$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft File: agoWUzfc-5EnxghAxFy8641tv3U.mft (raw, json) Hash identifier: vHTelDTHLpcH3wpLYPvGhtdJPfyXuURWsJYLVOIYtzk= Subject key identifier: 65:79:98:3B:90:AB:DC:26:D8:11:75:53:DF:21:66:FA:E0:26:43:31 Authority key identifier: 6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75 Certificate issuer: /CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75 Certificate serial: 01A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft Manifest number: 019B Signing time: Mon 27 Oct 2025 09:57:51 +0000 Manifest this update: Mon 27 Oct 2025 09:57:51 +0000 Manifest next update: Wed 29 Oct 2025 09:57:51 +0000 Files and hashes: 1: agoWUzfc-5EnxghAxFy8641tv3U.crl (hash: CFVaKgPmusbvxagMmEDjvfzHGFk9YmSH1L/g4jjdWj4=) 2: m9sr44yopVtBGaFN1rTZk9HwKvs.roa (hash: Iwgi4+scPw9ONWEICD9ImWuS2yG1IRQUh6LodXQVs+o=) 3: xWizb_o9xK91PWc8yBDWVukQpAs.roa (hash: sXyiqxn/UKcyS8fyXe9tfgO/mF6s5bppdmlNFFENh0o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75 Validity Not Before: Oct 27 09:57:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6579983B90ABDC26D8117553DF2166FAE0264331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bd:10:3b:86:1d:66:1c:ce:de:2d:4c:b7:47: 50:ba:71:34:f6:62:55:1b:10:ce:6f:f1:c3:9f:17: fc:d3:2f:31:d0:15:0d:28:93:33:b1:c1:a2:79:3b: 22:6b:3d:63:3c:76:b9:9c:3c:22:77:2e:6c:bd:b8: f8:69:f0:61:1f:6c:ff:59:10:6d:86:1b:b7:4b:e6: cd:00:73:32:2e:e6:b1:1a:4f:87:7e:7f:50:80:55: 0e:91:3e:ee:7e:7b:bd:45:5d:5a:1d:1e:a0:a3:d8: fc:40:79:81:fa:8f:14:77:e4:70:ea:00:c2:cb:9c: 6b:b6:dd:7c:8c:91:01:3d:7f:98:5e:b9:36:23:d1: f8:44:4d:a5:8a:fe:ea:3e:4b:20:b4:37:ec:89:15: 39:ea:97:86:46:97:13:73:2d:36:66:77:cb:ed:91: 53:79:fe:32:c4:24:52:52:d1:45:4b:30:f4:f9:6e: 38:12:73:1c:2b:44:dc:97:07:f0:91:76:b8:07:6e: c9:80:d1:2b:cb:6f:14:1c:15:ef:c1:2f:5d:00:f0: f4:44:93:2a:c4:b3:ec:a0:b6:bf:2c:ba:1e:55:60: a3:4f:ea:73:4e:55:94:4e:76:86:55:9f:f7:9a:4d: 50:c0:7f:b0:9a:bd:8f:8d:63:02:38:f7:e9:f6:54: 16:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:79:98:3B:90:AB:DC:26:D8:11:75:53:DF:21:66:FA:E0:26:43:31 X509v3 Authority Key Identifier: keyid:6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:94:5e:3f:0c:55:83:46:e9:0f:a1:35:84:89:ce:40:3b:e9: d7:ff:2d:26:e4:57:a1:4b:a2:c0:61:83:e0:4d:d3:01:0a:86: 0e:d7:c3:2f:bd:a0:21:f6:22:0c:04:76:97:33:f5:16:65:ba: 76:3c:ba:99:bd:81:08:0f:33:eb:73:06:f0:30:86:74:c4:08: 63:4c:2e:1e:d2:3e:13:f8:c1:74:0c:56:63:f0:64:6d:33:d6: fa:c6:90:82:54:d7:e3:50:43:b6:66:d5:de:bf:5a:29:0b:38: 7f:c1:90:d0:20:8e:21:34:b1:ee:5f:51:95:fb:03:ea:85:39: 27:65:93:17:1b:a9:2f:fb:66:fc:de:26:af:c6:0c:aa:e7:5c: 69:6b:80:a2:ac:13:8b:5e:d9:a9:e4:aa:c1:2c:39:f6:9d:e4: 2f:fa:f4:ee:a4:0f:29:e0:67:f5:50:ce:82:d1:4b:d7:47:34: 5e:c6:00:5d:86:59:9e:3b:b5:8a:f1:3c:7f:5d:52:42:99:c1: 9b:82:53:f6:78:ad:cb:af:31:b3:35:e6:57:ae:f9:bc:10:8d: 02:cd:5c:55:c4:de:33:60:c2:31:f7:ec:3a:35:29:b4:9f:2f: 48:8e:1d:fe:4e:3b:d2:1e:e6:ee:46:0b:4d:ae:b3:47:0e:73: de:31:39:2d -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEw QTE2NTMzN0RDRkI5MTI3QzYwODQwQzQ1Q0JDRUI4RDZEQkY3NTAeFw0yNTEwMjcw OTU3NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1Nzk5ODNCOTBBQkRD MjZEODExNzU1M0RGMjE2NkZBRTAyNjQzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClvRA7hh1mHM7eLUy3R1C6cTT2YlUbEM5v8cOfF/zTLzHQFQ0o kzOxwaJ5OyJrPWM8drmcPCJ3Lmy9uPhp8GEfbP9ZEG2GG7dL5s0AczIu5rEaT4d+ f1CAVQ6RPu5+e71FXVodHqCj2PxAeYH6jxR35HDqAMLLnGu23XyMkQE9f5heuTYj 0fhETaWK/uo+SyC0N+yJFTnql4ZGlxNzLTZmd8vtkVN5/jLEJFJS0UVLMPT5bjgS cxwrRNyXB/CRdrgHbsmA0SvLbxQcFe/BL10A8PREkyrEs+ygtr8suh5VYKNP6nNO VZROdoZVn/eaTVDAf7CavY+NYwI49+n2VBY5AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUZXmYO5Cr3CbYEXVT3yFm+uAmQzEwHwYDVR0jBBgwFoAUagoWUzfc+5EnxghA xFy8641tv3UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExF L2Fnb1dVemZjLTVFbnhnaEF4Rnk4NjQxdHYzVS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvYWdvV1V6ZmMtNUVueGdoQXhGeTg2NDF0djNVLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExFL2Fnb1dVemZjLTVFbnhnaEF4 Rnk4NjQxdHYzVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCd lF4/DFWDRukPoTWEic5AO+nX/y0m5FehS6LAYYPgTdMBCoYO18MvvaAh9iIMBHaX M/UWZbp2PLqZvYEIDzPrcwbwMIZ0xAhjTC4e0j4T+MF0DFZj8GRtM9b6xpCCVNfj UEO2ZtXev1opCzh/wZDQII4hNLHuX1GV+wPqhTknZZMXG6kv+2b83iavxgyq51xp a4CirBOLXtmp5KrBLDn2neQv+vTupA8p4Gf1UM6C0UvXRzRexgBdhlmeO7WK8Tx/ XVJCmcGbglP2eK3LrzGzNeZXrvm8EI0CzVxVxN4zYMIx9+w6NSm0ny9Ijh3+TjvS HubuRgtNrrNHDnPeMTkt -----END CERTIFICATE-----Generated at Tue Oct 28 01:32:32 2025 by rpki-client