$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft File: vYItmSsPaLYebgouYUPyv4kVu2E.mft (raw, json) Hash identifier: hVVXEUUWi0MDEfBrNZHlQSDvKXFwin17dyRZYWzV/WQ= Subject key identifier: 30:FC:C6:70:20:83:76:49:06:14:8B:BE:D7:97:A3:F1:99:31:A0:F5 Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Certificate serial: 0D53 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft Manifest number: 0D3F Signing time: Sun 19 Oct 2025 21:55:54 +0000 Manifest this update: Sun 19 Oct 2025 21:55:54 +0000 Manifest next update: Tue 21 Oct 2025 21:55:54 +0000 Files and hashes: 1: FrQlaztT1TknIkcRvjBU8KHwcjA.roa (hash: FITFyBeeFg3IK5v2sIgxEdsai7z13aAMB+tTWtzo2Uo=) 2: m84ZI8byQOnmkRJkXv3sq7njhmI.roa (hash: oz2DZZR/arQFDz8zl3xo2CM2MokQCz2gJAL4AAr35Sw=) 3: vYItmSsPaLYebgouYUPyv4kVu2E.crl (hash: ya+GCgvJw6oOhUwPOyaIDicfsdHcGtvdgQt3YasagY0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3411 (0xd53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Validity Not Before: Oct 19 21:55:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=30FCC6702083764906148BBED797A3F19931A0F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:f7:b6:90:11:7d:d2:95:99:42:43:0d:64: 9b:cc:d5:f7:cb:25:bc:64:6f:bd:62:77:11:c1:11: 8b:00:5f:d8:8b:aa:a2:98:d9:e4:be:f8:8c:1f:f5: 8b:4a:bc:f6:4c:42:6b:cd:9c:ec:bb:9e:7a:7e:24: d5:07:02:b6:c6:38:d8:f2:ad:9f:dd:a5:e7:e8:78: 4f:dc:db:ab:17:ed:d5:4f:ba:b1:4e:90:cf:85:02: 36:d1:f8:15:11:7e:64:26:17:4a:9b:82:57:88:8d: 8a:66:ce:dd:0b:77:e6:80:56:56:39:f9:87:83:38: 9c:d7:c5:5a:1d:4d:72:d6:d1:9c:31:d1:a4:71:47: 54:7a:5a:07:1e:eb:ce:5e:1f:2e:b8:d5:21:c7:24: ab:ed:ac:b3:32:91:fe:b6:9e:c9:98:46:7b:91:23: 5b:59:1d:3a:31:98:30:91:a7:89:f7:2b:ab:88:e5: 99:95:30:16:39:cf:b7:7c:c8:2f:d9:e1:bd:16:e8: df:15:49:55:65:3b:7d:ff:d8:f0:a0:ca:12:62:d7: bd:d6:d5:2c:19:ce:62:0e:0d:eb:d9:c8:cc:10:7f: 70:1b:7b:30:82:66:ba:48:6b:ed:50:da:5e:4f:36: 3a:41:e5:44:53:cd:f9:33:81:7e:71:87:5c:b7:7d: e4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FC:C6:70:20:83:76:49:06:14:8B:BE:D7:97:A3:F1:99:31:A0:F5 X509v3 Authority Key Identifier: keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:2b:8a:1a:d9:0b:2a:bb:a2:7a:4e:fb:76:7d:32:19:a2:1d: 84:22:39:f5:c4:3d:66:c0:a7:c7:46:cf:27:ec:f7:96:22:7f: ff:57:9b:7e:20:ad:0e:5e:c7:03:7e:f0:33:3b:d0:d0:26:66: db:b5:39:76:4f:0c:33:c8:5b:ea:31:f6:4b:bc:0c:fa:62:37: a7:4d:24:ea:0e:1d:fe:1f:15:8e:8c:20:6f:b9:f6:b7:2d:de: 6a:09:a8:9b:9b:a2:bb:0e:80:a4:45:1f:a1:28:f5:4f:8c:98: 2b:83:cd:6c:57:ec:d4:19:31:49:81:b9:91:b2:f8:29:21:71: 90:15:83:e6:b3:34:df:45:03:0a:eb:54:57:94:c0:a7:4c:a4: 6e:a6:aa:b5:43:b6:38:4b:7b:fe:a9:4a:0b:f1:ab:9b:b1:34: 9b:50:92:bc:23:b5:d5:be:19:52:b0:0c:a3:02:8f:e3:30:86: 8a:48:31:c5:74:d9:3a:1b:7b:5b:c2:8d:30:8d:8d:2b:20:60: 3b:34:4a:01:2f:54:28:8c:1f:0d:28:86:06:a3:1e:76:22:36: d5:46:35:e2:8f:3d:e7:9e:dc:91:55:7f:0a:95:5d:92:16:f4: ae:95:f2:dd:2f:a4:b4:94:60:ec:f8:1a:85:cb:5e:04:dc:29: 54:46:b1:27 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDVMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkQ4 MjJEOTkyQjBGNjhCNjFFNkUwQTJFNjE0M0YyQkY4OTE1QkI2MTAeFw0yNTEwMTky MTU1NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMwRkNDNjcwMjA4Mzc2 NDkwNjE0OEJCRUQ3OTdBM0YxOTkzMUEwRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5vfe2kBF90pWZQkMNZJvM1ffLJbxkb71idxHBEYsAX9iLqqKY 2eS++Iwf9YtKvPZMQmvNnOy7nnp+JNUHArbGONjyrZ/dpefoeE/c26sX7dVPurFO kM+FAjbR+BURfmQmF0qbgleIjYpmzt0Ld+aAVlY5+YeDOJzXxVodTXLW0Zwx0aRx R1R6Wgce685eHy641SHHJKvtrLMykf62nsmYRnuRI1tZHToxmDCRp4n3K6uI5ZmV MBY5z7d8yC/Z4b0W6N8VSVVlO33/2PCgyhJi173W1SwZzmIODevZyMwQf3AbezCC ZrpIa+1Q2l5PNjpB5URTzfkzgX5xh1y3feR7AgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUMPzGcCCDdkkGFIu+15ej8ZkxoPUwHwYDVR0jBBgwFoAUvYItmSsPaLYebgou YUPyv4kVu2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUVklT UC92WUl0bVNzUGFMWWViZ291WVVQeXY0a1Z1MkUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3ZZSXRtU3NQYUxZZWJnb3VZVVB5djRrVnUyRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NBVFZJU1AvdllJdG1Tc1BhTFllYmdv dVlVUHl2NGtWdTJFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AAkrihrZCyq7onpO+3Z9MhmiHYQiOfXEPWbAp8dGzyfs95Yif/9Xm34grQ5exwN+ 8DM70NAmZtu1OXZPDDPIW+ox9ku8DPpiN6dNJOoOHf4fFY6MIG+59rct3moJqJub orsOgKRFH6Eo9U+MmCuDzWxX7NQZMUmBuZGy+CkhcZAVg+azNN9FAwrrVFeUwKdM pG6mqrVDtjhLe/6pSgvxq5uxNJtQkrwjtdW+GVKwDKMCj+MwhopIMcV02Tobe1vC jTCNjSsgYDs0SgEvVCiMHw0ohgajHnYiNtVGNeKPPeee3JFVfwqVXZIW9K6V8t0v pLSUYOz4GoXLXgTcKVRGsSc= -----END CERTIFICATE-----Generated at Mon Oct 20 17:03:37 2025 by rpki-client