$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft File: 9aRLXgeIZbrvk1E2nZYda6JVbUc.mft (raw, json) Hash identifier: B4TA5aL4k6yEjEOZ7n0YyxgJkLdH4ujqKAW8N4nmtJo= Subject key identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 02E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft Manifest number: 02D5 Signing time: Sun 19 Oct 2025 21:56:54 +0000 Manifest this update: Sun 19 Oct 2025 21:56:54 +0000 Manifest next update: Tue 21 Oct 2025 21:56:54 +0000 Files and hashes: 1: 9aRLXgeIZbrvk1E2nZYda6JVbUc.crl (hash: mpJrmflTKxPMJl0XEzW5DaW36GxLNZV27CbZnSiemyo=) 2: Fn_SwMpljpxFXXkEr0N3Tnom6l0.roa (hash: J8NqRwUakfp20kauS9hO5Z6ALEpdTtWVeeb6uoJlqi4=) 3: H07fZhQO_Q3aLfPPmvyYIFeRwGw.roa (hash: gJFfn7EGGkpzbinWsWT20Cv8c18u4ouHFdJoO33imR0=) 4: dZZ1tLqfRCfsc9yQ3sZh0Ekjhbw.roa (hash: ozHd0L+pcha4PL1xuqajnr/AbCxPZE/RVw2HVfQ6ddk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Oct 19 21:56:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=78C626456BAE94BA36466BD1EDB2D798BFFF017C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:a1:96:40:32:ef:af:64:da:c6:70:cd:e5: 42:ce:86:f9:47:4a:20:bb:49:3a:e0:39:71:3a:e3: 82:0d:d6:09:bf:c6:fa:b6:6e:89:79:fc:ee:b7:0f: 73:6b:5b:e8:3e:1e:c6:f9:03:f5:e5:59:ba:8b:2b: b0:13:41:63:52:26:bf:34:d4:ed:13:62:42:8e:9c: 0a:ab:de:43:8b:df:92:61:a3:6a:7a:10:02:56:8f: 87:27:ca:b9:16:e7:5a:77:c1:89:3b:6f:fa:3c:ab: 25:47:5c:ed:7a:86:a0:f0:d4:23:e4:e9:ce:b9:b3: 1f:82:98:57:6d:05:51:1a:d9:48:17:79:e7:82:f2: 8e:b1:37:76:d4:ad:dd:40:19:0d:fc:8e:ed:2a:a6: 37:bb:2b:a8:72:f5:e4:0a:b4:0a:7e:07:12:2b:5c: cb:d7:90:6b:21:4f:73:12:64:dd:ec:40:84:c8:5f: ca:a0:a7:49:09:36:02:ba:d5:d8:67:f8:48:e2:00: 54:dc:b8:c1:34:db:01:17:58:a8:8d:03:d2:78:78: 06:f8:0f:1a:2b:07:4c:18:23:43:c8:05:89:43:d2: a9:fb:06:3d:35:71:ec:8b:8a:e6:37:7b:bd:52:81: 83:3c:e4:39:8f:2f:97:b3:8a:d1:3b:f1:b8:82:76: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:0d:e5:02:7c:4e:f4:65:99:5f:d5:b9:0a:e2:ad:ad:13:97: cc:c6:2d:60:22:16:30:84:d8:2e:04:4f:73:8c:c4:f5:0d:b7: 13:73:64:64:31:3c:7d:93:22:f5:15:b4:29:d9:f6:8c:42:e3: 1e:93:65:6d:d8:ec:57:f9:39:a5:4b:66:45:ff:3c:06:cf:72: 64:2f:29:d0:55:d3:03:4f:ad:04:0e:24:89:5a:8d:a0:1b:15: 55:11:31:48:94:78:1c:e4:28:c5:dd:36:9c:37:00:60:c2:14: a5:89:70:0a:c2:61:68:9f:41:75:74:fd:36:73:4c:d7:d4:c2: f3:ad:b7:47:b3:ed:a9:3f:e3:8b:92:9e:b6:c3:02:57:09:a7: ac:d3:0a:ca:31:5b:42:f7:a6:77:5c:ed:3d:c0:9e:f2:dc:04: c5:82:87:1e:7f:8d:b7:e1:8d:ca:95:fd:5a:9f:04:53:96:69: 06:58:c3:0d:a5:4c:63:dd:c1:14:73:ec:3e:e5:b6:4c:0c:5f: b3:7b:99:16:81:55:d0:25:77:93:f1:a2:c9:cf:f1:78:84:32: 80:57:fd:ba:a6:7f:88:a8:44:b2:b3:ee:e5:84:b6:34:e3:1a: 50:11:ad:73:9f:40:8d:70:d7:b2:2b:ac:f4:61:a1:13:a6:80: 20:7d:e2:3c -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNTEwMTky MTU2NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc4QzYyNjQ1NkJBRTk0 QkEzNjQ2NkJEMUVEQjJENzk4QkZGRjAxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC20qGWQDLvr2TaxnDN5ULOhvlHSiC7STrgOXE644IN1gm/xvq2 bol5/O63D3NrW+g+Hsb5A/XlWbqLK7ATQWNSJr801O0TYkKOnAqr3kOL35Jho2p6 EAJWj4cnyrkW51p3wYk7b/o8qyVHXO16hqDw1CPk6c65sx+CmFdtBVEa2UgXeeeC 8o6xN3bUrd1AGQ38ju0qpje7K6hy9eQKtAp+BxIrXMvXkGshT3MSZN3sQITIX8qg p0kJNgK61dhn+EjiAFTcuME02wEXWKiNA9J4eAb4DxorB0wYI0PIBYlD0qn7Bj01 ceyLiuY3e71SgYM85DmPL5ezitE78biCdvPjAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUeMYmRWuulLo2RmvR7bLXmL//AXwwHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFLzlhUkxYZ2VJWmJy dmsxRTJuWllkYTZKVmJVYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBzDeUCfE70ZZlf1bkK4q2tE5fMxi1gIhYwhNguBE9zjMT1DbcTc2RkMTx9 kyL1FbQp2faMQuMek2Vt2OxX+TmlS2ZF/zwGz3JkLynQVdMDT60EDiSJWo2gGxVV ETFIlHgc5CjF3TacNwBgwhSliXAKwmFon0F1dP02c0zX1MLzrbdHs+2pP+OLkp62 wwJXCaes0wrKMVtC96Z3XO09wJ7y3ATFgocef4234Y3Klf1anwRTlmkGWMMNpUxj 3cEUc+w+5bZMDF+ze5kWgVXQJXeT8aLJz/F4hDKAV/26pn+IqESys+7lhLY04xpQ Ea1zn0CNcNeyK6z0YaETpoAgfeI8 -----END CERTIFICATE-----Generated at Mon Oct 20 20:23:18 2025 by rpki-client