$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft File: oY6zd90DGK5GXY8_fW4K0KTp7R4.mft (raw, json) Hash identifier: D2RjCdTrhUSwaNiofBUKOmrQnl6OGkHOPCm4OFMpBSw= Subject key identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0FE9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft Manifest number: 0FB7 Signing time: Sat 06 Sep 2025 09:17:34 +0000 Manifest this update: Sat 06 Sep 2025 09:17:34 +0000 Manifest next update: Mon 08 Sep 2025 09:17:34 +0000 Files and hashes: 1: DGCHCLoOOygF2ADsms7jOh3Egr0.roa (hash: CnEKmku8KZ6SkB2EVKr5ZqB58e6c9EHII9iHP2BKdFM=) 2: J5fNdMEhy7gHZ2JBspxnG1hNo2E.roa (hash: MUkTBc/4eIEaSmSWvFMQcd0p7JlUd0tJIJJZxfD0YMQ=) 3: JQcce5o_xVRKp_GPqeu8dqDKVO8.roa (hash: KxxHI/9wdteNmdbJX1B9yihyolKLm0Rw9xw+g1z3S1I=) 4: MWTOx1zPk-C90vuBRgn9P8nryok.roa (hash: HUbHvZZBmo10DW8MZxl3d6MDo54lA48f8BOUF9Fjg04=) 5: S6f_uIgkwij3QVlXdNoWMy-Jebo.roa (hash: kfjnV1QYZbtsi7b/Zyw9bxa1e7mztwNGJgFCawQz8+c=) 6: Z9vw8KivPQFMAW55QJxhUuZNP0M.roa (hash: Hg9mTGr7ogqg3jVLG2uu71QIvlqBWhwCI4hJ/oL8Wik=) 7: frWI7Eeslz12PC1F7Skc0fz90Fc.roa (hash: EM88IHqP4B6zsm8vOmbqDtA1QolhIApxnELHjUY7A+Y=) 8: oY6zd90DGK5GXY8_fW4K0KTp7R4.crl (hash: TxpNvrexrfhWm/L+NsHlQpGNiO7MaBruCgSmDZHyyp4=) 9: uCQSXy9O7rFC4HdZ8I6Qv-rLpKU.roa (hash: yYN/TniJq1UcsoCWo77ewd0NkAcyzUnSN8aWtg8WmG0=) 10: uKTaHaPjaE0A0lls-6EDyKfKzCE.roa (hash: H2AWfGJ4xNTJ9VNCNA97PnqGWDw8S7gQLAtTPw3JXKQ=) 11: z6o8lEmUSDxUseLPuAy15ybZwm8.roa (hash: eifEWLy5bDN7kvoySklvkmx/0pRbaZsQzN5+Z4s7vew=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4073 (0xfe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Sep 6 09:17:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B0FBBD3D590D48A1A30B70313F514E1E038590C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:27:d7:0b:a8:24:ea:9c:4f:c1:43:11:ca: b3:45:5d:08:03:35:03:49:a0:63:2f:7a:09:e3:80: 9c:4f:c5:61:3c:d1:62:1c:e0:93:96:bf:bb:7b:87: 5c:61:54:b9:2a:d1:73:a3:9d:2d:e9:81:14:76:05: d3:3d:00:3a:67:60:6d:b2:5a:13:2a:84:3f:cb:5e: 58:e4:7d:48:c2:d5:0f:ae:8d:99:de:65:4f:c5:6f: f7:37:21:8d:17:05:58:7a:17:eb:d9:c9:bd:d2:98: 1f:c6:60:6a:8a:e9:3c:fb:ba:0b:f2:99:2e:c5:2b: a0:5b:70:1b:de:cb:9c:39:af:ce:74:0c:93:94:e3: 31:a4:0c:77:48:7b:d9:cd:52:3f:89:88:f0:47:de: 82:9e:2e:9a:87:09:94:7f:47:62:ef:2b:f5:8d:38: 42:30:35:46:5b:62:b5:26:4e:f4:e3:d1:9d:05:e6: 81:31:69:38:05:6c:99:91:9d:2d:c4:ca:21:06:43: 