$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft File: OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft (raw, json) Hash identifier: ry+Npi3b2kUs8jXwOJmwUBBsg7nbnPUGiEuuMG6FQSc= Subject key identifier: 47:3B:B5:F3:F7:69:A0:EA:0C:96:E3:67:3D:14:3F:8C:37:D9:68:D0 Authority key identifier: 38:BF:B3:0C:72:CA:95:48:F7:96:CC:3D:4F:B6:00:6B:88:3E:27:01 Certificate issuer: /CN=38BFB30C72CA9548F796CC3D4FB6006B883E2701 Certificate serial: 07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft Manifest number: 05 Signing time: Thu 06 Nov 2025 07:58:15 +0000 Manifest this update: Thu 06 Nov 2025 07:58:15 +0000 Manifest next update: Thu 06 Nov 2025 13:58:15 +0000 Files and hashes: 1: OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl (hash: 7ShEeSXdcPJOBArAKk2j315vwRfY+G9Lv9pD7vrnuXY=) 2: SLabTJZUnd9dxEvzHYFFrWea9UU.roa (hash: c8h/LrBIXQYnRPMFpRWKge88DSjxLRkfZbFW0lzmsog=) 3: y0It2rSVIUtpZCaFm-g0FOIFWKE.roa (hash: hT1m3KE7RGg7+zcFGlXdugL1MYYVOxzwx6SEZ/67da0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 13:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38BFB30C72CA9548F796CC3D4FB6006B883E2701 Validity Not Before: Nov 6 07:58:15 2025 GMT Not After : Oct 30 15:30:19 2026 GMT Subject: CN=473BB5F3F769A0EA0C96E3673D143F8C37D968D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:80:14:a1:8c:fc:46:61:77:08:c2:73:d3:3f: 9e:39:53:fe:5a:dc:d5:ca:28:e9:9a:e1:46:63:da: 4d:43:d7:dc:6c:66:f1:7c:c5:4b:b5:e8:3c:a8:49: 66:3f:8e:13:9c:dd:99:dd:8e:ca:00:74:c4:03:91: ba:6a:66:19:6e:8b:42:93:77:b5:08:d6:0c:bc:73: a8:21:02:98:ed:1b:9a:db:3a:3f:66:cb:a5:2c:9d: 46:ce:a2:9d:0c:38:e3:a2:2c:80:91:e0:92:9a:5e: b6:39:08:08:aa:a9:b4:ca:bf:88:01:e8:65:42:95: df:cb:e3:94:02:23:d9:eb:0f:f8:96:b7:29:4a:58: 94:ba:18:86:77:30:4d:31:d6:90:49:d6:e3:d7:3b: bb:1f:68:84:3b:69:9c:fe:ea:36:59:0f:f0:02:6c: 33:1f:9c:97:f5:16:18:fb:90:12:e6:05:4d:31:6c: 41:1b:7f:35:4f:75:e5:b9:29:97:c5:ea:1f:65:12: 4b:31:39:a6:6d:b2:4e:9a:ed:34:7e:d2:06:2d:df: 79:a7:d8:ee:97:d2:46:3d:38:f8:a8:a9:bf:f1:b2: 5b:2a:71:48:b2:82:01:4b:69:0e:1b:49:b2:22:53: dd:7a:ec:83:63:26:1e:ea:c9:86:5c:6f:96:47:41: 24:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3B:B5:F3:F7:69:A0:EA:0C:96:E3:67:3D:14:3F:8C:37:D9:68:D0 X509v3 Authority Key Identifier: keyid:38:BF:B3:0C:72:CA:95:48:F7:96:CC:3D:4F:B6:00:6B:88:3E:27:01 