$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft File: gFHy7O_CQumvnx5FSk-3llkbjas.mft (raw, json) Hash identifier: yBnnwVkc6ArCwAPXiw+OCzs0BtA2gno1zeTIbp+AF7s= Subject key identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Certificate serial: 146A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft Manifest number: 1440 Signing time: Sat 06 Sep 2025 09:16:27 +0000 Manifest this update: Sat 06 Sep 2025 09:16:27 +0000 Manifest next update: Mon 08 Sep 2025 09:16:27 +0000 Files and hashes: 1: 31m7dx_bn0Ro8ePcnB2TYVLaCKo.roa (hash: q27K7syNnI6b+P8BSh5Is6tYNQbmHPJyp56ERdT/Jm8=) 2: C-2l4-5lLtB18jchVLlfhpvA0Ac.roa (hash: aQDdazI7yAsxvVxYbta5QXOcf4rSIc2slfFRuknYIt8=) 3: ZaEYdQEYlwV-99ewE3_Pl_5c-KM.roa (hash: 6c2SxvONR/8qBuF3lZJ54LOGkZExJj3WEROWJnwl/q0=) 4: gFHy7O_CQumvnx5FSk-3llkbjas.crl (hash: SGqiN7LG77PEj54c91P/HUBZR38WjBGbgp1u4tTwv/o=) 5: tD6C8fAbkv4Tw-j0az_FdowFa6g.roa (hash: E1/GW3SC5d67/+/8Koshd/Wi/2b0bOuMZ4db7+CIyzI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 23:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5226 (0x146a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Validity Not Before: Sep 6 09:16:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B3F41E4BD412F0371844B230AC07B4A4B34E4E0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:c8:a4:92:b6:18:8b:21:23:0d:eb:65:b6: c0:c0:b2:90:1b:32:af:50:df:84:ca:45:a1:f7:48: 3d:96:c1:e1:de:d5:74:1b:67:9b:23:75:d1:bc:f0: e2:bb:aa:14:7e:15:63:3c:af:29:d2:2b:76:82:cf: 8c:a5:56:b6:29:d1:b9:68:30:68:90:d6:d3:70:f1: c7:9c:48:b5:37:e0:e4:2a:97:63:be:22:97:d7:47: 19:69:af:ee:c0:8b:75:ad:c6:db:68:7d:5f:e2:7e: 25:c6:bc:81:a5:29:9b:09:f0:94:d5:64:a8:9d:a9: 82:68:20:84:69:5b:56:c2:9b:dc:92:4e:b6:6e:50: 06:be:7c:10:4b:a1:05:9e:34:f7:40:86:e6:5c:d9: 49:a8:df:d8:39:3d:92:2b:0b:75:3f:b6:9c:1e:8a: 96:79:24:3c:d5:3c:2f:1c:0c:2d:c3:9e:dd:fe:c6: 79:27:f0:5f:7d:19:39:26:90:63:67:6b:92:c7:a7: 2c:dd:0a:c6:8c:f4:4b:11:0c:43:28:f3:91:b7:e2: f5:7e:f6:35:20:01:8c:78:67:a5:f5:ee:56:af:63: 0c:9b:69:c1:b5:a9:a1:f3:10:5d:e1:ab:58:33:31: e4:55:38:bb:d5:cc:95:6f:ec:62:e2:ef:d5:15:07: 89:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F X509v3 Authority Key Identifier: keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:74:b2:7a:68:f6:5c:d8:91:88:dc:a4:de:38:db:25:59:6d: bf:6c:71:f5:48:b1:b0:b9:37:57:18:85:cc:6c:da:73:86:ae: 39:0e:61:3a:be:12:65:24:1d:59:b9:b5:79:6a:55:2a:41:27: 99:02:70:8e:40:11:21:ac:0f:87:51:40:d0:93:47:6f:7b:78: b1:30:4f:f8:39:77:1f:53:03:bc:6a:65:d3:70:47:21:7c:47: d7:da:45:ca:dd:a8:29:df:9a:b1:9b:55:54:4b:b0:3f:37:f7: e6:21:a4:8d:4b:0b:e0:87:b5:0c:96:60:81:70:2d:de:79:86: b8:0a:fb:88:e8:c2:cc:82:2e:56:8b:ab:9b:65:69:14:79:46: ff:29:d3:78:93:f8:2a:ca:db:2b:df:af:cb:35:09:93:69:0b: 26:9e:72:c0:10:e0:ab:72:4b:c5:dc:0f:28:12:df:84:94:5e: c0:ac:16:42:cb:59:b7:93:8f:82:97:22:49:e2:a7:7e:a3:3c: 69:ae:20:be:69:4d:e6:9a:87:9b:60:d4:d5:7d:2c:e0:61:81: c4:a0:20:b4:d2:a2:d9:ef:ad:3e:40:14:4e:71:8a:ba:09:e6: 08:d8:c5:7b:18:15:bb:19:78:ce:ec:87:7a:e4:c0:b2:57:e6: ea:57:b3:64 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICFGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODA1 MUYyRUNFRkMyNDJFOUFGOUYxRTQ1NEE0RkI3OTY1OTFCOERBQjAeFw0yNTA5MDYw OTE2MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzRjQxRTRCRDQxMkYw MzcxODQ0QjIzMEFDMDdCNEE0QjM0RTRFMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVu8ikkrYYiyEjDetltsDAspAbMq9Q34TKRaH3SD2WweHe1XQb Z5sjddG88OK7qhR+FWM8rynSK3aCz4ylVrYp0bloMGiQ1tNw8cecSLU34OQql2O+ IpfXRxlpr+7Ai3WtxttofV/ifiXGvIGlKZsJ8JTVZKidqYJoIIRpW1bCm9ySTrZu UAa+fBBLoQWeNPdAhuZc2Umo39g5PZIrC3U/tpweipZ5JDzVPC8cDC3Dnt3+xnkn 8F99GTkmkGNna5LHpyzdCsaM9EsRDEMo85G34vV+9jUgAYx4Z6X17lavYwybacG1 qaHzEF3hq1gzMeRVOLvVzJVv7GLi79UVB4k9AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUs/QeS9QS8DcYRLIwrAe0pLNOTg8wHwYDVR0jBBgwFoAUgFHy7O/CQumvnx5F Sk+3llkbjaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVU L2dGSHk3T19DUXVtdm54NUZTay0zbGxrYmphcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZ0ZIeTdPX0NRdW12bng1RlNrLTNsbGtiamFzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVUL2dGSHk3T19DUXVtdm54NUZT ay0zbGxrYmphcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBx dLJ6aPZc2JGI3KTeONslWW2/bHH1SLGwuTdXGIXMbNpzhq45DmE6vhJlJB1ZubV5 alUqQSeZAnCOQBEhrA+HUUDQk0dve3ixME/4OXcfUwO8amXTcEchfEfX2kXK3agp 35qxm1VUS7A/N/fmIaSNSwvgh7UMlmCBcC3eeYa4CvuI6MLMgi5Wi6ubZWkUeUb/ KdN4k/gqytsr36/LNQmTaQsmnnLAEOCrckvF3A8oEt+ElF7ArBZCy1m3k4+ClyJJ 4qd+ozxpriC+aU3mmoebYNTVfSzgYYHEoCC00qLZ760+QBROcYq6CeYI2MV7GBW7 GXjO7Id65MCyV+bqV7Nk -----END CERTIFICATE-----Generated at Sun Sep 7 20:25:45 2025 by rpki-client