$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft File: H31if-NqLr9pgJvIR7VDO_Q-N-g.mft (raw, json) Hash identifier: 4fVD8WroHUkabGS576ekO98M/49NSRYP0m3FvK1n5Zo= Subject key identifier: 27:5C:C2:56:94:0E:51:F3:12:8E:1D:6E:DB:74:51:7A:A9:AF:C2:31 Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Certificate serial: 01D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft Manifest number: 01CC Signing time: Tue 16 Sep 2025 21:20:28 +0000 Manifest this update: Tue 16 Sep 2025 21:20:28 +0000 Manifest next update: Thu 18 Sep 2025 21:20:28 +0000 Files and hashes: 1: 6U2F1T0apyKE_s6KjVTtn1ngCPM.roa (hash: T6Wekowtjx5HTVqLi5LQgaYJZqcoVmMpZasCEkrrxIw=) 2: H31if-NqLr9pgJvIR7VDO_Q-N-g.crl (hash: Nbg0yhQLJas7YyFlXy8MgZIRnK22zMsXz2hsp633oEk=) 3: N-gjgYlWMDGqdQ2nkVTKjiHMzIY.roa (hash: h9AfKnLubyMCMrK9zicrcaOKGGYE8n9yoUqLKuu2900=) 4: Yntbw-USYk856WNU8EElzSPWBdo.roa (hash: fs0JsH7V9nQ2QlDggHDOKuXkABqnkhYmDsoZKaYP6lE=) 5: ZZriLYLN89RKpRrPPoWbNOg-Drw.roa (hash: dJfoYpAcbLUL3dKXtP/JqT6iLtS+lGV8N+zRPUPTNVc=) 6: uRI5gHEQikWEx19BuluUhbg1CyU.roa (hash: eDXj8CJFc6oOu3dG1DvOfKjAY66n3EWlHuxVx4Q965Q=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8 Validity Not Before: Sep 16 21:20:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=275CC256940E51F3128E1D6EDB74517AA9AFC231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b4:34:3c:96:ec:88:b4:cc:dd:85:31:50:d3: 7a:8c:ad:83:30:6e:97:a2:f4:93:49:e0:86:5b:42: 34:6e:53:5c:4b:5d:41:9e:06:77:c2:c3:68:0b:f6: ba:e6:68:8f:8d:42:31:20:2c:0a:3b:00:c3:91:4f: b7:2e:e7:e7:1a:6b:09:9c:19:25:80:f1:d2:38:e5: 18:46:1f:a4:ad:90:4d:82:42:8f:25:bb:ef:69:ad: 73:9b:da:54:b8:81:36:98:e0:ef:da:5c:9c:ce:fe: a6:03:5f:06:24:ff:6b:72:78:7a:bb:a8:d3:42:f4: 3e:46:c8:80:72:ba:74:a7:56:61:2e:c1:4a:e8:e4: 0a:91:b2:50:bc:a1:9e:81:c9:7b:3a:2f:ab:89:83: f4:41:72:45:14:b1:f2:63:b9:a4:8e:ea:36:63:96: 17:45:3f:c8:b0:4b:46:7d:36:43:36:43:f5:f2:10: 92:c4:83:02:b9:8f:c6:d3:5b:10:ea:11:e7:68:f0: d9:2f:3a:9e:14:e1:14:14:09:99:e4:e3:23:0f:42: 94:13:f4:63:a4:2d:22:4d:0a:3e:b1:ac:de:e7:2f: 98:c7:72:b3:9b:c2:9f:46:24:04:b9:56:3d:8f:7d: cb:dd:7b:3b:7d:78:ac:f8:71:92:0b:e4:89:14:39: fb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5C:C2:56:94:0E:51:F3:12:8E:1D:6E:DB:74:51:7A:A9:AF:C2:31 X509v3 Authority Key Identifier: keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:8f:19:78:60:d1:17:cc:8f:f9:77:06:18:0f:10:1a:d9:05: 1d:a2:d1:1b:ac:58:19:ff:a3:3d:a3:03:8e:b0:e0:7c:ec:09: 02:17:4f:c2:97:97:e5:55:85:58:f3:20:96:41:19:24:bc:97: f0:59:79:1e:76:98:ec:7f:55:42:3c:a6:be:31:4c:d3:c3:41: 56:08:a9:3d:b9:dc:22:94:32:db:ea:33:07:c2:c6:a8:8d:94: 93:45:ba:07:0f:ac:16:fe:98:8e:31:26:39:21:96:b0:e2:5e: ec:f6:c7:b4:a2:89:c7:b5:e1:55:5d:76:fb:c1:89:2e:19:a8: 1e:be:5c:30:de:0e:47:98:3d:41:1e:c2:8d:dd:db:2d:b7:6b: e6:bf:81:45:07:ab:cb:6a:71:e2:6e:f5:6b:f3:e6:eb:df:a6: ab:0f:e0:d3:11:59:25:0d:be:14:d9:9d:0a:1e:eb:cb:ef:31: 27:97:d4:bd:d7:18:7d:16:77:02:d5:cc:b6:9d:30:22:2a:88: bc:e7:4e:c9:33:da:7f:af:a7:c2:73:76:e3:70:c9:28:e0:ab: ca:9e:c7:71:c7:9b:1b:02:00:ab:df:cb:b0:52:98:b8:3c:26: e4:99:12:28:37:ba:78:25:ea:10:b7:fd:2e:0e:56:2c:6d:79: c9:4f:9d:f2 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY3 RDYyN0ZFMzZBMkVCRjY5ODA5QkM4NDdCNTQzM0JGNDNFMzdFODAeFw0yNTA5MTYy MTIwMjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3NUNDMjU2OTQwRTUx RjMxMjhFMUQ2RURCNzQ1MTdBQTlBRkMyMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPtDQ8luyItMzdhTFQ03qMrYMwbpei9JNJ4IZbQjRuU1xLXUGe BnfCw2gL9rrmaI+NQjEgLAo7AMORT7cu5+caawmcGSWA8dI45RhGH6StkE2CQo8l u+9prXOb2lS4gTaY4O/aXJzO/qYDXwYk/2tyeHq7qNNC9D5GyIByunSnVmEuwUro 5AqRslC8oZ6ByXs6L6uJg/RBckUUsfJjuaSO6jZjlhdFP8iwS0Z9NkM2Q/XyEJLE gwK5j8bTWxDqEedo8NkvOp4U4RQUCZnk4yMPQpQT9GOkLSJNCj6xrN7nL5jHcrOb wp9GJAS5Vj2Pfcvdezt9eKz4cZIL5IkUOfstAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUJ1zCVpQOUfMSjh1u23RReqmvwjEwHwYDVR0jBBgwFoAUH31if+NqLr9pgJvI R7VDO/Q+N+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvSDMxaWYtTnFMcjlwZ0p2SVI3VkRPX1EtTi1nLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9IMzFpZi1OcUxyOXBnSnZJUjdWRE9fUS1OLWcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9IMzFpZi1OcUxyOXBn SnZJUjdWRE9fUS1OLWcubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJY8ZeGDRF8yP+XcGGA8QGtkFHaLRG6xYGf+jPaMDjrDgfOwJAhdPwpeX5VWF WPMglkEZJLyX8Fl5HnaY7H9VQjymvjFM08NBVgipPbncIpQy2+ozB8LGqI2Uk0W6 Bw+sFv6YjjEmOSGWsOJe7PbHtKKJx7XhVV12+8GJLhmoHr5cMN4OR5g9QR7Cjd3b Lbdr5r+BRQery2px4m71a/Pm69+mqw/g0xFZJQ2+FNmdCh7ry+8xJ5fUvdcYfRZ3 AtXMtp0wIiqIvOdOyTPaf6+nwnN243DJKOCryp7HccebGwIAq9/LsFKYuDwm5JkS KDe6eCXqELf9Lg5WLG15yU+d8g== -----END CERTIFICATE-----Generated at Thu Sep 18 02:08:30 2025 by rpki-client