$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft File: 9aRLXgeIZbrvk1E2nZYda6JVbUc.mft (raw, json) Hash identifier: OpAKgKciWQpiXB/mY3i1p7oXbAnROACWnqS2+gvFQQM= Subject key identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 02C8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft Manifest number: 02B7 Signing time: Thu 04 Sep 2025 21:18:23 +0000 Manifest this update: Thu 04 Sep 2025 21:18:23 +0000 Manifest next update: Sat 06 Sep 2025 21:18:23 +0000 Files and hashes: 1: 9aRLXgeIZbrvk1E2nZYda6JVbUc.crl (hash: ub2wI+IGMZV1KVWG30CEaRSOjs88H+rMXcTtMgqrSzs=) 2: Fn_SwMpljpxFXXkEr0N3Tnom6l0.roa (hash: J8NqRwUakfp20kauS9hO5Z6ALEpdTtWVeeb6uoJlqi4=) 3: H07fZhQO_Q3aLfPPmvyYIFeRwGw.roa (hash: gJFfn7EGGkpzbinWsWT20Cv8c18u4ouHFdJoO33imR0=) 4: dZZ1tLqfRCfsc9yQ3sZh0Ekjhbw.roa (hash: ozHd0L+pcha4PL1xuqajnr/AbCxPZE/RVw2HVfQ6ddk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Sep 2025 15:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 712 (0x2c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Sep 4 21:18:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=78C626456BAE94BA36466BD1EDB2D798BFFF017C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:a1:96:40:32:ef:af:64:da:c6:70:cd:e5: 42:ce:86:f9:47:4a:20:bb:49:3a:e0:39:71:3a:e3: 82:0d:d6:09:bf:c6:fa:b6:6e:89:79:fc:ee:b7:0f: 73:6b:5b:e8:3e:1e:c6:f9:03:f5:e5:59:ba:8b:2b: b0:13:41:63:52:26:bf:34:d4:ed:13:62:42:8e:9c: 0a:ab:de:43:8b:df:92:61:a3:6a:7a:10:02:56:8f: 87:27:ca:b9:16:e7:5a:77:c1:89:3b:6f:fa:3c:ab: 25:47:5c:ed:7a:86:a0:f0:d4:23:e4:e9:ce:b9:b3: 1f:82:98:57:6d:05:51:1a:d9:48:17:79:e7:82:f2: 8e:b1:37:76:d4:ad:dd:40:19:0d:fc:8e:ed:2a:a6: 37:bb:2b:a8:72:f5:e4:0a:b4:0a:7e:07:12:2b:5c: cb:d7:90:6b:21:4f:73:12:64:dd:ec:40:84:c8:5f: ca:a0:a7:49:09:36:02:ba:d5:d8:67:f8:48:e2:00: 54:dc:b8:c1:34:db:01:17:58:a8:8d:03:d2:78:78: 06:f8:0f:1a:2b:07:4c:18:23:43:c8:05:89:43:d2: a9:fb:06:3d:35:71:ec:8b:8a:e6:37:7b:bd:52:81: 83:3c:e4:39:8f:2f:97:b3:8a:d1:3b:f1:b8:82:76: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:60:c9:49:23:27:d5:6c:d2:08:5f:50:98:54:32:54:62:ec: c9:10:fe:b4:36:c1:38:5f:73:61:a6:62:13:f6:74:b1:0c:66: aa:6c:b8:9f:e8:6a:31:27:84:18:15:fa:32:96:95:8d:73:02: 45:bb:1e:04:04:c0:32:1a:cf:81:71:ed:f0:ad:45:79:0a:c1: dd:1d:66:ba:20:e8:72:3b:d7:f9:5e:0a:b2:15:e5:d6:2a:5a: 28:0d:80:43:8c:bb:21:14:d0:aa:79:bc:37:6b:e3:6c:2c:03: b5:81:c1:9c:31:34:46:b5:dd:94:5f:58:7d:55:70:85:65:8d: 0e:e2:a2:ed:95:87:20:8a:91:ec:61:2f:59:ec:97:09:e6:3a: 80:dc:c5:e1:56:b2:3c:c0:2a:eb:0f:28:0c:04:f0:68:aa:1d: 1c:9f:8f:eb:f4:60:20:d5:8f:32:9e:4f:c7:45:fc:ca:eb:0c: 37:ba:d7:31:7c:44:25:e2:ec:7f:a3:a3:71:52:ff:1e:9e:69: 57:1b:41:29:ce:c9:76:e7:ad:48:49:56:12:b0:49:45:cf:01: 3c:b9:de:ed:4d:e2:ff:f5:f8:55:18:d4:af:8c:7a:40:02:38: bc:0b:a7:cf:6f:7f:ce:cc:ca:73:39:1a:70:e5:30:45:b2:fc: e0:93:51:fc -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNTA5MDQy MTE4MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc4QzYyNjQ1NkJBRTk0 QkEzNjQ2NkJEMUVEQjJENzk4QkZGRjAxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC20qGWQDLvr2TaxnDN5ULOhvlHSiC7STrgOXE644IN1gm/xvq2 bol5/O63D3NrW+g+Hsb5A/XlWbqLK7ATQWNSJr801O0TYkKOnAqr3kOL35Jho2p6 EAJWj4cnyrkW51p3wYk7b/o8qyVHXO16hqDw1CPk6c65sx+CmFdtBVEa2UgXeeeC 8o6xN3bUrd1AGQ38ju0qpje7K6hy9eQKtAp+BxIrXMvXkGshT3MSZN3sQITIX8qg p0kJNgK61dhn+EjiAFTcuME02wEXWKiNA9J4eAb4DxorB0wYI0PIBYlD0qn7Bj01 ceyLiuY3e71SgYM85DmPL5ezitE78biCdvPjAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUeMYmRWuulLo2RmvR7bLXmL//AXwwHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFLzlhUkxYZ2VJWmJy dmsxRTJuWllkYTZKVmJVYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCDYMlJIyfVbNIIX1CYVDJUYuzJEP60NsE4X3NhpmIT9nSxDGaqbLif6Gox J4QYFfoylpWNcwJFux4EBMAyGs+Bce3wrUV5CsHdHWa6IOhyO9f5XgqyFeXWKloo DYBDjLshFNCqebw3a+NsLAO1gcGcMTRGtd2UX1h9VXCFZY0O4qLtlYcgipHsYS9Z 7JcJ5jqA3MXhVrI8wCrrDygMBPBoqh0cn4/r9GAg1Y8ynk/HRfzK6ww3utcxfEQl 4ux/o6NxUv8enmlXG0Epzsl2561ISVYSsElFzwE8ud7tTeL/9fhVGNSvjHpAAji8 C6fPb3/OzMpzORpw5TBFsvzgk1H8 -----END CERTIFICATE-----Generated at Fri Sep 5 11:32:28 2025 by rpki-client