$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft File: TwAMtt3TdIem3h9-rb2hJwjrLBk.mft (raw, json) Hash identifier: +4N11FjMQ6xidNk+PkMgmJ3YDirmWZXnB/GFbsi0Xpc= Subject key identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 Authority key identifier: 4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 Certificate issuer: /CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Certificate serial: 0237 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft Manifest number: 0234 Signing time: Mon 27 Oct 2025 15:56:43 +0000 Manifest this update: Mon 27 Oct 2025 15:56:43 +0000 Manifest next update: Wed 29 Oct 2025 15:56:43 +0000 Files and hashes: 1: TwAMtt3TdIem3h9-rb2hJwjrLBk.crl (hash: dAYpS4BTRSi2eknMLEWjbj/4SQkMGePOl/kRyl6MEts=) 2: _d-jZUiEDfO83PbVIn2gqWW69UA.roa (hash: ugvANw5msTs2WUJu2szekovokCLPID5epRFPn6Vko5k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 01:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Validity Not Before: Oct 27 15:56:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6BA0B4DA6503A1532D5360C18EB1A32EBAA66400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:5d:3b:a1:99:c6:fb:3b:7a:74:a4:7e:e8: 5a:72:42:8e:25:eb:10:33:c3:96:55:5b:d2:40:e7: 21:01:fa:e3:1d:64:7e:e0:b5:b8:7a:de:05:10:27: 88:10:c4:88:8b:76:b3:fb:b3:98:fc:c7:2e:45:ba: 3e:4d:f3:cc:5a:c3:45:13:4a:8c:de:59:79:85:6f: c7:ed:14:0d:fb:9d:cd:4a:27:96:94:13:5b:2a:5a: c5:37:40:d8:78:84:88:fb:2a:90:27:fb:70:2a:9a: b3:ec:e5:34:d3:1c:48:37:6f:84:0b:e5:23:fe:b8: e4:55:82:0c:70:55:91:9a:87:e1:9c:f5:5d:94:e6: 76:d7:b8:ab:c8:f5:06:ef:f8:66:29:51:6b:07:7a: 21:fa:de:af:82:f0:c2:5a:1d:3e:91:24:4e:d2:67: 2e:9a:42:d1:1d:72:1a:5b:dd:ee:c5:2e:54:c7:59: df:c7:dd:5f:b4:1f:6f:95:76:d8:4b:e1:12:ad:2b: 08:8d:9d:2b:9d:7a:eb:da:f6:3e:d0:83:30:38:5d: 4c:4e:f1:fc:c3:30:9a:05:bf:fa:16:d7:1e:3c:fc: bc:4d:83:8a:1f:5e:cb:5b:73:c2:47:72:92:83:5b: 15:57:fa:95:85:6c:8f:7d:22:03:31:ec:22:d8:39: 0c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 X509v3 Authority Key Identifier: keyid:4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:80:c3:36:c5:24:ff:b6:28:0f:d8:1f:7d:3a:5a:99:72:22: 40:87:1b:67:8e:2e:2d:54:eb:3b:af:5b:1f:19:f1:91:9d:e3: 34:70:78:fc:3c:3d:33:e3:3a:a9:c6:15:fd:d9:02:96:37:37: aa:5e:76:72:76:b0:1c:3b:ba:28:93:89:5e:6a:d0:d3:93:94: 73:24:b0:e4:fe:2d:88:ab:53:56:4b:75:90:bc:a5:dc:a0:f1: 4b:12:4c:00:25:82:48:4d:7c:1c:6e:5b:cd:db:94:53:da:17: 10:44:d3:58:c2:3a:2a:5b:87:38:0b:4e:6d:3c:7b:dd:33:74: 6c:66:23:cc:5b:76:48:bd:76:16:03:c0:e8:5a:52:dd:f8:e8: 54:94:b7:5d:8f:3a:35:23:6b:31:0f:92:cc:cb:3e:ce:cc:e2: 24:85:8a:2a:fb:22:a0:b8:9d:4f:62:59:67:16:9c:52:a4:6b: 4a:61:62:49:72:82:be:2d:b3:36:6d:37:56:72:94:0a:04:26: a7:c6:27:f5:55:65:d1:fa:3d:ed:4b:9f:75:55:a8:61:9b:f8: 98:69:28:56:c7:8d:ee:65:1a:61:2a:5e:35:56:d0:ef:ab:b5: d0:4d:a5:e2:0d:14:30:73:aa:52:ad:31:a4:3e:e1:78:b8:e8: 53:dd:9a:df -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEYw MDBDQjZEREQzNzQ4N0E2REUxRjdFQURCREExMjcwOEVCMkMxOTAeFw0yNTEwMjcx NTU2NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZCQTBCNERBNjUwM0Ex NTMyRDUzNjBDMThFQjFBMzJFQkFBNjY0MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoHl07oZnG+zt6dKR+6FpyQo4l6xAzw5ZVW9JA5yEB+uMdZH7g tbh63gUQJ4gQxIiLdrP7s5j8xy5Fuj5N88xaw0UTSozeWXmFb8ftFA37nc1KJ5aU E1sqWsU3QNh4hIj7KpAn+3AqmrPs5TTTHEg3b4QL5SP+uORVggxwVZGah+Gc9V2U 5nbXuKvI9Qbv+GYpUWsHeiH63q+C8MJaHT6RJE7SZy6aQtEdchpb3e7FLlTHWd/H 3V+0H2+VdthL4RKtKwiNnSudeuva9j7QgzA4XUxO8fzDMJoFv/oW1x48/LxNg4of Xstbc8JHcpKDWxVX+pWFbI99IgMx7CLYOQwLAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUa6C02mUDoVMtU2DBjrGjLrqmZAAwHwYDVR0jBBgwFoAUTwAMtt3TdIem3h9+ rb2hJwjrLBkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv VHdBTXR0M1RkSWVtM2g5LXJiMmhKd2pyTEJrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Ud0FNdHQzVGRJZW0zaDktcmIyaEp3anJMQmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS9Ud0FNdHQzVGRJZW0zaDktcmIy aEp3anJMQmsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgoDD NsUk/7YoD9gffTpamXIiQIcbZ44uLVTrO69bHxnxkZ3jNHB4/Dw9M+M6qcYV/dkC ljc3ql52cnawHDu6KJOJXmrQ05OUcySw5P4tiKtTVkt1kLyl3KDxSxJMACWCSE18 HG5bzduUU9oXEETTWMI6KluHOAtObTx73TN0bGYjzFt2SL12FgPA6FpS3fjoVJS3 XY86NSNrMQ+SzMs+zsziJIWKKvsioLidT2JZZxacUqRrSmFiSXKCvi2zNm03VnKU CgQmp8Yn9VVl0fo97UufdVWoYZv4mGkoVseN7mUaYSpeNVbQ76u10E2l4g0UMHOq Uq0xpD7heLjoU92a3w== -----END CERTIFICATE-----Generated at Tue Oct 28 21:50:09 2025 by rpki-client