$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft File: tKZaDrhmkhnEGFRC1J_J1vgltmU.mft (raw, json) Hash identifier: /swkx7IIMqmIrbgtoHgB7fNEmluBolEWq4TqwrVV3Hc= Subject key identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 10B0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft Manifest number: 0FA6 Signing time: Fri 05 Sep 2025 09:45:56 +0000 Manifest this update: Fri 05 Sep 2025 09:45:56 +0000 Manifest next update: Sun 07 Sep 2025 09:45:56 +0000 Files and hashes: 1: 5Yp1V3CrTViPNdd70rxtjG7q0EA.roa (hash: L8BuAcMdxWPZeMk+D/4tVUKeJeQKYapbUsYUtfjtV30=) 2: 70ndj4uFe1wwNF18oZU6_USUWtU.roa (hash: jaSC8kceDXiWcHt1sdw3A2J38sFNSwMEdTDKoVzWN5c=) 3: 8Td2JCIj1A9DHRyJAI1P9i55qXo.roa (hash: Ijtv5s5RufRZ8sFRbblaCqvZdsvSyW80iIHvEML5n30=) 4: B_xVvNfEsMk8op57D-2t77GrOqk.roa (hash: GwdRWpD8xv5FKjMPkMFeI4VcIIYvWFGlF0bfXC28MXs=) 5: CRF-PT6-IJjgcbUt5Eit6XV9Pv0.roa (hash: Ayct/3QqzmOFm36Y017QbJCNp7DZGQzYHB6Qr7DMnYY=) 6: Iwcje_QXrw_90QUEj0AUh8XhmVc.roa (hash: bGq25cGbUfz8m5dkawv7IgYGzOp2WbhBJuXVoVeWr04=) 7: Jy2uyWfZVPUsHrHCi6SCe8zDUPQ.roa (hash: /8h500QcIkxMfPUjgGE3YiKFzVKuofx1cWZXpMhILS4=) 8: N__2K8xQY2BdjczN7Pl9htb1jKM.roa (hash: VELD7cAFloGsE403N3bSAf/b1Elhqqmin9H6C8IjWuc=) 9: OmykwDqKo_OhIj-e_WNN4PvU710.roa (hash: GBxL+xWYxc6wJ7cON+ySkKW27QmejcUQNNq0YHEMlgw=) 10: RM1xqhPL8D9SjQSOaxIJRrUlFC4.roa (hash: 69JZfl2pWT1F5pnjdKUrm2BBTIjD393y2O5ynSWdFnc=) 11: SXNrZ5Jz3QY0J5f0TZfZmh7wSZc.roa (hash: LmSpure0DYNnRbdaK/Ifeb7Kk2Rwus/vkzLEgAEyZXs=) 12: TTiz9UaPgKVOETFOKrGTb-r2azs.roa (hash: fuwiYvLZh3Kik8ffbss8bUFNmDxTKwmFObh6mWlWlHs=) 13: YbGnTW4nU7whUo_reR9sv2YVvf8.roa (hash: oUxU8nNQkfGxGH9Uhz/iikAOWnDaQEcitAZZB42rbqg=) 14: dZvF-0bsdl6n4-_a-7M1Jy8CjI0.roa (hash: XTLwtUAZ6bABqaO6i6/ZP5JEdnSMF7UcFZVU3ADitqc=) 15: ecmr5yzeNsrG95DrIt6VIM5Wcp0.roa (hash: kv62vCdZ77B2XLiakLimtHAAEiZwtjikOsz/UnoF0OA=) 16: fO6FcTv-X4P1RUCT_UnV_cuXthA.roa (hash: e7twuWlXTWBbDLXXNqy53GQSzi+V13eJY36lz5/UfwU=) 17: m7DhiFhAPZoIqr4BHoHXpao14gg.roa (hash: QJZbn+/p5A8gX8009rNNtxvt4K4wqcXdkOuZbFAakEg=) 18: p0GXIU6l8lmMfi8Oz8No7GeUW_g.roa (hash: L6aYgHnRHgrW3LkBxaL37f6kEtmoEN2V2ieBHHRPNY4=) 19: q7YmJaAyedPnRuodme0iBCOG8O4.roa (hash: PbTQ6PwNxUiM98h3T+XkfdR6IfSCM1d+C7mElmN6qt4=) 20: sCv0IluPSD3yzh5lwF7-ioRUBtE.roa (hash: 7bImmA59//gD8Zh/Hj5Fa6XZ/CS6zamqfY8fhtAUjs8=) 21: tKZaDrhmkhnEGFRC1J_J1vgltmU.crl (hash: wx+Z525vsMf54l2d2hNe2GbsA2OR7sO1Zz4W1bi5eD0=) 22: tmonIDoTBxz80Rf4Cw3JREtdp98.roa (hash: Dt0y86hRm4LS3ybuiAnGEmUpsvBW8FTHDawoPoFaQOM=) 23: tyU_Bi838SkcIgptGk9hz-4P1Hg.roa (hash: RIsH6RhgNRKRoJpmZ340Lz5Eqe+puO0XtDeOrEqs3ss=) 24: yLF0PyhsUR1bFZGoMDV7DGGXFDM.roa (hash: QjoKV5tDOI31w+pZ2L5+zoRheQRxMAZsR8oHNBxF83Q=) 25: ydo0i-OyJsNg9fnm5p7QSu32WVA.roa (hash: Pki7U1uqDuzpu3jSBdsJ66UyVJrSUVHMYFg7yIXDZJM=) 26: zHgv9UTH7pUAkHHmynN2MKStSZ8.roa (hash: 9B0xhRNfyD5e1vHZ0CZV0psSUHYgj+RMrYJqPc3arN8=) 27: zRJpjajR3PPfEKnB11lEsBEM2Pc.roa (hash: CzMZ31n5uJYTMuQsDkpCvQymXaXlaut5eWMI0uJsKqU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 15:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4272 (0x10b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 