$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft File: oY6zd90DGK5GXY8_fW4K0KTp7R4.mft (raw, json) Hash identifier: buBtKzouUSE7xW4ZbrLc+y9APYOQd1aKVYVuBThBbDc= Subject key identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 100B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft Manifest number: 0FD9 Signing time: Mon 27 Oct 2025 09:57:39 +0000 Manifest this update: Mon 27 Oct 2025 09:57:39 +0000 Manifest next update: Wed 29 Oct 2025 09:57:39 +0000 Files and hashes: 1: DGCHCLoOOygF2ADsms7jOh3Egr0.roa (hash: CnEKmku8KZ6SkB2EVKr5ZqB58e6c9EHII9iHP2BKdFM=) 2: J5fNdMEhy7gHZ2JBspxnG1hNo2E.roa (hash: MUkTBc/4eIEaSmSWvFMQcd0p7JlUd0tJIJJZxfD0YMQ=) 3: JQcce5o_xVRKp_GPqeu8dqDKVO8.roa (hash: KxxHI/9wdteNmdbJX1B9yihyolKLm0Rw9xw+g1z3S1I=) 4: MWTOx1zPk-C90vuBRgn9P8nryok.roa (hash: HUbHvZZBmo10DW8MZxl3d6MDo54lA48f8BOUF9Fjg04=) 5: S6f_uIgkwij3QVlXdNoWMy-Jebo.roa (hash: kfjnV1QYZbtsi7b/Zyw9bxa1e7mztwNGJgFCawQz8+c=) 6: Z9vw8KivPQFMAW55QJxhUuZNP0M.roa (hash: Hg9mTGr7ogqg3jVLG2uu71QIvlqBWhwCI4hJ/oL8Wik=) 7: frWI7Eeslz12PC1F7Skc0fz90Fc.roa (hash: EM88IHqP4B6zsm8vOmbqDtA1QolhIApxnELHjUY7A+Y=) 8: oY6zd90DGK5GXY8_fW4K0KTp7R4.crl (hash: RI7cSlY3eGgqCvqBzis29wvqDplgZVjMR8v45z96ZlY=) 9: uCQSXy9O7rFC4HdZ8I6Qv-rLpKU.roa (hash: yYN/TniJq1UcsoCWo77ewd0NkAcyzUnSN8aWtg8WmG0=) 10: uKTaHaPjaE0A0lls-6EDyKfKzCE.roa (hash: H2AWfGJ4xNTJ9VNCNA97PnqGWDw8S7gQLAtTPw3JXKQ=) 11: z6o8lEmUSDxUseLPuAy15ybZwm8.roa (hash: eifEWLy5bDN7kvoySklvkmx/0pRbaZsQzN5+Z4s7vew=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 01:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4107 (0x100b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Oct 27 09:57:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B0FBBD3D590D48A1A30B70313F514E1E038590C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:27:d7:0b:a8:24:ea:9c:4f:c1:43:11:ca: b3:45:5d:08:03:35:03:49:a0:63:2f:7a:09:e3:80: 9c:4f:c5:61:3c:d1:62:1c:e0:93:96:bf:bb:7b:87: 5c:61:54:b9:2a:d1:73:a3:9d:2d:e9:81:14:76:05: d3:3d:00:3a:67:60:6d:b2:5a:13:2a:84:3f:cb:5e: 58:e4:7d:48:c2:d5:0f:ae:8d:99:de:65:4f:c5:6f: f7:37:21:8d:17:05:58:7a:17:eb:d9:c9:bd:d2:98: 1f:c6:60:6a:8a:e9:3c:fb:ba:0b:f2:99:2e:c5:2b: a0:5b:70:1b:de:cb:9c:39:af:ce:74:0c:93:94:e3: 31:a4:0c:77:48:7b:d9:cd:52:3f:89:88:f0:47:de: 82:9e:2e:9a:87:09:94:7f:47:62:ef:2b:f5:8d:38: 42:30:35:46:5b:62:b5:26:4e:f4:e3:d1:9d:05:e6: 