$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft File: YCy84y3XbQuzn1pwYyQkiGkRlDU.mft (raw, json) Hash identifier: KjzUg8RHsktp0Czn69tdwugMBP2yapVm9zFMMNIha3c= Subject key identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0D95 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft Manifest number: 0D7F Signing time: Tue 16 Sep 2025 21:17:40 +0000 Manifest this update: Tue 16 Sep 2025 21:17:40 +0000 Manifest next update: Thu 18 Sep 2025 21:17:40 +0000 Files and hashes: 1: J1Kkf5M-Pk2qWrt-8ayVZXulJF0.roa (hash: DKY0Q3gg3AlMHdmLc5Jl5+Ubod6LpzjwBfR3WohFirk=) 2: YCy84y3XbQuzn1pwYyQkiGkRlDU.crl (hash: /VBxXZnV61rY4ohBM6h1DmvXKsqM65KStvmK2m6yX8I=) 3: t8HBcv2u7CUmOL6RdPtpC0MG24M.roa (hash: 2TE/1Y16dI6YeJi2lK6nwLpfuBlrvhL3hTcOOgg7mDg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3477 (0xd95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: Sep 16 21:17:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1E2B4BA29E533234E960934A1548A8BA60A2BC2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ea:e8:4b:58:f6:93:80:b3:4d:d0:4f:69:02: 6c:fa:fe:5f:d2:1f:20:a8:9f:9c:82:39:94:72:9e: 26:47:d2:77:6a:16:b1:df:f5:45:72:03:50:2d:1e: e7:23:0e:08:3f:b2:f1:2d:c6:05:5c:82:5f:35:5e: 67:bc:c9:47:16:37:1a:77:d4:50:89:64:70:fd:17: 68:27:25:a2:a3:f7:2b:79:60:9a:b5:f6:e6:5d:a7: 83:17:52:b5:7e:fb:23:95:9e:10:fc:80:91:47:f1: ab:2c:e4:27:9a:0a:1e:e1:67:58:cb:ac:1c:60:b3: 2a:f5:ed:9a:e6:0f:14:c7:94:81:cd:82:20:48:0f: 0c:b3:0b:45:d3:18:12:2e:26:11:e1:61:f4:2e:92: c5:4d:fa:6f:8e:9a:0f:10:c0:3b:99:db:59:03:5b: b2:a5:47:71:78:1f:e3:75:23:0e:35:f1:87:f5:06: f7:98:fa:35:c1:5b:67:30:8f:1b:89:75:75:a3:85: bc:f1:9c:1b:ac:e1:3f:a7:1f:1a:9a:ec:f6:e7:87: fe:0e:e2:68:a4:ab:e1:ac:97:69:f1:36:0d:7c:ca: df:c5:67:ac:90:81:78:7c:a6:56:c9:f0:ad:0d:8d: af:61:4a:cf:08:79:aa:62:cd:d0:06:8b:f6:c3:a0: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:a4:71:e1:f2:a8:af:f6:b6:52:05:dc:57:e6:e9:07:6d:33: fc:2a:17:78:d4:03:2b:2e:46:d3:6c:59:27:04:96:7d:5b:8e: c2:4d:12:c6:02:e8:c0:d0:a4:4f:bc:1b:04:27:99:11:c2:37: c7:2f:a4:ee:fc:81:c4:a4:3b:63:87:30:46:1f:68:4d:2e:16: 15:1a:b5:b7:6e:6d:5e:a9:0c:1d:58:b6:8c:06:5a:1a:6d:ed: 6b:c0:cd:33:f5:05:f0:97:f1:85:85:f5:3a:65:8f:37:a9:50: c0:4e:47:d4:aa:78:e7:48:86:e4:7f:42:a1:b4:4f:83:7f:f3: c0:12:ca:e9:2b:b0:69:56:02:82:1a:77:e9:38:51:30:8d:ec: 24:3b:56:5f:24:64:ef:07:ff:ca:45:8e:a2:1c:29:5e:60:3b: 9f:ed:10:3a:8a:72:b3:28:ab:ab:ec:ed:a3:c2:21:e7:20:ba: 71:d1:9a:aa:70:33:9c:c0:0a:71:4a:7e:b5:b8:64:f1:1b:83: f1:a0:8d:9f:93:e0:52:92:0d:09:9a:02:5d:62:a4:9e:ff:7a: ec:53:ee:aa:fe:0a:f7:6d:c1:ae:da:a1:a0:76:a4:8e:2e:43: 29:bb:10:08:7e:51:e9:dc:5a:c3:c3:e2:3d:bf:8f:ac:9f:5d: 85:e4:0f:02 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNTA5MTYy MTE3NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFMkI0QkEyOUU1MzMy MzRFOTYwOTM0QTE1NDhBOEJBNjBBMkJDMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh6uhLWPaTgLNN0E9pAmz6/l/SHyCon5yCOZRyniZH0ndqFrHf 9UVyA1AtHucjDgg/svEtxgVcgl81Xme8yUcWNxp31FCJZHD9F2gnJaKj9yt5YJq1 9uZdp4MXUrV++yOVnhD8gJFH8ass5CeaCh7hZ1jLrBxgsyr17ZrmDxTHlIHNgiBI DwyzC0XTGBIuJhHhYfQuksVN+m+Omg8QwDuZ21kDW7KlR3F4H+N1Iw418Yf1BveY +jXBW2cwjxuJdXWjhbzxnBus4T+nHxqa7Pbnh/4O4mikq+Gsl2nxNg18yt/FZ6yQ gXh8plbJ8K0Nja9hSs8IeapizdAGi/bDoMnlAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUHitLop5TMjTpYJNKFUioumCivC8wHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy9ZQ3k4NHkzWGJRdXpu MXB3WXlRa2lHa1JsRFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgaRx4fKor/a2UgXcV+bpB20z/CoXeNQDKy5G02xZJwSWfVuOwk0SxgLowNCk T7wbBCeZEcI3xy+k7vyBxKQ7Y4cwRh9oTS4WFRq1t25tXqkMHVi2jAZaGm3ta8DN M/UF8JfxhYX1OmWPN6lQwE5H1Kp450iG5H9CobRPg3/zwBLK6SuwaVYCghp36ThR MI3sJDtWXyRk7wf/ykWOohwpXmA7n+0QOopysyirq+zto8Ih5yC6cdGaqnAznMAK cUp+tbhk8RuD8aCNn5PgUpINCZoCXWKknv967FPuqv4K923BrtqhoHakji5DKbsQ CH5R6dxaw8PiPb+PrJ9dheQPAg== -----END CERTIFICATE-----Generated at Wed Sep 17 23:29:19 2025 by rpki-client