5 09:45:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0E53CFF1D0181F272D8AA565C2A113F9F95BAB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:89:75:40:22:61:58:f1:31:e1:0d:ed:89:c7: 1c:c2:a7:48:ec:32:66:b0:0c:77:66:f9:c0:10:73: 43:71:67:86:f0:e2:f9:e6:a8:a3:b8:93:ea:61:8b: fc:b0:b8:f6:3f:c2:1b:69:1e:d6:5d:65:ca:37:5e: ba:46:d9:c4:f2:3e:05:48:7a:7e:27:53:2c:68:c7: 1b:e6:02:61:18:e7:8d:3f:0e:23:3b:4e:cb:01:43: 0b:8f:05:e1:5e:3c:bc:9b:33:45:f4:db:cf:ee:5e: 9e:18:80:3a:fe:bc:fb:d3:34:c7:d5:ca:35:93:11: c9:78:3a:df:ac:fc:69:69:a5:74:c4:da:0a:08:ab: e4:9e:fd:53:2c:9a:52:15:35:8c:26:79:4d:69:78: 3e:7a:98:f0:bd:f6:e1:c0:18:a6:44:96:5c:d8:93: a0:f9:4e:ff:4d:fe:4f:ed:72:03:ac:3f:1e:19:62: ae:49:01:42:1a:2f:b1:e6:51:12:2e:e9:3c:6a:62: dd:45:18:9c:31:88:6a:95:05:ff:2e:59:d4:86:96: 36:2e:17:8e:51:25:25:97:fe:83:c0:35:5e:c5:78: 53:3a:2c:c0:63:fa:d6:e1:2b:ad:61:43:f6:c3:bd: e7:bc:10:3b:a7:7d:16:f5:08:2e:49:be:06:69:1f: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:1b:a0:b8:af:3c:f1:81:a6:ca:c4:56:71:4d:d2:e6:49:14: 2b:05:eb:88:3d:e6:7f:b9:7c:71:77:da:51:b0:78:a8:ef:9f: 94:8b:38:b3:42:b4:61:3b:41:41:6e:7b:76:a3:21:23:b2:07: 16:2c:92:3b:5e:28:a4:d5:47:74:e5:78:6e:a5:7f:16:c7:b9: d5:da:f3:63:eb:37:d0:cc:80:1f:26:45:c2:a9:16:68:fd:f6: e4:9b:dd:75:8c:61:ef:a2:72:e0:1d:4d:c2:31:a1:f5:01:ca: a2:5c:f2:6a:37:f5:d5:8d:64:ca:6f:89:c7:2c:f9:91:41:84: 4e:3d:49:2d:40:85:5e:d9:c9:5d:bf:33:99:46:9f:07:cb:b1: e4:9b:d6:c2:49:12:5f:90:bd:5b:2a:42:23:b9:58:ee:54:44: cd:51:14:2f:e0:22:5d:d7:51:36:bb:d7:aa:7a:3b:a3:5e:3d: 4a:66:e9:e9:91:27:35:9d:e7:91:b8:db:72:09:b8:bf:c1:c2: 47:1b:f6:67:1d:90:9f:aa:c5:33:33:08:42:97:ce:d9:6b:28: de:63:41:b0:d6:5c:c9:b6:65:6b:55:86:3b:89:7f:6b:da:0c: 4e:34:ab:31:9c:ea:22:27:d0:ef:4b:84:1e:fd:67:21:00:e7: 13:42:3d:54 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICELAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA5MDUw OTQ1NTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBFNTNDRkYxRDAxODFG MjcyRDhBQTU2NUMyQTExM0Y5Rjk1QkFCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxiXVAImFY8THhDe2JxxzCp0jsMmawDHdm+cAQc0NxZ4bw4vnm qKO4k+phi/ywuPY/whtpHtZdZco3XrpG2cTyPgVIen4nUyxoxxvmAmEY540/DiM7 TssBQwuPBeFePLybM0X028/uXp4YgDr+vPvTNMfVyjWTEcl4Ot+s/GlppXTE2goI q+Se/VMsmlIVNYwmeU1peD56mPC99uHAGKZEllzYk6D5Tv9N/k/tcgOsPx4ZYq5J AUIaL7HmURIu6TxqYt1FGJwxiGqVBf8uWdSGljYuF45RJSWX/oPANV7FeFM6LMBj +tbhK61hQ/bDvee8EDunfRb1CC5JvgZpH1ElAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUDlPP8dAYHyctiqVlwqET+flbqygwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEtaYURyaG1raG5FR0ZSQzFKX0ox dmdsdG1VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJwboLiv PPGBpsrEVnFN0uZJFCsF64g95n+5fHF32lGweKjvn5SLOLNCtGE7QUFue3ajISOy BxYskjteKKTVR3TleG6lfxbHudXa82PrN9DMgB8mRcKpFmj99uSb3XWMYe+icuAd TcIxofUByqJc8mo39dWNZMpviccs+ZFBhE49SS1AhV7ZyV2/M5lGnwfLseSb1sJJ El+QvVsqQiO5WO5URM1RFC/gIl3XUTa716p6O6NePUpm6emRJzWd55G423IJuL/B wkcb9mcdkJ+qxTMzCEKXztlrKN5jQbDWXMm2ZWtVhjuJf2vaDE40qzGc6iIn0O9L hB79ZyEA5xNCPVQ= -----END CERTIFICATE-----Generated at Sat Sep 6 14:31:46 2025 by rpki-client