$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft File: AaUyYbIAH6frV3k-LlebcyL452o.mft (raw, json) Hash identifier: JPIcxaf1Cxn/UbMr8rx0AyLIyFxZwKvphshjZR9JnEg= Subject key identifier: C7:01:BF:6C:77:DF:67:12:0A:BF:8D:99:F4:30:58:7B:AB:7F:7A:2D Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E95 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft Manifest number: 0DCD Signing time: Tue 28 Oct 2025 21:26:54 +0000 Manifest this update: Tue 28 Oct 2025 21:26:54 +0000 Manifest next update: Thu 30 Oct 2025 21:26:54 +0000 Files and hashes: 1: 0BJDEPJGZfO3cR9jz5_oVGoL4MU.roa (hash: VsfRjBY3uD7bvJKsF88UtIrYJ/nXg3B+rM1M+RJblfs=) 2: 3zY4-7TWEGDTymgtcFjSVpfzKUM.roa (hash: FgA2aA7QAbskLK7a19oRDJ0n15pGpb1oCQwJv+rqQbw=) 3: AaUyYbIAH6frV3k-LlebcyL452o.crl (hash: 9d7zRatnNrGzlhf7BFfJVjBDvUnjZIBEMpawnWPBSnA=) 4: CdOVCzduR0gmGYzvxQs2Cqf69Dc.roa (hash: yqrkCfnpVK9X6UHB0YFH/n78K7fMnkWm0gzjeR97b7E=) 5: Da1isXUZPbA8qNa23Y0Pgw043XQ.roa (hash: QWUk4Xgvoa4yYeoUIHti7c6FVkVwiKS4XMqm8w7neug=) 6: HNa66nfKvkHUA8RrOgnARz54-Zs.roa (hash: G+17uvO2uUHRn1OnaL9F4eXRZTj+9p+wb+ykqsHXh1U=) 7: KyXrODuOd-fYsDPdNNrh1lWrTGg.roa (hash: GMKotDEC88NA+4fDY4Zr474R88l4xehGmWg+S+gHmGs=) 8: OcMZVyVloZZySYmNU42uJMFrw00.roa (hash: qo2SMPpbHqGeIkozGrC/IhsMjcA3oPz0SbjIugJKUvI=) 9: SurxeuMdlskjuu3oYAuFe-LzI8M.roa (hash: 9OemVku/OKkAc8vWIb9L3h+sirBxDXbcyQDLzj4sRek=) 10: bEH5Kb_JxIsOf8NFTGqjxxX7Xjg.roa (hash: Wkq56SxLjfQuAzigZV+LZ+Tz+MwclDnD23mbqM1t154=) 11: dL3IzOg1UpU0KLgrBKnEj4l1jA8.roa (hash: 3YgRQyZRliUMEGuznkNfu0Ufp0hvubNIOY9jpqd3stI=) 12: f7LsGrvkzonZbKx6h9rfNoJiATg.roa (hash: 9Dpm/+wE/UcHzDGMwoIiwEid3dR1ii8tlzzu9gMO19Y=) 13: fDzcJILtNy8gabJaWvP2k_a9E8Y.roa (hash: tu+lNHGPKDdRKEb9217W93fSnmTXENRYQcumtWXAHaA=) 14: iu7G1jMxQ2lv64XFMde8bbbPSLU.roa (hash: RgUNoo6pdNMILBtPiPfHX24EBiu494cJcX/6iG7d81E=) 15: kAYsCGHHapeWyRdB0_jPwzmQLrY.roa (hash: e2lpkolZKjE9NM4M8R/1yj50nSph0tqGdIs65nZCfxU=) 16: n03FakmoembHe5NoRgq9mBjrlUY.roa (hash: N1XJWkN5e1w9El2cyobAtRrOljOYUNTGJ0epFNlSttY=) 17: qk0FUWc4g7-rCf4jzHEzAHszGAA.roa (hash: GunTXkpwib+5vHDKky3KMzsex2PU+WTByaw3+Jj0UMA=) 18: rGGZg439vex95mUKgcMPvs4JMUQ.roa (hash: XpuXSU/j4dcZUykCyW8ZSTfN4ckH396cv2AUJySQhGA=) 19: taq1f8B4gDrPPLkRjB5G--cKZ6w.roa (hash: LNpmRHYAhx4349fbn+pqE7K8i0+U/zqTRDaULiTSoRw=) 20: v4eqK1b8zxDNQHwxOmW5wsyqdeI.roa (hash: eX7gYxG9IOP2iO3Mrrl0dV+jdD4i75o9WrpRKcFzoBs=) 21: ySYQijpah9jspq92Cty2PvGMt1k.roa (hash: fCH7j5wnTzYdAbg2fmEZmldxKqDMmeoSl0GGRroK9Io=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 01:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3733 (0xe95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Oct 28 21:26:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C701BF6C77DF67120ABF8D99F430587BAB7F7A2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:99:08:bc:a5:93:d1:04:94:85:0d:43:66: cd:80:d9:ff:77:f9:9c:a2:6b:d8:7f:85:3c:41:66: 