$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft File: UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft (raw, json) Hash identifier: +TOUoTsuJ6NzMWYaMSl0V9HNiPzF0FcIQJVUSG4/vj8= Subject key identifier: EF:E6:B7:BE:95:BF:C8:8D:48:DE:06:3C:6F:83:94:6B:4D:16:3A:22 Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Certificate serial: 0362 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft Manifest number: 0359 Signing time: Thu 18 Sep 2025 09:19:24 +0000 Manifest this update: Thu 18 Sep 2025 09:19:24 +0000 Manifest next update: Sat 20 Sep 2025 09:19:24 +0000 Files and hashes: 1: 2E_1DhdgHhK60wsJ76yqfKxAzyE.roa (hash: PwAsDZMMHxBexgsoulbx2oPmiHPkrjz5HWZGix+rMb4=) 2: Le5Nsz9BGcOUJgtf2irGzpKAuC8.roa (hash: R9mLT+81nuJ4kxeqsIAavXgR87wIPfWUTb98vhKuVME=) 3: R8gaY7de0XFBlkhAgnTGvLRkrgc.roa (hash: C6kKNBP8wOaAz4rcHQqPY/GsyJs4qtwvAKcgGEjPCFE=) 4: UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl (hash: tuKYgrqRG+MxVa1oLxKaJA9ymXVbsKwkA16wQGAIvL8=) 5: kmHUxkMGXApzr5n-GYFL4wOfbUc.roa (hash: BB3L0SZQR2g5bpxLdOCsB/NPCLJ880QrSWw3P96XgKM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Sep 2025 01:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Validity Not Before: Sep 18 09:19:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EFE6B7BE95BFC88D48DE063C6F83946B4D163A22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:91:6b:48:27:a0:e7:c3:2c:f4:20:42:d2:80: 22:4d:f5:e2:27:60:d2:01:69:2e:88:69:9a:d9:4d: 15:64:fc:58:04:6e:69:c3:24:e9:24:d0:dc:e6:c2: 6e:97:1d:2a:69:a7:bd:ff:55:1a:d1:da:97:11:35: d6:2f:7c:69:82:63:e3:54:be:c1:39:8a:40:cd:39: ae:66:61:d5:6c:65:26:d9:e1:9c:00:ab:cd:a0:e0: be:a9:2c:c5:13:31:83:a8:0b:30:4a:73:66:34:80: 68:7b:7d:f3:6f:8f:79:db:44:5a:38:6f:1c:a9:23: 75:f5:e2:19:2c:70:16:b1:22:c1:e9:56:a2:b8:ad: ac:3c:94:a7:b0:15:32:13:f8:af:07:c1:ed:5e:0e: d2:ee:ed:a6:e5:3a:6c:34:ef:b3:68:d0:ae:7a:ea: 81:f9:1a:ef:fe:93:29:b6:f6:1d:e3:94:da:8c:92: 9e:fd:cc:8b:da:dc:37:11:e1:8a:06:48:26:b2:f1: 5a:7b:12:bc:d2:37:bd:72:b8:26:ac:ac:7f:c3:26: 88:d5:15:f4:50:42:31:86:af:e8:6f:d2:33:85:23: 40:43:5d:d6:4d:a8:d3:80:bb:c3:45:6b:39:f1:c3: 5f:50:5a:9b:8a:67:63:cc:a6:58:db:0e:4d:43:d7: 7f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E6:B7:BE:95:BF:C8:8D:48:DE:06:3C:6F:83:94:6B:4D:16:3A:22 X509v3 Authority Key Identifier: keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a6:9c:38:9e:d4:c8:bf:f4:ff:52:df:66:10:f9:51:21:6c: 1e:0a:58:68:36:cd:c1:f0:93:3c:c8:5e:52:91:01:24:2a:3c: 02:29:5e:4b:da:52:2e:a6:61:73:20:7a:83:75:f5:b9:41:06: b7:d7:dd:1c:03:6e:e0:9d:eb:a0:ec:7d:b1:d2:be:54:bc:e3: 02:52:85:ff:56:34:9b:9a:8e:04:c0:15:7d:8d:d0:49:4e:63: b8:d7:8f:02:cf:c4:d9:43:31:fa:11:2b:fc:50:41:a5:f6:6b: a1:1b:c2:e0:f4:af:01:04:04:8d:ab:ba:0c:c8:16:a7:b7:1e: 16:ba:74:dd:f7:f6:c5:46:fe:76:cb:ef:46:40:84:8e:56:7e: 71:9a:22:af:fd:5c:55:57:50:f7:2e:da:fb:db:82:59:d8:29: c9:e5:d7:f2:ab:e5:00:25:a5:81:98:e0:ac:47:28:0c:3b:52: 0b:6d:a6:84:91:e2:2d:f6:04:ea:e8:0b:4e:31:9e:9f:6c:a9: 76:e7:51:0a:57:1f:dc:47:dd:4c:02:76:e9:8d:97:99:2b:e2: f6:32:46:15:d6:fa:38:6c:5a:69:be:c9:4b:b1:2e:7a:ff:47: 69:3a:d0:0e:bc:0c:b7:e4:45:78:d7:53:0c:16:87:60:4a:73: 6f:b5:b2:6d -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTMy MkU2MUFFOEM4REQ4OTUzRTFFNkJEQzk2QUU0ODI3QUZDRjk5MDAeFw0yNTA5MTgw OTE5MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVGRTZCN0JFOTVCRkM4 OEQ0OERFMDYzQzZGODM5NDZCNEQxNjNBMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqkWtIJ6Dnwyz0IELSgCJN9eInYNIBaS6IaZrZTRVk/FgEbmnD JOkk0Nzmwm6XHSppp73/VRrR2pcRNdYvfGmCY+NUvsE5ikDNOa5mYdVsZSbZ4ZwA q82g4L6pLMUTMYOoCzBKc2Y0gGh7ffNvj3nbRFo4bxypI3X14hkscBaxIsHpVqK4 raw8lKewFTIT+K8Hwe1eDtLu7ablOmw077No0K566oH5Gu/+kym29h3jlNqMkp79 zIva3DcR4YoGSCay8Vp7ErzSN71yuCasrH/DJojVFfRQQjGGr+hv0jOFI0BDXdZN qNOAu8NFaznxw19QWpuKZ2PMpljbDk1D13+hAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU7+a3vpW/yI1I3gY8b4OUa00WOiIwHwYDVR0jBBgwFoAUUyLmGujI3YlT4ea9 yWrkgnr8+ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v VXlMbUd1akkzWWxUNGVhOXlXcmtnbnI4LVpBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VeUxtR3VqSTNZbFQ0ZWE5eVdya2ducjgtWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9VeUxtR3VqSTNZbFQ0ZWE5eVdy a2ducjgtWkEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi6ac OJ7UyL/0/1LfZhD5USFsHgpYaDbNwfCTPMheUpEBJCo8AileS9pSLqZhcyB6g3X1 uUEGt9fdHANu4J3roOx9sdK+VLzjAlKF/1Y0m5qOBMAVfY3QSU5juNePAs/E2UMx +hEr/FBBpfZroRvC4PSvAQQEjau6DMgWp7ceFrp03ff2xUb+dsvvRkCEjlZ+cZoi r/1cVVdQ9y7a+9uCWdgpyeXX8qvlACWlgZjgrEcoDDtSC22mhJHiLfYE6ugLTjGe n2ypdudRClcf3EfdTAJ26Y2XmSvi9jJGFdb6OGxaab7JS7Euev9HaTrQDrwMt+RF eNdTDBaHYEpzb7WybQ== -----END CERTIFICATE-----Generated at Thu Sep 18 21:30:39 2025 by rpki-client