E8EA0C244876200B49A9EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ee:2c:7a:82:9e:91:78:70:e1:03:aa:dd:65: 79:37:3d:ca:eb:0d:6d:44:73:0b:2e:d6:d9:94:d6: 4a:2c:b9:2b:af:3c:c5:bc:3c:f5:0e:4f:74:a8:18: 06:2c:cb:4e:9c:85:f5:ae:22:b6:69:93:be:92:03: 6a:9c:b0:d4:ff:0a:47:2c:32:d2:81:b5:24:ee:b1: 49:88:5c:65:30:1f:37:b5:1f:c7:39:2f:d8:f5:75: 93:c6:33:af:54:d6:24:e3:79:79:9c:5d:5d:1d:65: 66:4d:6c:ff:d9:d0:56:ee:45:4c:3a:80:c4:06:2c: b3:0e:a0:fe:69:29:db:46:f1:d1:1d:4f:e7:20:84: 0a:6c:a3:55:11:64:f3:8b:e8:1d:cd:26:bb:0f:d9: 9d:7c:78:30:55:fb:e1:05:f4:a3:36:c7:e7:62:1f: d6:4d:47:b6:99:7c:7c:8d:e4:1d:31:99:76:94:c5: 3f:57:0f:d3:1c:02:c9:31:53:6e:0b:81:e5:38:23: f1:54:cf:d3:3c:75:b1:36:07:28:96:63:57:fa:21: ba:1b:08:0e:4c:92:ba:c9:d1:2d:75:6a:95:8f:24: aa:b5:00:a7:85:07:22:0d:b6:ea:58:bb:80:fc:ce: 1e:97:8b:a8:72:1a:ea:a2:8c:b5:cb:4b:88:c0:4b: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA X509v3 Authority Key Identifier: keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:3c:28:c7:fa:aa:98:a5:09:84:f2:67:92:9c:9e:f9:0d:a7: ec:ae:09:7b:cd:d6:d5:2a:a3:ba:3c:44:f6:75:df:1a:68:7e: 8e:4d:fd:64:23:6a:76:ba:d8:48:76:8b:5e:3d:0f:c9:71:79: 9a:a2:b9:e3:ee:db:18:e7:0d:97:81:b1:9b:76:43:af:47:b0: ed:67:f1:f1:d9:45:b3:79:12:ed:4f:45:bf:87:32:18:5a:14: 25:21:06:bf:b3:f2:61:db:12:80:9f:8d:eb:2e:f5:04:b7:bf: a6:bd:21:0f:56:4a:dc:7e:9d:d2:04:84:af:db:b5:82:9b:ed: 65:89:a4:2d:a8:6c:e5:c8:8b:88:14:f3:52:5d:6b:39:45:37: 5a:15:0f:71:23:39:83:e1:e5:42:04:38:d8:0a:24:9b:e7:28: 5f:bf:d6:55:f6:b0:6a:d7:f5:59:b7:78:6f:01:89:fe:02:31: b3:f9:f4:bc:66:9c:c6:db:7d:62:8c:25:61:19:90:1c:00:f4: 12:dc:99:ce:5e:ec:3f:0d:a5:8c:e7:35:7b:1d:6d:9f:52:15: 19:ee:57:03:56:a6:47:08:89:e5:b5:55:89:e4:44:3d:29:8a: 75:27:72:36:50:36:ea:11:be:d2:88:e1:54:6b:06:26:63:c4: 81:bf:be:0c -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICApgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNB Q0ZDNDY2MDlDMTY0OUFCNDYxNkQyMEQ2NEM5RDE1RDgzNEM2NDAeFw0yNTEwMjUy MTU2MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk5NDlDNDlEQzg2NDVD RTYwMEU4RUEwQzI0NDg3NjIwMEI0OUE5RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt7ix6gp6ReHDhA6rdZXk3PcrrDW1Ecwsu1tmU1kosuSuvPMW8 PPUOT3SoGAYsy06chfWuIrZpk76SA2qcsNT/CkcsMtKBtSTusUmIXGUwHze1H8c5 L9j1dZPGM69U1iTjeXmcXV0dZWZNbP/Z0FbuRUw6gMQGLLMOoP5pKdtG8dEdT+cg hApso1URZPOL6B3NJrsP2Z18eDBV++EF9KM2x+diH9ZNR7aZfHyN5B0xmXaUxT9X D9McAskxU24LgeU4I/FUz9M8dbE2ByiWY1f6IbobCA5MkrrJ0S11apWPJKq1AKeF ByINtupYu4D8zh6Xi6hyGuqijLXLS4jASzLDAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUmUnEnchkXOYA6OoMJEh2IAtJqeowHwYDVR0jBBgwFoAUg6z8RmCcFkmrRhbS DWTJ0V2DTGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2 ejhSbUNjRmttclJoYlNEV1RKMFYyRFRHUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZzZ6OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2ejhSbUNjRmttclJoYlNEV1RKMFYy RFRHUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBKPCjH+qqY pQmE8meSnJ75Dafsrgl7zdbVKqO6PET2dd8aaH6OTf1kI2p2uthIdotePQ/JcXma ornj7tsY5w2XgbGbdkOvR7DtZ/Hx2UWzeRLtT0W/hzIYWhQlIQa/s/Jh2xKAn43r LvUEt7+mvSEPVkrcfp3SBISv27WCm+1liaQtqGzlyIuIFPNSXWs5RTdaFQ9xIzmD 4eVCBDjYCiSb5yhfv9ZV9rBq1/VZt3hvAYn+AjGz+fS8ZpzG231ijCVhGZAcAPQS 3JnOXuw/DaWM5zV7HW2fUhUZ7lcDVqZHCInltVWJ5EQ9KYp1J3I2UDbqEb7SiOFU awYmY8SBv74M -----END CERTIFICATE-----Generated at Sun Oct 26 06:18:59 2025 by rpki-client