$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft File: m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft (raw, json) Hash identifier: 6VLpzLrpRxuifF0B09OoCKl6Y/GhHaix8ZHPheYHyJo= Subject key identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 0347 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft Manifest number: 0330 Signing time: Fri 24 Oct 2025 18:57:20 +0000 Manifest this update: Fri 24 Oct 2025 18:57:20 +0000 Manifest next update: Sun 26 Oct 2025 18:57:20 +0000 Files and hashes: 1: 1FZ9xVPUVQZd3NZxmi3VEnlQsEg.roa (hash: U+TPLK5JTqhFXUtthiNct6dA59hyvG0NSPtNFes7KL0=) 2: 4NjTqan12me_p3c4kJ5pASqS4jM.roa (hash: uibqPg6JVeqXPcRIxVkudxh5JGzOD9Rmz0K5VlzMxVQ=) 3: HXMq6aoknxTmytxY7RSrHsYpt_g.roa (hash: hJpvy00NLN4dlxIzwmKdDB1poqJMfeou7n0Fuw2imM4=) 4: hwPzsGds16UWb86szZaeZXXvQpE.roa (hash: iY4c0DjiGId0Aa15ap0LWbmvwGS4G2BS3tUGBUnNRRw=) 5: m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl (hash: m0wkQ/t6gkK0GczAXV/B4DCW+eWRTzZFBybkQq3CS0k=) 6: q8MZgMWgdtePuCv9114g_FqV6KY.roa (hash: ZPULdz8ciqCZCwIwOw2ZvUgUjQs9WSuMXc4jxCbfUFw=) 7: w10Xzm3QnT0ajMLDmBOEIonN8Ro.roa (hash: QYwPy/H598La7J5MB1HqoJS0u7dDO+OJwY1gvU8qT5A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Oct 24 18:57:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=795D905E77952DD1FEC28C6A56DA1FDDCF1E0C6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:39:bb:30:78:4f:5e:c4:e7:47:9e:70:1b:2a: d2:fc:24:de:98:60:2f:fc:73:5a:7f:3a:94:74:4a: a8:cf:a5:6c:26:b5:7e:90:27:e3:1f:f5:5e:c4:c3: 62:de:e1:c8:07:f8:9f:ed:b9:cc:5c:43:3b:fc:1d: f5:74:12:ab:fe:a6:e9:ec:fb:95:fb:e2:e6:2d:18: 71:14:b8:75:36:f1:25:b0:fa:09:4b:89:28:97:fa: 34:c0:dc:fb:0f:74:e5:e9:82:e3:e3:3c:b9:44:31: ab:d7:ec:25:43:d4:b4:87:5b:bd:66:de:30:b2:1b: 4c:cb:c3:6d:ae:99:12:bc:80:95:46:76:39:e0:59: b1:fb:79:b5:4f:c9:c0:5d:05:a9:4b:e9:48:1c:9c: 47:f4:35:81:7c:72:d5:25:5b:9b:ce:c4:2b:1a:a4: 6f:d6:90:e1:95:bc:19:b1:3e:00:3e:b2:9e:63:b7: b7:64:68:7c:f8:18:2f:6b:8d:fa:11:7c:82:df:8b: 72:7b:1f:9a:fb:7f:17:11:73:42:64:b0:28:70:91: 14:ef:48:da:e9:82:6b:93:03:81:48:fc:03:9f:8a: 36:2e:de:af:ff:2e:01:1e:e2:60:05:62:b5:c5:a4: 3f:8d:d9:fc:77:e5:1c:59:bb:be:67:03:e6:18:d5: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:bd:17:cb:63:92:f3:da:4e:d4:dd:a7:3c:53:d6:13:04:5e: 6c:de:78:c4:97:27:94:15:5a:4c:b0:45:cd:6f:8a:b7:e6:a4: 53:44:ca:64:3f:0d:0d:fd:7d:47:33:cc:e9:59:64:60:2f:4d: be:fa:df:d5:fd:9f:35:22:ab:5a:ef:bd:d5:b9:4f:8d:6b:6b: cc:20:4c:2b:f3:16:38:5c:b3:f6:4b:8f:29:dd:d7:fd:ed:53: 13:b7:39:79:51:59:e2:7e:10:f3:99:2c:a2:bf:ee:55:b0:15: a7:97:16:4b:2a:19:e4:8c:80:70:5a:d9:d2:2f:12:fa:78:55: 1d:80:d7:27:f3:a3:c9:a5:54:ad:0a:cc:59:78:fb:1a:1c:bd: 0d:b9:da:c4:04:58:80:88:f8:f3:c6:e7:24:77:9a:f7:93:11: e7:ef:e3:11:26:3e:13:9a:61:ff:64:25:23:de:fd:07:a7:a0: b2:3e:e4:ab:68:54:39:7a:31:e9:23:ff:cf:b5:3b:1f:07:ad: e9:21:f0:ea:43:3d:e0:15:d6:8f:8b:b2:ad:5e:0b:9a:b6:8f: f1:80:69:64:07:10:c0:89:a6:2f:c1:c8:33:a6:4e:bf:26:db: 6d:a7:3d:30:22:49:63:b2:5f:19:92:a4:9e:eb:e7:37:93:03: 4a:3c:99:c2 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNTEwMjQx ODU3MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc5NUQ5MDVFNzc5NTJE RDFGRUMyOEM2QTU2REExRkREQ0YxRTBDNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeObsweE9exOdHnnAbKtL8JN6YYC/8c1p/OpR0SqjPpWwmtX6Q J+Mf9V7Ew2Le4cgH+J/tucxcQzv8HfV0Eqv+puns+5X74uYtGHEUuHU28SWw+glL iSiX+jTA3PsPdOXpguPjPLlEMavX7CVD1LSHW71m3jCyG0zLw22umRK8gJVGdjng WbH7ebVPycBdBalL6UgcnEf0NYF8ctUlW5vOxCsapG/WkOGVvBmxPgA+sp5jt7dk aHz4GC9rjfoRfILfi3J7H5r7fxcRc0JksChwkRTvSNrpgmuTA4FI/AOfijYu3q// LgEe4mAFYrXFpD+N2fx35RxZu75nA+YY1ZXPAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUeV2QXneVLdH+woxqVtof3c8eDGswHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vbV96Nm9oQm5R ckxBbWVQMHdxVUVLT1hOWXRNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAS9F8tjkvPaTtTdpzxT1hMEXmzeeMSXJ5QVWkywRc1virfmpFNEymQ/ DQ39fUczzOlZZGAvTb7639X9nzUiq1rvvdW5T41ra8wgTCvzFjhcs/ZLjynd1/3t UxO3OXlRWeJ+EPOZLKK/7lWwFaeXFksqGeSMgHBa2dIvEvp4VR2A1yfzo8mlVK0K zFl4+xocvQ252sQEWICI+PPG5yR3mveTEefv4xEmPhOaYf9kJSPe/QenoLI+5Kto VDl6Mekj/8+1Ox8Hrekh8OpDPeAV1o+Lsq1eC5q2j/GAaWQHEMCJpi/ByDOmTr8m 222nPTAiSWOyXxmSpJ7r5zeTA0o8mcI= -----END CERTIFICATE-----Generated at Sat Oct 25 22:11:58 2025 by rpki-client