$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft File: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft (raw, json) Hash identifier: pJGgAPIr6xY5JXdI49evUr9Mi8juch3mh/hJdGoZFW8= Subject key identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Certificate serial: 0278 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft Manifest number: 026B Signing time: Sun 07 Sep 2025 21:16:56 +0000 Manifest this update: Sun 07 Sep 2025 21:16:56 +0000 Manifest next update: Tue 09 Sep 2025 21:16:56 +0000 Files and hashes: 1: frZLp6Fgbt0DRxm9lfre-B7vNG4.roa (hash: Rs2IdH85RiwC1j3ouzrHgnOxmKbOjg7he//GmCo/Dxw=) 2: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl (hash: IC2icyqp/IlVp261pgrpn2zg3iWnBAWKlLoAl41lBlQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 10:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Validity Not Before: Sep 7 21:16:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9949C49DC8645CE600E8EA0C244876200B49A9EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ee:2c:7a:82:9e:91:78:70:e1:03:aa:dd:65: 79:37:3d:ca:eb:0d:6d:44:73:0b:2e:d6:d9:94:d6: 4a:2c:b9:2b:af:3c:c5:bc:3c:f5:0e:4f:74:a8:18: 06:2c:cb:4e:9c:85:f5:ae:22:b6:69:93:be:92:03: 6a:9c:b0:d4:ff:0a:47:2c:32:d2:81:b5:24:ee:b1: 49:88:5c:65:30:1f:37:b5:1f:c7:39:2f:d8:f5:75: 93:c6:33:af:54:d6:24:e3:79:79:9c:5d:5d:1d:65: 66:4d:6c:ff:d9:d0:56:ee:45:4c:3a:80:c4:06:2c: b3:0e:a0:fe:69:29:db:46:f1:d1:1d:4f:e7:20:84: 0a:6c:a3:55:11:64:f3:8b:e8:1d:cd:26:bb:0f:d9: 9d:7c:78:30:55:fb:e1:05:f4:a3:36:c7:e7:62:1f: d6:4d:47:b6:99:7c:7c:8d:e4:1d:31:99:76:94:c5: 3f:57:0f:d3:1c:02:c9:31:53:6e:0b:81:e5:38:23: f1:54:cf:d3:3c:75:b1:36:07:28:96:63:57:fa:21: ba:1b:08:0e:4c:92:ba:c9:d1:2d:75:6a:95:8f:24: aa:b5:00:a7:85:07:22:0d:b6:ea:58:bb:80:fc:ce: 1e:97:8b:a8:72:1a:ea:a2:8c:b5:cb:4b:88:c0:4b: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA X509v3 Authority Key Identifier: keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:28:f4:95:9f:78:3e:b2:48:22:a0:96:69:3b:86:c5:79:64: 23:7d:dc:52:4b:89:42:a3:81:b4:4c:f2:f5:c2:88:88:c2:d1: 23:32:87:f2:e7:27:4a:d9:2c:00:3b:67:47:8a:e4:fc:2c:49: c2:69:30:69:f7:f5:5a:c5:51:67:9a:d3:fd:6d:b3:0b:ad:8d: 97:1f:29:30:57:81:22:74:cb:1f:a0:7c:36:a6:92:8c:c1:80: 8f:59:a1:0a:bf:39:e6:83:71:db:73:bb:73:d0:72:63:34:e1: f6:1c:5e:a5:3c:be:67:43:2c:bd:ba:40:04:c0:ab:00:56:9b: e9:3c:05:2a:7f:c8:fc:ee:0a:ee:7f:23:1e:5a:54:22:ee:0a: 87:b9:de:73:4f:02:05:fd:d1:83:b0:16:8d:2e:f6:96:ba:cc: 26:7b:a3:6e:eb:8e:7b:e5:5f:f6:0b:62:04:8a:2b:7a:f5:68: 7f:df:09:13:64:33:e5:c7:d0:60:0d:d7:05:aa:a1:d1:9a:66: d2:e7:48:66:60:2d:19:fe:7e:fd:25:21:51:2c:dd:2b:1b:03: 59:f9:fe:62:0c:11:9a:97:c8:4d:10:d0:f1:00:38:b5:2c:b2: 16:04:9f:bf:bb:38:19:23:53:2b:dc:d9:39:15:e6:04:a7:8b: 48:62:9d:e9 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAngwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNB Q0ZDNDY2MDlDMTY0OUFCNDYxNkQyMEQ2NEM5RDE1RDgzNEM2NDAeFw0yNTA5MDcy MTE2NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk5NDlDNDlEQzg2NDVD RTYwMEU4RUEwQzI0NDg3NjIwMEI0OUE5RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt7ix6gp6ReHDhA6rdZXk3PcrrDW1Ecwsu1tmU1kosuSuvPMW8 PPUOT3SoGAYsy06chfWuIrZpk76SA2qcsNT/CkcsMtKBtSTusUmIXGUwHze1H8c5 L9j1dZPGM69U1iTjeXmcXV0dZWZNbP/Z0FbuRUw6gMQGLLMOoP5pKdtG8dEdT+cg hApso1URZPOL6B3NJrsP2Z18eDBV++EF9KM2x+diH9ZNR7aZfHyN5B0xmXaUxT9X D9McAskxU24LgeU4I/FUz9M8dbE2ByiWY1f6IbobCA5MkrrJ0S11apWPJKq1AKeF ByINtupYu4D8zh6Xi6hyGuqijLXLS4jASzLDAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUmUnEnchkXOYA6OoMJEh2IAtJqeowHwYDVR0jBBgwFoAUg6z8RmCcFkmrRhbS DWTJ0V2DTGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2 ejhSbUNjRmttclJoYlNEV1RKMFYyRFRHUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZzZ6OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2ejhSbUNjRmttclJoYlNEV1RKMFYy RFRHUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDLKPSVn3g+ skgioJZpO4bFeWQjfdxSS4lCo4G0TPL1woiIwtEjMofy5ydK2SwAO2dHiuT8LEnC aTBp9/VaxVFnmtP9bbMLrY2XHykwV4EidMsfoHw2ppKMwYCPWaEKvznmg3Hbc7tz 0HJjNOH2HF6lPL5nQyy9ukAEwKsAVpvpPAUqf8j87grufyMeWlQi7gqHud5zTwIF /dGDsBaNLvaWuswme6Nu64575V/2C2IEiit69Wh/3wkTZDPlx9BgDdcFqqHRmmbS 50hmYC0Z/n79JSFRLN0rGwNZ+f5iDBGal8hNENDxADi1LLIWBJ+/uzgZI1Mr3Nk5 FeYEp4tIYp3p -----END CERTIFICATE-----Generated at Tue Sep 9 07:53:29 2025 by rpki-client