82:cd:12:d0:d9:2c:e5:da:0e:d6:c3:80:8c:63:69: 02:fd:03:fb:93:7b:ca:00:7e:68:d7:e2:20:4a:a5: c4:65:f4:78:66:4a:3e:70:f2:53:4b:71:63:45:c5: e8:43:7a:98:d5:29:13:46:87:cb:8d:66:fd:a3:1d: cb:a0:85:8d:36:21:ff:64:c9:f4:76:62:5b:39:4e: 6d:2d:b5:04:5b:98:b2:64:79:6a:e5:e8:ed:aa:0f: fb:73:aa:3c:92:3f:d4:47:4b:77:7b:69:d2:4b:61: 55:13:d6:4f:2b:3f:77:0c:cd:9e:17:59:56:bf:a6: b5:b9:e2:b2:54:65:6b:db:fe:cd:05:eb:33:e4:bf: 2a:e6:c2:2e:02:d1:b8:ff:9a:6e:10:c9:3c:e8:4c: 36:c0:1f:17:37:eb:1f:e5:df:33:42:4d:da:6c:91: d0:d6:90:b9:39:d7:90:0f:85:f3:1e:1d:b8:25:72: 25:6e:bd:c5:45:4a:2d:07:12:32:5d:d6:ea:24:02: 76:4c:d1:85:17:67:06:e3:2e:df:97:3f:98:6e:71: ba:0c:25:61:a6:dc:ec:2f:bd:65:93:c7:09:08:de: d9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:01:BF:6C:77:DF:67:12:0A:BF:8D:99:F4:30:58:7B:AB:7F:7A:2D X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:7d:37:ad:40:4e:42:8b:d1:70:12:d8:22:d0:a3:32:ff:4b: fb:9b:d1:fe:e9:f9:eb:a3:64:cb:1a:db:d5:e4:9c:65:c6:e7: a0:aa:57:01:7d:22:d0:24:4c:73:6b:0f:e0:26:b4:7d:bc:61: 01:be:4b:ca:25:4c:e4:77:1b:bb:6f:55:a6:1a:30:72:ee:97: 79:d2:0a:2d:73:25:b0:ce:29:cd:45:02:77:06:bb:00:b4:2b: 56:c2:ef:ff:65:97:d1:d0:5e:84:df:c7:be:70:63:02:34:04: 67:18:29:cc:86:33:34:70:2b:b4:f0:5a:5d:3c:95:fd:d0:97: 4c:3e:38:d4:bc:95:57:09:4a:f2:9d:a3:3f:77:d6:f9:d2:59: 05:aa:f5:c6:a5:23:e6:5d:25:78:69:d4:c0:a6:48:1a:8d:0b: f2:58:a1:62:58:6a:3a:ff:47:06:18:48:ff:e4:b8:60:a5:a6: 8b:be:48:b8:94:d6:29:8d:34:e2:72:a2:d0:55:46:bd:8b:3f: 4f:00:76:85:27:e5:2e:e2:59:99:d8:29:ee:db:0f:13:f8:c8: 54:05:1a:af:4a:26:f7:cc:a9:1b:9d:c6:99:ed:e5:0c:9b:e4: 4b:93:49:75:2b:bc:20:49:7a:91:cb:ca:ea:92:b0:26:11:9d: d3:fa:b4:08 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTEwMjgy MTI2NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM3MDFCRjZDNzdERjY3 MTIwQUJGOEQ5OUY0MzA1ODdCQUI3RjdBMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGX5kIvKWT0QSUhQ1DZs2A2f93+Zyia9h/hTxBZoLNEtDZLOXa DtbDgIxjaQL9A/uTe8oAfmjX4iBKpcRl9HhmSj5w8lNLcWNFxehDepjVKRNGh8uN Zv2jHcughY02If9kyfR2Yls5Tm0ttQRbmLJkeWrl6O2qD/tzqjySP9RHS3d7adJL YVUT1k8rP3cMzZ4XWVa/prW54rJUZWvb/s0F6zPkvyrmwi4C0bj/mm4QyTzoTDbA Hxc36x/l3zNCTdpskdDWkLk515APhfMeHbglciVuvcVFSi0HEjJd1uokAnZM0YUX ZwbjLt+XP5hucboMJWGm3OwvvWWTxwkI3tnxAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUxwG/bHffZxIKv42Z9DBYe6t/ei0wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vQWFVeVliSUFINmZyVjNr LUxsZWJjeUw0NTJvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB ABJ9N61ATkKL0XAS2CLQozL/S/ub0f7p+eujZMsa29XknGXG56CqVwF9ItAkTHNr D+AmtH28YQG+S8olTOR3G7tvVaYaMHLul3nSCi1zJbDOKc1FAncGuwC0K1bC7/9l l9HQXoTfx75wYwI0BGcYKcyGMzRwK7TwWl08lf3Ql0w+ONS8lVcJSvKdoz931vnS WQWq9calI+ZdJXhp1MCmSBqNC/JYoWJYajr/RwYYSP/kuGClpou+SLiU1imNNOJy otBVRr2LP08AdoUn5S7iWZnYKe7bDxP4yFQFGq9KJvfMqRudxpnt5Qyb5EuTSXUr vCBJepHLyuqSsCYRndP6tAg= -----END CERTIFICATE-----Generated at Tue Oct 28 23:10:17 2025 by rpki-client