14:10:1e:82:6d:0c:02:d1:1a:af:b3:92:46:31:5a: 5f:f7:5b:df:c4:a3:7a:15:11:2b:46:78:06:89:b1: b2:7a:07:d4:7b:e9:14:06:77:f6:f4:65:a1:d3:4e: 68:59:cc:85:a2:fa:f6:bd:e8:9c:3f:f0:3a:b5:8f: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:72:9d:80:5b:a4:6a:7b:f3:d0:7d:1d:82:10:c1:af:bd:41: fc:84:65:d3:27:f0:76:0d:c1:e7:da:69:94:c4:eb:1d:07:f0: f1:6e:22:17:5a:8a:f7:be:90:5b:8a:a4:54:5c:07:19:36:0f: f5:30:5b:73:92:a8:aa:fc:c3:1f:09:84:2f:a3:d1:f1:21:57: 25:94:92:03:fd:ec:9f:31:b1:7a:d5:96:0b:da:41:16:19:42: a2:34:dc:06:47:4e:40:63:98:36:1b:62:e7:ce:00:66:68:8f: 2b:89:4a:3c:6d:0b:8c:30:64:1b:8e:45:2c:59:1f:7d:dc:00: 4c:c8:54:d3:cc:94:c5:59:6d:1d:4e:ad:2c:f2:ad:71:aa:70: 67:59:c1:5c:81:d4:05:5f:45:4e:3a:bd:d0:00:33:91:11:40: 26:3d:95:64:82:14:87:b0:c9:5a:4a:a0:cf:fb:99:62:81:fa: 48:83:af:8d:35:76:be:cb:26:f5:34:bb:ef:94:3a:ce:79:51: 21:ba:cb:bf:fe:57:dd:de:a7:ce:04:eb:14:02:0c:b3:bd:f4: d1:5f:82:07:5b:05:79:81:5c:cd:53:fd:72:36:56:ee:a8:48: 7c:81:4e:8d:e5:ab:0a:5e:48:18:3f:a7:03:6d:d7:88:27:27: b3:60:d5:d0 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICD+kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA5MDYw OTE3MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwRkJCRDNENTkwRDQ4 QTFBMzBCNzAzMTNGNTE0RTFFMDM4NTkwQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYyfXC6gk6pxPwUMRyrNFXQgDNQNJoGMvegnjgJxPxWE80WIc 4JOWv7t7h1xhVLkq0XOjnS3pgRR2BdM9ADpnYG2yWhMqhD/LXljkfUjC1Q+ujZne ZU/Fb/c3IY0XBVh6F+vZyb3SmB/GYGqK6Tz7ugvymS7FK6BbcBvey5w5r850DJOU 4zGkDHdIe9nNUj+JiPBH3oKeLpqHCZR/R2LvK/WNOEIwNUZbYrUmTvTj0Z0F5oEx aTgFbJmRnS3EyiEGQxQQHoJtDALRGq+zkkYxWl/3W9/Eo3oVEStGeAaJsbJ6B9R7 6RQGd/b0ZaHTTmhZzIWi+va96Jw/8Dq1j0IxAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsPu9PVkNSKGjC3AxP1FOHgOFkMgwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vb1k2emQ5MERH SzVHWFk4X2ZXNEswS1RwN1I0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABNynYBbpGp789B9HYIQwa+9QfyEZdMn8HYNwefaaZTE6x0H8PFuIhda ive+kFuKpFRcBxk2D/UwW3OSqKr8wx8JhC+j0fEhVyWUkgP97J8xsXrVlgvaQRYZ QqI03AZHTkBjmDYbYufOAGZojyuJSjxtC4wwZBuORSxZH33cAEzIVNPMlMVZbR1O rSzyrXGqcGdZwVyB1AVfRU46vdAAM5ERQCY9lWSCFIewyVpKoM/7mWKB+kiDr401 dr7LJvU0u++UOs55USG6y7/+V93ep84E6xQCDLO99NFfggdbBXmBXM1T/XI2Vu6o SHyBTo3lqwpeSBg/pwNt14gnJ7Ng1dA= -----END CERTIFICATE-----Generated at Sun Sep 7 15:23:02 2025 by rpki-client