$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZUSO/lle2DWn8KCKE7gt1fS6_azqFWiA.mft File: lle2DWn8KCKE7gt1fS6_azqFWiA.mft (raw, json) Hash identifier: +gOp2NY9KgVleQZ1Of07oHpTI3Uu1baCWyWR84Vqtbk= Subject key identifier: BA:02:EB:AC:09:6F:4F:DC:3F:71:98:53:A6:1C:31:BE:E1:EF:DB:ED Authority key identifier: 96:57:B6:0D:69:FC:28:22:84:EE:0B:75:7D:2E:BF:6B:3A:85:5A:20 Certificate issuer: /CN=9657B60D69FC282284EE0B757D2EBF6B3A855A20 Certificate serial: 2C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lle2DWn8KCKE7gt1fS6_azqFWiA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZUSO/lle2DWn8KCKE7gt1fS6_azqFWiA.mft Manifest number: 2B Signing time: Wed 22 Oct 2025 12:25:07 +0000 Manifest this update: Wed 22 Oct 2025 12:25:07 +0000 Manifest next update: Wed 22 Oct 2025 18:25:07 +0000 Files and hashes: 1: J8hSLLzm5jiY4n8ZoFBY8qv2TlY.roa (hash: K9uASHy/f7hYroRXCwiv67ugUzkSrVLCJa14XITQMSk=) 2: lle2DWn8KCKE7gt1fS6_azqFWiA.crl (hash: 5q/sNxwHDL5S425v5HsqpT3cm1AeJZreXVx5hAdJh6Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZUSO/lle2DWn8KCKE7gt1fS6_azqFWiA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ZUSO/lle2DWn8KCKE7gt1fS6_azqFWiA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lle2DWn8KCKE7gt1fS6_azqFWiA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 15:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9657B60D69FC282284EE0B757D2EBF6B3A855A20 Validity Not Before: Oct 22 12:25:07 2025 GMT Not After : Oct 7 15:30:24 2026 GMT Subject: CN=BA02EBAC096F4FDC3F719853A61C31BEE1EFDBED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f7:4a:9d:98:1f:cb:3f:c9:ff:c2:cb:4a:ee: b3:dd:de:93:39:5a:ee:82:f8:6c:40:3d:28:61:35: dd:51:11:7a:6f:71:ec:fb:29:9e:74:89:2a:13:5d: a1:32:fe:cd:01:7d:f6:0d:47:9a:c5:75:96:5d:12: 5b:43:46:ac:1e:f5:18:03:79:97:98:32:05:82:b9: 01:ff:45:f4:0f:90:f7:08:27:81:8e:03:f4:c3:46: 11:92:de:5f:e2:79:84:23:cf:38:94:01:91:c8:5a: c8:c0:fd:44:79:db:0a:08:c4:87:05:c8:d5:22:f9: 90:bd:9b:35:59:52:6e:72:ed:07:ce:b2:7f:63:73: 35:47:16:1b:49:78:59:e3:86:b6:d9:c6:2b:28:a8: 96:67:20:7e:a6:f2:98:9c:9b:d2:2c:59:42:56:2c: e2:ef:bd:90:cb:82:67:e9:62:8f:83:83:81:7f:41: 84:c3:6e:f1:f2:7b:a7:ad:94:11:e9:0a:89:46:8d: 8d:69:d9:dc:43:bd:83:2a:c8:b1:c0:27:4d:c8:0a: 7b:5c:e1:32:67:a0:f0:79:04:70:3e:2f:f9:bb:9a: c5:01:4f:b5:12:6f:8e:3d:3b:01:4c:0f:bf:8e:6e: a3:96:6b:02:21:9f:c0:2a:ff:0c:0e:cd:0b:f3:a2: 30:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:02:EB:AC:09:6F:4F:DC:3F:71:98:53:A6:1C:31:BE:E1:EF:DB:ED X509v3 Authority Key Identifier: