$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft File: SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft (raw, json) Hash identifier: QZoWXICeqoMcbotKM/kavDgySZ4bJNDkkSCEWxS0rtQ= Subject key identifier: F4:9C:52:50:57:A5:F2:37:9E:FB:80:26:89:97:DF:0D:56:5A:A5:FF Authority key identifier: 4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 Certificate issuer: /CN=4AC29EB919D071916D744665F29341B00A036297 Certificate serial: DB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft Manifest number: D9 Signing time: Mon 20 Oct 2025 12:25:57 +0000 Manifest this update: Mon 20 Oct 2025 12:25:57 +0000 Manifest next update: Mon 20 Oct 2025 18:25:57 +0000 Files and hashes: 1: -rM84dFnltLzFCWPl4AGxt3d70o.roa (hash: OBYLVbSP/fiL5gNwYlwz1qku0qGFB8y4odJJJJFQvN8=) 2: Nqa0Qhn4yvrq5vNhQmcCw7hAdSE.roa (hash: Y5nBa0ULJqBAX+uCNVgjgWDOtFmo25XLO+BS2Ijf5+0=) 3: SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl (hash: n4MrUSFNgLnuwTuRHpR3qSPoNwiLVDWB7wf4yYAJWJc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC29EB919D071916D744665F29341B00A036297 Validity Not Before: Oct 20 12:25:57 2025 GMT Not After : Sep 9 15:30:21 2026 GMT Subject: CN=F49C525057A5F2379EFB80268997DF0D565AA5FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:56:80:7b:34:42:0e:d7:d1:dc:e6:32:8e:60: 41:68:d1:15:3a:4b:a5:91:8c:ea:07:06:b6:bf:3c: 46:7a:76:2b:dc:f2:32:23:e1:6c:c7:7f:ae:65:4d: af:22:24:f2:cb:97:ec:f0:b6:fd:2a:79:e1:5d:2e: e5:84:c4:5f:4f:df:87:44:dd:80:34:32:6c:64:9b: d9:d1:74:07:ac:53:fe:9a:6c:2d:ce:1e:aa:ba:97: 8d:72:49:e6:14:43:de:12:db:32:df:4f:3a:bf:94: 9c:fe:83:8b:98:04:e7:b7:08:ef:b8:d1:45:eb:44: a6:62:82:ca:76:e3:f4:3d:53:0a:22:65:95:0e:3c: 46:d9:03:f9:ac:56:21:67:aa:98:c9:1f:49:00:06: 94:09:88:d4:1d:48:d6:89:47:6d:61:a0:79:05:34: 2d:10:19:b9:69:5a:bb:99:3b:81:b2:75:cb:e3:e0: 98:62:13:04:21:eb:be:fa:fd:24:ec:54:55:ee:c7: 73:ce:aa:bd:b8:ff:81:a7:5b:26:ba:1c:c9:1e:e8: de:b2:55:4b:b6:b2:a6:65:e9:50:33:fd:50:84:ba: e6:9b:df:0a:72:9d:a6:a8:27:8a:f0:8a:c3:6a:d5: 42:c3:f2:5c:cb:75:c3:36:d6:3b:c1:52:14:3d:f6: e9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9C:52:50:57:A5:F2:37:9E:FB:80:26:89:97:DF:0D:56:5A:A5:FF X509v3 Authority Key Identifier: keyid:4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:0c:18:27:b0:dd:76:2d:aa:46:5d:53:13:e5:61:2b:5d:4b: 