$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft File: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft (raw, json) Hash identifier: 8eoF1k1c/UxvFfpgb7KmTJ/NCt7rWB2/tWM99nAyKOw= Subject key identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 01AA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft Manifest number: 01A4 Signing time: Thu 18 Sep 2025 09:18:47 +0000 Manifest this update: Thu 18 Sep 2025 09:18:47 +0000 Manifest next update: Sat 20 Sep 2025 09:18:47 +0000 Files and hashes: 1: DHfspAVUUZ0rNFX5agFJgGyx23Q.roa (hash: 0yRv4FcWg1qFIUGDL74GwiVrS4qIfgwZ9YjYGaMW7Ks=) 2: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl (hash: 25v8dJsISzpCO7Br0HfsGRxbw1Acn/1BXaUU0pUa57E=) 3: plN6TlQMP3qTM5WBPlFYzO6YRCE.roa (hash: oXn5+/wl8H3Ceea5XWKI+xNM2/t6MEJx6Sg2hKc5Oaw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 15:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Sep 18 09:18:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EAF2BE883EF8ED0C1C90C3D05D111B8539F37A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b5:3e:8b:b8:23:d0:67:20:07:ec:8a:ac:1d: e4:82:63:90:b5:bd:e0:39:64:00:a9:a4:04:a5:e8: 32:34:38:0f:ad:0b:f1:dd:bf:6d:52:4d:5e:98:cd: bd:83:9d:40:9a:ae:40:0e:c6:e6:df:2f:ca:36:02: 96:ba:a1:3d:b3:d1:66:f9:3c:2e:63:d4:3a:95:c4: 4d:b9:cc:57:07:4c:72:12:e1:15:50:6c:14:72:41: 58:79:2d:09:03:55:e3:f8:65:8b:9f:28:9a:09:80: 6b:ef:6b:4c:4d:2d:cc:9c:3b:39:00:3f:99:35:00: f9:2a:92:95:51:e8:42:56:64:12:94:d2:43:f5:60: 79:65:56:27:e6:20:8d:0f:30:0c:92:fe:6c:2e:f4: 1f:09:0f:ab:9c:22:2d:e2:73:ef:dd:09:97:d3:35: 83:ef:81:75:33:60:63:83:81:2b:91:1c:55:f8:8c: 48:7e:db:af:79:b6:82:ba:65:79:cd:98:36:a9:b4: dd:28:ef:8d:bd:e7:46:d5:da:79:d5:30:58:89:5c: 58:95:a8:1b:d0:57:e1:7e:d7:ce:1d:80:99:ee:ae: 00:20:12:45:a5:f3:37:69:71:b6:27:45:32:46:55: 8c:f9:ea:86:77:07:bd:c9:68:9c:15:29:02:f2:d5: df:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:2c:cd:f0:62:58:fe:74:c1:74:93:c2:0d:2a:6a:c0:29:6f: c3:0f:2b:0c:b3:aa:14:8a:a3:10:39:54:71:44:7b:0c:04:87: 95:d4:6b:a1:76:83:76:00:e1:64:cf:cf:9b:bf:d8:50:23:6a: 91:3c:02:c0:6a:a7:ab:dc:f0:c0:2b:d3:cf:e9:ab:44:8e:c6: 31:28:54:a9:94:58:e3:dc:45:83:49:e1:26:22:b5:14:cb:b4: c8:1f:21:59:2c:c3:29:82:ed:44:a5:38:ed:2a:dc:bb:c1:90: 21:b0:70:04:e0:8a:56:6d:e1:0d:31:fa:3b:86:19:a8:96:c7: 0a:48:36:a6:2f:c4:35:33:bf:7e:e0:1e:c6:b1:39:b3:05:b5: 5a:28:fa:b8:08:49:03:6f:93:53:ad:c7:94:95:06:94:7a:b9: dc:03:3f:bd:85:d0:61:2f:db:7e:e7:ad:8e:17:1e:5a:5f:3b: d5:80:43:3c:02:4f:29:02:52:42:8f:6a:15:db:01:de:0f:bd: d5:b4:73:af:f6:dd:ba:03:c6:ba:07:b9:4c:e2:a1:58:32:a4: c8:ed:63:90:22:c3:5a:26:af:7f:5c:71:98:27:ed:0d:13:df: 38:d8:4b:65:2d:49:a4:ca:c3:11:ed:2e:07:3a:31:f3:8e:36: 97:67:1f:1f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAaowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNF QkQzOUZCNTE4QjU1REEwMDc0MkFFRUM3QjBEQTZBQUJBNjFGNzAeFw0yNTA5MTgw OTE4NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVBRjJCRTg4M0VGOEVE MEMxQzkwQzNEMDVEMTExQjg1MzlGMzdBNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDftT6LuCPQZyAH7IqsHeSCY5C1veA5ZACppASl6DI0OA+tC/Hd v21STV6Yzb2DnUCarkAOxubfL8o2Apa6oT2z0Wb5PC5j1DqVxE25zFcHTHIS4RVQ bBRyQVh5LQkDVeP4ZYufKJoJgGvva0xNLcycOzkAP5k1APkqkpVR6EJWZBKU0kP1 YHllVifmII0PMAyS/mwu9B8JD6ucIi3ic+/dCZfTNYPvgXUzYGODgSuRHFX4jEh+ 2695toK6ZXnNmDaptN0o742950bV2nnVMFiJXFiVqBvQV+F+184dgJnurgAgEkWl 8zdpcbYnRTJGVYz56oZ3B73JaJwVKQLy1d+BAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU6vK+iD747QwckMPQXREbhTnzemkwHwYDVR0jBBgwFoAUQ+vTn7UYtV2gB0Ku 7HsNpqq6YfcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FFTFcv US12VG43VVl0VjJnQjBLdTdIc05wcXE2WWZjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9RLXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9RLXZUbjdVWXRWMmdCMEt1N0hz TnBxcTZZZmMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmSzN 8GJY/nTBdJPCDSpqwClvww8rDLOqFIqjEDlUcUR7DASHldRroXaDdgDhZM/Pm7/Y UCNqkTwCwGqnq9zwwCvTz+mrRI7GMShUqZRY49xFg0nhJiK1FMu0yB8hWSzDKYLt RKU47Srcu8GQIbBwBOCKVm3hDTH6O4YZqJbHCkg2pi/ENTO/fuAexrE5swW1Wij6 uAhJA2+TU63HlJUGlHq53AM/vYXQYS/bfuetjhceWl871YBDPAJPKQJSQo9qFdsB 3g+91bRzr/bdugPGuge5TOKhWDKkyO1jkCLDWiavf1xxmCftDRPfONhLZS1JpMrD Ee0uBzox8442l2cfHw== -----END CERTIFICATE-----Generated at Thu Sep 18 13:21:35 2025 by rpki-client