keyid:96:57:B6:0D:69:FC:28:22:84:EE:0B:75:7D:2E:BF:6B:3A:85:5A:20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZUSO/lle2DWn8KCKE7gt1fS6_azqFWiA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lle2DWn8KCKE7gt1fS6_azqFWiA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZUSO/lle2DWn8KCKE7gt1fS6_azqFWiA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:59:cc:2d:eb:3a:f7:b7:0f:a9:cb:b9:ce:3f:ed:d6:73:c1: 1e:fd:e7:fd:66:51:a4:f0:b7:da:f2:f3:7f:4b:51:23:b0:89: 7f:43:23:cf:47:08:0d:93:d6:60:4c:01:63:8b:43:26:06:bd: 53:80:84:29:76:94:08:a8:ec:3f:f8:b1:00:a6:2a:25:c9:fe: 6e:19:77:68:d3:5f:b1:24:b6:5d:91:60:bb:33:9e:09:bd:8a: 77:ed:0a:32:03:86:e1:d7:f6:af:4f:d3:0c:0f:a3:2c:53:0f: 8f:d0:58:e9:c6:b7:de:ef:4a:69:9c:7d:6f:0e:f7:2b:b7:35: 9a:f1:91:30:82:e6:b4:9d:53:9c:38:d7:bb:60:ee:9e:51:a4: 33:8f:9f:aa:f6:7a:c6:91:5b:73:9d:72:05:da:35:25:88:7e: 39:43:14:a4:21:76:b2:84:59:6d:32:e6:60:0a:ae:0c:ab:c6: e3:27:11:61:7f:3d:29:cd:e7:9d:8d:59:24:46:b0:07:03:84: d0:5b:77:1b:c1:60:dc:15:5e:90:62:3e:a9:8a:d4:39:f0:e8: 3c:4e:46:e1:7b:60:f9:f3:ba:35:4e:5d:4f:46:3d:99:3f:2c: ae:50:58:a0:ed:93:0d:e0:74:fe:0e:c8:a6:84:e3:52:ce:b9: 3a:4b:3b:3c -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIBLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NjU3 QjYwRDY5RkMyODIyODRFRTBCNzU3RDJFQkY2QjNBODU1QTIwMB4XDTI1MTAyMjEy MjUwN1oXDTI2MTAwNzE1MzAyNFowMzExMC8GA1UEAxMoQkEwMkVCQUMwOTZGNEZE QzNGNzE5ODUzQTYxQzMxQkVFMUVGREJFRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOj3Sp2YH8s/yf/Cy0rus93ekzla7oL4bEA9KGE13VERem9x7Psp nnSJKhNdoTL+zQF99g1HmsV1ll0SW0NGrB71GAN5l5gyBYK5Af9F9A+Q9wgngY4D 9MNGEZLeX+J5hCPPOJQBkchayMD9RHnbCgjEhwXI1SL5kL2bNVlSbnLtB86yf2Nz NUcWG0l4WeOGttnGKyiolmcgfqbymJyb0ixZQlYs4u+9kMuCZ+lij4ODgX9BhMNu 8fJ7p62UEekKiUaNjWnZ3EO9gyrIscAnTcgKe1zhMmeg8HkEcD4v+buaxQFPtRJv jj07AUwPv45uo5ZrAiGfwCr/DA7NC/OiMKECAwEAAaOCAgMwggH/MB0GA1UdDgQW BBS6AuusCW9P3D9xmFOmHDG+4e/b7TAfBgNVHSMEGDAWgBSWV7YNafwoIoTuC3V9 Lr9rOoVaIDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9aVVNPL2xs ZTJEV244S0NLRTdndDFmUzZfYXpxRldpQS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bGxlMkRXbjhLQ0tFN2d0MWZTNl9henFGV2lBLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvWlVTTy9sbGUyRFduOEtDS0U3Z3QxZlM2X2F6 cUZXaUEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUHAQcB Af8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiVnMLes6 97cPqcu5zj/t1nPBHv3n/WZRpPC32vLzf0tRI7CJf0Mjz0cIDZPWYEwBY4tDJga9 U4CEKXaUCKjsP/ixAKYqJcn+bhl3aNNfsSS2XZFguzOeCb2Kd+0KMgOG4df2r0/T DA+jLFMPj9BY6ca33u9KaZx9bw73K7c1mvGRMILmtJ1TnDjXu2DunlGkM4+fqvZ6 xpFbc51yBdo1JYh+OUMUpCF2soRZbTLmYAquDKvG4ycRYX89Kc3nnY1ZJEawBwOE 0Ft3G8Fg3BVekGI+qYrUOfDoPE5G4Xtg+fO6NU5dT0Y9mT8srlBYoO2TDeB0/g7I poTjUs65Oks7PA== -----END CERTIFICATE-----Generated at Wed Oct 22 15:06:58 2025 by rpki-client