34:d7:85:4f:54:e9:ab:e3:30:2b:cb:7a:1a:da:ea:56:49:b8: 92:22:cc:12:e3:c8:df:3b:f3:8b:ad:43:4d:36:95:c5:da:3a: 84:39:f2:12:d2:00:cd:7a:97:6a:27:ce:62:79:dd:6f:f5:fc: c4:f4:7d:b6:36:a0:c1:48:ef:a4:77:c9:cf:99:8d:2e:c3:e5: 96:15:9d:b1:19:e8:51:36:54:24:94:30:e8:4c:ee:bc:96:11: c2:d1:0b:48:dc:a6:9d:77:01:9f:ff:d1:0f:5c:ae:ea:2c:bb: 3a:3b:6d:a4:b9:ae:1d:60:a9:d2:de:a6:1e:e4:50:06:2e:d2: e5:d2:b6:b9:58:0e:c0:67:ea:cd:2a:4b:92:43:5e:ba:33:af: 47:6c:8f:7b:b5:4b:a2:fb:bc:cd:08:24:22:50:a2:f7:13:a7: 74:36:85:65:25:72:28:0c:e2:e3:de:de:1e:7f:1f:7d:98:1e: b8:e7:cb:ad:db:cc:bf:56:04:23:3c:f6:5e:9e:57:1f:d7:14: 38:46:f4:27:f1:4e:63:e0:cf:8d:93:32:8b:4f:1e:c1:ca:77: de:d9:2a:06:78:d3:80:80:3e:04:f6:63:96:a6:63:1c:d8:e1: 3f:53:d3:f0 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICANswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEFD MjlFQjkxOUQwNzE5MTZENzQ0NjY1RjI5MzQxQjAwQTAzNjI5NzAeFw0yNTEwMjAx MjI1NTdaFw0yNjA5MDkxNTMwMjFaMDMxMTAvBgNVBAMTKEY0OUM1MjUwNTdBNUYy Mzc5RUZCODAyNjg5OTdERjBENTY1QUE1RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzVoB7NEIO19Hc5jKOYEFo0RU6S6WRjOoHBra/PEZ6divc8jIj 4WzHf65lTa8iJPLLl+zwtv0qeeFdLuWExF9P34dE3YA0Mmxkm9nRdAesU/6abC3O Hqq6l41ySeYUQ94S2zLfTzq/lJz+g4uYBOe3CO+40UXrRKZigsp24/Q9UwoiZZUO PEbZA/msViFnqpjJH0kABpQJiNQdSNaJR21hoHkFNC0QGblpWruZO4Gydcvj4Jhi EwQh6776/STsVFXux3POqr24/4GnWya6HMke6N6yVUu2sqZl6VAz/VCEuuab3wpy naaoJ4rwisNq1ULD8lzLdcM21jvBUhQ99unDAgMBAAGjggINMIICCTAdBgNVHQ4E FgQU9JxSUFel8jee+4AmiZffDVZapf8wHwYDVR0jBBgwFoAUSsKeuRnQcZFtdEZl 8pNBsAoDYpcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJQU9D T1JQL1NzS2V1Um5RY1pGdGRFWmw4cE5Cc0FvRFlwYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvU3NLZXVSblFjWkZ0ZEVabDhwTkJzQW9EWXBjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJQU9DT1JQL1NzS2V1Um5RY1pG dGRFWmw4cE5Cc0FvRFlwYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAfDBgnsN12LapGXVMT5WErXUs014VPVOmr4zAry3oa2upWSbiSIswS48jf O/OLrUNNNpXF2jqEOfIS0gDNepdqJ85ied1v9fzE9H22NqDBSO+kd8nPmY0uw+WW FZ2xGehRNlQklDDoTO68lhHC0QtI3KaddwGf/9EPXK7qLLs6O22kua4dYKnS3qYe 5FAGLtLl0ra5WA7AZ+rNKkuSQ166M69HbI97tUui+7zNCCQiUKL3E6d0NoVlJXIo DOLj3t4efx99mB6458ut28y/VgQjPPZenlcf1xQ4RvQn8U5j4M+NkzKLTx7Bynfe 2SoGeNOAgD4E9mOWpmMc2OE/U9Pw -----END CERTIFICATE-----Generated at Mon Oct 20 15:26:50 2025 by rpki-client