$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft File: m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft (raw, json) Hash identifier: f99EJdTgQx/nRbCVwBnLMEkV3fbz4jrqoQoJbfZmOLU= Subject key identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 0325 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft Manifest number: 0310 Signing time: Sun 07 Sep 2025 21:19:37 +0000 Manifest this update: Sun 07 Sep 2025 21:19:37 +0000 Manifest next update: Tue 09 Sep 2025 21:19:37 +0000 Files and hashes: 1: 1FZ9xVPUVQZd3NZxmi3VEnlQsEg.roa (hash: U+TPLK5JTqhFXUtthiNct6dA59hyvG0NSPtNFes7KL0=) 2: HXMq6aoknxTmytxY7RSrHsYpt_g.roa (hash: hJpvy00NLN4dlxIzwmKdDB1poqJMfeou7n0Fuw2imM4=) 3: m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl (hash: k9y0A37GfgjOrtXQl/JZABB76eXghiTgRGys0dbvJCc=) 4: q8MZgMWgdtePuCv9114g_FqV6KY.roa (hash: ZPULdz8ciqCZCwIwOw2ZvUgUjQs9WSuMXc4jxCbfUFw=) 5: w10Xzm3QnT0ajMLDmBOEIonN8Ro.roa (hash: QYwPy/H598La7J5MB1HqoJS0u7dDO+OJwY1gvU8qT5A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 10:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 805 (0x325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Sep 7 21:19:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=795D905E77952DD1FEC28C6A56DA1FDDCF1E0C6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:39:bb:30:78:4f:5e:c4:e7:47:9e:70:1b:2a: d2:fc:24:de:98:60:2f:fc:73:5a:7f:3a:94:74:4a: a8:cf:a5:6c:26:b5:7e:90:27:e3:1f:f5:5e:c4:c3: 62:de:e1:c8:07:f8:9f:ed:b9:cc:5c:43:3b:fc:1d: f5:74:12:ab:fe:a6:e9:ec:fb:95:fb:e2:e6:2d:18: 71:14:b8:75:36:f1:25:b0:fa:09:4b:89:28:97:fa: 34:c0:dc:fb:0f:74:e5:e9:82:e3:e3:3c:b9:44:31: ab:d7:ec:25:43:d4:b4:87:5b:bd:66:de:30:b2:1b: 4c:cb:c3:6d:ae:99:12:bc:80:95:46:76:39:e0:59: b1:fb:79:b5:4f:c9:c0:5d:05:a9:4b:e9:48:1c:9c: 47:f4:35:81:7c:72:d5:25:5b:9b:ce:c4:2b:1a:a4: 6f:d6:90:e1:95:bc:19:b1:3e:00:3e:b2:9e:63:b7: b7:64:68:7c:f8:18:2f:6b:8d:fa:11:7c:82:df:8b: 72:7b:1f:9a:fb:7f:17:11:73:42:64:b0:28:70:91: 14:ef:48:da:e9:82:6b:93:03:81:48:fc:03:9f:8a: 36:2e:de:af:ff:2e:01:1e:e2:60:05:62:b5:c5:a4: 3f:8d:d9:fc:77:e5:1c:59:bb:be:67:03:e6:18:d5: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:5d:8d:46:bb:0c:34:05:1a:29:c5:12:71:50:3b:ff:8b:41: db:69:69:e9:5c:2c:34:8a:02:1c:96:23:05:3f:3a:7d:ca:1f: f3:90:a6:51:05:0c:d0:3e:4f:2d:2e:ad:89:30:12:f1:e0:b6: 1e:38:cf:4b:c1:a9:fb:8a:d8:60:ed:53:a8:75:95:af:b9:4f: c4:77:5d:05:ab:43:79:7b:ff:83:62:e0:ea:33:88:b0:bf:cb: a8:3b:1a:2a:77:b3:35:36:8c:ba:d4:32:0f:06:c6:cf:39:27: ce:3a:e7:c0:2e:76:4e:52:02:8e:7c:88:40:53:17:f1:a0:a1: 2f:61:9f:8f:21:5e:ef:59:86:07:34:9d:e9:56:30:ee:0d:ca: e2:04:48:4c:70:4f:77:00:54:a6:db:06:59:e2:d6:51:59:37: 49:90:4d:86:2e:b8:6e:20:80:42:e9:d6:47:31:b1:56:0d:ed: 26:1e:94:a1:bd:8b:58:a2:2e:0c:76:12:ab:8b:ba:46:32:59: 44:0b:6d:c2:9d:73:9c:b5:18:7a:6b:f5:d5:aa:28:70:8a:bb: 26:88:59:97:f3:02:a3:d4:31:08:41:46:a4:a1:dd:07:00:67: 85:db:c7:0e:b5:58:86:81:cc:a9:e3:6a:a7:fc:86:66:17:7c: f2:be:cc:14 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNTA5MDcy MTE5MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc5NUQ5MDVFNzc5NTJE RDFGRUMyOEM2QTU2REExRkREQ0YxRTBDNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeObsweE9exOdHnnAbKtL8JN6YYC/8c1p/OpR0SqjPpWwmtX6Q J+Mf9V7Ew2Le4cgH+J/tucxcQzv8HfV0Eqv+puns+5X74uYtGHEUuHU28SWw+glL iSiX+jTA3PsPdOXpguPjPLlEMavX7CVD1LSHW71m3jCyG0zLw22umRK8gJVGdjng WbH7ebVPycBdBalL6UgcnEf0NYF8ctUlW5vOxCsapG/WkOGVvBmxPgA+sp5jt7dk aHz4GC9rjfoRfILfi3J7H5r7fxcRc0JksChwkRTvSNrpgmuTA4FI/AOfijYu3q// LgEe4mAFYrXFpD+N2fx35RxZu75nA+YY1ZXPAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUeV2QXneVLdH+woxqVtof3c8eDGswHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vbV96Nm9oQm5R ckxBbWVQMHdxVUVLT1hOWXRNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHpdjUa7DDQFGinFEnFQO/+LQdtpaelcLDSKAhyWIwU/On3KH/OQplEF DNA+Ty0urYkwEvHgth44z0vBqfuK2GDtU6h1la+5T8R3XQWrQ3l7/4Ni4OoziLC/ y6g7Gip3szU2jLrUMg8Gxs85J84658Audk5SAo58iEBTF/GgoS9hn48hXu9Zhgc0 nelWMO4NyuIESExwT3cAVKbbBlni1lFZN0mQTYYuuG4ggELp1kcxsVYN7SYelKG9 i1iiLgx2EquLukYyWUQLbcKdc5y1GHpr9dWqKHCKuyaIWZfzAqPUMQhBRqSh3QcA Z4Xbxw61WIaBzKnjaqf8hmYXfPK+zBQ= -----END CERTIFICATE-----Generated at Mon Sep 8 08:39:58 2025 by rpki-client