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:78:88:69:fc:83:9a:2b:c2:7b:9b:b4:00:ad:ad:c6:20:86: f5:15:21:db:bd:5a:9a:89:1e:8a:d8:90:89:be:b3:85:c7:a2: 2d:c2:1b:e7:d1:53:ce:f0:06:34:aa:15:6d:b6:c1:f7:c0:38: 0b:bf:44:23:20:c5:10:21:7d:3a:b3:49:ae:ff:8d:2a:61:da: 3b:e8:c0:92:aa:96:da:e2:ca:27:fb:cf:3d:99:30:c5:5e:49: d2:ca:be:e4:b4:22:4e:0e:32:88:4e:89:76:0f:25:24:b8:51: 10:42:11:42:71:30:35:b6:f2:ed:b9:92:c5:f7:0d:53:91:27: 34:42:09:53:59:56:b2:21:bf:65:a0:4b:e2:a1:8a:e5:47:69: 42:2f:eb:3a:2f:d5:b5:5f:d2:2d:e3:7a:f5:4a:27:41:ca:5f: 74:49:95:7c:b6:6d:44:0f:4a:58:d8:09:71:6c:ea:86:01:3a: 98:14:43:ba:c6:96:7a:13:0a:c2:0f:ba:41:04:10:9c:25:fe: 98:cd:ba:a4:1c:64:00:d3:ed:13:04:0a:44:e7:46:11:c6:5a: 97:4e:93:eb:72:b4:79:75:c7:2b:bb:c2:a6:2e:37:8a:55:ff: f8:42:c1:ee:3d:d7:56:1e:2f:a4:ca:99:e5:fe:f8:af:bc:33: 05:b0:e5:1f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOEJG QjMwQzcyQ0E5NTQ4Rjc5NkNDM0Q0RkI2MDA2Qjg4M0UyNzAxMB4XDTI1MTEwNjA3 NTgxNVoXDTI2MTAzMDE1MzAxOVowMzExMC8GA1UEAxMoNDczQkI1RjNGNzY5QTBF QTBDOTZFMzY3M0QxNDNGOEMzN0Q5NjhEMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANWAFKGM/EZhdwjCc9M/njlT/lrc1coo6ZrhRmPaTUPX3Gxm8XzF S7XoPKhJZj+OE5zdmd2OygB0xAORumpmGW6LQpN3tQjWDLxzqCECmO0bmts6P2bL pSydRs6inQw446IsgJHgkppetjkICKqptMq/iAHoZUKV38vjlAIj2esP+Ja3KUpY lLoYhncwTTHWkEnW49c7ux9ohDtpnP7qNlkP8AJsMx+cl/UWGPuQEuYFTTFsQRt/ NU915bkpl8XqH2USSzE5pm2yTprtNH7SBi3feafY7pfSRj04+Kipv/GyWypxSLKC AUtpDhtJsiJT3Xrsg2MmHurJhlxvlkdBJDsCAwEAAaOCAgcwggIDMB0GA1UdDgQW BBRHO7Xz92mg6gyW42c9FD+MN9lo0DAfBgNVHSMEGDAWgBQ4v7MMcsqVSPeWzD1P tgBriD4nATAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HWEkv T0wtekRITEtsVWozbHN3OVQ3WUFhNGctSndFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PTC16REhMS2xVajNsc3c5VDdZQWE0Zy1Kd0UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HWEkvT0wtekRITEtsVWozbHN3OVQ3 WUFhNGctSndFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAAd4 iGn8g5orwnubtACtrcYghvUVIdu9WpqJHorYkIm+s4XHoi3CG+fRU87wBjSqFW22 wffAOAu/RCMgxRAhfTqzSa7/jSph2jvowJKqltriyif7zz2ZMMVeSdLKvuS0Ik4O MohOiXYPJSS4URBCEUJxMDW28u25ksX3DVORJzRCCVNZVrIhv2WgS+KhiuVHaUIv 6zov1bVf0i3jevVKJ0HKX3RJlXy2bUQPSljYCXFs6oYBOpgUQ7rGlnoTCsIPukEE EJwl/pjNuqQcZADT7RMECkTnRhHGWpdOk+tytHl1xyu7wqYuN4pV//hCwe4911Ye L6TKmeX++K+8MwWw5R8= -----END CERTIFICATE-----Generated at Thu Nov 6 11:19:45 2025 by rpki-client