81:31:69:38:05:6c:99:91:9d:2d:c4:ca:21:06:43: 14:10:1e:82:6d:0c:02:d1:1a:af:b3:92:46:31:5a: 5f:f7:5b:df:c4:a3:7a:15:11:2b:46:78:06:89:b1: b2:7a:07:d4:7b:e9:14:06:77:f6:f4:65:a1:d3:4e: 68:59:cc:85:a2:fa:f6:bd:e8:9c:3f:f0:3a:b5:8f: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:eb:4a:e9:97:ca:ee:e5:b3:41:7b:9a:69:57:d2:72:45:ef: 63:bb:cf:13:8a:cc:0d:34:70:2b:5d:d7:0b:08:71:d7:ff:51: 52:d1:c1:bd:0f:a3:69:0c:97:a3:d7:a4:a3:28:f0:83:7a:90: 4f:61:87:b1:95:33:31:bd:ec:ab:c6:f0:a6:50:5e:24:0d:39: 50:92:4c:99:c5:f5:0f:80:97:56:18:c0:4b:2b:b4:02:11:f9: a7:7a:b7:8b:6e:4a:93:26:df:aa:14:ff:b9:bc:e0:b7:69:6f: 3e:16:a7:fa:59:1f:f6:72:88:28:77:73:11:98:3e:9a:c1:f7: 25:f0:2e:a6:ee:8c:b5:14:b3:dd:d9:dd:ce:58:f4:13:ab:78: 62:b1:42:da:3d:b5:5c:7b:84:ce:50:73:45:01:0c:81:8c:21: dd:42:31:77:05:1e:4f:ce:8f:f1:98:a5:fb:a4:b2:f9:0b:d5: 4f:12:26:dd:ce:b8:88:68:e5:5c:0b:51:d4:86:2c:a0:35:2c: c3:5d:c2:9c:13:2d:d5:5b:19:ad:f5:09:3f:32:6a:cf:5f:47: 87:3f:06:d8:f8:e4:af:32:d4:3d:1e:8a:36:03:8c:e8:e4:7e: 35:fe:0f:ec:b3:1f:95:36:b3:1e:8a:89:ee:1a:3a:b6:c0:60: a4:79:28:37 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICEAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTEwMjcw OTU3MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwRkJCRDNENTkwRDQ4 QTFBMzBCNzAzMTNGNTE0RTFFMDM4NTkwQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYyfXC6gk6pxPwUMRyrNFXQgDNQNJoGMvegnjgJxPxWE80WIc 4JOWv7t7h1xhVLkq0XOjnS3pgRR2BdM9ADpnYG2yWhMqhD/LXljkfUjC1Q+ujZne ZU/Fb/c3IY0XBVh6F+vZyb3SmB/GYGqK6Tz7ugvymS7FK6BbcBvey5w5r850DJOU 4zGkDHdIe9nNUj+JiPBH3oKeLpqHCZR/R2LvK/WNOEIwNUZbYrUmTvTj0Z0F5oEx aTgFbJmRnS3EyiEGQxQQHoJtDALRGq+zkkYxWl/3W9/Eo3oVEStGeAaJsbJ6B9R7 6RQGd/b0ZaHTTmhZzIWi+va96Jw/8Dq1j0IxAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsPu9PVkNSKGjC3AxP1FOHgOFkMgwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vb1k2emQ5MERH SzVHWFk4X2ZXNEswS1RwN1I0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACLrSumXyu7ls0F7mmlX0nJF72O7zxOKzA00cCtd1wsIcdf/UVLRwb0P o2kMl6PXpKMo8IN6kE9hh7GVMzG97KvG8KZQXiQNOVCSTJnF9Q+Al1YYwEsrtAIR +ad6t4tuSpMm36oU/7m84Ldpbz4Wp/pZH/ZyiCh3cxGYPprB9yXwLqbujLUUs93Z 3c5Y9BOreGKxQto9tVx7hM5Qc0UBDIGMId1CMXcFHk/Oj/GYpfuksvkL1U8SJt3O uIho5VwLUdSGLKA1LMNdwpwTLdVbGa31CT8yas9fR4c/Btj45K8y1D0eijYDjOjk fjX+D+yzH5U2sx6Kie4aOrbAYKR5KDc= -----END CERTIFICATE-----Generated at Tue Oct 28 23:10:17 2025 by rpki-client