$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft File: x1hCDPdi5IrXyqYOs53NYisftPY.mft (raw, json) Hash identifier: QPpctBgbX0K3VA4WiIrbnxn8LTVnfILONZc0LX5kd7o= Subject key identifier: 3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33 Authority key identifier: C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 Certificate issuer: /CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Certificate serial: 016F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft Manifest number: 016E Signing time: Thu 18 Sep 2025 09:20:38 +0000 Manifest this update: Thu 18 Sep 2025 09:20:38 +0000 Manifest next update: Sat 20 Sep 2025 09:20:38 +0000 Files and hashes: 1: YaQpCWAKC9tUppCHG9-rOfTu6bg.roa (hash: FMHp4ON7Uq3Fg/+iT+yTBDOUIs/Z7ZOuEXB1WvJ+5jM=) 2: x1hCDPdi5IrXyqYOs53NYisftPY.crl (hash: lN2Ooexyz1pyMKC4Xj+QsnkLIqNOdfo3TyRWvxOBcTg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 15:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Validity Not Before: Sep 18 09:20:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3B2E1528E75A4B9A454579558F70254185675633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1c:1f:bc:16:1d:9c:c6:2f:56:f4:ff:ba:2b: b1:61:05:0c:4e:14:c0:9c:13:62:be:3b:df:1a:59: cb:cd:fd:61:c0:19:fb:93:ab:60:63:c7:76:cc:39: d8:3a:0b:9a:a2:36:65:53:87:76:e5:66:ec:6a:14: 02:39:f0:02:2b:ce:80:59:ab:34:53:30:8f:90:74: 46:c6:98:c9:40:8d:c7:ef:66:f9:0a:ed:63:06:0d: bc:a2:b8:ff:ce:72:47:4a:2a:b4:87:aa:50:c2:c0: c7:b3:24:54:c7:dc:9f:85:94:77:8c:94:eb:f3:74: 00:bc:5f:1b:71:75:f4:3e:c1:3d:44:9a:e8:50:96: 6e:5f:e8:f8:fb:78:08:0f:4e:bb:ec:a8:d5:ec:5e: d3:04:6f:f3:13:2e:55:7a:48:f1:42:df:6e:eb:c0: 35:87:5e:0e:53:c8:c1:52:27:0d:de:34:32:6a:66: fb:9b:71:f2:98:b6:fa:97:39:b3:6e:ed:9a:4e:1f: 8d:b4:ed:d7:58:20:d0:98:49:39:6c:b5:92:b9:54: 0f:b2:5a:d8:00:96:3e:d5:62:81:8a:67:a3:f5:68: c5:92:a5:cf:1a:dd:ee:5f:55:54:60:73:dc:6d:41: 09:c8:87:f3:e2:18:b5:55:42:38:20:97:12:c5:f9: 7b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33 X509v3 Authority Key Identifier: keyid:C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:3a:4c:30:47:ea:a5:7a:5e:79:fe:8e:27:ca:8a:be:6a:b7: 6d:bd:4d:70:9f:1e:a6:26:f2:d9:78:91:1f:a6:cb:bc:57:32: fc:0a:4a:bf:0f:b9:68:87:3e:a3:50:98:d7:58:97:24:27:14: 16:3d:bd:d1:16:f7:31:ba:e4:7c:24:b7:2e:27:be:b0:c1:84: 17:44:24:83:af:df:06:dd:d7:ae:55:23:6f:84:6e:b2:67:3b: c4:fa:73:20:fd:a7:ab:35:fc:ad:dd:0b:52:cb:7f:5d:7f:6e: 77:ce:b0:bb:8c:f3:68:24:42:89:86:3d:3c:fa:e7:25:b6:d6: 65:0c:0f:eb:d4:5c:c1:32:05:ec:6f:00:53:06:e2:c7:63:90: 96:96:9f:b3:00:07:6c:11:0c:5a:72:24:f8:87:e9:21:25:4c: 5d:8f:36:99:d4:df:ae:ae:13:29:cf:2e:48:53:5a:66:79:39: 43:e4:e6:1b:0d:7a:6c:82:c4:b2:68:44:ee:1e:09:30:3f:f8: 5e:78:41:d5:f1:db:36:ea:7a:3f:c0:f9:55:71:c9:c6:97:9a: f2:0a:dc:c0:6f:23:cb:f5:69:89:f6:ca:5b:47:8b:31:0d:bd: a4:78:25:5e:dc:63:f8:3c:e8:06:bb:11:ff:8b:4d:96:2d:58: b2:df:5e:20 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzc1 ODQyMENGNzYyRTQ4QUQ3Q0FBNjBFQjM5RENENjIyQjFGQjRGNjAeFw0yNTA5MTgw OTIwMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNCMkUxNTI4RTc1QTRC OUE0NTQ1Nzk1NThGNzAyNTQxODU2NzU2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYHB+8Fh2cxi9W9P+6K7FhBQxOFMCcE2K+O98aWcvN/WHAGfuT q2Bjx3bMOdg6C5qiNmVTh3blZuxqFAI58AIrzoBZqzRTMI+QdEbGmMlAjcfvZvkK 7WMGDbyiuP/OckdKKrSHqlDCwMezJFTH3J+FlHeMlOvzdAC8XxtxdfQ+wT1EmuhQ lm5f6Pj7eAgPTrvsqNXsXtMEb/MTLlV6SPFC327rwDWHXg5TyMFSJw3eNDJqZvub cfKYtvqXObNu7ZpOH4207ddYINCYSTlstZK5VA+yWtgAlj7VYoGKZ6P1aMWSpc8a 3e5fVVRgc9xtQQnIh/PiGLVVQjgglxLF+XuHAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUOy4VKOdaS5pFRXlVj3AlQYVnVjMwHwYDVR0jBBgwFoAUx1hCDPdi5IrXyqYO s53NYisftPYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL3gx aENEUGRpNUlyWHlxWU9zNTNOWWlzZnRQWS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev eDFoQ0RQZGk1SXJYeXFZT3M1M05ZaXNmdFBZLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL3gxaENEUGRpNUlyWHlxWU9zNTNOWWlz ZnRQWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQApOkwwR+ql el55/o4nyoq+ardtvU1wnx6mJvLZeJEfpsu8VzL8Ckq/D7lohz6jUJjXWJckJxQW Pb3RFvcxuuR8JLcuJ76wwYQXRCSDr98G3deuVSNvhG6yZzvE+nMg/aerNfyt3QtS y39df253zrC7jPNoJEKJhj08+uclttZlDA/r1FzBMgXsbwBTBuLHY5CWlp+zAAds EQxaciT4h+khJUxdjzaZ1N+urhMpzy5IU1pmeTlD5OYbDXpsgsSyaETuHgkwP/he eEHV8ds26no/wPlVccnGl5ryCtzAbyPL9WmJ9spbR4sxDb2keCVe3GP4POgGuxH/ i02WLViy314g -----END CERTIFICATE-----Generated at Thu Sep 18 13:58:33 2025 by rpki-client